{"resultsPerPage":719,"startIndex":0,"totalResults":719,"format":"NVD_CVE","version":"2.0","timestamp":"2026-05-30T20:33:59.032","vulnerabilities":[{"cve":{"id":"CVE-2011-0539","sourceIdentifier":"secalert@redhat.com","published":"2011-02-10T18:00:57.660","lastModified":"2026-05-29T21:16:24.693","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"The key_certify function in usr.bin/ssh/key.c in OpenSSH 5.6 and 5.7, when generating legacy certificates using the -t command-line option in ssh-keygen, does not initialize the nonce field, which might allow remote attackers to obtain sensitive stack memory contents or make it easier to conduct hash collision attacks."},{"lang":"es","value":"La función key_certify en usr.bin/ssh/key.c en OpenSSH v5.6 y v5.7 al generar los certificados de herencia con la opción de línea de comandos -t en ssh-keygen, no se inicializa el campo nonce, que podría permitir a atacantes remotos obtener contenido sensible de la pila de memoria o que sea más fácil de llevar a cabo ataques de colisión hash."}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":3.6}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:P/I:N/A:N","baseScore":5.0,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"NONE","availabilityImpact":"NONE"},"baseSeverity":"MEDIUM","exploitabilityScore":10.0,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-264"}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-457"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:5.6:*:*:*:*:*:*:*","matchCriteriaId":"0C5D4A9B-1194-4D63-AAC2-8701C890BB0D"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:5.7:*:*:*:*:*:*:*","matchCriteriaId":"F75DB5AE-E99D-4827-B290-823E015AEE34"}]}]}],"references":[{"url":"http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c02794777","source":"secalert@redhat.com"},{"url":"http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10673","source":"secalert@redhat.com"},{"url":"http://secunia.com/advisories/43181","source":"secalert@redhat.com","tags":["Vendor Advisory"]},{"url":"http://secunia.com/advisories/44269","source":"secalert@redhat.com"},{"url":"http://www.openssh.com/txt/legacy-cert.adv","source":"secalert@redhat.com","tags":["Patch","Vendor Advisory"]},{"url":"http://www.openwall.com/lists/oss-security/2011/02/04/2","source":"secalert@redhat.com"},{"url":"http://www.securityfocus.com/bid/46155","source":"secalert@redhat.com"},{"url":"http://www.securitytracker.com/id?1025028","source":"secalert@redhat.com"},{"url":"http://www.vupen.com/english/advisories/2011/0284","source":"secalert@redhat.com","tags":["Vendor Advisory"]},{"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/65163","source":"secalert@redhat.com"},{"url":"http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c02794777","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10673","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://secunia.com/advisories/43181","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]},{"url":"http://secunia.com/advisories/44269","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.openssh.com/txt/legacy-cert.adv","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Vendor Advisory"]},{"url":"http://www.openwall.com/lists/oss-security/2011/02/04/2","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.securityfocus.com/bid/46155","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.securitytracker.com/id?1025028","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.vupen.com/english/advisories/2011/0284","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]},{"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/65163","source":"af854a3a-2127-422b-91ae-364da2661108"}]}},{"cve":{"id":"CVE-2010-5107","sourceIdentifier":"secalert@redhat.com","published":"2013-03-07T20:55:01.000","lastModified":"2026-05-29T21:16:23.257","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"The default configuration of OpenSSH through 6.1 enforces a fixed time limit between establishing a TCP connection and completing a login, which makes it easier for remote attackers to cause a denial of service (connection-slot exhaustion) by periodically making many new TCP connections."},{"lang":"es","value":"La configuración por defecto de OpenSSH hasta v6.1 impone un límite de tiempo fijado entre el establecimiento de una conexión TCP y el inicio de sesión, lo que hace que sea más fácil para los atacantes remotos provocar una denegación de servicio  periódicamente haciendo muchas conexiones TCP nuevas."}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":3.6}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:N/I:N/A:P","baseScore":5.0,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"PARTIAL"},"baseSeverity":"MEDIUM","exploitabilityScore":10.0,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"NVD-CWE-Other"}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-400"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:*:*:*:*:*:*:*:*","versionEndIncluding":"6.1","matchCriteriaId":"F9EA14B4-350A-413E-A270-F91ECB194281"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:1.2:*:*:*:*:*:*:*","matchCriteriaId":"316C8534-9CE3-456C-A04E-5D2B789FBE31"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:1.2.1:*:*:*:*:*:*:*","matchCriteriaId":"7BEB67BB-A442-46C2-8BC1-BBEB009AC532"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:1.2.2:*:*:*:*:*:*:*","matchCriteriaId":"B6E307F1-C765-409C-835C-133026A5179C"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:1.2.3:*:*:*:*:*:*:*","matchCriteriaId":"CA997F5E-29FE-454A-9006-001D732CD4B1"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:1.2.27:*:*:*:*:*:*:*","matchCriteriaId":"114134F3-BDFD-465D-8317-82F9D6EFA5A7"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:1.3:*:*:*:*:*:*:*","matchCriteriaId":"DAB55300-F90D-45D3-88BC-5ADCEC366264"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:1.5:*:*:*:*:*:*:*","matchCriteriaId":"F3EC5611-31B5-4253-B99A-E81C202768A0"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:1.5.7:*:*:*:*:*:*:*","matchCriteriaId":"43060323-1B51-45B4-BEB9-0E472896D8EA"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:1.5.8:*:*:*:*:*:*:*","matchCriteriaId":"5441C616-D127-42D9-88AA-0FC9AA16EB03"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:2.1:*:*:*:*:*:*:*","matchCriteriaId":"EED5E506-9D2B-4CAF-8455-B9BE7696E49C"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:2.1.1:*:*:*:*:*:*:*","matchCriteriaId":"EE7CB94E-0479-4939-86F6-0B4BEDE2E739"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:2.2:*:*:*:*:*:*:*","matchCriteriaId":"78135400-BA1A-42AA-BE17-5588442BCF11"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:2.3:*:*:*:*:*:*:*","matchCriteriaId":"78F2EDC0-3189-4523-882B-9188C852F793"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:2.3.1:*:*:*:*:*:*:*","matchCriteriaId":"CDEF5203-9D6B-4431-BF0D-C81B1E250AEC"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:2.5:*:*:*:*:*:*:*","matchCriteriaId":"E2991C07-5486-4590-A74E-46A379DD3339"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:2.5.1:*:*:*:*:*:*:*","matchCriteriaId":"4EB9BE06-0A36-4853-ADF4-9C1A1854278A"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:2.5.2:*:*:*:*:*:*:*","matchCriteriaId":"8FC57F38-6545-497B-B6DA-FCAF51755988"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:2.9:*:*:*:*:*:*:*","matchCriteriaId":"EC30FD61-10DA-4C9B-BCE8-AD75DCEB40BC"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:2.9.9:*:*:*:*:*:*:*","matchCriteriaId":"EC1DF4CE-E71C-4C10-9F82-B9ECDC94933F"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:2.9.9p2:*:*:*:*:*:*:*","matchCriteriaId":"80C55B73-497D-4A22-9230-A4160BF97344"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:2.9p1:*:*:*:*:*:*:*","matchCriteriaId":"0238F009-4BBA-4E6B-9E2A-6045BA9BBE9C"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:2.9p2:*:*:*:*:*:*:*","matchCriteriaId":"4B235167-9554-4431-88C5-9472DD36FCDE"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:3.0:*:*:*:*:*:*:*","matchCriteriaId":"580008AC-2667-4708-8F7E-D70416A460EE"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:3.0.1:*:*:*:*:*:*:*","matchCriteriaId":"E05D8E86-EC01-4589-B372-4DEB7845C81F"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:3.0.1p1:*:*:*:*:*:*:*","matchCriteriaId":"764AD252-CA2F-4A87-BCAA-7747E8C410E0"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:3.0.2:*:*:*:*:*:*:*","matchCriteriaId":"CFFAA075-4277-4FD8-8A5A-867EEE1BA2F4"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:3.0.2p1:*:*:*:*:*:*:*","matchCriteriaId":"269BB9F7-55E5-4CB3-8429-C37C7132799F"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:3.0p1:*:*:*:*:*:*:*","matchCriteriaId":"C6E6F639-31A0-4026-B6D4-51BA79FB1D20"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:3.1:*:*:*:*:*:*:*","matchCriteriaId":"0211BCE3-0DED-40BA-8A21-1A97B91F71C7"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:3.1p1:*:*:*:*:*:*:*","matchCriteriaId":"B4EE9E4B-CABC-4EA2-9075-CC23CEB1B0A3"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:3.2:*:*:*:*:*:*:*","matchCriteriaId":"5AD7BB30-AC79-4153-852C-1053DCF4DE53"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:3.2.2:*:*:*:*:*:*:*","matchCriteriaId":"F48519C6-0C28-49A5-94C7-EF3AA88E2667"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:3.2.2p1:*:*:*:*:*:*:*","matchCriteriaId":"9E188C66-C8F1-4C13-AAFF-7C83B2A884B8"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:3.2.3p1:*:*:*:*:*:*:*","matchCriteriaId":"9039BE91-AF0A-41E7-8F9F-15375890E120"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:3.3:*:*:*:*:*:*:*","matchCriteriaId":"08BCB2EA-DF9D-4853-805B-29FA6274E2B7"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:3.3p1:*:*:*:*:*:*:*","matchCriteriaId":"0F93417F-2498-4576-9F5D-B59F77D39669"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:3.4:*:*:*:*:*:*:*","matchCriteriaId":"AF3AB42C-B614-4746-99AD-E94140D91BF3"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:3.4p1:*:*:*:*:*:*:*","matchCriteriaId":"458167E5-9BC2-40BE-AC8A-9761A4F19494"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:3.5:*:*:*:*:*:*:*","matchCriteriaId":"3FB9B4C7-4235-4388-8E5D-E72ECCC37A7E"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:3.5p1:*:*:*:*:*:*:*","matchCriteriaId":"86ACA0ED-A3D0-48A7-B06F-13709AD23B55"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:3.6:*:*:*:*:*:*:*","matchCriteriaId":"0FEB9262-D05E-4610-9C79-3EDE44AC7C0B"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:3.6.1:*:*:*:*:*:*:*","matchCriteriaId":"8176879B-1875-4AC9-B15A-2ABCFCD04F88"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:3.6.1p1:*:*:*:*:*:*:*","matchCriteriaId":"FAA26A12-F96A-4025-BBCA-72B7A3B1E60C"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:3.6.1p2:*:*:*:*:*:*:*","matchCriteriaId":"A02751E9-2D38-4495-9572-8D84D71D4773"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:3.7:*:*:*:*:*:*:*","matchCriteriaId":"7A36BEA2-DAE4-423C-8D85-0F6036351F98"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:3.7.1:*:*:*:*:*:*:*","matchCriteriaId":"80DC64F6-FE28-44BA-91D1-EC2DB11B2CFC"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:3.7.1p1:*:*:*:*:*:*:*","matchCriteriaId":"DF23EBA1-D3A9-413F-9E83-43A91492C031"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:3.7.1p2:*:*:*:*:*:*:*","matchCriteriaId":"44CCF5CD-B434-4392-A79A-C1945D2AE30A"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:3.8:*:*:*:*:*:*:*","matchCriteriaId":"AEB456B8-9D8B-4985-858D-6A43FA5EE2E9"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:3.8.1:*:*:*:*:*:*:*","matchCriteriaId":"2BD4E0F6-4EEA-4EC7-83E7-FC6F7D2E7A3C"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:3.8.1p1:*:*:*:*:*:*:*","matchCriteriaId":"C35F4ABE-1B0C-4195-8F99-BF993A17882B"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:3.9:*:*:*:*:*:*:*","matchCriteriaId":"ADC7352D-2916-47F7-A256-F897D763DC9B"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:3.9.1:*:*:*:*:*:*:*","matchCriteriaId":"AEC3FC36-B246-4DCB-8984-228525D9A356"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:3.9.1p1:*:*:*:*:*:*:*","matchCriteriaId":"BC861000-37D8-4B0F-BFA0-57E9BE125B56"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:4.0:*:*:*:*:*:*:*","matchCriteriaId":"E003AB3C-8DF3-4AE8-82A3-984F30E5599B"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:4.0p1:*:*:*:*:*:*:*","matchCriteriaId":"5EBE75FE-DDE2-43BA-80EF-15A6698EABC9"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:4.1:*:*:*:*:*:*:*","matchCriteriaId":"1FF67D77-02AC-4807-984D-C5AE9799F051"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:4.1p1:*:*:*:*:*:*:*","matchCriteriaId":"683B26F0-5EA2-455A-8948-27C100BBA3AC"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:4.2:*:*:*:*:*:*:*","matchCriteriaId":"E5A75B23-2DD7-4EB2-BEAA-049FF4E51A14"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:4.2p1:*:*:*:*:*:*:*","matchCriteriaId":"7279E1EC-DEBC-4ACC-925D-06A7697C162F"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:4.3:*:*:*:*:*:*:*","matchCriteriaId":"7910598E-BEC1-4644-9DE4-D8BE505A4F9E"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:4.3p1:*:*:*:*:*:*:*","matchCriteriaId":"FB416D0C-6C86-450F-8917-D4B1BD82AB1E"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:4.3p2:*:*:*:*:*:*:*","matchCriteriaId":"3640CCC9-EC4A-44A4-B747-7BAAAD3460C7"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:4.4:*:*:*:*:*:*:*","matchCriteriaId":"B2DD362E-9EA9-4E88-9A94-D7B471EB1FD4"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:4.4p1:*:*:*:*:*:*:*","matchCriteriaId":"E3094069-AC2E-43BD-8094-D48E2526DECC"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:4.5:*:*:*:*:*:*:*","matchCriteriaId":"9B72CFB3-39C7-469C-AA59-69F5B8993BF7"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:4.6:*:*:*:*:*:*:*","matchCriteriaId":"2A7154C4-8325-4495-92B1-B7897CD7303E"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:4.7:*:*:*:*:*:*:*","matchCriteriaId":"99BF4471-763B-485A-ABD5-C68AD0A14058"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:4.8:*:*:*:*:*:*:*","matchCriteriaId":"40B1B209-53B8-48DC-AFFC-BD69D5978A0B"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:4.9:*:*:*:*:*:*:*","matchCriteriaId":"7212E982-76F2-496C-9F08-EC4137F20804"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:5.0:*:*:*:*:*:*:*","matchCriteriaId":"52D13E08-7B08-44AA-9017-3EE3F6301E10"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:5.1:*:*:*:*:*:*:*","matchCriteriaId":"2FBC7FF1-01EE-40A1-8735-14360A371803"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:5.2:*:*:*:*:*:*:*","matchCriteriaId":"987527F8-8A42-4729-A329-4D2AC8AFD6E1"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:5.3:*:*:*:*:*:*:*","matchCriteriaId":"93910448-8D6F-4F7E-9C7F-959754ABA50D"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:5.4:*:*:*:*:*:*:*","matchCriteriaId":"3356FDFD-BEA5-45A5-A36B-D1153AFE6C23"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:5.5:*:*:*:*:*:*:*","matchCriteriaId":"9394B8AD-AB22-4955-8774-C6BA2B56A260"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:5.6:*:*:*:*:*:*:*","matchCriteriaId":"0C5D4A9B-1194-4D63-AAC2-8701C890BB0D"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:5.7:*:*:*:*:*:*:*","matchCriteriaId":"F75DB5AE-E99D-4827-B290-823E015AEE34"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:5.8:*:*:*:*:*:*:*","matchCriteriaId":"DA4F797B-8E2C-41AC-AA29-D6B50A539B2F"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:5.8p2:*:*:*:*:*:*:*","matchCriteriaId":"6A653B9B-564C-4B74-94DC-17590E3D6696"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:5.9:*:*:*:*:*:*:*","matchCriteriaId":"1E74684E-71D3-4458-A8BA-5248982273F3"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:6.0:*:*:*:*:*:*:*","matchCriteriaId":"A9754B4A-3042-49B8-86F7-2D60E25400C9"}]}]}],"references":[{"url":"http://marc.info/?l=bugtraq&m=144050155601375&w=2","source":"secalert@redhat.com"},{"url":"http://rhn.redhat.com/errata/RHSA-2013-1591.html","source":"secalert@redhat.com"},{"url":"http://www.openbsd.org/cgi-bin/cvsweb/src/usr.bin/ssh/servconf.c?r1=1.234#rev1.234","source":"secalert@redhat.com"},{"url":"http://www.openbsd.org/cgi-bin/cvsweb/src/usr.bin/ssh/sshd_config.5?r1=1.156#rev1.156","source":"secalert@redhat.com"},{"url":"http://www.openbsd.org/cgi-bin/cvsweb/src/usr.bin/ssh/sshd_config?r1=1.89#rev1.89","source":"secalert@redhat.com"},{"url":"http://www.openwall.com/lists/oss-security/2013/02/07/3","source":"secalert@redhat.com"},{"url":"http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html","source":"secalert@redhat.com"},{"url":"http://www.oracle.com/technetwork/topics/security/linuxbulletinjan2016-2867209.html","source":"secalert@redhat.com"},{"url":"http://www.securityfocus.com/bid/58162","source":"secalert@redhat.com"},{"url":"https://bugzilla.redhat.com/show_bug.cgi?id=908707","source":"secalert@redhat.com"},{"url":"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19515","source":"secalert@redhat.com"},{"url":"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19595","source":"secalert@redhat.com"},{"url":"http://marc.info/?l=bugtraq&m=144050155601375&w=2","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://rhn.redhat.com/errata/RHSA-2013-1591.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.openbsd.org/cgi-bin/cvsweb/src/usr.bin/ssh/servconf.c?r1=1.234#rev1.234","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.openbsd.org/cgi-bin/cvsweb/src/usr.bin/ssh/sshd_config.5?r1=1.156#rev1.156","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.openbsd.org/cgi-bin/cvsweb/src/usr.bin/ssh/sshd_config?r1=1.89#rev1.89","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.openwall.com/lists/oss-security/2013/02/07/3","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.oracle.com/technetwork/topics/security/linuxbulletinjan2016-2867209.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.securityfocus.com/bid/58162","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://bugzilla.redhat.com/show_bug.cgi?id=908707","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19515","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19595","source":"af854a3a-2127-422b-91ae-364da2661108"}]}},{"cve":{"id":"CVE-2011-4327","sourceIdentifier":"secalert@redhat.com","published":"2014-02-03T03:55:03.550","lastModified":"2026-05-29T21:16:24.950","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"ssh-keysign.c in ssh-keysign in OpenSSH before 5.8p2 on certain platforms executes ssh-rand-helper with unintended open file descriptors, which allows local users to obtain sensitive key information via the ptrace system call."},{"lang":"es","value":"ssh-keysign.c en ssh-keysign en OpenSSH anterior a 5.8p2 en ciertas plataformas ejecuta ssh-rand-helper con descriptores de archivos abiertos no deseados, lo cual permite a usuarios locales obtener información clave sensible a través de la llamada al sistema ptrace."}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N","baseScore":5.5,"baseSeverity":"MEDIUM","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":1.8,"impactScore":3.6}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:L/AC:L/Au:N/C:P/I:N/A:N","baseScore":2.1,"accessVector":"LOCAL","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"NONE","availabilityImpact":"NONE"},"baseSeverity":"LOW","exploitabilityScore":3.9,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-200"}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-200"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:*:*:*:*:*:*:*:*","versionEndIncluding":"5.8","matchCriteriaId":"ED7FD807-BC4A-4F8F-B9F0-49BCF2E687C7"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:1.2:*:*:*:*:*:*:*","matchCriteriaId":"316C8534-9CE3-456C-A04E-5D2B789FBE31"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:1.2.1:*:*:*:*:*:*:*","matchCriteriaId":"7BEB67BB-A442-46C2-8BC1-BBEB009AC532"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:1.2.2:*:*:*:*:*:*:*","matchCriteriaId":"B6E307F1-C765-409C-835C-133026A5179C"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:1.2.3:*:*:*:*:*:*:*","matchCriteriaId":"CA997F5E-29FE-454A-9006-001D732CD4B1"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:1.2.27:*:*:*:*:*:*:*","matchCriteriaId":"114134F3-BDFD-465D-8317-82F9D6EFA5A7"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:1.3:*:*:*:*:*:*:*","matchCriteriaId":"DAB55300-F90D-45D3-88BC-5ADCEC366264"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:1.5:*:*:*:*:*:*:*","matchCriteriaId":"F3EC5611-31B5-4253-B99A-E81C202768A0"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:1.5.7:*:*:*:*:*:*:*","matchCriteriaId":"43060323-1B51-45B4-BEB9-0E472896D8EA"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:1.5.8:*:*:*:*:*:*:*","matchCriteriaId":"5441C616-D127-42D9-88AA-0FC9AA16EB03"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:2:*:*:*:*:*:*:*","matchCriteriaId":"FE60A415-91E3-4819-A252-E86A32EC3018"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:2.1:*:*:*:*:*:*:*","matchCriteriaId":"EED5E506-9D2B-4CAF-8455-B9BE7696E49C"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:2.1.1:*:*:*:*:*:*:*","matchCriteriaId":"EE7CB94E-0479-4939-86F6-0B4BEDE2E739"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:2.2:*:*:*:*:*:*:*","matchCriteriaId":"78135400-BA1A-42AA-BE17-5588442BCF11"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:2.3:*:*:*:*:*:*:*","matchCriteriaId":"78F2EDC0-3189-4523-882B-9188C852F793"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:2.3.1:*:*:*:*:*:*:*","matchCriteriaId":"CDEF5203-9D6B-4431-BF0D-C81B1E250AEC"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:2.5:*:*:*:*:*:*:*","matchCriteriaId":"E2991C07-5486-4590-A74E-46A379DD3339"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:2.5.1:*:*:*:*:*:*:*","matchCriteriaId":"4EB9BE06-0A36-4853-ADF4-9C1A1854278A"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:2.5.2:*:*:*:*:*:*:*","matchCriteriaId":"8FC57F38-6545-497B-B6DA-FCAF51755988"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:2.9:*:*:*:*:*:*:*","matchCriteriaId":"EC30FD61-10DA-4C9B-BCE8-AD75DCEB40BC"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:2.9.9:*:*:*:*:*:*:*","matchCriteriaId":"EC1DF4CE-E71C-4C10-9F82-B9ECDC94933F"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:2.9.9p2:*:*:*:*:*:*:*","matchCriteriaId":"80C55B73-497D-4A22-9230-A4160BF97344"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:2.9p1:*:*:*:*:*:*:*","matchCriteriaId":"0238F009-4BBA-4E6B-9E2A-6045BA9BBE9C"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:2.9p2:*:*:*:*:*:*:*","matchCriteriaId":"4B235167-9554-4431-88C5-9472DD36FCDE"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:3.0:*:*:*:*:*:*:*","matchCriteriaId":"580008AC-2667-4708-8F7E-D70416A460EE"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:3.0.1:*:*:*:*:*:*:*","matchCriteriaId":"E05D8E86-EC01-4589-B372-4DEB7845C81F"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:3.0.1p1:*:*:*:*:*:*:*","matchCriteriaId":"764AD252-CA2F-4A87-BCAA-7747E8C410E0"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:3.0.2:*:*:*:*:*:*:*","matchCriteriaId":"CFFAA075-4277-4FD8-8A5A-867EEE1BA2F4"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:3.0.2p1:*:*:*:*:*:*:*","matchCriteriaId":"269BB9F7-55E5-4CB3-8429-C37C7132799F"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:3.0p1:*:*:*:*:*:*:*","matchCriteriaId":"C6E6F639-31A0-4026-B6D4-51BA79FB1D20"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:3.1:*:*:*:*:*:*:*","matchCriteriaId":"0211BCE3-0DED-40BA-8A21-1A97B91F71C7"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:3.1p1:*:*:*:*:*:*:*","matchCriteriaId":"B4EE9E4B-CABC-4EA2-9075-CC23CEB1B0A3"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:3.2:*:*:*:*:*:*:*","matchCriteriaId":"5AD7BB30-AC79-4153-852C-1053DCF4DE53"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:3.2.2:*:*:*:*:*:*:*","matchCriteriaId":"F48519C6-0C28-49A5-94C7-EF3AA88E2667"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:3.2.2p1:*:*:*:*:*:*:*","matchCriteriaId":"9E188C66-C8F1-4C13-AAFF-7C83B2A884B8"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:3.2.3p1:*:*:*:*:*:*:*","matchCriteriaId":"9039BE91-AF0A-41E7-8F9F-15375890E120"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:3.3:*:*:*:*:*:*:*","matchCriteriaId":"08BCB2EA-DF9D-4853-805B-29FA6274E2B7"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:3.3p1:*:*:*:*:*:*:*","matchCriteriaId":"0F93417F-2498-4576-9F5D-B59F77D39669"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:3.4:*:*:*:*:*:*:*","matchCriteriaId":"AF3AB42C-B614-4746-99AD-E94140D91BF3"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:3.4p1:*:*:*:*:*:*:*","matchCriteriaId":"458167E5-9BC2-40BE-AC8A-9761A4F19494"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:3.5:*:*:*:*:*:*:*","matchCriteriaId":"3FB9B4C7-4235-4388-8E5D-E72ECCC37A7E"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:3.5p1:*:*:*:*:*:*:*","matchCriteriaId":"86ACA0ED-A3D0-48A7-B06F-13709AD23B55"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:3.6:*:*:*:*:*:*:*","matchCriteriaId":"0FEB9262-D05E-4610-9C79-3EDE44AC7C0B"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:3.6.1:*:*:*:*:*:*:*","matchCriteriaId":"8176879B-1875-4AC9-B15A-2ABCFCD04F88"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:3.6.1p1:*:*:*:*:*:*:*","matchCriteriaId":"FAA26A12-F96A-4025-BBCA-72B7A3B1E60C"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:3.6.1p2:*:*:*:*:*:*:*","matchCriteriaId":"A02751E9-2D38-4495-9572-8D84D71D4773"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:3.7:*:*:*:*:*:*:*","matchCriteriaId":"7A36BEA2-DAE4-423C-8D85-0F6036351F98"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:3.7.1:*:*:*:*:*:*:*","matchCriteriaId":"80DC64F6-FE28-44BA-91D1-EC2DB11B2CFC"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:3.7.1p1:*:*:*:*:*:*:*","matchCriteriaId":"DF23EBA1-D3A9-413F-9E83-43A91492C031"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:3.7.1p2:*:*:*:*:*:*:*","matchCriteriaId":"44CCF5CD-B434-4392-A79A-C1945D2AE30A"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:3.8:*:*:*:*:*:*:*","matchCriteriaId":"AEB456B8-9D8B-4985-858D-6A43FA5EE2E9"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:3.8.1:*:*:*:*:*:*:*","matchCriteriaId":"2BD4E0F6-4EEA-4EC7-83E7-FC6F7D2E7A3C"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:3.8.1p1:*:*:*:*:*:*:*","matchCriteriaId":"C35F4ABE-1B0C-4195-8F99-BF993A17882B"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:3.9:*:*:*:*:*:*:*","matchCriteriaId":"ADC7352D-2916-47F7-A256-F897D763DC9B"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:3.9.1:*:*:*:*:*:*:*","matchCriteriaId":"AEC3FC36-B246-4DCB-8984-228525D9A356"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:3.9.1p1:*:*:*:*:*:*:*","matchCriteriaId":"BC861000-37D8-4B0F-BFA0-57E9BE125B56"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:4.0:*:*:*:*:*:*:*","matchCriteriaId":"E003AB3C-8DF3-4AE8-82A3-984F30E5599B"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:4.0p1:*:*:*:*:*:*:*","matchCriteriaId":"5EBE75FE-DDE2-43BA-80EF-15A6698EABC9"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:4.1:*:*:*:*:*:*:*","matchCriteriaId":"1FF67D77-02AC-4807-984D-C5AE9799F051"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:4.1p1:*:*:*:*:*:*:*","matchCriteriaId":"683B26F0-5EA2-455A-8948-27C100BBA3AC"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:4.2:*:*:*:*:*:*:*","matchCriteriaId":"E5A75B23-2DD7-4EB2-BEAA-049FF4E51A14"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:4.2p1:*:*:*:*:*:*:*","matchCriteriaId":"7279E1EC-DEBC-4ACC-925D-06A7697C162F"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:4.3:*:*:*:*:*:*:*","matchCriteriaId":"7910598E-BEC1-4644-9DE4-D8BE505A4F9E"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:4.3p1:*:*:*:*:*:*:*","matchCriteriaId":"FB416D0C-6C86-450F-8917-D4B1BD82AB1E"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:4.3p2:*:*:*:*:*:*:*","matchCriteriaId":"3640CCC9-EC4A-44A4-B747-7BAAAD3460C7"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:4.4:*:*:*:*:*:*:*","matchCriteriaId":"B2DD362E-9EA9-4E88-9A94-D7B471EB1FD4"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:4.4p1:*:*:*:*:*:*:*","matchCriteriaId":"E3094069-AC2E-43BD-8094-D48E2526DECC"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:4.5:*:*:*:*:*:*:*","matchCriteriaId":"9B72CFB3-39C7-469C-AA59-69F5B8993BF7"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:4.6:*:*:*:*:*:*:*","matchCriteriaId":"2A7154C4-8325-4495-92B1-B7897CD7303E"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:4.7:*:*:*:*:*:*:*","matchCriteriaId":"99BF4471-763B-485A-ABD5-C68AD0A14058"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:4.8:*:*:*:*:*:*:*","matchCriteriaId":"40B1B209-53B8-48DC-AFFC-BD69D5978A0B"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:4.9:*:*:*:*:*:*:*","matchCriteriaId":"7212E982-76F2-496C-9F08-EC4137F20804"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:5.0:*:*:*:*:*:*:*","matchCriteriaId":"52D13E08-7B08-44AA-9017-3EE3F6301E10"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:5.1:*:*:*:*:*:*:*","matchCriteriaId":"2FBC7FF1-01EE-40A1-8735-14360A371803"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:5.2:*:*:*:*:*:*:*","matchCriteriaId":"987527F8-8A42-4729-A329-4D2AC8AFD6E1"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:5.3:*:*:*:*:*:*:*","matchCriteriaId":"93910448-8D6F-4F7E-9C7F-959754ABA50D"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:5.4:*:*:*:*:*:*:*","matchCriteriaId":"3356FDFD-BEA5-45A5-A36B-D1153AFE6C23"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:5.5:*:*:*:*:*:*:*","matchCriteriaId":"9394B8AD-AB22-4955-8774-C6BA2B56A260"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:5.6:*:*:*:*:*:*:*","matchCriteriaId":"0C5D4A9B-1194-4D63-AAC2-8701C890BB0D"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:5.7:*:*:*:*:*:*:*","matchCriteriaId":"F75DB5AE-E99D-4827-B290-823E015AEE34"}]}]}],"references":[{"url":"http://www.openssh.com/txt/portable-keysign-rand-helper.adv","source":"secalert@redhat.com","tags":["Vendor Advisory"]},{"url":"https://bugzilla.redhat.com/show_bug.cgi?id=755640","source":"secalert@redhat.com"},{"url":"http://www.openssh.com/txt/portable-keysign-rand-helper.adv","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]},{"url":"https://bugzilla.redhat.com/show_bug.cgi?id=755640","source":"af854a3a-2127-422b-91ae-364da2661108"}]}},{"cve":{"id":"CVE-2016-0777","sourceIdentifier":"secalert@redhat.com","published":"2016-01-14T22:59:01.140","lastModified":"2026-05-29T21:16:25.177","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"The resend_bytes function in roaming_common.c in the client in OpenSSH 5.x, 6.x, and 7.x before 7.1p2 allows remote servers to obtain sensitive information from process memory by requesting transmission of an entire buffer, as demonstrated by reading a private key."},{"lang":"es","value":"La función resend_bytes en roaming_common.c en el cliente en OpenSSH 5.x, 6.x y 7.x en versiones anteriores a 7.1p2 permite a servidores remotos obtener información sensible desde la memoria de proceso mediante la petición de transmisión de un buffer completo, según lo demostrado mediante la lectura de una clave privada."}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":3.6}],"cvssMetricV30":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.0","vectorString":"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":3.6}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:S/C:P/I:N/A:N","baseScore":4.0,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"SINGLE","confidentialityImpact":"PARTIAL","integrityImpact":"NONE","availabilityImpact":"NONE"},"baseSeverity":"MEDIUM","exploitabilityScore":8.0,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-200"}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-200"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:sophos:unified_threat_management_software:9.318:*:*:*:*:*:*:*","matchCriteriaId":"EFA93870-577B-4D53-A61D-22E024F96B16"},{"vulnerable":true,"criteria":"cpe:2.3:a:sophos:unified_threat_management_software:9.353:*:*:*:*:*:*:*","matchCriteriaId":"9857D3A8-7942-4624-B3D6-9943D34030B8"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:sophos:unified_threat_management:110:*:*:*:*:*:*:*","matchCriteriaId":"E9D7BF2E-1DEB-474A-8DEE-0A2D1A9B1A77"},{"vulnerable":false,"criteria":"cpe:2.3:h:sophos:unified_threat_management:120:*:*:*:*:*:*:*","matchCriteriaId":"CE59783E-6A2D-4777-9BA2-8527DA6B32BA"},{"vulnerable":false,"criteria":"cpe:2.3:h:sophos:unified_threat_management:220:*:*:*:*:*:*:*","matchCriteriaId":"646FEB9F-2F54-4946-9687-C2EC28144C97"},{"vulnerable":false,"criteria":"cpe:2.3:h:sophos:unified_threat_management:320:*:*:*:*:*:*:*","matchCriteriaId":"57654458-F143-4D70-9D52-0A242F3177A1"},{"vulnerable":false,"criteria":"cpe:2.3:h:sophos:unified_threat_management:425:*:*:*:*:*:*:*","matchCriteriaId":"A6527EC0-536E-4BF0-9949-8FA4A4E64688"},{"vulnerable":false,"criteria":"cpe:2.3:h:sophos:unified_threat_management:525:*:*:*:*:*:*:*","matchCriteriaId":"21A9EA52-E9F1-4267-86BC-570ED1ECC7B1"},{"vulnerable":false,"criteria":"cpe:2.3:h:sophos:unified_threat_management:625:*:*:*:*:*:*:*","matchCriteriaId":"280976E2-D7A8-43B7-A57C-66920BC91DAB"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:oracle:linux:7:*:*:*:*:*:*:*","matchCriteriaId":"104DA87B-DEE4-4262-AE50-8E6BC43B228B"},{"vulnerable":true,"criteria":"cpe:2.3:o:oracle:solaris:11.3:*:*:*:*:*:*:*","matchCriteriaId":"79A602C5-61FE-47BA-9786-F045B6C6DBA8"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:5.0:*:*:*:*:*:*:*","matchCriteriaId":"52D13E08-7B08-44AA-9017-3EE3F6301E10"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:5.0:p1:*:*:*:*:*:*","matchCriteriaId":"727CC471-6473-4C8D-8D1A-D8B3C6AB21CD"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:5.1:*:*:*:*:*:*:*","matchCriteriaId":"2FBC7FF1-01EE-40A1-8735-14360A371803"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:5.1:p1:*:*:*:*:*:*","matchCriteriaId":"4CEDBF5F-23BD-4A60-926A-B822D5E3BFB5"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:5.2:*:*:*:*:*:*:*","matchCriteriaId":"987527F8-8A42-4729-A329-4D2AC8AFD6E1"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:5.2:p1:*:*:*:*:*:*","matchCriteriaId":"CAF922B2-2FE6-4401-A4F1-914C637F5450"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:5.3:*:*:*:*:*:*:*","matchCriteriaId":"93910448-8D6F-4F7E-9C7F-959754ABA50D"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:5.3:p1:*:*:*:*:*:*","matchCriteriaId":"4ECE74F4-8E7B-42FA-A2DD-2EE0681DA4B6"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:5.4:*:*:*:*:*:*:*","matchCriteriaId":"3356FDFD-BEA5-45A5-A36B-D1153AFE6C23"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:5.4:p1:*:*:*:*:*:*","matchCriteriaId":"AA9D704A-D1E7-4989-9136-1EAD72EF6BE5"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:5.5:*:*:*:*:*:*:*","matchCriteriaId":"9394B8AD-AB22-4955-8774-C6BA2B56A260"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:5.5:p1:*:*:*:*:*:*","matchCriteriaId":"78735121-6BA0-4158-B3D5-E4BACCA5E95A"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:5.6:*:*:*:*:*:*:*","matchCriteriaId":"0C5D4A9B-1194-4D63-AAC2-8701C890BB0D"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:5.6:p1:*:*:*:*:*:*","matchCriteriaId":"270BABBA-70A8-4FC7-962D-0D0D40F4497F"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:5.7:*:*:*:*:*:*:*","matchCriteriaId":"F75DB5AE-E99D-4827-B290-823E015AEE34"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:5.7:p1:*:*:*:*:*:*","matchCriteriaId":"A710EC9F-1352-4DF0-B1CF-9C51ACB078CB"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:5.8:*:*:*:*:*:*:*","matchCriteriaId":"DA4F797B-8E2C-41AC-AA29-D6B50A539B2F"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:5.8:p1:*:*:*:*:*:*","matchCriteriaId":"7F482203-0CF1-403C-A25C-9B0DA24F6282"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:5.9:*:*:*:*:*:*:*","matchCriteriaId":"1E74684E-71D3-4458-A8BA-5248982273F3"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:5.9:p1:*:*:*:*:*:*","matchCriteriaId":"9F3D478C-221F-4A07-8520-CD8856A75DCA"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:6.0:*:*:*:*:*:*:*","matchCriteriaId":"A9754B4A-3042-49B8-86F7-2D60E25400C9"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:6.0:p1:*:*:*:*:*:*","matchCriteriaId":"B018B05B-1311-4E0F-A9D0-620C1BF904A1"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:6.1:*:*:*:*:*:*:*","matchCriteriaId":"3872787F-2C1C-40C0-B9CF-A3C0CEAAB400"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:6.1:p1:*:*:*:*:*:*","matchCriteriaId":"728372F8-6561-473D-B54D-1DB41DA1CF55"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:6.2:*:*:*:*:*:*:*","matchCriteriaId":"39D1E296-3040-4CC9-B95B-3E07D73F1150"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:6.2:p1:*:*:*:*:*:*","matchCriteriaId":"11BDA49F-C3E7-4D32-8105-E75525BFB2D4"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:6.2:p2:*:*:*:*:*:*","matchCriteriaId":"CE153B9F-721D-42ED-A662-C2597B7BF073"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:6.3:*:*:*:*:*:*:*","matchCriteriaId":"FCEE2677-16EE-484F-B2FB-FCA377E0D76B"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:6.3:p1:*:*:*:*:*:*","matchCriteriaId":"254243DD-2E3E-48ED-A92C-8F4FD405DA57"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:6.4:*:*:*:*:*:*:*","matchCriteriaId":"90798B9A-A1C6-4EC5-96BF-AF9C6FEFB63D"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:6.4:p1:*:*:*:*:*:*","matchCriteriaId":"BCF734D8-1F01-498C-A917-5B528BFD9CAA"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:6.5:*:*:*:*:*:*:*","matchCriteriaId":"5A8ABE51-1535-44D9-B2A1-CC91021A29D9"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:6.5:p1:*:*:*:*:*:*","matchCriteriaId":"492F661C-45E4-4B9B-AD26-1873D91DBEA6"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:6.6:*:*:*:*:*:*:*","matchCriteriaId":"546EB570-C2AC-473B-BED8-C47167D2593A"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:6.6:p1:*:*:*:*:*:*","matchCriteriaId":"CA2C8269-9C66-4E41-A56C-ACC709DC2053"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:6.7:*:*:*:*:*:*:*","matchCriteriaId":"64382F2C-15AC-41FE-A936-CEB44C1AFB9F"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:6.7:p1:*:*:*:*:*:*","matchCriteriaId":"20B099B9-3D7E-47A4-94A5-B89759189D26"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:6.8:*:*:*:*:*:*:*","matchCriteriaId":"65A8629A-CFAE-4403-BEE7-622912483702"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:6.8:p1:*:*:*:*:*:*","matchCriteriaId":"50836FA3-8116-4D58-B73E-B4830FB3A551"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:6.9:*:*:*:*:*:*:*","matchCriteriaId":"D0607649-62FE-41CB-9444-53CD9C5B67C0"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:6.9:p1:*:*:*:*:*:*","matchCriteriaId":"3397D8DC-3410-401F-8854-BFCC35AD6686"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:7.0:*:*:*:*:*:*:*","matchCriteriaId":"0B0FB8D5-75CB-4691-AB9F-B4FA46973421"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:7.0:p1:*:*:*:*:*:*","matchCriteriaId":"42DCED2D-76C5-49D1-A72D-E578CF686F5A"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:7.1:*:*:*:*:*:*:*","matchCriteriaId":"67E1B240-BD86-41D3-BAC1-96005CB31DEE"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:7.1:p1:*:*:*:*:*:*","matchCriteriaId":"4BFC8587-FB9E-4FE2-B725-81CE3CE590F8"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:hp:remote_device_access_virtual_customer_access_system:*:*:*:*:*:*:*:*","versionEndIncluding":"15.07","matchCriteriaId":"E172D760-1D72-4712-8A80-E9FB5B076E7F"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:*","versionEndIncluding":"10.11.3","matchCriteriaId":"D3C6DA6A-9C87-4B7B-A52D-A66276B5DE82"}]}]}],"references":[{"url":"http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10734","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://lists.apple.com/archives/security-announce/2016/Mar/msg00004.html","source":"secalert@redhat.com","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.fedoraproject.org/pipermail/package-announce/2016-February/176516.html","source":"secalert@redhat.com","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.fedoraproject.org/pipermail/package-announce/2016-January/175592.html","source":"secalert@redhat.com","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.fedoraproject.org/pipermail/package-announce/2016-January/175676.html","source":"secalert@redhat.com","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.fedoraproject.org/pipermail/package-announce/2016-January/176349.html","source":"secalert@redhat.com","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00006.html","source":"secalert@redhat.com","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00007.html","source":"secalert@redhat.com","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00008.html","source":"secalert@redhat.com","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00009.html","source":"secalert@redhat.com","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00013.html","source":"secalert@redhat.com","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00014.html","source":"secalert@redhat.com","tags":["Mailing List","Third Party Advisory"]},{"url":"http://packetstormsecurity.com/files/135273/Qualys-Security-Advisory-OpenSSH-Overflow-Leak.html","source":"secalert@redhat.com","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://seclists.org/fulldisclosure/2016/Jan/44","source":"secalert@redhat.com","tags":["Mailing List","Third Party Advisory"]},{"url":"http://www.debian.org/security/2016/dsa-3446","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://www.openssh.com/txt/release-7.1p2","source":"secalert@redhat.com","tags":["Vendor Advisory"]},{"url":"http://www.openwall.com/lists/oss-security/2016/01/14/7","source":"secalert@redhat.com","tags":["Mailing List","Third Party Advisory"]},{"url":"http://www.oracle.com/technetwork/topics/security/bulletinoct2015-2511968.html","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://www.oracle.com/technetwork/topics/security/linuxbulletinjan2016-2867209.html","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://www.securityfocus.com/archive/1/537295/100/0/threaded","source":"secalert@redhat.com","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securityfocus.com/bid/80695","source":"secalert@redhat.com","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1034671","source":"secalert@redhat.com","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.ubuntu.com/usn/USN-2869-1","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://blogs.sophos.com/2016/02/17/utm-up2date-9-354-released/","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://blogs.sophos.com/2016/02/29/utm-up2date-9-319-released/","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://bto.bluecoat.com/security-advisory/sa109","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://cert-portal.siemens.com/productcert/pdf/ssa-412672.pdf","source":"secalert@redhat.com"},{"url":"https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05247375","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05356388","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05385680","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05390722","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://security.FreeBSD.org/advisories/FreeBSD-SA-16:07.openssh.asc","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://security.gentoo.org/glsa/201601-01","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://support.apple.com/HT206167","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10734","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://lists.apple.com/archives/security-announce/2016/Mar/msg00004.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.fedoraproject.org/pipermail/package-announce/2016-February/176516.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.fedoraproject.org/pipermail/package-announce/2016-January/175592.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.fedoraproject.org/pipermail/package-announce/2016-January/175676.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.fedoraproject.org/pipermail/package-announce/2016-January/176349.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00006.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00007.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00008.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00009.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00013.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00014.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://packetstormsecurity.com/files/135273/Qualys-Security-Advisory-OpenSSH-Overflow-Leak.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://seclists.org/fulldisclosure/2016/Jan/44","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://www.debian.org/security/2016/dsa-3446","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.openssh.com/txt/release-7.1p2","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]},{"url":"http://www.openwall.com/lists/oss-security/2016/01/14/7","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://www.oracle.com/technetwork/topics/security/bulletinoct2015-2511968.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.oracle.com/technetwork/topics/security/linuxbulletinjan2016-2867209.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.securityfocus.com/archive/1/537295/100/0/threaded","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securityfocus.com/bid/80695","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1034671","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.ubuntu.com/usn/USN-2869-1","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://blogs.sophos.com/2016/02/17/utm-up2date-9-354-released/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://blogs.sophos.com/2016/02/29/utm-up2date-9-319-released/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://bto.bluecoat.com/security-advisory/sa109","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://cert-portal.siemens.com/productcert/pdf/ssa-412672.pdf","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05247375","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05356388","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05385680","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05390722","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://security.FreeBSD.org/advisories/FreeBSD-SA-16:07.openssh.asc","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://security.gentoo.org/glsa/201601-01","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://support.apple.com/HT206167","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]}]}},{"cve":{"id":"CVE-2016-0778","sourceIdentifier":"secalert@redhat.com","published":"2016-01-14T22:59:02.280","lastModified":"2026-05-29T21:16:25.927","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"The (1) roaming_read and (2) roaming_write functions in roaming_common.c in the client in OpenSSH 5.x, 6.x, and 7.x before 7.1p2, when certain proxy and forward options are enabled, do not properly maintain connection file descriptors, which allows remote servers to cause a denial of service (heap-based buffer overflow) or possibly have unspecified other impact by requesting many forwardings."},{"lang":"es","value":"Las funciones (1) roaming_read y (2) roaming_write en roaming_common.c en el cliente en OpenSSH 5.x, 6.x y 7.x en versiones anteriores a 7.1p2, cuando ciertas opciones proxy y forward se encuentran habilitadas, no mantiene adecuadamente los descriptores de archivo de conexión, lo que permite a servidores remotos causar una denegación de servicio (desbordamiento de buffer basado en memoria dinámica) o posiblemente tener otro impacto no especificado mediante la petición de varios reenvíos."}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":8.1,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.2,"impactScore":5.9}],"cvssMetricV30":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.0","vectorString":"CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":8.1,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.2,"impactScore":5.9}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:H/Au:S/C:P/I:P/A:P","baseScore":4.6,"accessVector":"NETWORK","accessComplexity":"HIGH","authentication":"SINGLE","confidentialityImpact":"PARTIAL","integrityImpact":"PARTIAL","availabilityImpact":"PARTIAL"},"baseSeverity":"MEDIUM","exploitabilityScore":3.9,"impactScore":6.4,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-119"}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-119"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:oracle:linux:7:*:*:*:*:*:*:*","matchCriteriaId":"104DA87B-DEE4-4262-AE50-8E6BC43B228B"},{"vulnerable":true,"criteria":"cpe:2.3:o:oracle:solaris:11.3:*:*:*:*:*:*:*","matchCriteriaId":"79A602C5-61FE-47BA-9786-F045B6C6DBA8"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:5.4:*:*:*:*:*:*:*","matchCriteriaId":"3356FDFD-BEA5-45A5-A36B-D1153AFE6C23"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:5.4:p1:*:*:*:*:*:*","matchCriteriaId":"AA9D704A-D1E7-4989-9136-1EAD72EF6BE5"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:5.5:*:*:*:*:*:*:*","matchCriteriaId":"9394B8AD-AB22-4955-8774-C6BA2B56A260"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:5.5:p1:*:*:*:*:*:*","matchCriteriaId":"78735121-6BA0-4158-B3D5-E4BACCA5E95A"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:5.6:*:*:*:*:*:*:*","matchCriteriaId":"0C5D4A9B-1194-4D63-AAC2-8701C890BB0D"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:5.6:p1:*:*:*:*:*:*","matchCriteriaId":"270BABBA-70A8-4FC7-962D-0D0D40F4497F"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:5.7:*:*:*:*:*:*:*","matchCriteriaId":"F75DB5AE-E99D-4827-B290-823E015AEE34"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:5.7:p1:*:*:*:*:*:*","matchCriteriaId":"A710EC9F-1352-4DF0-B1CF-9C51ACB078CB"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:5.8:*:*:*:*:*:*:*","matchCriteriaId":"DA4F797B-8E2C-41AC-AA29-D6B50A539B2F"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:5.8:p1:*:*:*:*:*:*","matchCriteriaId":"7F482203-0CF1-403C-A25C-9B0DA24F6282"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:5.9:*:*:*:*:*:*:*","matchCriteriaId":"1E74684E-71D3-4458-A8BA-5248982273F3"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:5.9:p1:*:*:*:*:*:*","matchCriteriaId":"9F3D478C-221F-4A07-8520-CD8856A75DCA"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:6.0:*:*:*:*:*:*:*","matchCriteriaId":"A9754B4A-3042-49B8-86F7-2D60E25400C9"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:6.0:p1:*:*:*:*:*:*","matchCriteriaId":"B018B05B-1311-4E0F-A9D0-620C1BF904A1"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:6.1:*:*:*:*:*:*:*","matchCriteriaId":"3872787F-2C1C-40C0-B9CF-A3C0CEAAB400"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:6.1:p1:*:*:*:*:*:*","matchCriteriaId":"728372F8-6561-473D-B54D-1DB41DA1CF55"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:6.2:*:*:*:*:*:*:*","matchCriteriaId":"39D1E296-3040-4CC9-B95B-3E07D73F1150"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:6.2:p1:*:*:*:*:*:*","matchCriteriaId":"11BDA49F-C3E7-4D32-8105-E75525BFB2D4"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:6.2:p2:*:*:*:*:*:*","matchCriteriaId":"CE153B9F-721D-42ED-A662-C2597B7BF073"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:6.3:*:*:*:*:*:*:*","matchCriteriaId":"FCEE2677-16EE-484F-B2FB-FCA377E0D76B"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:6.3:p1:*:*:*:*:*:*","matchCriteriaId":"254243DD-2E3E-48ED-A92C-8F4FD405DA57"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:6.4:*:*:*:*:*:*:*","matchCriteriaId":"90798B9A-A1C6-4EC5-96BF-AF9C6FEFB63D"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:6.4:p1:*:*:*:*:*:*","matchCriteriaId":"BCF734D8-1F01-498C-A917-5B528BFD9CAA"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:6.5:*:*:*:*:*:*:*","matchCriteriaId":"5A8ABE51-1535-44D9-B2A1-CC91021A29D9"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:6.5:p1:*:*:*:*:*:*","matchCriteriaId":"492F661C-45E4-4B9B-AD26-1873D91DBEA6"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:6.6:*:*:*:*:*:*:*","matchCriteriaId":"546EB570-C2AC-473B-BED8-C47167D2593A"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:6.6:p1:*:*:*:*:*:*","matchCriteriaId":"CA2C8269-9C66-4E41-A56C-ACC709DC2053"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:6.7:*:*:*:*:*:*:*","matchCriteriaId":"64382F2C-15AC-41FE-A936-CEB44C1AFB9F"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:6.7:p1:*:*:*:*:*:*","matchCriteriaId":"20B099B9-3D7E-47A4-94A5-B89759189D26"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:6.8:*:*:*:*:*:*:*","matchCriteriaId":"65A8629A-CFAE-4403-BEE7-622912483702"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:6.8:p1:*:*:*:*:*:*","matchCriteriaId":"50836FA3-8116-4D58-B73E-B4830FB3A551"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:6.9:*:*:*:*:*:*:*","matchCriteriaId":"D0607649-62FE-41CB-9444-53CD9C5B67C0"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:6.9:p1:*:*:*:*:*:*","matchCriteriaId":"3397D8DC-3410-401F-8854-BFCC35AD6686"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:7.0:*:*:*:*:*:*:*","matchCriteriaId":"0B0FB8D5-75CB-4691-AB9F-B4FA46973421"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:7.0:p1:*:*:*:*:*:*","matchCriteriaId":"42DCED2D-76C5-49D1-A72D-E578CF686F5A"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:7.1:*:*:*:*:*:*:*","matchCriteriaId":"67E1B240-BD86-41D3-BAC1-96005CB31DEE"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:7.1:p1:*:*:*:*:*:*","matchCriteriaId":"4BFC8587-FB9E-4FE2-B725-81CE3CE590F8"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:*","versionStartIncluding":"10.9.0","versionEndIncluding":"10.9.5","matchCriteriaId":"9A5FFEDD-1D4A-42A1-964A-88696925859A"},{"vulnerable":true,"criteria":"cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:*","versionStartIncluding":"10.10.0","versionEndIncluding":"10.10.5","matchCriteriaId":"6E4E9ED2-42E1-47F3-AFB4-C92A4E4FB554"},{"vulnerable":true,"criteria":"cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:*","versionStartIncluding":"10.11.0","versionEndIncluding":"10.11.3","matchCriteriaId":"2461051C-EB76-4022-8BBC-B3D26635240B"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:hp:virtual_customer_access_system:*:*:*:*:*:*:*:*","versionEndIncluding":"15.07","matchCriteriaId":"58F4BE0A-DBE6-45F7-9FA6-6A0BE2566631"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:sophos:unified_threat_management_software:9.353:*:*:*:*:*:*:*","matchCriteriaId":"9857D3A8-7942-4624-B3D6-9943D34030B8"}]}]}],"references":[{"url":"http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10734","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://lists.apple.com/archives/security-announce/2016/Mar/msg00004.html","source":"secalert@redhat.com","tags":["Mailing List","Release Notes","Third Party Advisory"]},{"url":"http://lists.fedoraproject.org/pipermail/package-announce/2016-February/176516.html","source":"secalert@redhat.com","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.fedoraproject.org/pipermail/package-announce/2016-January/176349.html","source":"secalert@redhat.com","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00006.html","source":"secalert@redhat.com","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00007.html","source":"secalert@redhat.com","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00008.html","source":"secalert@redhat.com","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00009.html","source":"secalert@redhat.com","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00013.html","source":"secalert@redhat.com","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00014.html","source":"secalert@redhat.com","tags":["Mailing List","Third Party Advisory"]},{"url":"http://packetstormsecurity.com/files/135273/Qualys-Security-Advisory-OpenSSH-Overflow-Leak.html","source":"secalert@redhat.com","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://seclists.org/fulldisclosure/2016/Jan/44","source":"secalert@redhat.com","tags":["Mailing List","Third Party Advisory"]},{"url":"http://www.debian.org/security/2016/dsa-3446","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://www.openssh.com/txt/release-7.1p2","source":"secalert@redhat.com","tags":["Patch","Release Notes","Vendor Advisory"]},{"url":"http://www.openwall.com/lists/oss-security/2016/01/14/7","source":"secalert@redhat.com","tags":["Exploit","Mailing List","Technical Description","Third Party Advisory"]},{"url":"http://www.oracle.com/technetwork/topics/security/bulletinoct2015-2511968.html","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://www.oracle.com/technetwork/topics/security/linuxbulletinjan2016-2867209.html","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://www.securityfocus.com/archive/1/537295/100/0/threaded","source":"secalert@redhat.com","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securityfocus.com/bid/80698","source":"secalert@redhat.com","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1034671","source":"secalert@redhat.com","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.ubuntu.com/usn/USN-2869-1","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://blogs.sophos.com/2016/02/17/utm-up2date-9-354-released/","source":"secalert@redhat.com","tags":["Release Notes","Vendor Advisory"]},{"url":"https://blogs.sophos.com/2016/02/29/utm-up2date-9-319-released/","source":"secalert@redhat.com","tags":["Release Notes","Vendor Advisory"]},{"url":"https://bto.bluecoat.com/security-advisory/sa109","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://cert-portal.siemens.com/productcert/pdf/ssa-412672.pdf","source":"secalert@redhat.com"},{"url":"https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05247375","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05356388","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05385680","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05390722","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://security.gentoo.org/glsa/201601-01","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://support.apple.com/HT206167","source":"secalert@redhat.com","tags":["Vendor Advisory"]},{"url":"http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10734","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://lists.apple.com/archives/security-announce/2016/Mar/msg00004.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Release Notes","Third Party Advisory"]},{"url":"http://lists.fedoraproject.org/pipermail/package-announce/2016-February/176516.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.fedoraproject.org/pipermail/package-announce/2016-January/176349.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00006.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00007.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00008.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00009.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00013.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00014.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://packetstormsecurity.com/files/135273/Qualys-Security-Advisory-OpenSSH-Overflow-Leak.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://seclists.org/fulldisclosure/2016/Jan/44","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://www.debian.org/security/2016/dsa-3446","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.openssh.com/txt/release-7.1p2","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Release Notes","Vendor Advisory"]},{"url":"http://www.openwall.com/lists/oss-security/2016/01/14/7","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Exploit","Mailing List","Technical Description","Third Party Advisory"]},{"url":"http://www.oracle.com/technetwork/topics/security/bulletinoct2015-2511968.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.oracle.com/technetwork/topics/security/linuxbulletinjan2016-2867209.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.securityfocus.com/archive/1/537295/100/0/threaded","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securityfocus.com/bid/80698","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1034671","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.ubuntu.com/usn/USN-2869-1","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://blogs.sophos.com/2016/02/17/utm-up2date-9-354-released/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Release Notes","Vendor Advisory"]},{"url":"https://blogs.sophos.com/2016/02/29/utm-up2date-9-319-released/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Release Notes","Vendor Advisory"]},{"url":"https://bto.bluecoat.com/security-advisory/sa109","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://cert-portal.siemens.com/productcert/pdf/ssa-412672.pdf","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05247375","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05356388","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05385680","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05390722","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://security.gentoo.org/glsa/201601-01","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://support.apple.com/HT206167","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]}]}},{"cve":{"id":"CVE-2016-3115","sourceIdentifier":"cve@mitre.org","published":"2016-03-22T10:59:02.917","lastModified":"2026-05-29T21:16:29.020","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Multiple CRLF injection vulnerabilities in session.c in sshd in OpenSSH before 7.2p2 allow remote authenticated users to bypass intended shell-command restrictions via crafted X11 forwarding data, related to the (1) do_authenticated1 and (2) session_x11_req functions."},{"lang":"es","value":"Múltiples vulnerabilidades de inyección CRLF en session.c en sshd en OpenSSH en versiones anteriores a 7.2p2 permite a usuarios remotos autenticados eludir las restricciones de comandos de shell previstas a través del redireccionamiento de datos X11 manipulados, relacionadas con las funciones (1) do_authenticated1 y (2) session_x11_req."}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N","baseScore":6.4,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":3.1,"impactScore":2.7}],"cvssMetricV30":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.0","vectorString":"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N","baseScore":6.4,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":3.1,"impactScore":2.7}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:S/C:P/I:P/A:N","baseScore":5.5,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"SINGLE","confidentialityImpact":"PARTIAL","integrityImpact":"PARTIAL","availabilityImpact":"NONE"},"baseSeverity":"MEDIUM","exploitabilityScore":8.0,"impactScore":4.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"NVD-CWE-Other"}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-93"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:*:p1:*:*:*:*:*:*","versionEndIncluding":"7.2","matchCriteriaId":"0CA7032F-2B28-4AF4-B32B-910FE289A845"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:oracle:vm_server:3.2:*:*:*:*:*:*:*","matchCriteriaId":"5FEC7F7E-AA94-4405-93D6-D0194A37D3C9"}]}]}],"references":[{"url":"http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/usr.bin/ssh/session.c","source":"cve@mitre.org"},{"url":"http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/usr.bin/ssh/session.c.diff?r1=1.281&r2=1.282&f=h","source":"cve@mitre.org"},{"url":"http://lists.fedoraproject.org/pipermail/package-announce/2016-April/183101.html","source":"cve@mitre.org"},{"url":"http://lists.fedoraproject.org/pipermail/package-announce/2016-April/183122.html","source":"cve@mitre.org"},{"url":"http://lists.fedoraproject.org/pipermail/package-announce/2016-March/178838.html","source":"cve@mitre.org"},{"url":"http://lists.fedoraproject.org/pipermail/package-announce/2016-March/179924.html","source":"cve@mitre.org"},{"url":"http://lists.fedoraproject.org/pipermail/package-announce/2016-March/180491.html","source":"cve@mitre.org"},{"url":"http://lists.fedoraproject.org/pipermail/package-announce/2016-May/184264.html","source":"cve@mitre.org"},{"url":"http://packetstormsecurity.com/files/136234/OpenSSH-7.2p1-xauth-Command-Injection-Bypass.html","source":"cve@mitre.org"},{"url":"http://rhn.redhat.com/errata/RHSA-2016-0465.html","source":"cve@mitre.org"},{"url":"http://rhn.redhat.com/errata/RHSA-2016-0466.html","source":"cve@mitre.org"},{"url":"http://seclists.org/fulldisclosure/2016/Mar/46","source":"cve@mitre.org"},{"url":"http://seclists.org/fulldisclosure/2016/Mar/47","source":"cve@mitre.org"},{"url":"http://www.openssh.com/txt/x11fwd.adv","source":"cve@mitre.org","tags":["Vendor Advisory"]},{"url":"http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html","source":"cve@mitre.org"},{"url":"http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html","source":"cve@mitre.org"},{"url":"http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html","source":"cve@mitre.org","tags":["Vendor Advisory"]},{"url":"http://www.securityfocus.com/bid/84314","source":"cve@mitre.org"},{"url":"http://www.securitytracker.com/id/1035249","source":"cve@mitre.org"},{"url":"https://bto.bluecoat.com/security-advisory/sa121","source":"cve@mitre.org"},{"url":"https://github.com/tintinweb/pub/tree/master/pocs/cve-2016-3115","source":"cve@mitre.org"},{"url":"https://lists.debian.org/debian-lts-announce/2018/09/msg00010.html","source":"cve@mitre.org"},{"url":"https://security.gentoo.org/glsa/201612-18","source":"cve@mitre.org"},{"url":"https://www.exploit-db.com/exploits/39569/","source":"cve@mitre.org"},{"url":"https://www.freebsd.org/security/advisories/FreeBSD-SA-16:14.openssh.asc","source":"cve@mitre.org"},{"url":"http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/usr.bin/ssh/session.c","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/usr.bin/ssh/session.c.diff?r1=1.281&r2=1.282&f=h","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://lists.fedoraproject.org/pipermail/package-announce/2016-April/183101.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://lists.fedoraproject.org/pipermail/package-announce/2016-April/183122.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://lists.fedoraproject.org/pipermail/package-announce/2016-March/178838.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://lists.fedoraproject.org/pipermail/package-announce/2016-March/179924.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://lists.fedoraproject.org/pipermail/package-announce/2016-March/180491.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://lists.fedoraproject.org/pipermail/package-announce/2016-May/184264.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://packetstormsecurity.com/files/136234/OpenSSH-7.2p1-xauth-Command-Injection-Bypass.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://rhn.redhat.com/errata/RHSA-2016-0465.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://rhn.redhat.com/errata/RHSA-2016-0466.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://seclists.org/fulldisclosure/2016/Mar/46","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://seclists.org/fulldisclosure/2016/Mar/47","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.openssh.com/txt/x11fwd.adv","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]},{"url":"http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]},{"url":"http://www.securityfocus.com/bid/84314","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.securitytracker.com/id/1035249","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://bto.bluecoat.com/security-advisory/sa121","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://github.com/tintinweb/pub/tree/master/pocs/cve-2016-3115","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://lists.debian.org/debian-lts-announce/2018/09/msg00010.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://security.gentoo.org/glsa/201612-18","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://www.exploit-db.com/exploits/39569/","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://www.freebsd.org/security/advisories/FreeBSD-SA-16:14.openssh.asc","source":"af854a3a-2127-422b-91ae-364da2661108"}],"evaluatorComment":"<a href=\"https://cwe.mitre.org/data/definitions/93.html\">CWE-93: Improper Neutralization of CRLF Sequences ('CRLF Injection')</a>"}},{"cve":{"id":"CVE-2016-2183","sourceIdentifier":"secalert@redhat.com","published":"2016-09-01T00:59:00.137","lastModified":"2026-05-29T21:16:27.537","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"The DES and Triple DES ciphers, as used in the TLS, SSH, and IPSec protocols and other protocols and products, have a birthday bound of approximately four billion blocks, which makes it easier for remote attackers to obtain cleartext data via a birthday attack against a long-duration encrypted session, as demonstrated by an HTTPS session using Triple DES in CBC mode, aka a \"Sweet32\" attack."},{"lang":"es","value":"Los cifrados DES y Triple DES, como se usan en los protocolos TLS, SSH e IPSec y otros protocolos y productos, tienen una cota de cumpleaños de aproximadamente cuatro mil millones de bloques, lo que facilita a atacantes remotos obtener datos de texto plano a través de un ataque de cumpleaños contra una sesión cifrada de larga duración, según lo demostrado por una sesión HTTPS usando Triple DES en modo CBC, también conocido como un ataque \"Sweet32\"."}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":3.6},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":3.6}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:P/I:N/A:N","baseScore":5.0,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"NONE","availabilityImpact":"NONE"},"baseSeverity":"MEDIUM","exploitabilityScore":10.0,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-200"}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-200"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:redhat:jboss_enterprise_application_platform:6.0.0:*:*:*:*:*:*:*","matchCriteriaId":"B142ACCC-F7A9-4A3B-BE60-0D6691D5058D"},{"vulnerable":true,"criteria":"cpe:2.3:a:redhat:jboss_enterprise_web_server:1.0.0:*:*:*:*:*:*:*","matchCriteriaId":"14259BF1-3601-4BF1-A591-FC4DE1639C57"},{"vulnerable":true,"criteria":"cpe:2.3:a:redhat:jboss_enterprise_web_server:2.0.0:*:*:*:*:*:*:*","matchCriteriaId":"681173DF-537E-4A64-8FC7-75F439CCAD0D"},{"vulnerable":true,"criteria":"cpe:2.3:a:redhat:jboss_web_server:3.0:*:*:*:*:*:*:*","matchCriteriaId":"54EB07A0-FB38-4F17-9C8D-DB629967F07B"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux:5.0:*:*:*:*:*:*:*","matchCriteriaId":"1D8B549B-E57B-4DFE-8A13-CAB06B5356B3"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux:6.0:*:*:*:*:*:*:*","matchCriteriaId":"2F6AB192-9D7D-4A9A-8995-E53A9DE9EAFC"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:*","matchCriteriaId":"142AD0DD-4CF3-4D74-9442-459CE3347E3A"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:python:python:*:*:*:*:*:*:*:*","versionStartIncluding":"2.7.0","versionEndExcluding":"2.7.13","matchCriteriaId":"23F7B6BD-821B-4355-8C81-CEA6079B9A85"},{"vulnerable":true,"criteria":"cpe:2.3:a:python:python:*:*:*:*:*:*:*:*","versionStartIncluding":"3.4.0","versionEndExcluding":"3.4.7","matchCriteriaId":"E65C03FE-52E0-477A-A104-8F2CC0EEE753"},{"vulnerable":true,"criteria":"cpe:2.3:a:python:python:*:*:*:*:*:*:*:*","versionStartIncluding":"3.5.0","versionEndExcluding":"3.5.3","matchCriteriaId":"35B35EBF-9EA0-4BB4-B868-600D2BAA9790"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:cisco:content_security_management_appliance:9.6.6-068:*:*:*:*:*:*:*","matchCriteriaId":"4FA04185-D9B6-4ED0-9D23-7642BF0228F0"},{"vulnerable":true,"criteria":"cpe:2.3:a:cisco:content_security_management_appliance:9.7.0-006:*:*:*:*:*:*:*","matchCriteriaId":"A61A1AF3-CE0F-4744-A11A-57DE1ABC7CC6"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:openssl:openssl:1.0.1a:*:*:*:*:*:*:*","matchCriteriaId":"3A66E6CF-39CF-412E-8EF0-8E10BA21B4A4"},{"vulnerable":true,"criteria":"cpe:2.3:a:openssl:openssl:1.0.1b:*:*:*:*:*:*:*","matchCriteriaId":"C684FB18-FDDC-4BED-A28C-C23EE6CD0094"},{"vulnerable":true,"criteria":"cpe:2.3:a:openssl:openssl:1.0.1c:*:*:*:*:*:*:*","matchCriteriaId":"A74A79A7-4FAF-4C81-8622-050008B96AE1"},{"vulnerable":true,"criteria":"cpe:2.3:a:openssl:openssl:1.0.1d:*:*:*:*:*:*:*","matchCriteriaId":"CEDACCB9-8D61-49EE-9957-9E58BC7BB031"},{"vulnerable":true,"criteria":"cpe:2.3:a:openssl:openssl:1.0.1e:*:*:*:*:*:*:*","matchCriteriaId":"4993DD56-F9E3-4AC8-AC3E-BF204B950DEC"},{"vulnerable":true,"criteria":"cpe:2.3:a:openssl:openssl:1.0.1f:*:*:*:*:*:*:*","matchCriteriaId":"E884B241-F9C3-44F8-A420-DE65F5F3D660"},{"vulnerable":true,"criteria":"cpe:2.3:a:openssl:openssl:1.0.1g:*:*:*:*:*:*:*","matchCriteriaId":"3A383620-B4F7-44A7-85DA-A4FF2E115D80"},{"vulnerable":true,"criteria":"cpe:2.3:a:openssl:openssl:1.0.1h:*:*:*:*:*:*:*","matchCriteriaId":"5F0C6812-F455-49CF-B29B-9AC00306DA43"},{"vulnerable":true,"criteria":"cpe:2.3:a:openssl:openssl:1.0.1i:*:*:*:*:*:*:*","matchCriteriaId":"3F2D462C-A1B4-4572-A615-BDE9DC5F1E55"},{"vulnerable":true,"criteria":"cpe:2.3:a:openssl:openssl:1.0.1j:*:*:*:*:*:*:*","matchCriteriaId":"3703E445-17C0-4C85-A496-A35641C0C8DB"},{"vulnerable":true,"criteria":"cpe:2.3:a:openssl:openssl:1.0.1k:*:*:*:*:*:*:*","matchCriteriaId":"2F4034B9-EF1C-40E6-B92A-D4D7B7E7E774"},{"vulnerable":true,"criteria":"cpe:2.3:a:openssl:openssl:1.0.1l:*:*:*:*:*:*:*","matchCriteriaId":"ABEC1927-F469-4B9E-B544-DA6CF90F0B34"},{"vulnerable":true,"criteria":"cpe:2.3:a:openssl:openssl:1.0.1m:*:*:*:*:*:*:*","matchCriteriaId":"DE2188F9-FAF8-4A0C-BB49-E95BDBC119BF"},{"vulnerable":true,"criteria":"cpe:2.3:a:openssl:openssl:1.0.1n:*:*:*:*:*:*:*","matchCriteriaId":"A9EC827B-5313-47D7-BF49-CFF033CF3D53"},{"vulnerable":true,"criteria":"cpe:2.3:a:openssl:openssl:1.0.1o:*:*:*:*:*:*:*","matchCriteriaId":"A438E65F-33B1-46BC-AD93-200DCC6B43D4"},{"vulnerable":true,"criteria":"cpe:2.3:a:openssl:openssl:1.0.1p:*:*:*:*:*:*:*","matchCriteriaId":"4BFDCF78-62C1-429E-A43C-0C9FEC14837D"},{"vulnerable":true,"criteria":"cpe:2.3:a:openssl:openssl:1.0.1q:*:*:*:*:*:*:*","matchCriteriaId":"6A0B4DEF-C6E8-4243-9893-6E650013600C"},{"vulnerable":true,"criteria":"cpe:2.3:a:openssl:openssl:1.0.1r:*:*:*:*:*:*:*","matchCriteriaId":"E28CD4F7-522F-4ECA-9035-228596CDE769"},{"vulnerable":true,"criteria":"cpe:2.3:a:openssl:openssl:1.0.1t:*:*:*:*:*:*:*","matchCriteriaId":"0AF4953B-BB23-4C80-8C48-9E94EB234AAE"},{"vulnerable":true,"criteria":"cpe:2.3:a:openssl:openssl:1.0.2a:*:*:*:*:*:*:*","matchCriteriaId":"60F946FD-F564-49DA-B043-5943308BA9EE"},{"vulnerable":true,"criteria":"cpe:2.3:a:openssl:openssl:1.0.2b:*:*:*:*:*:*:*","matchCriteriaId":"4847BCF3-EFCE-41AF-8E7D-3D51EB9DCC5B"},{"vulnerable":true,"criteria":"cpe:2.3:a:openssl:openssl:1.0.2c:*:*:*:*:*:*:*","matchCriteriaId":"9B89180B-FB68-4DD8-B076-16E51CC7FB91"},{"vulnerable":true,"criteria":"cpe:2.3:a:openssl:openssl:1.0.2d:*:*:*:*:*:*:*","matchCriteriaId":"4C986592-4086-4A39-9767-EF34DBAA6A53"},{"vulnerable":true,"criteria":"cpe:2.3:a:openssl:openssl:1.0.2e:*:*:*:*:*:*:*","matchCriteriaId":"7B23181C-03DB-4E92-B3F6-6B585B5231B4"},{"vulnerable":true,"criteria":"cpe:2.3:a:openssl:openssl:1.0.2f:*:*:*:*:*:*:*","matchCriteriaId":"94D9EC1C-4843-4026-9B05-E060E9391734"},{"vulnerable":true,"criteria":"cpe:2.3:a:openssl:openssl:1.0.2h:*:*:*:*:*:*:*","matchCriteriaId":"036FB24F-7D86-4730-8BC9-722875BEC807"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:database:11.2.0.4:*:*:*:*:*:*:*","matchCriteriaId":"5100F5C8-D5F8-466B-AABE-E42B3770B39D"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:database:12.1.0.2:*:*:*:*:*:*:*","matchCriteriaId":"1F3C58EE-B36B-4081-A307-0FE9B52D8E62"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:nodejs:node.js:*:*:*:*:*:*:*:*","versionStartIncluding":"0.10.0","versionEndExcluding":"0.10.47","matchCriteriaId":"BACF673F-7ADA-4D70-9BA9-2F5252E3467A"},{"vulnerable":true,"criteria":"cpe:2.3:a:nodejs:node.js:*:*:*:*:*:*:*:*","versionStartIncluding":"0.12.0","versionEndExcluding":"0.12.16","matchCriteriaId":"CF8D1AA1-18BE-4134-883E-97CE3E729CBB"},{"vulnerable":true,"criteria":"cpe:2.3:a:nodejs:node.js:*:*:*:*:-:*:*:*","versionStartIncluding":"4.0.0","versionEndExcluding":"4.1.2","matchCriteriaId":"8B5C9903-298B-4084-A505-E60A00A63558"},{"vulnerable":true,"criteria":"cpe:2.3:a:nodejs:node.js:*:*:*:*:lts:*:*:*","versionStartIncluding":"4.2.0","versionEndExcluding":"4.6.0","matchCriteriaId":"303F780C-C971-4216-86D6-5026AAD56279"},{"vulnerable":true,"criteria":"cpe:2.3:a:nodejs:node.js:*:*:*:*:-:*:*:*","versionStartIncluding":"6.0.0","versionEndExcluding":"6.7.0","matchCriteriaId":"8291D42E-9E50-414D-9752-D70906D512B2"}]}]}],"references":[{"url":"http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10759","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2016-09/msg00022.html","source":"secalert@redhat.com","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2016-09/msg00023.html","source":"secalert@redhat.com","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2016-09/msg00024.html","source":"secalert@redhat.com","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2016-09/msg00031.html","source":"secalert@redhat.com","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2016-10/msg00005.html","source":"secalert@redhat.com","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2016-10/msg00011.html","source":"secalert@redhat.com","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2016-10/msg00012.html","source":"secalert@redhat.com","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2016-10/msg00013.html","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2016-10/msg00021.html","source":"secalert@redhat.com","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2016-10/msg00029.html","source":"secalert@redhat.com","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2017-01/msg00068.html","source":"secalert@redhat.com","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2017-02/msg00003.html","source":"secalert@redhat.com","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2017-02/msg00023.html","source":"secalert@redhat.com","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2017-02/msg00028.html","source":"secalert@redhat.com","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2017-02/msg00032.html","source":"secalert@redhat.com","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2017-05/msg00076.html","source":"secalert@redhat.com","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2017-10/msg00010.html","source":"secalert@redhat.com","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2017-10/msg00011.html","source":"secalert@redhat.com","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2018-02/msg00032.html","source":"secalert@redhat.com","tags":["Mailing List","Third Party Advisory"]},{"url":"http://packetstormsecurity.com/files/142756/IBM-Informix-Dynamic-Server-DLL-Injection-Code-Execution.html","source":"secalert@redhat.com","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://rhn.redhat.com/errata/RHSA-2017-0336.html","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://rhn.redhat.com/errata/RHSA-2017-0337.html","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://rhn.redhat.com/errata/RHSA-2017-0338.html","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://rhn.redhat.com/errata/RHSA-2017-0462.html","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://seclists.org/fulldisclosure/2017/Jul/31","source":"secalert@redhat.com","tags":["Mailing List","Third Party Advisory"]},{"url":"http://seclists.org/fulldisclosure/2017/May/105","source":"secalert@redhat.com","tags":["Mailing List","Third Party Advisory"]},{"url":"http://seclists.org/fulldisclosure/2017/May/105","source":"secalert@redhat.com","tags":["Mailing List","Third Party Advisory"]},{"url":"http://seclists.org/fulldisclosure/2017/May/105","source":"secalert@redhat.com","tags":["Mailing List","Third Party Advisory"]},{"url":"http://seclists.org/fulldisclosure/2017/May/105","source":"secalert@redhat.com","tags":["Mailing List","Third Party Advisory"]},{"url":"http://www-01.ibm.com/support/docview.wss?uid=nas8N1021697","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://www-01.ibm.com/support/docview.wss?uid=swg21991482","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://www-01.ibm.com/support/docview.wss?uid=swg21995039","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://www.debian.org/security/2016/dsa-3673","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20170322-01-openssl-en","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://www.oracle.com/technetwork/security-advisory/cpuapr2018-3678067.html","source":"secalert@redhat.com","tags":["Patch","Third Party Advisory"]},{"url":"http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html","source":"secalert@redhat.com","tags":["Patch","Third Party Advisory"]},{"url":"http://www.oracle.com/technetwork/security-advisory/cpujul2017-3236622.html","source":"secalert@redhat.com","tags":["Patch","Third Party Advisory"]},{"url":"http://www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.html","source":"secalert@redhat.com","tags":["Patch","Third Party Advisory"]},{"url":"http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html","source":"secalert@redhat.com","tags":["Patch","Third Party Advisory"]},{"url":"http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2016-3090545.html","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://www.oracle.com/technetwork/topics/security/ovmbulletinoct2016-3090547.html","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://www.securityfocus.com/archive/1/539885/100/0/threaded","source":"secalert@redhat.com","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securityfocus.com/archive/1/540341/100/0/threaded","source":"secalert@redhat.com","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securityfocus.com/archive/1/541104/100/0/threaded","source":"secalert@redhat.com","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securityfocus.com/archive/1/542005/100/0/threaded","source":"secalert@redhat.com","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securityfocus.com/archive/1/archive/1/539885/100/0/threaded","source":"secalert@redhat.com","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securityfocus.com/archive/1/archive/1/540129/100/0/threaded","source":"secalert@redhat.com","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securityfocus.com/archive/1/archive/1/540341/100/0/threaded","source":"secalert@redhat.com","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securityfocus.com/archive/1/archive/1/541104/100/0/threaded","source":"secalert@redhat.com","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securityfocus.com/archive/1/archive/1/542005/100/0/threaded","source":"secalert@redhat.com","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securityfocus.com/bid/92630","source":"secalert@redhat.com","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securityfocus.com/bid/95568","source":"secalert@redhat.com","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1036696","source":"secalert@redhat.com","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.splunk.com/view/SP-CAAAPSV","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://www.splunk.com/view/SP-CAAAPUE","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://www.ubuntu.com/usn/USN-3087-1","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://www.ubuntu.com/usn/USN-3087-2","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://www.ubuntu.com/usn/USN-3179-1","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://www.ubuntu.com/usn/USN-3194-1","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://www.ubuntu.com/usn/USN-3198-1","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://www.ubuntu.com/usn/USN-3270-1","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://www.ubuntu.com/usn/USN-3372-1","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/articles/2548661","source":"secalert@redhat.com","tags":["Mitigation","Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2017:1216","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2017:2708","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2017:2709","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2017:2710","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2017:3113","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2017:3114","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2017:3239","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2017:3240","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:2123","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2019:1245","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2019:2859","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2020:0451","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/security/cve/cve-2016-2183","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://blog.cryptographyengineering.com/2016/08/24/attack-of-week-64-bit-ciphers-in-tls/","source":"secalert@redhat.com","tags":["Press/Media Coverage","Technical Description","Third Party Advisory"]},{"url":"https://bto.bluecoat.com/security-advisory/sa133","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1369383","source":"secalert@redhat.com","tags":["Issue Tracking","Third Party Advisory"]},{"url":"https://cert-portal.siemens.com/productcert/pdf/ssa-412672.pdf","source":"secalert@redhat.com"},{"url":"https://github.com/ssllabs/ssllabs-scan/issues/387#issuecomment-242514633","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-c05302448","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-c05369403","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-c05369415","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-c05385680","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-c05390722","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-c05390849","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbgn03765en_us","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbux03725en_us","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05302448","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05309984","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05323116","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05349499","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05356388","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05369403","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05369415","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05385680","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05390722","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05390849","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://ics-cert.us-cert.gov/advisories/ICSMA-18-058-02","source":"secalert@redhat.com","tags":["Third Party Advisory","US Government Resource"]},{"url":"https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA40312","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://kc.mcafee.com/corporate/index?page=content&id=SB10171","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://kc.mcafee.com/corporate/index?page=content&id=SB10186","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://kc.mcafee.com/corporate/index?page=content&id=SB10197","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://kc.mcafee.com/corporate/index?page=content&id=SB10215","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://kc.mcafee.com/corporate/index?page=content&id=SB10310","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://nakedsecurity.sophos.com/2016/08/25/anatomy-of-a-cryptographic-collision-the-sweet32-attack/","source":"secalert@redhat.com","tags":["Press/Media Coverage","Technical Description","Third Party Advisory"]},{"url":"https://nodejs.org/en/blog/vulnerability/september-2016-security-releases/","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://seclists.org/bugtraq/2018/Nov/21","source":"secalert@redhat.com","tags":["Mailing List","Third Party Advisory"]},{"url":"https://security.gentoo.org/glsa/201612-16","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://security.gentoo.org/glsa/201701-65","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://security.gentoo.org/glsa/201707-01","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://security.netapp.com/advisory/ntap-20160915-0001/","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://security.netapp.com/advisory/ntap-20170119-0001/","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://softwaresupport.softwaregrp.com/document/-/facetsearch/document/KM03158613","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://softwaresupport.softwaregrp.com/document/-/facetsearch/document/KM03286178","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://support.f5.com/csp/article/K13167034","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://sweet32.info/","source":"secalert@redhat.com","tags":["Technical Description","Third Party Advisory"]},{"url":"https://wiki.opendaylight.org/view/Security_Advisories","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://www.arista.com/en/support/advisories-notices/security-advisories/1749-security-advisory-24","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://www.exploit-db.com/exploits/42091/","source":"secalert@redhat.com","tags":["Third Party Advisory","VDB Entry"]},{"url":"https://www.ietf.org/mail-archive/web/tls/current/msg04560.html","source":"secalert@redhat.com","tags":["Mailing List","Third Party Advisory"]},{"url":"https://www.mitel.com/en-ca/support/security-advisories/mitel-product-security-advisory-17-0008","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://www.nccgroup.trust/us/about-us/newsroom-and-events/blog/2016/august/new-practical-attacks-on-64-bit-block-ciphers-3des-blowfish/","source":"secalert@redhat.com","tags":["Press/Media Coverage","Technical Description","Third Party Advisory"]},{"url":"https://www.openssl.org/blog/blog/2016/08/24/sweet32/","source":"secalert@redhat.com","tags":["Mitigation","Press/Media Coverage","Third Party Advisory"]},{"url":"https://www.oracle.com/security-alerts/cpuapr2020.html","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://www.oracle.com/security-alerts/cpujan2020.html","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://www.oracle.com/security-alerts/cpujul2020.html","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://www.oracle.com/security-alerts/cpuoct2020.html","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://www.oracle.com/security-alerts/cpuoct2021.html","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html","source":"secalert@redhat.com","tags":["Patch","Third Party Advisory"]},{"url":"https://www.sigsac.org/ccs/CCS2016/accepted-papers/","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://www.tenable.com/security/tns-2016-16","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://www.tenable.com/security/tns-2016-20","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://www.tenable.com/security/tns-2016-21","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://www.tenable.com/security/tns-2017-09","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://www.teskalabs.com/blog/teskalabs-bulletin-160826-seacat-sweet32-issue","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10759","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2016-09/msg00022.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2016-09/msg00023.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2016-09/msg00024.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2016-09/msg00031.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2016-10/msg00005.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2016-10/msg00011.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2016-10/msg00012.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2016-10/msg00013.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2016-10/msg00021.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2016-10/msg00029.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2017-01/msg00068.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2017-02/msg00003.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2017-02/msg00023.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2017-02/msg00028.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2017-02/msg00032.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2017-05/msg00076.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2017-10/msg00010.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2017-10/msg00011.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2018-02/msg00032.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://packetstormsecurity.com/files/142756/IBM-Informix-Dynamic-Server-DLL-Injection-Code-Execution.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://rhn.redhat.com/errata/RHSA-2017-0336.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://rhn.redhat.com/errata/RHSA-2017-0337.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://rhn.redhat.com/errata/RHSA-2017-0338.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://rhn.redhat.com/errata/RHSA-2017-0462.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://seclists.org/fulldisclosure/2017/Jul/31","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://seclists.org/fulldisclosure/2017/May/105","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://seclists.org/fulldisclosure/2017/May/105","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://seclists.org/fulldisclosure/2017/May/105","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://seclists.org/fulldisclosure/2017/May/105","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://www-01.ibm.com/support/docview.wss?uid=nas8N1021697","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www-01.ibm.com/support/docview.wss?uid=swg21991482","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www-01.ibm.com/support/docview.wss?uid=swg21995039","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.debian.org/security/2016/dsa-3673","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20170322-01-openssl-en","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.oracle.com/technetwork/security-advisory/cpuapr2018-3678067.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Third Party Advisory"]},{"url":"http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Third Party Advisory"]},{"url":"http://www.oracle.com/technetwork/security-advisory/cpujul2017-3236622.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Third Party Advisory"]},{"url":"http://www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Third Party Advisory"]},{"url":"http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Third Party Advisory"]},{"url":"http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2016-3090545.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.oracle.com/technetwork/topics/security/ovmbulletinoct2016-3090547.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.securityfocus.com/archive/1/539885/100/0/threaded","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securityfocus.com/archive/1/540341/100/0/threaded","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securityfocus.com/archive/1/541104/100/0/threaded","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securityfocus.com/archive/1/542005/100/0/threaded","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securityfocus.com/archive/1/archive/1/539885/100/0/threaded","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securityfocus.com/archive/1/archive/1/540129/100/0/threaded","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securityfocus.com/archive/1/archive/1/540341/100/0/threaded","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securityfocus.com/archive/1/archive/1/541104/100/0/threaded","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securityfocus.com/archive/1/archive/1/542005/100/0/threaded","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securityfocus.com/bid/92630","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securityfocus.com/bid/95568","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1036696","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.splunk.com/view/SP-CAAAPSV","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.splunk.com/view/SP-CAAAPUE","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.ubuntu.com/usn/USN-3087-1","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.ubuntu.com/usn/USN-3087-2","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.ubuntu.com/usn/USN-3179-1","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.ubuntu.com/usn/USN-3194-1","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.ubuntu.com/usn/USN-3198-1","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.ubuntu.com/usn/USN-3270-1","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.ubuntu.com/usn/USN-3372-1","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/articles/2548661","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mitigation","Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2017:1216","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2017:2708","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2017:2709","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2017:2710","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2017:3113","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2017:3114","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2017:3239","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2017:3240","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:2123","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2019:1245","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2019:2859","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2020:0451","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/security/cve/cve-2016-2183","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://blog.cryptographyengineering.com/2016/08/24/attack-of-week-64-bit-ciphers-in-tls/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Press/Media Coverage","Technical Description","Third Party Advisory"]},{"url":"https://bto.bluecoat.com/security-advisory/sa133","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1369383","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Issue Tracking","Third Party Advisory"]},{"url":"https://cert-portal.siemens.com/productcert/pdf/ssa-412672.pdf","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://github.com/ssllabs/ssllabs-scan/issues/387#issuecomment-242514633","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-c05302448","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-c05369403","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-c05369415","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-c05385680","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-c05390722","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-c05390849","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbgn03765en_us","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbux03725en_us","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05302448","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05309984","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05323116","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05349499","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05356388","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05369403","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05369415","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05385680","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05390722","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05390849","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://ics-cert.us-cert.gov/advisories/ICSMA-18-058-02","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","US Government Resource"]},{"url":"https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA40312","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://kc.mcafee.com/corporate/index?page=content&id=SB10171","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://kc.mcafee.com/corporate/index?page=content&id=SB10186","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://kc.mcafee.com/corporate/index?page=content&id=SB10197","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://kc.mcafee.com/corporate/index?page=content&id=SB10215","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://kc.mcafee.com/corporate/index?page=content&id=SB10310","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://nakedsecurity.sophos.com/2016/08/25/anatomy-of-a-cryptographic-collision-the-sweet32-attack/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Press/Media Coverage","Technical Description","Third Party Advisory"]},{"url":"https://nodejs.org/en/blog/vulnerability/september-2016-security-releases/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://seclists.org/bugtraq/2018/Nov/21","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"https://security.gentoo.org/glsa/201612-16","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://security.gentoo.org/glsa/201701-65","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://security.gentoo.org/glsa/201707-01","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://security.netapp.com/advisory/ntap-20160915-0001/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://security.netapp.com/advisory/ntap-20170119-0001/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://softwaresupport.softwaregrp.com/document/-/facetsearch/document/KM03158613","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://softwaresupport.softwaregrp.com/document/-/facetsearch/document/KM03286178","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://support.f5.com/csp/article/K13167034","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://sweet32.info/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Technical Description","Third Party Advisory"]},{"url":"https://wiki.opendaylight.org/view/Security_Advisories","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.arista.com/en/support/advisories-notices/security-advisories/1749-security-advisory-24","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.exploit-db.com/exploits/42091/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"https://www.ietf.org/mail-archive/web/tls/current/msg04560.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"https://www.mitel.com/en-ca/support/security-advisories/mitel-product-security-advisory-17-0008","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.nccgroup.trust/us/about-us/newsroom-and-events/blog/2016/august/new-practical-attacks-on-64-bit-block-ciphers-3des-blowfish/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Press/Media Coverage","Technical Description","Third Party Advisory"]},{"url":"https://www.openssl.org/blog/blog/2016/08/24/sweet32/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mitigation","Press/Media Coverage","Third Party Advisory"]},{"url":"https://www.oracle.com/security-alerts/cpuapr2020.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.oracle.com/security-alerts/cpujan2020.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.oracle.com/security-alerts/cpujul2020.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.oracle.com/security-alerts/cpuoct2020.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.oracle.com/security-alerts/cpuoct2021.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Third Party Advisory"]},{"url":"https://www.sigsac.org/ccs/CCS2016/accepted-papers/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.tenable.com/security/tns-2016-16","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.tenable.com/security/tns-2016-20","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.tenable.com/security/tns-2016-21","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.tenable.com/security/tns-2017-09","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.teskalabs.com/blog/teskalabs-bulletin-160826-seacat-sweet32-issue","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.vicarius.io/vsociety/posts/cve-2016-2183-detection-sweet32-vulnerability","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://www.vicarius.io/vsociety/posts/cve-2016-2183-mitigate-sweet32-vulnerability","source":"af854a3a-2127-422b-91ae-364da2661108"}]}},{"cve":{"id":"CVE-2016-9535","sourceIdentifier":"cve@mitre.org","published":"2016-11-22T19:59:03.387","lastModified":"2026-05-29T21:16:30.460","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"tif_predict.h and tif_predict.c in libtiff 4.0.6 have assertions that can lead to assertion failures in debug mode, or buffer overflows in release mode, when dealing with unusual tile size like YCbCr with subsampling. Reported as MSVR 35105, aka \"Predictor heap-buffer-overflow.\""},{"lang":"es","value":"tif_predict.h y tif_predict.c en libtiff 4.0.6 tienen aserciones que pueden conducir a fallos de aserción en modo debug, o desbordamientos de búfer en modo de liberación, cuando trata con un tamaño inusual de tile como YCbCr con submuestreo. Reportado como MSVR 35105, vulnerabilidad también conocida como \"Predictor heap-buffer-overflow\"."}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":9.8,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":5.9}],"cvssMetricV30":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.0","vectorString":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":9.8,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":5.9}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:P/I:P/A:P","baseScore":7.5,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"PARTIAL","availabilityImpact":"PARTIAL"},"baseSeverity":"HIGH","exploitabilityScore":10.0,"impactScore":6.4,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-119"}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-119"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:libtiff:libtiff:4.0.6:*:*:*:*:*:*:*","matchCriteriaId":"33708995-494C-476D-B0E3-1E78B9328699"}]}]}],"references":[{"url":"http://rhn.redhat.com/errata/RHSA-2017-0225.html","source":"cve@mitre.org"},{"url":"http://www.debian.org/security/2017/dsa-3844","source":"cve@mitre.org"},{"url":"http://www.securityfocus.com/bid/94484","source":"cve@mitre.org","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securityfocus.com/bid/94744","source":"cve@mitre.org"},{"url":"https://github.com/vadz/libtiff/commit/3ca657a8793dd011bf869695d72ad31c779c3cc1","source":"cve@mitre.org","tags":["Issue Tracking","Patch","Third Party Advisory"]},{"url":"https://github.com/vadz/libtiff/commit/6a984bf7905c6621281588431f384e79d11a2e33","source":"cve@mitre.org","tags":["Issue Tracking","Patch","Third Party Advisory"]},{"url":"http://rhn.redhat.com/errata/RHSA-2017-0225.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.debian.org/security/2017/dsa-3844","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.securityfocus.com/bid/94484","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securityfocus.com/bid/94744","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://github.com/vadz/libtiff/commit/3ca657a8793dd011bf869695d72ad31c779c3cc1","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Issue Tracking","Patch","Third Party Advisory"]},{"url":"https://github.com/vadz/libtiff/commit/6a984bf7905c6621281588431f384e79d11a2e33","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Issue Tracking","Patch","Third Party Advisory"]}]}},{"cve":{"id":"CVE-2016-8858","sourceIdentifier":"cve@mitre.org","published":"2016-12-09T11:59:00.207","lastModified":"2026-05-29T21:16:30.127","vulnStatus":"Modified","cveTags":[{"sourceIdentifier":"cve@mitre.org","tags":["disputed"]}],"descriptions":[{"lang":"en","value":"The kex_input_kexinit function in kex.c in OpenSSH 6.x and 7.x through 7.3 allows remote attackers to cause a denial of service (memory consumption) by sending many duplicate KEXINIT requests.  NOTE: a third party reports that \"OpenSSH upstream does not consider this as a security issue.\""},{"lang":"es","value":"** DISPUTADA ** La función kex_input_kexinit en kex.c en OpenSSH 6.x y 7.x hasta la versión 7.3 permite a atacantes remotos provocar una denegación de servicio (consumo de memoria) enviando muchas peticiones duplicadas KEXINIT. NOTA: un tercero reporta que \"OpenSSH upstream no considera esto como un problema de seguridad\"."}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":3.6}],"cvssMetricV30":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.0","vectorString":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":3.6}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:N/I:N/A:C","baseScore":7.8,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"COMPLETE"},"baseSeverity":"HIGH","exploitabilityScore":10.0,"impactScore":6.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-399"}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-400"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:6.8:*:*:*:*:*:*:*","matchCriteriaId":"65A8629A-CFAE-4403-BEE7-622912483702"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:6.9:*:*:*:*:*:*:*","matchCriteriaId":"D0607649-62FE-41CB-9444-53CD9C5B67C0"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:7.0:*:*:*:*:*:*:*","matchCriteriaId":"0B0FB8D5-75CB-4691-AB9F-B4FA46973421"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:7.1:*:*:*:*:*:*:*","matchCriteriaId":"67E1B240-BD86-41D3-BAC1-96005CB31DEE"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:7.2:*:*:*:*:*:*:*","matchCriteriaId":"2FC2BA97-6E7A-4AEF-8944-DB3AB8E14762"},{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:7.3:*:*:*:*:*:*:*","matchCriteriaId":"F5D3A31E-D785-406D-A8C8-FD122F4C9E38"}]}]}],"references":[{"url":"http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/usr.bin/ssh/kex.c.diff?r1=1.126&r2=1.127&f=h","source":"cve@mitre.org","tags":["Issue Tracking","Vendor Advisory"]},{"url":"http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/usr.bin/ssh/kex.c?rev=1.127&content-type=text/x-cvsweb-markup","source":"cve@mitre.org","tags":["Issue Tracking","Vendor Advisory"]},{"url":"http://www.openwall.com/lists/oss-security/2016/10/19/3","source":"cve@mitre.org","tags":["Mailing List","Third Party Advisory"]},{"url":"http://www.openwall.com/lists/oss-security/2016/10/20/1","source":"cve@mitre.org","tags":["Mailing List","Third Party Advisory"]},{"url":"http://www.securityfocus.com/bid/93776","source":"cve@mitre.org","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1037057","source":"cve@mitre.org","tags":["Third Party Advisory","VDB Entry"]},{"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1384860","source":"cve@mitre.org","tags":["Issue Tracking"]},{"url":"https://cert-portal.siemens.com/productcert/pdf/ssa-412672.pdf","source":"cve@mitre.org"},{"url":"https://ftp.openbsd.org/pub/OpenBSD/patches/6.0/common/013_ssh_kexinit.patch.sig","source":"cve@mitre.org","tags":["Patch","Vendor Advisory"]},{"url":"https://github.com/openssh/openssh-portable/commit/ec165c392ca54317dbe3064a8c200de6531e89ad","source":"cve@mitre.org","tags":["Issue Tracking","Patch","Third Party Advisory"]},{"url":"https://security.FreeBSD.org/advisories/FreeBSD-SA-16:33.openssh.asc","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"https://security.gentoo.org/glsa/201612-18","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"https://security.netapp.com/advisory/ntap-20180201-0001/","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/usr.bin/ssh/kex.c.diff?r1=1.126&r2=1.127&f=h","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Issue Tracking","Vendor Advisory"]},{"url":"http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/usr.bin/ssh/kex.c?rev=1.127&content-type=text/x-cvsweb-markup","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Issue Tracking","Vendor Advisory"]},{"url":"http://www.openwall.com/lists/oss-security/2016/10/19/3","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://www.openwall.com/lists/oss-security/2016/10/20/1","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://www.securityfocus.com/bid/93776","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1037057","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1384860","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Issue Tracking"]},{"url":"https://cert-portal.siemens.com/productcert/pdf/ssa-412672.pdf","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://ftp.openbsd.org/pub/OpenBSD/patches/6.0/common/013_ssh_kexinit.patch.sig","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Vendor Advisory"]},{"url":"https://github.com/openssh/openssh-portable/commit/ec165c392ca54317dbe3064a8c200de6531e89ad","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Issue Tracking","Patch","Third Party Advisory"]},{"url":"https://security.FreeBSD.org/advisories/FreeBSD-SA-16:33.openssh.asc","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://security.gentoo.org/glsa/201612-18","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://security.netapp.com/advisory/ntap-20180201-0001/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]}]}},{"cve":{"id":"CVE-2016-10009","sourceIdentifier":"cve@mitre.org","published":"2017-01-05T02:59:03.057","lastModified":"2026-05-29T21:16:26.213","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Untrusted search path vulnerability in ssh-agent.c in ssh-agent in OpenSSH before 7.4 allows remote attackers to execute arbitrary local PKCS#11 modules by leveraging control over a forwarded agent-socket."},{"lang":"es","value":"Vulnerabilidad de ruta de búsqueda no confiable en ssh-agent.c en ssh-agent en OpenSSH en versiones anteriores a 7.4 permite a atacantes remotos ejecutar modulos locales PKCS#11 arbitrarios aprovechando el control sobre un agent-socket reenviado."}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L","baseScore":7.3,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"LOW"},"exploitabilityScore":3.9,"impactScore":3.4}],"cvssMetricV30":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.0","vectorString":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L","baseScore":7.3,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"LOW"},"exploitabilityScore":3.9,"impactScore":3.4}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:P/I:P/A:P","baseScore":7.5,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"PARTIAL","availabilityImpact":"PARTIAL"},"baseSeverity":"HIGH","exploitabilityScore":10.0,"impactScore":6.4,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-426"}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-426"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:*:*:*:*:*:*:*:*","versionEndIncluding":"7.3","matchCriteriaId":"B5D52975-3CB0-4BF7-975F-66EF9BF42A06"}]}]}],"references":[{"url":"http://packetstormsecurity.com/files/140261/OpenSSH-Arbitrary-Library-Loading.html","source":"cve@mitre.org"},{"url":"http://packetstormsecurity.com/files/173661/OpenSSH-Forwarded-SSH-Agent-Remote-Code-Execution.html","source":"cve@mitre.org"},{"url":"http://seclists.org/fulldisclosure/2023/Jul/31","source":"cve@mitre.org"},{"url":"http://www.openwall.com/lists/oss-security/2016/12/19/2","source":"cve@mitre.org","tags":["Mailing List","Release Notes"]},{"url":"http://www.openwall.com/lists/oss-security/2023/07/19/9","source":"cve@mitre.org"},{"url":"http://www.openwall.com/lists/oss-security/2023/07/20/1","source":"cve@mitre.org"},{"url":"http://www.securityfocus.com/bid/94968","source":"cve@mitre.org"},{"url":"http://www.securitytracker.com/id/1037490","source":"cve@mitre.org"},{"url":"http://www.slackware.com/security/viewer.php?l=slackware-security&y=2016&m=slackware-security.647637","source":"cve@mitre.org"},{"url":"https://access.redhat.com/errata/RHSA-2017:2029","source":"cve@mitre.org"},{"url":"https://bugs.chromium.org/p/project-zero/issues/detail?id=1009","source":"cve@mitre.org"},{"url":"https://cert-portal.siemens.com/productcert/pdf/ssa-412672.pdf","source":"cve@mitre.org"},{"url":"https://github.com/openbsd/src/commit/9476ce1dd37d3c3218d5640b74c34c65e5f4efe5","source":"cve@mitre.org","tags":["Patch"]},{"url":"https://lists.debian.org/debian-lts-announce/2018/09/msg00010.html","source":"cve@mitre.org"},{"url":"https://security.FreeBSD.org/advisories/FreeBSD-SA-17:01.openssh.asc","source":"cve@mitre.org"},{"url":"https://security.netapp.com/advisory/ntap-20171130-0002/","source":"cve@mitre.org"},{"url":"https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbux03818en_us","source":"cve@mitre.org"},{"url":"https://usn.ubuntu.com/3538-1/","source":"cve@mitre.org"},{"url":"https://www.exploit-db.com/exploits/40963/","source":"cve@mitre.org"},{"url":"https://www.openssh.com/txt/release-7.4","source":"cve@mitre.org"},{"url":"http://packetstormsecurity.com/files/140261/OpenSSH-Arbitrary-Library-Loading.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://packetstormsecurity.com/files/173661/OpenSSH-Forwarded-SSH-Agent-Remote-Code-Execution.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://seclists.org/fulldisclosure/2023/Jul/31","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.openwall.com/lists/oss-security/2016/12/19/2","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Release Notes"]},{"url":"http://www.openwall.com/lists/oss-security/2023/07/19/9","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.openwall.com/lists/oss-security/2023/07/20/1","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.securityfocus.com/bid/94968","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.securitytracker.com/id/1037490","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.slackware.com/security/viewer.php?l=slackware-security&y=2016&m=slackware-security.647637","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://access.redhat.com/errata/RHSA-2017:2029","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://bugs.chromium.org/p/project-zero/issues/detail?id=1009","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://cert-portal.siemens.com/productcert/pdf/ssa-412672.pdf","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://github.com/openbsd/src/commit/9476ce1dd37d3c3218d5640b74c34c65e5f4efe5","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch"]},{"url":"https://lists.debian.org/debian-lts-announce/2018/09/msg00010.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://security.FreeBSD.org/advisories/FreeBSD-SA-17:01.openssh.asc","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://security.netapp.com/advisory/ntap-20171130-0002/","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbux03818en_us","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://usn.ubuntu.com/3538-1/","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://www.exploit-db.com/exploits/40963/","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://www.openssh.com/txt/release-7.4","source":"af854a3a-2127-422b-91ae-364da2661108"}]}},{"cve":{"id":"CVE-2016-10010","sourceIdentifier":"cve@mitre.org","published":"2017-01-05T02:59:03.087","lastModified":"2026-05-29T21:16:26.503","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"sshd in OpenSSH before 7.4, when privilege separation is not used, creates forwarded Unix-domain sockets as root, which might allow local users to gain privileges via unspecified vectors, related to serverloop.c."},{"lang":"es","value":"sshd en OpenSSH en versiones anteriores a 7.4, cuando no se utiliza la separación de privilegios, crea Unix-domain sockets reenviados como root, lo que podría permitir a usuarios locales obtener privilegios a través de vectores no especificados, relacionado con serverloop.c."}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H","baseScore":7.0,"baseSeverity":"HIGH","attackVector":"LOCAL","attackComplexity":"HIGH","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.0,"impactScore":5.9}],"cvssMetricV30":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.0","vectorString":"CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H","baseScore":7.0,"baseSeverity":"HIGH","attackVector":"LOCAL","attackComplexity":"HIGH","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.0,"impactScore":5.9}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:L/AC:M/Au:N/C:C/I:C/A:C","baseScore":6.9,"accessVector":"LOCAL","accessComplexity":"MEDIUM","authentication":"NONE","confidentialityImpact":"COMPLETE","integrityImpact":"COMPLETE","availabilityImpact":"COMPLETE"},"baseSeverity":"MEDIUM","exploitabilityScore":3.4,"impactScore":10.0,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-264"}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-269"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:*:*:*:*:*:*:*:*","versionEndIncluding":"7.3","matchCriteriaId":"B5D52975-3CB0-4BF7-975F-66EF9BF42A06"}]}]}],"references":[{"url":"http://packetstormsecurity.com/files/140262/OpenSSH-Local-Privilege-Escalation.html","source":"cve@mitre.org"},{"url":"http://www.openwall.com/lists/oss-security/2016/12/19/2","source":"cve@mitre.org","tags":["Mailing List","Release Notes"]},{"url":"http://www.securityfocus.com/bid/94972","source":"cve@mitre.org"},{"url":"http://www.securitytracker.com/id/1037490","source":"cve@mitre.org"},{"url":"http://www.slackware.com/security/viewer.php?l=slackware-security&y=2016&m=slackware-security.647637","source":"cve@mitre.org"},{"url":"https://bugs.chromium.org/p/project-zero/issues/detail?id=1010","source":"cve@mitre.org"},{"url":"https://cert-portal.siemens.com/productcert/pdf/ssa-412672.pdf","source":"cve@mitre.org"},{"url":"https://github.com/openbsd/src/commit/c76fac666ea038753294f2ac94d310f8adece9ce","source":"cve@mitre.org","tags":["Patch"]},{"url":"https://security.FreeBSD.org/advisories/FreeBSD-SA-17:01.openssh.asc","source":"cve@mitre.org"},{"url":"https://security.netapp.com/advisory/ntap-20171130-0002/","source":"cve@mitre.org"},{"url":"https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbux03818en_us","source":"cve@mitre.org"},{"url":"https://www.exploit-db.com/exploits/40962/","source":"cve@mitre.org"},{"url":"https://www.openssh.com/txt/release-7.4","source":"cve@mitre.org"},{"url":"http://packetstormsecurity.com/files/140262/OpenSSH-Local-Privilege-Escalation.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.openwall.com/lists/oss-security/2016/12/19/2","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Release Notes"]},{"url":"http://www.securityfocus.com/bid/94972","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.securitytracker.com/id/1037490","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.slackware.com/security/viewer.php?l=slackware-security&y=2016&m=slackware-security.647637","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://bugs.chromium.org/p/project-zero/issues/detail?id=1010","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://cert-portal.siemens.com/productcert/pdf/ssa-412672.pdf","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://github.com/openbsd/src/commit/c76fac666ea038753294f2ac94d310f8adece9ce","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch"]},{"url":"https://security.FreeBSD.org/advisories/FreeBSD-SA-17:01.openssh.asc","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://security.netapp.com/advisory/ntap-20171130-0002/","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbux03818en_us","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://www.exploit-db.com/exploits/40962/","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://www.openssh.com/txt/release-7.4","source":"af854a3a-2127-422b-91ae-364da2661108"}]}},{"cve":{"id":"CVE-2016-10011","sourceIdentifier":"cve@mitre.org","published":"2017-01-05T02:59:03.120","lastModified":"2026-05-29T21:16:26.710","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"authfile.c in sshd in OpenSSH before 7.4 does not properly consider the effects of realloc on buffer contents, which might allow local users to obtain sensitive private-key information by leveraging access to a privilege-separated child process."},{"lang":"es","value":"authfile.c en sshd en OpenSSH en versiones anteriores a 7.4 no considera apropiadamente los efectos de realloc en el contenido de búfer, lo que podría permitir a usuarios locales obtener información sensible de clave privada aprovechando el acceso a un subproceso separado de privilegios."}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N","baseScore":6.2,"baseSeverity":"MEDIUM","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":2.5,"impactScore":3.6}],"cvssMetricV30":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.0","vectorString":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N","baseScore":5.5,"baseSeverity":"MEDIUM","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":1.8,"impactScore":3.6}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:L/AC:L/Au:N/C:P/I:N/A:N","baseScore":2.1,"accessVector":"LOCAL","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"NONE","availabilityImpact":"NONE"},"baseSeverity":"LOW","exploitabilityScore":3.9,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-320"}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-119"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:*:*:*:*:*:*:*:*","versionEndIncluding":"7.3","matchCriteriaId":"B5D52975-3CB0-4BF7-975F-66EF9BF42A06"}]}]}],"references":[{"url":"http://www.openwall.com/lists/oss-security/2016/12/19/2","source":"cve@mitre.org","tags":["Mailing List","Release Notes"]},{"url":"http://www.securityfocus.com/bid/94977","source":"cve@mitre.org"},{"url":"http://www.securitytracker.com/id/1037490","source":"cve@mitre.org"},{"url":"http://www.slackware.com/security/viewer.php?l=slackware-security&y=2016&m=slackware-security.647637","source":"cve@mitre.org"},{"url":"https://access.redhat.com/errata/RHSA-2017:2029","source":"cve@mitre.org"},{"url":"https://cert-portal.siemens.com/productcert/pdf/ssa-412672.pdf","source":"cve@mitre.org"},{"url":"https://cert-portal.siemens.com/productcert/pdf/ssa-676336.pdf","source":"cve@mitre.org"},{"url":"https://github.com/openbsd/src/commit/ac8147a06ed2e2403fb6b9a0c03e618a9333c0e9","source":"cve@mitre.org","tags":["Patch"]},{"url":"https://lists.debian.org/debian-lts-announce/2018/09/msg00010.html","source":"cve@mitre.org"},{"url":"https://security.netapp.com/advisory/ntap-20171130-0002/","source":"cve@mitre.org"},{"url":"https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbux03818en_us","source":"cve@mitre.org"},{"url":"https://www.openssh.com/txt/release-7.4","source":"cve@mitre.org"},{"url":"http://www.openwall.com/lists/oss-security/2016/12/19/2","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Release Notes"]},{"url":"http://www.securityfocus.com/bid/94977","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.securitytracker.com/id/1037490","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.slackware.com/security/viewer.php?l=slackware-security&y=2016&m=slackware-security.647637","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://access.redhat.com/errata/RHSA-2017:2029","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://cert-portal.siemens.com/productcert/pdf/ssa-412672.pdf","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://cert-portal.siemens.com/productcert/pdf/ssa-676336.pdf","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://github.com/openbsd/src/commit/ac8147a06ed2e2403fb6b9a0c03e618a9333c0e9","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch"]},{"url":"https://lists.debian.org/debian-lts-announce/2018/09/msg00010.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://security.netapp.com/advisory/ntap-20171130-0002/","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbux03818en_us","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://www.openssh.com/txt/release-7.4","source":"af854a3a-2127-422b-91ae-364da2661108"}]}},{"cve":{"id":"CVE-2016-10012","sourceIdentifier":"cve@mitre.org","published":"2017-01-05T02:59:03.150","lastModified":"2026-05-29T21:16:26.933","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"The shared memory manager (associated with pre-authentication compression) in sshd in OpenSSH before 7.4 does not ensure that a bounds check is enforced by all compilers, which might allows local users to gain privileges by leveraging access to a sandboxed privilege-separation process, related to the m_zback and m_zlib data structures."},{"lang":"es","value":"El administrador de memoria compartida (asociado con la compresión de pre-autenticación) en sshd en OpenSSH en versiones anteriores a 7.4 no asegura que una verificación de límites sea ejecutada por todos los compiladores, lo que podría permitir a usuarios locales obtener privilegios aprovechando el acceso a un proceso separado de privilegios aislado, relacionado con las estructuras de datos m_zback y m_zlib."}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","baseScore":7.8,"baseSeverity":"HIGH","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.8,"impactScore":5.9}],"cvssMetricV30":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.0","vectorString":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","baseScore":7.8,"baseSeverity":"HIGH","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.8,"impactScore":5.9}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:L/AC:L/Au:N/C:C/I:C/A:C","baseScore":7.2,"accessVector":"LOCAL","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"COMPLETE","integrityImpact":"COMPLETE","availabilityImpact":"COMPLETE"},"baseSeverity":"HIGH","exploitabilityScore":3.9,"impactScore":10.0,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-119"}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-119"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:*:*:*:*:*:*:*:*","versionEndIncluding":"7.3","matchCriteriaId":"B5D52975-3CB0-4BF7-975F-66EF9BF42A06"}]}]}],"references":[{"url":"http://www.openwall.com/lists/oss-security/2016/12/19/2","source":"cve@mitre.org","tags":["Mailing List","Release Notes"]},{"url":"http://www.securityfocus.com/bid/94975","source":"cve@mitre.org"},{"url":"http://www.securitytracker.com/id/1037490","source":"cve@mitre.org"},{"url":"http://www.slackware.com/security/viewer.php?l=slackware-security&y=2016&m=slackware-security.647637","source":"cve@mitre.org"},{"url":"https://access.redhat.com/errata/RHSA-2017:2029","source":"cve@mitre.org"},{"url":"https://cert-portal.siemens.com/productcert/pdf/ssa-412672.pdf","source":"cve@mitre.org"},{"url":"https://github.com/openbsd/src/commit/3095060f479b86288e31c79ecbc5131a66bcd2f9","source":"cve@mitre.org","tags":["Patch","Vendor Advisory"]},{"url":"https://lists.debian.org/debian-lts-announce/2018/09/msg00010.html","source":"cve@mitre.org"},{"url":"https://security.netapp.com/advisory/ntap-20171130-0002/","source":"cve@mitre.org"},{"url":"https://support.f5.com/csp/article/K62201745?utm_source=f5support&amp%3Butm_medium=RSS","source":"cve@mitre.org"},{"url":"https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbux03818en_us","source":"cve@mitre.org"},{"url":"https://www.openssh.com/txt/release-7.4","source":"cve@mitre.org"},{"url":"http://www.openwall.com/lists/oss-security/2016/12/19/2","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Release Notes"]},{"url":"http://www.securityfocus.com/bid/94975","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.securitytracker.com/id/1037490","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.slackware.com/security/viewer.php?l=slackware-security&y=2016&m=slackware-security.647637","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://access.redhat.com/errata/RHSA-2017:2029","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://cert-portal.siemens.com/productcert/pdf/ssa-412672.pdf","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://github.com/openbsd/src/commit/3095060f479b86288e31c79ecbc5131a66bcd2f9","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Vendor Advisory"]},{"url":"https://lists.debian.org/debian-lts-announce/2018/09/msg00010.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://security.netapp.com/advisory/ntap-20171130-0002/","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://support.f5.com/csp/article/K62201745?utm_source=f5support&amp%3Butm_medium=RSS","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbux03818en_us","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://www.openssh.com/txt/release-7.4","source":"af854a3a-2127-422b-91ae-364da2661108"}]}},{"cve":{"id":"CVE-2016-6210","sourceIdentifier":"cve@mitre.org","published":"2017-02-13T17:59:00.153","lastModified":"2026-05-29T21:16:29.743","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"sshd in OpenSSH before 7.3, when SHA256 or SHA512 are used for user password hashing, uses BLOWFISH hashing on a static password when the username does not exist, which allows remote attackers to enumerate users by leveraging the timing difference between responses when a large password is provided."},{"lang":"es","value":"sshd en OpenSSH en versiones anteriores a 7.3, cuando SHA256 o SHA512 son utilizados para el hashing de la contraseña del usuario, utiliza BLOWFISH hashing en una contraseña estática cuando no existe el nombre de usuario, lo que permite a atacantes remotos enumerar usuarios aprovechando la diferencia de tiempo entre respuestas cuando se proporciona una contraseña grande."}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N","baseScore":5.9,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":2.2,"impactScore":3.6}],"cvssMetricV30":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.0","vectorString":"CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N","baseScore":5.9,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":2.2,"impactScore":3.6}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:M/Au:N/C:P/I:N/A:N","baseScore":4.3,"accessVector":"NETWORK","accessComplexity":"MEDIUM","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"NONE","availabilityImpact":"NONE"},"baseSeverity":"MEDIUM","exploitabilityScore":8.6,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-200"}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-200"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:*:p2:*:*:*:*:*:*","versionEndIncluding":"7.2","matchCriteriaId":"4AFA4267-E15B-4826-9B98-63F68AB1627F"}]}]}],"references":[{"url":"http://seclists.org/fulldisclosure/2016/Jul/51","source":"cve@mitre.org","tags":["Mailing List","Third Party Advisory"]},{"url":"http://www.debian.org/security/2016/dsa-3626","source":"cve@mitre.org"},{"url":"http://www.securityfocus.com/bid/91812","source":"cve@mitre.org","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1036319","source":"cve@mitre.org"},{"url":"https://access.redhat.com/errata/RHSA-2017:2029","source":"cve@mitre.org"},{"url":"https://access.redhat.com/errata/RHSA-2017:2563","source":"cve@mitre.org"},{"url":"https://cert-portal.siemens.com/productcert/pdf/ssa-412672.pdf","source":"cve@mitre.org"},{"url":"https://security.gentoo.org/glsa/201612-18","source":"cve@mitre.org"},{"url":"https://security.netapp.com/advisory/ntap-20190206-0001/","source":"cve@mitre.org"},{"url":"https://www.exploit-db.com/exploits/40113/","source":"cve@mitre.org"},{"url":"https://www.exploit-db.com/exploits/40136/","source":"cve@mitre.org"},{"url":"https://www.openssh.com/txt/release-7.3","source":"cve@mitre.org","tags":["Release Notes","Vendor Advisory"]},{"url":"http://seclists.org/fulldisclosure/2016/Jul/51","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://www.debian.org/security/2016/dsa-3626","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.securityfocus.com/bid/91812","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1036319","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://access.redhat.com/errata/RHSA-2017:2029","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://access.redhat.com/errata/RHSA-2017:2563","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://cert-portal.siemens.com/productcert/pdf/ssa-412672.pdf","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://security.gentoo.org/glsa/201612-18","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://security.netapp.com/advisory/ntap-20190206-0001/","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://www.exploit-db.com/exploits/40113/","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://www.exploit-db.com/exploits/40136/","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://www.openssh.com/txt/release-7.3","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Release Notes","Vendor Advisory"]}]}},{"cve":{"id":"CVE-2017-7574","sourceIdentifier":"cve@mitre.org","published":"2017-04-06T21:59:00.307","lastModified":"2026-05-29T14:16:21.410","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Schneider Electric SoMachine Basic 1.4 SP1 and Schneider Electric Modicon TM221CE16R 1.3.3.3 devices have a hardcoded-key vulnerability. The Project Protection feature is used to prevent unauthorized users from opening an XML protected project file, by prompting the user for a password. This XML file is AES-CBC encrypted; however, the key used for encryption (SoMachineBasicSoMachineBasicSoMa) cannot be changed. After decrypting the XML file with this key, the user password can be found in the decrypted data. After reading the user password, the project can be opened and modified with the Schneider product."},{"lang":"es","value":"Los dispositivos Schneider Electric SoMachine Basic 1.4 SP1 y Schneider Electric Modicon TM221CE16R 1.3.3.3 tienen una vulnerabilidad de clave codificada. La función Protección de proyectos se utiliza para evitar que usuarios no autorizados abran un archivo de proyecto protegido XML, solicitando al usuario una contraseña. Este archivo XML es AES-CBC cifrado; Sin embargo, no se puede cambiar la clave utilizada para el cifrado (SoMachineBasicSoMachineBasicSoMa). Después de descifrar el archivo XML con esta clave, la contraseña de usuario se puede encontrar en los datos descifrados. Después de leer la contraseña de usuario, el proyecto se puede abrir y modificar con el producto Schneider."}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":9.8,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":5.9},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:L","baseScore":10.0,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"LOW"},"exploitabilityScore":3.9,"impactScore":6.0}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:P/I:P/A:P","baseScore":7.5,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"PARTIAL","availabilityImpact":"PARTIAL"},"baseSeverity":"HIGH","exploitabilityScore":10.0,"impactScore":6.4,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-798"}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-321"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_tm221ce16r_firmware:1.3.3.3:*:*:*:*:*:*:*","matchCriteriaId":"26C40BAF-2C91-4069-A62E-1B1E60BA1619"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_tm221ce16r:-:*:*:*:*:*:*:*","matchCriteriaId":"00715571-AC4B-4B1F-8E65-385B56F2004C"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:schneider-electric:somachine:1.4:sp1:*:*:*:*:*:*","matchCriteriaId":"85698ADE-078B-4461-BA24-C88BB16C6E50"}]}]}],"references":[{"url":"http://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2017-097-01","source":"cve@mitre.org","tags":["Vendor Advisory"]},{"url":"http://www.securityfocus.com/bid/97518","source":"cve@mitre.org","tags":["Third Party Advisory","VDB Entry"]},{"url":"https://os-s.net/advisories/OSS-2017-02.pdf","source":"cve@mitre.org","tags":["Broken Link"]},{"url":"http://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2017-097-01","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]},{"url":"http://www.securityfocus.com/bid/97518","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"https://os-s.net/advisories/OSS-2017-02.pdf","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Broken Link"]}]}},{"cve":{"id":"CVE-2017-7575","sourceIdentifier":"cve@mitre.org","published":"2017-04-06T21:59:00.337","lastModified":"2026-05-29T14:16:21.647","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Schneider Electric Modicon TM221CE16R 1.3.3.3 devices allow remote attackers to discover the application-protection password via a \\x00\\x01\\x00\\x00\\x00\\x05\\x01\\x5a\\x00\\x03\\x00 request to the Modbus port (502/tcp). Subsequently the application may be arbitrarily downloaded, modified, and uploaded."},{"lang":"es","value":"Los dispositivos Schneider Electric Modicon TM221CE16R 1.3.3.3 permiten a atacantes remotos descubrir la contraseña de protección de la aplicación a través de una solicitud \\x00\\x01\\x00\\x00\\x00\\x05\\x01\\x5a\\x00\\x03\\x00 al puerto Modbus (502/tcp). Posteriormente la aplicación puede descargarse, modificarse y cargarse arbitrariamente."}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":9.8,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":5.9}],"cvssMetricV30":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.0","vectorString":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":9.8,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":5.9}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:P/I:N/A:N","baseScore":5.0,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"NONE","availabilityImpact":"NONE"},"baseSeverity":"MEDIUM","exploitabilityScore":10.0,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-200"}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-200"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_tm221ce16r_firmware:1.3.3.3:*:*:*:*:*:*:*","matchCriteriaId":"26C40BAF-2C91-4069-A62E-1B1E60BA1619"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_tm221ce16r:-:*:*:*:*:*:*:*","matchCriteriaId":"00715571-AC4B-4B1F-8E65-385B56F2004C"}]}]}],"references":[{"url":"http://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2017-097-02","source":"cve@mitre.org"},{"url":"http://www.securityfocus.com/bid/97523","source":"cve@mitre.org","tags":["Third Party Advisory","VDB Entry"]},{"url":"https://os-s.net/advisories/OSS-2017-01.pdf","source":"cve@mitre.org","tags":["Exploit","Third Party Advisory"]},{"url":"http://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2017-097-02","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.securityfocus.com/bid/97523","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"https://os-s.net/advisories/OSS-2017-01.pdf","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Exploit","Third Party Advisory"]}]}},{"cve":{"id":"CVE-2016-1908","sourceIdentifier":"secalert@redhat.com","published":"2017-04-11T18:59:00.167","lastModified":"2026-05-29T21:16:27.137","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"The client in OpenSSH before 7.2 mishandles failed cookie generation for untrusted X11 forwarding and relies on the local X11 server for access-control decisions, which allows remote X11 clients to trigger a fallback and obtain trusted X11 forwarding privileges by leveraging configuration issues on this X11 server, as demonstrated by lack of the SECURITY extension on this X11 server."},{"lang":"es","value":"El cliente en OpenSSH en versiones anteriores a 7.2 no maneja correctamente falló en la generación de cookies para el reenvío X11 no confiable y confía en el servidor X11 local para las decisiones de control de acceso, lo que permite a los clientes remotos X11 activar un fallback y obtener privilegios de reenvío X11 confiables aprovechando los problemas de configuración de este servidor X11, como lo demuestra la falta de la extensión SECURITY en este servidor X11."}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":9.8,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":5.9},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":9.8,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":5.9}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:P/I:P/A:P","baseScore":7.5,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"PARTIAL","availabilityImpact":"PARTIAL"},"baseSeverity":"HIGH","exploitabilityScore":10.0,"impactScore":6.4,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-287"}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-287"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:*:*:*:*:*:*:*:*","versionEndExcluding":"7.2","matchCriteriaId":"4A62EB95-81D2-4D9A-9214-D9329622C4D5"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*","matchCriteriaId":"C11E6FB0-C8C0-4527-9AA0-CB9B316F8F43"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:oracle:linux:6:-:*:*:*:*:*:*","matchCriteriaId":"D7B037A8-72A6-4DFF-94B2-D688A5F6F876"},{"vulnerable":true,"criteria":"cpe:2.3:o:oracle:linux:7:-:*:*:*:*:*:*","matchCriteriaId":"44B8FEDF-6CB0-46E9-9AD7-4445B001C158"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*","matchCriteriaId":"EE249E1B-A1FD-4E08-AA71-A0E1F10FFE97"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*","matchCriteriaId":"33C068A4-3780-4EAB-A937-6082DF847564"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_eus:7.2:*:*:*:*:*:*:*","matchCriteriaId":"AE1D81A1-CD24-4B17-8AFD-DC95E90AD7D0"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_eus:7.3:*:*:*:*:*:*:*","matchCriteriaId":"807C024A-F8E8-4B48-A349-4C68CD252CA1"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_eus:7.4:*:*:*:*:*:*:*","matchCriteriaId":"F96E3779-F56A-45FF-BB3D-4980527D721E"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_eus:7.5:*:*:*:*:*:*:*","matchCriteriaId":"0CF73560-2F5B-4723-A8A1-9AADBB3ADA00"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_eus:7.6:*:*:*:*:*:*:*","matchCriteriaId":"5BF3C7A5-9117-42C7-BEA1-4AA378A582EF"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_eus:7.7:*:*:*:*:*:*:*","matchCriteriaId":"83737173-E12E-4641-BC49-0BD84A6B29D0"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*","matchCriteriaId":"9BBCD86A-E6C7-4444-9D74-F861084090F0"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*","matchCriteriaId":"51EF4996-72F4-4FA4-814F-F5991E7A8318"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_server_aus:7.2:*:*:*:*:*:*:*","matchCriteriaId":"1C8D871B-AEA1-4407-AEE3-47EC782250FF"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_server_aus:7.3:*:*:*:*:*:*:*","matchCriteriaId":"98381E61-F082-4302-B51F-5648884F998B"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_server_aus:7.4:*:*:*:*:*:*:*","matchCriteriaId":"D99A687E-EAE6-417E-A88E-D0082BC194CD"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_server_aus:7.6:*:*:*:*:*:*:*","matchCriteriaId":"B353CE99-D57C-465B-AAB0-73EF581127D1"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_server_aus:7.7:*:*:*:*:*:*:*","matchCriteriaId":"7431ABC1-9252-419E-8CC1-311B41360078"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_server_tus:7.2:*:*:*:*:*:*:*","matchCriteriaId":"6755B6AD-0422-467B-8115-34A60B1D1A40"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_server_tus:7.3:*:*:*:*:*:*:*","matchCriteriaId":"24C0F4E1-C52C-41E0-9F14-F83ADD5CC7ED"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_server_tus:7.6:*:*:*:*:*:*:*","matchCriteriaId":"B76AA310-FEC7-497F-AF04-C3EC1E76C4CC"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_server_tus:7.7:*:*:*:*:*:*:*","matchCriteriaId":"17F256A9-D3B9-4C72-B013-4EFD878BFEA8"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*","matchCriteriaId":"E5ED5807-55B7-47C5-97A6-03233F4FBC3A"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*","matchCriteriaId":"825ECE2D-E232-46E0-A047-074B34DB1E97"}]}]}],"references":[{"url":"http://openwall.com/lists/oss-security/2016/01/15/13","source":"secalert@redhat.com","tags":["Mailing List","Third Party Advisory"]},{"url":"http://rhn.redhat.com/errata/RHSA-2016-0465.html","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://rhn.redhat.com/errata/RHSA-2016-0741.html","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://www.openssh.com/txt/release-7.2","source":"secalert@redhat.com","tags":["Release Notes","Vendor Advisory"]},{"url":"http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://www.securityfocus.com/bid/84427","source":"secalert@redhat.com","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1034705","source":"secalert@redhat.com","tags":["Broken Link","Third Party Advisory","VDB Entry"]},{"url":"https://anongit.mindrot.org/openssh.git/commit/?id=ed4ce82dbfa8a3a3c8ea6fa0db113c71e234416c","source":"secalert@redhat.com","tags":["Patch","Third Party Advisory"]},{"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1298741","source":"secalert@redhat.com","tags":["Issue Tracking","Patch","Third Party Advisory"]},{"url":"https://cert-portal.siemens.com/productcert/pdf/ssa-412672.pdf","source":"secalert@redhat.com"},{"url":"https://lists.debian.org/debian-lts-announce/2018/09/msg00010.html","source":"secalert@redhat.com","tags":["Mailing List","Third Party Advisory"]},{"url":"https://security.gentoo.org/glsa/201612-18","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://openwall.com/lists/oss-security/2016/01/15/13","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://rhn.redhat.com/errata/RHSA-2016-0465.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://rhn.redhat.com/errata/RHSA-2016-0741.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.openssh.com/txt/release-7.2","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Release Notes","Vendor Advisory"]},{"url":"http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.securityfocus.com/bid/84427","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1034705","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Broken Link","Third Party Advisory","VDB Entry"]},{"url":"https://anongit.mindrot.org/openssh.git/commit/?id=ed4ce82dbfa8a3a3c8ea6fa0db113c71e234416c","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Third Party Advisory"]},{"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1298741","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Issue Tracking","Patch","Third Party Advisory"]},{"url":"https://cert-portal.siemens.com/productcert/pdf/ssa-412672.pdf","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://lists.debian.org/debian-lts-announce/2018/09/msg00010.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"https://security.gentoo.org/glsa/201612-18","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]}]}},{"cve":{"id":"CVE-2017-6030","sourceIdentifier":"ics-cert@hq.dhs.gov","published":"2017-06-30T03:29:00.390","lastModified":"2026-05-29T14:16:20.503","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"A Predictable Value Range from Previous Values issue was discovered in Schneider Electric Modicon PLCs Modicon M221, firmware versions prior to Version 1.5.0.0, Modicon M241, firmware versions prior to Version 4.0.5.11, and Modicon M251, firmware versions prior to Version 4.0.5.11. The affected products generate insufficiently random TCP initial sequence numbers that may allow an attacker to predict the numbers from previous values. This may allow an attacker to spoof or disrupt TCP connections."},{"lang":"es","value":"Un problema de Rango de Valor Predecible de Valores Anteriores fue detectado en PLCs Modicon M221, versiones de firmware anteriores a 1.5.0.0, Modicon M241, versiones de firmware anteriores a la 4.0.5.11, y Modicon M251, versiones de firmware anteriores a la 4.0.5.11 de Schneider Electric. Los productos afectados generan números de secuencia inicial TCP de aleatoriedad insuficientemente que pueden permitir a un atacante predecir los números de los valores anteriores. Esto puede permitir a un atacante suplantar o interrumpir las conexiones TCP."}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"LOW","availabilityImpact":"LOW"},"exploitabilityScore":3.9,"impactScore":2.5},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"LOW","availabilityImpact":"LOW"},"exploitabilityScore":3.9,"impactScore":2.5}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:N/I:P/A:P","baseScore":6.4,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"NONE","integrityImpact":"PARTIAL","availabilityImpact":"PARTIAL"},"baseSeverity":"MEDIUM","exploitabilityScore":10.0,"impactScore":4.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"ics-cert@hq.dhs.gov","type":"Secondary","description":[{"lang":"en","value":"CWE-343"}]},{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-331"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_m241_firmware:*:*:*:*:*:*:*:*","versionEndIncluding":"4.0.3.20","matchCriteriaId":"9CA3FF3A-9145-4DAD-BAD6-D55C97E182AA"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_m241:-:*:*:*:*:*:*:*","matchCriteriaId":"4D8FD9D9-F59F-470E-9F7F-CDDD80B0633C"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_m251_firmware:*:*:*:*:*:*:*:*","versionEndIncluding":"4.0.3.20","matchCriteriaId":"6FDB0710-FB7F-4346-9EEC-4C75ECEA0A1E"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_m251:-:*:*:*:*:*:*:*","matchCriteriaId":"B8E03A25-B0B6-4BA2-80BC-52C16A6837E0"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_m221_firmware:*:*:*:*:*:*:*:*","versionEndIncluding":"1.1.1.5","matchCriteriaId":"68FB877A-87E1-4DE9-B758-8CEA1BE1456F"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_m221:-:*:*:*:*:*:*:*","matchCriteriaId":"BB0D83F4-B718-47AB-AFB8-B576CB138AAC"}]}]}],"references":[{"url":"http://www.securityfocus.com/bid/97254","source":"ics-cert@hq.dhs.gov","tags":["Third Party Advisory","VDB Entry"]},{"url":"https://ics-cert.us-cert.gov/advisories/ICSA-17-089-02","source":"ics-cert@hq.dhs.gov","tags":["Third Party Advisory","US Government Resource"]},{"url":"http://www.securityfocus.com/bid/97254","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"https://ics-cert.us-cert.gov/advisories/ICSA-17-089-02","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","US Government Resource"]}]}},{"cve":{"id":"CVE-2018-11091","sourceIdentifier":"cve@mitre.org","published":"2018-05-14T23:29:00.610","lastModified":"2026-05-29T21:16:30.750","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"An issue was discovered in MyBiz MyProcureNet 5.0.0. A malicious file can be uploaded to the webserver by an attacker. It is possible for an attacker to upload a script to issue operating system commands. This vulnerability occurs because an attacker is able to adjust the \"HiddenFieldControlCustomWhiteListedExtensions\" parameter and add arbitrary extensions to the whitelist during the upload. For instance, if the extension .asp is added to the \"HiddenFieldControlCustomWhiteListedExtensions\" parameter, the server accepts \"secctest.asp\" as a legitimate file. Hence malicious files can be uploaded in order to execute arbitrary commands to take over the server."},{"lang":"es","value":"Se ha descubierto una vulnerabilidad en MyBiz MyProcureNet 5.0.0. Un atacante puede subir un archivo malicioso al servidor web. Un atacante podría subir un script para enviar comandos de sistema operativo. La vulnerabilidad ocurre porque un atacante puede ajustar el parámetro \"HiddenFieldControlCustomWhiteListedExtensions\" y añadir extensiones arbitrarias a la lista blanca durante la subida. Por ejemplo, si la extensión .asp se añade al parámetro \"HiddenFieldControlCustomWhiteListedExtensions\", el servidor acepta \"secctest.asp\" como un archivo legítimo. Por lo tanto, se pueden subir archivos maliciosos para ejecutar comandos arbitrarios para controlar el servidor."}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H","baseScore":9.9,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.1,"impactScore":6.0}],"cvssMetricV30":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.0","vectorString":"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H","baseScore":9.9,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.1,"impactScore":6.0}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:S/C:C/I:C/A:C","baseScore":9.0,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"SINGLE","confidentialityImpact":"COMPLETE","integrityImpact":"COMPLETE","availabilityImpact":"COMPLETE"},"baseSeverity":"HIGH","exploitabilityScore":8.0,"impactScore":10.0,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-434"}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-434"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:mybiz:myprocurenet:5.0.0:*:*:*:*:*:*:*","matchCriteriaId":"0F17FE33-3DE7-44E0-926A-97FA50EFCCB7"}]}]}],"references":[{"url":"http://packetstormsecurity.com/files/155281/FreeBSD-Security-Advisory-FreeBSD-SA-19-26.mcu.html","source":"cve@mitre.org"},{"url":"http://seclists.org/fulldisclosure/2018/May/32","source":"cve@mitre.org","tags":["Mailing List","Third Party Advisory"]},{"url":"https://seclists.org/bugtraq/2019/Nov/16","source":"cve@mitre.org"},{"url":"https://security.FreeBSD.org/advisories/FreeBSD-SA-19:26.mcu.asc","source":"cve@mitre.org"},{"url":"https://www.sec-consult.com/en/blog/advisories/arbitrary-file-upload-cross-site-scripting-in-mybiz-myprocurenet/","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"http://packetstormsecurity.com/files/155281/FreeBSD-Security-Advisory-FreeBSD-SA-19-26.mcu.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://seclists.org/fulldisclosure/2018/May/32","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"https://seclists.org/bugtraq/2019/Nov/16","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://security.FreeBSD.org/advisories/FreeBSD-SA-19:26.mcu.asc","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://www.sec-consult.com/en/blog/advisories/arbitrary-file-upload-cross-site-scripting-in-mybiz-myprocurenet/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]}]}},{"cve":{"id":"CVE-2018-3639","sourceIdentifier":"secure@intel.com","published":"2018-05-22T12:29:00.250","lastModified":"2026-05-29T21:16:34.153","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Systems with microprocessors utilizing speculative execution and speculative execution of memory reads before the addresses of all prior memory writes are known may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis, aka Speculative Store Bypass (SSB), Variant 4."},{"lang":"es","value":"Los sistemas con microprocesadores que emplean la ejecución especulativa y que realizan la ejecución especulativa de lecturas de memoria antes de que se conozcan las direcciones de todas las anteriores escrituras de memoria podrían permitir la divulgación no autorizada de información a un atacante con acceso de usuario local mediante un análisis de canal lateral. Esto también se conoce como Speculative Store Bypass (SSB), Variant 4."}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N","baseScore":5.5,"baseSeverity":"MEDIUM","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":1.8,"impactScore":3.6},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N","baseScore":5.5,"baseSeverity":"MEDIUM","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":1.8,"impactScore":3.6}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:L/AC:L/Au:N/C:P/I:N/A:N","baseScore":2.1,"accessVector":"LOCAL","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"NONE","availabilityImpact":"NONE"},"baseSeverity":"LOW","exploitabilityScore":3.9,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-203"}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-203"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:h:intel:atom_c:c2308:*:*:*:*:*:*:*","matchCriteriaId":"CD028C10-FD07-4206-A732-CCAC1B6D043D"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:atom_c:c3308:*:*:*:*:*:*:*","matchCriteriaId":"A93010C0-33B3-438F-94F6-8DA7A9D7B451"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:atom_c:c3338:*:*:*:*:*:*:*","matchCriteriaId":"2A988A78-6B3D-4599-A85C-42B4A294D86D"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:atom_c:c3508:*:*:*:*:*:*:*","matchCriteriaId":"1D7C5EF4-3A92-4AF7-9B11-62B4FFDC5128"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:atom_c:c3538:*:*:*:*:*:*:*","matchCriteriaId":"246AA1B0-B6C8-406B-817D-26113DC63858"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:atom_c:c3558:*:*:*:*:*:*:*","matchCriteriaId":"00EE5B42-FF05-447C-BACC-0E650E773E49"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:atom_c:c3708:*:*:*:*:*:*:*","matchCriteriaId":"B0779CC9-BD39-4E0B-B523-A6C69F9EBB0C"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:atom_c:c3750:*:*:*:*:*:*:*","matchCriteriaId":"A1F0E3C4-7E9B-435F-907E-4BF4F12AF314"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:atom_c:c3758:*:*:*:*:*:*:*","matchCriteriaId":"5D616C72-0863-478C-9E87-3963C83B87E8"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:atom_c:c3808:*:*:*:*:*:*:*","matchCriteriaId":"CC333B0D-3A0E-4629-8016-68C060343874"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:atom_c:c3830:*:*:*:*:*:*:*","matchCriteriaId":"6655535C-FF64-4F9E-8168-253AABCC4F5D"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:atom_c:c3850:*:*:*:*:*:*:*","matchCriteriaId":"B1EDEA1E-9A19-4B3F-806E-D770D1AB4C73"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:atom_c:c3858:*:*:*:*:*:*:*","matchCriteriaId":"BBD68F3F-7E38-40B9-A20B-B9BB45E8D042"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:atom_c:c3950:*:*:*:*:*:*:*","matchCriteriaId":"1EACEF19-83BC-4579-9274-BE367F914432"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:atom_c:c3955:*:*:*:*:*:*:*","matchCriteriaId":"1CC73291-AA6F-40B0-860A-1F2E6AB1E2AC"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:atom_c:c3958:*:*:*:*:*:*:*","matchCriteriaId":"24128A7F-2B0B-4923-BA9E-9F5093D29423"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:atom_e:e3805:*:*:*:*:*:*:*","matchCriteriaId":"0990DD71-9E83-499D-9DAF-A466CF896CFA"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:atom_e:e3815:*:*:*:*:*:*:*","matchCriteriaId":"9B7FEDEF-9772-4FB1-9261-020487A795AA"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:atom_e:e3825:*:*:*:*:*:*:*","matchCriteriaId":"FE7B0F72-DEDF-40C4-887C-83725C52C92E"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:atom_e:e3826:*:*:*:*:*:*:*","matchCriteriaId":"9568C222-9816-4520-B01C-C1DC2A79002D"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:atom_e:e3827:*:*:*:*:*:*:*","matchCriteriaId":"4B2F8FAD-1688-4369-BB4B-9FA9F30A80A9"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:atom_e:e3845:*:*:*:*:*:*:*","matchCriteriaId":"53A1F23D-7226-4479-B51F-36376CC80B04"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:atom_x5-e3930:-:*:*:*:*:*:*:*","matchCriteriaId":"454AC633-5F1C-47BB-8FA7-91A5C29A1DD5"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:atom_x5-e3940:-:*:*:*:*:*:*:*","matchCriteriaId":"A2394E8C-58D9-480B-87A7-A41CD7697FC6"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:atom_x7-e3950:-:*:*:*:*:*:*:*","matchCriteriaId":"1B9AC02B-D3AE-4FAF-836E-55515186A462"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:atom_z:z2420:*:*:*:*:*:*:*","matchCriteriaId":"65AAC7A7-77CA-4C6C-BD96-92A253512F09"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:atom_z:z2460:*:*:*:*:*:*:*","matchCriteriaId":"FCD16C07-0050-495A-8722-7AC46F5920F9"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:atom_z:z2480:*:*:*:*:*:*:*","matchCriteriaId":"01423706-C82C-4457-9638-1A2380DE3826"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:atom_z:z2520:*:*:*:*:*:*:*","matchCriteriaId":"A881E2D3-A668-465F-862B-F8C145BD5E8D"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:atom_z:z2560:*:*:*:*:*:*:*","matchCriteriaId":"3E5B9B98-0EF0-4ACD-B378-F9DE5AB36CBB"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:atom_z:z2580:*:*:*:*:*:*:*","matchCriteriaId":"4BDC6806-E4FC-4A6E-A6BB-88C18E47ABFA"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:atom_z:z2760:*:*:*:*:*:*:*","matchCriteriaId":"6602DD69-E59A-417D-B19F-CA16B01E652C"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:atom_z:z3460:*:*:*:*:*:*:*","matchCriteriaId":"05C493EE-EF9F-47E2-8F88-86DF6C5F1FF9"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:atom_z:z3480:*:*:*:*:*:*:*","matchCriteriaId":"40010DAE-DD1A-4A81-B6E9-EDC1B0DDCAB0"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:atom_z:z3530:*:*:*:*:*:*:*","matchCriteriaId":"ED96AC16-12CC-43F6-ACC8-009A06CDD8F5"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:atom_z:z3560:*:*:*:*:*:*:*","matchCriteriaId":"2CE9DC29-C192-4553-AF29-D39290976F47"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:atom_z:z3570:*:*:*:*:*:*:*","matchCriteriaId":"F625E647-B47E-404C-9C5B-72F3EB1C46F5"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:atom_z:z3580:*:*:*:*:*:*:*","matchCriteriaId":"E3AF3279-89E7-4C91-8C5F-5AD5937CD0C4"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:atom_z:z3590:*:*:*:*:*:*:*","matchCriteriaId":"B5878612-9825-4737-85A5-8227BA97CBA5"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:atom_z:z3735d:*:*:*:*:*:*:*","matchCriteriaId":"F453D348-28CE-402B-9D40-A29436A24ECC"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:atom_z:z3735e:*:*:*:*:*:*:*","matchCriteriaId":"36322F4B-83D7-468A-BB34-1C03729E9BF3"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:atom_z:z3735f:*:*:*:*:*:*:*","matchCriteriaId":"0AD22811-C3C6-4B5E-98D5-D3F2240E6C8C"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:atom_z:z3735g:*:*:*:*:*:*:*","matchCriteriaId":"A3C7D0BA-8F07-42AD-8BB9-C65472BE41C1"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:atom_z:z3736f:*:*:*:*:*:*:*","matchCriteriaId":"B0A2A50E-94FA-44E9-A45D-3016750CFBDA"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:atom_z:z3736g:*:*:*:*:*:*:*","matchCriteriaId":"5625CAD8-4A62-4747-B6D9-90E56F09B731"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:atom_z:z3740:*:*:*:*:*:*:*","matchCriteriaId":"43A234CE-D6AA-4A32-8425-1A4DDA0F6B6D"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:atom_z:z3740d:*:*:*:*:*:*:*","matchCriteriaId":"78DE1A01-3AEF-41E6-97EE-CB93429C4A1D"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:atom_z:z3745:*:*:*:*:*:*:*","matchCriteriaId":"410184AF-B932-4AC9-984F-73FD58BB4CF7"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:atom_z:z3745d:*:*:*:*:*:*:*","matchCriteriaId":"B265F073-9E0A-4CA0-8296-AB52DEB1C323"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:atom_z:z3770:*:*:*:*:*:*:*","matchCriteriaId":"3F664223-1CBC-4D8A-921B-F03AACA6672B"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:atom_z:z3770d:*:*:*:*:*:*:*","matchCriteriaId":"987A8470-08BA-45DE-8EC0-CD2B4451EECD"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:atom_z:z3775:*:*:*:*:*:*:*","matchCriteriaId":"8BBC9542-FB77-4769-BF67-D42829703920"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:atom_z:z3775d:*:*:*:*:*:*:*","matchCriteriaId":"74FDC18B-4662-422E-A86A-48FE821C056F"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:atom_z:z3785:*:*:*:*:*:*:*","matchCriteriaId":"CAB4AA2C-D1D9-44D8-9471-66EBDE9DC66D"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:atom_z:z3795:*:*:*:*:*:*:*","matchCriteriaId":"CBA3E7AE-CB74-48A8-A2B8-9FCADB6E40D2"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:celeron_j:j3455:*:*:*:*:*:*:*","matchCriteriaId":"723E7155-493D-4B5A-99E2-AB261838190E"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:celeron_j:j4005:*:*:*:*:*:*:*","matchCriteriaId":"82E37264-E4BA-4D9D-92E7-56DE6B5F918F"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:celeron_j:j4105:*:*:*:*:*:*:*","matchCriteriaId":"8704BE6D-2857-4328-9298-E0273376F2CD"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:celeron_n:n3450:*:*:*:*:*:*:*","matchCriteriaId":"C1289B9E-5725-42EF-8848-F545421A29E1"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:32nm:*:*:*:*:*:*:*","matchCriteriaId":"50287A9B-366F-41F2-BEBD-D4C64EF93035"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:45nm:*:*:*:*:*:*:*","matchCriteriaId":"CCB79F2F-5522-45D3-A1D1-DC2F5A016D99"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:32nm:*:*:*:*:*:*:*","matchCriteriaId":"9749C2B0-B919-4172-A2AD-04C99A479F5A"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:45nm:*:*:*:*:*:*:*","matchCriteriaId":"0F1F45A1-A17D-4895-8A71-00010C7E55D9"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:32nm:*:*:*:*:*:*:*","matchCriteriaId":"D46BF41F-C44C-4D87-862E-0D156A2298DD"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:45nm:*:*:*:*:*:*:*","matchCriteriaId":"5927D78A-EE05-4246-A141-4A8815AB228B"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_m:32nm:*:*:*:*:*:*:*","matchCriteriaId":"579FC479-DEA0-415D-8E8F-18A81A85A471"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_m:45nm:*:*:*:*:*:*:*","matchCriteriaId":"CEECAA34-57F4-4B01-857C-C8454E1EDCAB"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:pentium:n4000:*:*:*:*:*:*:*","matchCriteriaId":"967252A4-EC1F-4B31-97B8-8D25A3D82070"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:pentium:n4100:*:*:*:*:*:*:*","matchCriteriaId":"3205757B-07DB-4115-B3E0-4DF9D0EA2061"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:pentium:n4200:*:*:*:*:*:*:*","matchCriteriaId":"2AF8ABFA-BBFD-42F5-9769-00F8CD67F7FC"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:pentium_j:j4205:*:*:*:*:*:*:*","matchCriteriaId":"88AF1366-8A14-4741-8146-886C31D8D347"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:pentium_silver:j5005:*:*:*:*:*:*:*","matchCriteriaId":"7AEAA43A-4D97-4E13-82E1-895F3B368B25"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:pentium_silver:n5000:*:*:*:*:*:*:*","matchCriteriaId":"BB6BAE0B-103D-430E-BAE9-429881620DE8"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e-1105c:-:*:*:*:*:*:*:*","matchCriteriaId":"2832E8BF-7AC7-444C-B297-66F770860571"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3:125c_:*:*:*:*:*:*:*","matchCriteriaId":"E9D0A534-1749-4ED3-8F18-BF826D84EB56"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3:1220_:*:*:*:*:*:*:*","matchCriteriaId":"B581515E-29CC-462F-BB10-4EA6DE2D6637"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3:1275_:*:*:*:*:*:*:*","matchCriteriaId":"036D395E-AFE8-4D61-91CC-E9B3CD8B6380"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3:1505m_v6:*:*:*:*:*:*:*","matchCriteriaId":"44AA72FB-E78D-419E-AA82-B0538C6504D3"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3:1515m_v5:*:*:*:*:*:*:*","matchCriteriaId":"687C3BF3-D71A-49AD-8A05-EAC07CBCD949"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3:1535m_v5:*:*:*:*:*:*:*","matchCriteriaId":"90AF90D9-16C4-4F8A-9868-3E2823E3445C"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3:1535m_v6:*:*:*:*:*:*:*","matchCriteriaId":"3C063C53-8970-45B1-85F8-FB2080BF4695"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3:1545m_v5:*:*:*:*:*:*:*","matchCriteriaId":"64596ED7-794A-4D23-987B-D9AD59D48EA5"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3:1558l_v5:*:*:*:*:*:*:*","matchCriteriaId":"C2E52BA6-2F2F-4CD2-A601-5B0ADDE5E23F"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3:1565l_v5:*:*:*:*:*:*:*","matchCriteriaId":"3FDA48F0-0F35-4A8F-8117-B0B28E00AB95"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3:1575m_v5:*:*:*:*:*:*:*","matchCriteriaId":"A561A8E8-79E2-4071-B57D-590C22EF86A8"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3:1578l_v5:*:*:*:*:*:*:*","matchCriteriaId":"92E46658-60AB-4758-9236-3AC0E6464383"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3:1585_v5:*:*:*:*:*:*:*","matchCriteriaId":"207B8FBA-E2FF-485A-9AD9-E604AE0FB903"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3:1585l_v5:*:*:*:*:*:*:*","matchCriteriaId":"33F99640-C753-40BE-A0A1-4C2D92E7DB09"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3:3600:*:*:*:*:*:*:*","matchCriteriaId":"36609915-9E0D-4204-B544-4832E1195BA6"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3:5600:*:*:*:*:*:*:*","matchCriteriaId":"3612AC78-4904-4830-85DF-38A38F617379"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3:7500:*:*:*:*:*:*:*","matchCriteriaId":"B79CC0FA-3DA1-4812-8E73-B0FF0752E31E"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3:e5502:*:*:*:*:*:*:*","matchCriteriaId":"D12F3759-48D2-4208-AD5B-3AC8B012D061"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3:e5503:*:*:*:*:*:*:*","matchCriteriaId":"E7C61D9B-2733-4A67-9D6A-2290123C0405"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3:e5504:*:*:*:*:*:*:*","matchCriteriaId":"44C3C383-6927-44AD-9488-8B916D5959ED"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3:e5506:*:*:*:*:*:*:*","matchCriteriaId":"7FC1E41C-7A17-42B7-936D-09A236D9C4D9"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3:e5507:*:*:*:*:*:*:*","matchCriteriaId":"E814CB3E-4542-4E3E-91E8-D97EA17C0B1F"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3:e5520:*:*:*:*:*:*:*","matchCriteriaId":"8FD43D7C-932B-463F-8EB2-3A115FBED4BE"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3:e5530:*:*:*:*:*:*:*","matchCriteriaId":"9CCD70F8-D81D-467B-8042-5D3B9AC513E8"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3:e5540:*:*:*:*:*:*:*","matchCriteriaId":"D05C68D0-4771-4338-9761-6428195F0318"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3:e6510:*:*:*:*:*:*:*","matchCriteriaId":"C4FC2878-389F-4687-8377-E192A1C519BB"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3:e6540:*:*:*:*:*:*:*","matchCriteriaId":"4B24CEBE-51B1-4EC5-8770-BFDB0625193A"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3:e6550:*:*:*:*:*:*:*","matchCriteriaId":"61BD85A8-39D9-4248-96FE-CAEF4BC7CD44"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3:l3403:*:*:*:*:*:*:*","matchCriteriaId":"8320D28B-B10D-47AE-9B65-51304F93F9AD"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3:l3406:*:*:*:*:*:*:*","matchCriteriaId":"35AD843A-EBB1-42BE-A305-595C23881404"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3:l3426:*:*:*:*:*:*:*","matchCriteriaId":"0D457B8B-50A6-411C-8528-96915B697C1A"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3:l5506:*:*:*:*:*:*:*","matchCriteriaId":"3934C421-BD11-4174-83F4-3E20176F03F9"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3:l5508_:*:*:*:*:*:*:*","matchCriteriaId":"45EE1BA7-5356-4421-9CF2-48DA09EBAE3E"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3:l5518_:*:*:*:*:*:*:*","matchCriteriaId":"92FE452A-EE8B-4ACE-96B1-B6BD81FAC9B3"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3:l5520:*:*:*:*:*:*:*","matchCriteriaId":"47195FE7-3692-42C4-B29E-679A6FE0E220"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3:l5530:*:*:*:*:*:*:*","matchCriteriaId":"C033BBFA-67F4-4F24-A042-FF996B327976"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3:w5580:*:*:*:*:*:*:*","matchCriteriaId":"BBF7A770-3E90-4466-8595-8E523D82BC62"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3:w5590:*:*:*:*:*:*:*","matchCriteriaId":"FA7922C0-AB84-4331-BE8F-71A0D95D4F43"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3:x3430:*:*:*:*:*:*:*","matchCriteriaId":"648CB034-89BF-48FF-A3BF-C84C08FE09E3"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3:x3440:*:*:*:*:*:*:*","matchCriteriaId":"2A7DC164-65FF-483A-AD69-3E23E449E52C"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3:x3450:*:*:*:*:*:*:*","matchCriteriaId":"8D3DCB95-5139-44C6-8151-8CEFD37F9DAB"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3:x3460:*:*:*:*:*:*:*","matchCriteriaId":"ED5FEA46-49A2-4082-98D2-56E698A56909"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3:x3470:*:*:*:*:*:*:*","matchCriteriaId":"0B85D7F3-1FA5-4FE1-AAFF-CEE8DF822CC4"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3:x3480:*:*:*:*:*:*:*","matchCriteriaId":"80607FEB-8908-40F6-B702-FD56D849E2D0"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3:x5550:*:*:*:*:*:*:*","matchCriteriaId":"97F20575-82C0-466D-8FDD-AAC034247D0E"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3:x5560:*:*:*:*:*:*:*","matchCriteriaId":"648E21A8-6B5F-4C97-A71A-44B97DBB4FE0"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3:x5570:*:*:*:*:*:*:*","matchCriteriaId":"172EA906-A08F-4D2A-9814-937C07F77C8D"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3_1105c_v2:-:*:*:*:*:*:*:*","matchCriteriaId":"BA1EC6D3-01CD-4CAB-817D-AE2E72FD0D03"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3_1125c_v2:-:*:*:*:*:*:*:*","matchCriteriaId":"FDBA35BD-1048-4B6E-96B2-1CFF615EB49A"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3_1220_v2:-:*:*:*:*:*:*:*","matchCriteriaId":"979FEE9F-A957-43B6-BB6D-1A851D6FA11C"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3_1220_v3:-:*:*:*:*:*:*:*","matchCriteriaId":"1A7AF59D-D05E-47F9-B493-B5CD6781FDDD"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3_1220_v5:-:*:*:*:*:*:*:*","matchCriteriaId":"7EF7EC93-0170-45A9-86C7-5460320B2AE9"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3_1220_v6:-:*:*:*:*:*:*:*","matchCriteriaId":"A8A7B1C2-D2CE-485A-9376-27E14F3FA05A"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3_12201:-:*:*:*:*:*:*:*","matchCriteriaId":"B5F803AC-DCC7-43FC-BEB3-AA7984E0506C"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3_12201_v2:-:*:*:*:*:*:*:*","matchCriteriaId":"560993AA-299D-42B7-B77F-1BD0D2114CCB"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3_1220l_v3:-:*:*:*:*:*:*:*","matchCriteriaId":"1C582B1C-1DAC-48FD-82DD-7334C10A2175"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3_1225:-:*:*:*:*:*:*:*","matchCriteriaId":"D7862B0C-2C44-4110-A62A-083116129612"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3_1225_v2:-:*:*:*:*:*:*:*","matchCriteriaId":"048C5996-F719-4338-B148-0DD1C13E02FF"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3_1225_v3:-:*:*:*:*:*:*:*","matchCriteriaId":"0196DA2F-CFA7-44D0-BDF5-37C7403E3B9F"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3_1225_v5:-:*:*:*:*:*:*:*","matchCriteriaId":"4B9FF7FB-AB5A-4549-8C15-E69458C649E2"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3_1225_v6:-:*:*:*:*:*:*:*","matchCriteriaId":"1CEF6608-B650-4C77-9823-0AD57B3484F1"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3_1226_v3:-:*:*:*:*:*:*:*","matchCriteriaId":"4BE6A2D7-901C-45F9-B487-D674047D522E"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3_1230:-:*:*:*:*:*:*:*","matchCriteriaId":"DCFCAC5E-6CF1-4EC1-A24C-688DD1016A96"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3_1230_v2:-:*:*:*:*:*:*:*","matchCriteriaId":"1ADCB509-5B0E-4592-8B23-EC25A3F79D41"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3_1230_v3:-:*:*:*:*:*:*:*","matchCriteriaId":"FB51691F-089F-4016-B25E-238074B06C0D"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3_1230_v5:-:*:*:*:*:*:*:*","matchCriteriaId":"EBAAC728-6A0F-4675-9677-AAF7DD5D38ED"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3_1230_v6:-:*:*:*:*:*:*:*","matchCriteriaId":"DB3BFEFD-3D0D-48B0-A5AE-6F3C2D791CE1"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3_1230l_v3:-:*:*:*:*:*:*:*","matchCriteriaId":"BC7E1AFD-9BCE-4487-A8DE-F9C60529CA7A"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3_1231_v3:-:*:*:*:*:*:*:*","matchCriteriaId":"7EA37503-FD3D-4220-933C-234631D6EDEF"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3_1235:-:*:*:*:*:*:*:*","matchCriteriaId":"72992831-2A76-456B-A80C-944BDD8591E4"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3_1235l_v5:-:*:*:*:*:*:*:*","matchCriteriaId":"A79C2131-5566-4CC2-B6ED-38E3F6964500"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3_1240:-:*:*:*:*:*:*:*","matchCriteriaId":"60BFDAA6-3DFC-4908-BC33-B05BAB462F94"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3_1240_v2:-:*:*:*:*:*:*:*","matchCriteriaId":"B6266056-770A-4E2D-A4FC-F1475257648E"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3_1240_v3:-:*:*:*:*:*:*:*","matchCriteriaId":"929AA8F3-8BDF-4614-9806-6D4231735616"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3_1240_v5:-:*:*:*:*:*:*:*","matchCriteriaId":"605D7552-8184-4B11-96FD-FE501A6C97DD"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3_1240_v6:-:*:*:*:*:*:*:*","matchCriteriaId":"3144BBDE-CC96-4408-AA02-ECC3BF902A34"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3_1240l_v3:-:*:*:*:*:*:*:*","matchCriteriaId":"1B8BA77A-34E3-4B9E-822A-7B7A90D35790"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3_1240l_v5:-:*:*:*:*:*:*:*","matchCriteriaId":"E7165B43-ED22-4714-8FA4-1E201D1BFA69"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3_1241_v3:-:*:*:*:*:*:*:*","matchCriteriaId":"67CFB133-FAF0-431A-9765-8A9738D6D87C"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3_1245:-:*:*:*:*:*:*:*","matchCriteriaId":"2975B0F2-DB7C-4257-985A-482ED2725883"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3_1245_v2:-:*:*:*:*:*:*:*","matchCriteriaId":"70221E07-3C2E-4A82-8259-AD583EB5CDDD"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3_1245_v3:-:*:*:*:*:*:*:*","matchCriteriaId":"427DFD78-56CD-43C4-948E-F53AF9D669F3"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3_1245_v5:-:*:*:*:*:*:*:*","matchCriteriaId":"3E3E6F5F-6B82-43D9-BD6E-D22F9B991DB4"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3_1245_v6:-:*:*:*:*:*:*:*","matchCriteriaId":"75AD7649-3FEA-4971-9886-6C9312B937A1"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3_1246_v3:-:*:*:*:*:*:*:*","matchCriteriaId":"B4EE972C-6BAE-4342-BA01-1D685487F9C3"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3_1258l_v4:-:*:*:*:*:*:*:*","matchCriteriaId":"27CDFE3B-C064-49A9-BD43-3F7612257A74"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3_1260l:-:*:*:*:*:*:*:*","matchCriteriaId":"3BD0EEC1-D695-41A5-8CD6-9E987A547CC4"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3_1260l_v5:-:*:*:*:*:*:*:*","matchCriteriaId":"C35AA9AC-28B3-49C2-A9B5-5D26DFEDB723"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3_1265l_v2:-:*:*:*:*:*:*:*","matchCriteriaId":"4DBF25B8-D474-4C6B-8E45-F57DDC7074E7"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3_1265l_v3:-:*:*:*:*:*:*:*","matchCriteriaId":"3DF18FD1-6670-4C3C-8000-A079C69D575E"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3_1265l_v4:-:*:*:*:*:*:*:*","matchCriteriaId":"D760EEAF-5CF5-4F25-8FA2-D4F75F4F5A91"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3_1268l_v3:-:*:*:*:*:*:*:*","matchCriteriaId":"921EB5A5-F911-4FCE-A6F1-C66818B34678"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3_1268l_v5:-:*:*:*:*:*:*:*","matchCriteriaId":"13878C13-1C7C-4B83-AF27-4998E8F659DC"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3_1270:-:*:*:*:*:*:*:*","matchCriteriaId":"023063E1-2DD7-487C-A8A7-939FAEE666A9"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3_1270_v2:-:*:*:*:*:*:*:*","matchCriteriaId":"77255CE6-D7B7-4B48-993C-7100A1170BC6"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3_1270_v3:-:*:*:*:*:*:*:*","matchCriteriaId":"B40AC368-3A14-4EFF-A8D0-7EFB4C83045D"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3_1270_v5:-:*:*:*:*:*:*:*","matchCriteriaId":"3472AA7B-C0CF-4D65-8A6C-B1D52D27F0CB"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3_1270_v6:-:*:*:*:*:*:*:*","matchCriteriaId":"C07E80D5-70A5-49C9-9044-D683C7ECCFF5"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3_1271_v3:-:*:*:*:*:*:*:*","matchCriteriaId":"63668AF4-F29C-4424-8EC5-2F0A5950DD58"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3_1275_v2:-:*:*:*:*:*:*:*","matchCriteriaId":"09C1C7CD-538D-4D7A-A81C-10DF5376A479"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3_1275_v3:-:*:*:*:*:*:*:*","matchCriteriaId":"5922F749-2B23-44B8-8A46-F31BCAEAD279"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3_1275_v5:-:*:*:*:*:*:*:*","matchCriteriaId":"2C48BBAF-6B27-43D6-B86B-40CD8E7BA056"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3_1275_v6:-:*:*:*:*:*:*:*","matchCriteriaId":"D75D0EEB-707C-4C86-A569-E91E9F00BA77"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3_1275l_v3:-:*:*:*:*:*:*:*","matchCriteriaId":"F0FB0E20-0243-40A1-8DEF-37150791222E"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3_1276_v3:-:*:*:*:*:*:*:*","matchCriteriaId":"68CFF26D-8AD3-4179-9E4C-F06D7C858C9A"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3_1278l_v4:-:*:*:*:*:*:*:*","matchCriteriaId":"7541572C-229F-4963-B7F0-06EB3323E53B"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3_1280:-:*:*:*:*:*:*:*","matchCriteriaId":"85DE669C-27FD-4196-8B8C-1DA4EE4C1D6C"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3_1280_v2:-:*:*:*:*:*:*:*","matchCriteriaId":"479F7C77-D16F-4E40-9026-3EB8422E0401"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3_1280_v3:-:*:*:*:*:*:*:*","matchCriteriaId":"7A242AC2-9AA6-43FD-90F4-5BF6E80DBB5E"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3_1280_v5:-:*:*:*:*:*:*:*","matchCriteriaId":"04DB08C8-0018-4A8E-A206-097BDDF83B08"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3_1280_v6:-:*:*:*:*:*:*:*","matchCriteriaId":"B7193E85-30BE-42D5-A26B-3F88817F3574"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3_1281_v3:-:*:*:*:*:*:*:*","matchCriteriaId":"446E8515-45FC-4B8B-8D12-60643D64C07F"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3_1285_v3:-:*:*:*:*:*:*:*","matchCriteriaId":"EBBDF6B2-D388-4639-87D8-064AA3F6B6FC"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3_1285_v4:-:*:*:*:*:*:*:*","matchCriteriaId":"00AAB8B6-B614-4EAA-BA90-C5326CB5D07A"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3_1285_v6:-:*:*:*:*:*:*:*","matchCriteriaId":"2A371DF9-E224-404F-99C2-C2A4607E62D8"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3_1285l_v3:-:*:*:*:*:*:*:*","matchCriteriaId":"0F40E356-365D-44B7-8C38-A0C89DDD6D3E"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3_1285l_v4:-:*:*:*:*:*:*:*","matchCriteriaId":"A3132029-89F8-4359-A0DC-A275785266A1"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3_1286_v3:-:*:*:*:*:*:*:*","matchCriteriaId":"B02F5685-0636-48AB-B222-434CA1F3B336"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3_1286l_v3:-:*:*:*:*:*:*:*","matchCriteriaId":"E51FDD60-88E5-4A86-BB8E-4C2D7EDEFA03"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3_1290:-:*:*:*:*:*:*:*","matchCriteriaId":"3ED4693C-DECF-4434-90C0-56158F102E7E"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3_1290_v2:-:*:*:*:*:*:*:*","matchCriteriaId":"BB408A6B-0842-43DA-9180-B0A299FCBCE6"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3_1501l_v6:-:*:*:*:*:*:*:*","matchCriteriaId":"6215EBAC-7C75-4647-9970-482120897F1F"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3_1501m_v6:-:*:*:*:*:*:*:*","matchCriteriaId":"3357FCAC-B6C4-4E3E-A40B-AB5084A7F9B2"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3_1505l_v5:-:*:*:*:*:*:*:*","matchCriteriaId":"3B1BD2B6-1AF6-4AD4-94FA-94B453A21908"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3_1505l_v6:-:*:*:*:*:*:*:*","matchCriteriaId":"8D1FD6E8-80EC-461F-9ED1-CE5912399E80"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3_1505m_v5:-:*:*:*:*:*:*:*","matchCriteriaId":"E96F585E-BDEF-45EE-B0AB-94FE23753AC5"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5:2650l_v4:*:*:*:*:*:*:*","matchCriteriaId":"3279C067-3058-4D46-A739-05404FD0E9B5"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5:2658:*:*:*:*:*:*:*","matchCriteriaId":"DB4DF0A7-8BC2-48AE-9036-FED6EEC57DF3"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5:2658_v2:*:*:*:*:*:*:*","matchCriteriaId":"C0855225-F501-486A-BD03-2A86FD252B5A"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5:2658_v3:*:*:*:*:*:*:*","matchCriteriaId":"214C7B0C-C438-4000-9F9B-6D83294243AA"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5:2658_v4:*:*:*:*:*:*:*","matchCriteriaId":"4C91AA2E-4BB2-49C8-9364-4E363DF42CB0"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5:2658a_v3:*:*:*:*:*:*:*","matchCriteriaId":"DA26781F-5A1C-4DA5-835E-D984D697F22B"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5:2660:*:*:*:*:*:*:*","matchCriteriaId":"2EEA4222-F25D-4457-80AA-6D05CA918D68"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5:2660_v2:*:*:*:*:*:*:*","matchCriteriaId":"9F3E60D1-5CF9-4F96-9EDB-D87F8CF57272"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5:2660_v3:*:*:*:*:*:*:*","matchCriteriaId":"F4D321BC-6B1D-4C71-8E16-5A1319CEFD6C"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5:2660_v4:*:*:*:*:*:*:*","matchCriteriaId":"6777AC35-9D1F-4153-94AC-B25627D730E6"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5:2665:*:*:*:*:*:*:*","matchCriteriaId":"A5F063F4-8994-4E46-BA7B-A12A112009BD"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5:2667:*:*:*:*:*:*:*","matchCriteriaId":"4D6F2DE5-AF11-439A-8D37-30CB882ECD58"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5:2667_v2:*:*:*:*:*:*:*","matchCriteriaId":"E213DD86-5419-42C8-BF38-7795DDB3C582"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5:2667_v3:*:*:*:*:*:*:*","matchCriteriaId":"A972291E-5231-439D-873B-2F87BCAF800A"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5:2667_v4:*:*:*:*:*:*:*","matchCriteriaId":"C089CC54-3229-43D7-AA15-73CFA1A43EE3"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5:2670:*:*:*:*:*:*:*","matchCriteriaId":"EF268D83-C15D-4559-A46F-844E1D9264F0"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5:2670_v2:*:*:*:*:*:*:*","matchCriteriaId":"CFE97C0D-3EA1-4314-A74A-7845C7778FB7"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5:2670_v3:*:*:*:*:*:*:*","matchCriteriaId":"34293F29-F327-4ADD-BF62-78F63F79BB96"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5:2680:*:*:*:*:*:*:*","matchCriteriaId":"528C0A46-1CC4-4882-985A-0BB41525BC6B"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5:2680_v2:*:*:*:*:*:*:*","matchCriteriaId":"643F3522-A452-4927-944D-532574EC4243"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5:2680_v3:*:*:*:*:*:*:*","matchCriteriaId":"58F40B78-4DBA-44EE-8420-086789EFF53D"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5:2680_v4:*:*:*:*:*:*:*","matchCriteriaId":"423BFD8F-4B50-43DA-9979-75FD18FBC953"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5:2683_v3:*:*:*:*:*:*:*","matchCriteriaId":"8BAD4A68-0481-476F-BBBD-3D515331368C"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5:2683_v4:*:*:*:*:*:*:*","matchCriteriaId":"838CEB7C-7C4C-416C-86CE-6E8DD47EF25B"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5:2687w:*:*:*:*:*:*:*","matchCriteriaId":"CC7D021F-3C97-45B3-B1F7-0AC26959F22B"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5:2687w_v2:*:*:*:*:*:*:*","matchCriteriaId":"4A31AEF3-448D-417B-9589-4BA0A06F2FE8"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5:2687w_v3:*:*:*:*:*:*:*","matchCriteriaId":"F7A1D96F-7FFD-413F-ABCE-4530C3D63040"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5:2687w_v4:*:*:*:*:*:*:*","matchCriteriaId":"FDB2B08B-D3C7-4B82-B170-471D6CDEFAE5"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5:2690:*:*:*:*:*:*:*","matchCriteriaId":"4B8343FE-1320-40AE-A37F-70EF1A4AC4B7"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5:2690_v2:*:*:*:*:*:*:*","matchCriteriaId":"CD42BA5A-7DA0-409D-8685-E43CF9B61D9F"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5:2690_v3:*:*:*:*:*:*:*","matchCriteriaId":"A5FF80E9-CF28-4EF6-9CFE-4B500A434674"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5:2690_v4:*:*:*:*:*:*:*","matchCriteriaId":"7896A6C6-5918-4C27-85AF-6FEEFC7F8FD6"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5:2695_v2:*:*:*:*:*:*:*","matchCriteriaId":"647B77A4-2F49-4989-AF43-961D69037370"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5:2695_v3:*:*:*:*:*:*:*","matchCriteriaId":"805B1E33-F279-4303-9DF3-C81039A40C1C"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5:2695_v4:*:*:*:*:*:*:*","matchCriteriaId":"B971EA9E-AE5C-4A1D-AD55-8241F7B38C9C"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5:2697_v2:*:*:*:*:*:*:*","matchCriteriaId":"DE7E0AAE-6539-4024-9055-BE0BAD702143"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5:2697_v3:*:*:*:*:*:*:*","matchCriteriaId":"7F1A8828-0765-4799-AD6C-143F45FAAD23"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5:2697_v4:*:*:*:*:*:*:*","matchCriteriaId":"12D34618-1CCA-405B-A49C-EB384A09C2C6"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5:2697a_v4:*:*:*:*:*:*:*","matchCriteriaId":"575D6061-66BC-4862-BC84-ECD82D436E2A"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5:2698_v3:*:*:*:*:*:*:*","matchCriteriaId":"56B6EE64-1AD4-46B2-BA65-BB6282E56EB0"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5:2698_v4:*:*:*:*:*:*:*","matchCriteriaId":"11650B45-0BDA-42BF-AEF3-83B48DD6A71D"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5:2699_v3:*:*:*:*:*:*:*","matchCriteriaId":"BD3C92BA-827B-48AF-BBB3-FB60A9053C22"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5:2699_v4:*:*:*:*:*:*:*","matchCriteriaId":"AC097E24-F6C9-40D9-95E9-7EFDFA61AFF5"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5:2699a_v4:*:*:*:*:*:*:*","matchCriteriaId":"5EB44CA7-DFE6-4B1A-9A63-97AE30017E49"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5:2699r_v4:*:*:*:*:*:*:*","matchCriteriaId":"4B305EFA-6226-412C-90EE-F0691F2DDDE0"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5:4603:*:*:*:*:*:*:*","matchCriteriaId":"7F3874FA-63CB-4B5D-8B64-CE920320A4E6"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5:4603_v2:*:*:*:*:*:*:*","matchCriteriaId":"0800ED17-50E4-43F3-B46C-591DFA818BA5"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5:4607:*:*:*:*:*:*:*","matchCriteriaId":"A46B0405-F301-4209-8766-6E12EAFAD157"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5:4607_v2:*:*:*:*:*:*:*","matchCriteriaId":"F99F9F1F-A967-4884-96CF-4488102DC0A2"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5:4610:*:*:*:*:*:*:*","matchCriteriaId":"DA9B37AD-4599-425B-B39F-E571F4975266"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5:4610_v2:*:*:*:*:*:*:*","matchCriteriaId":"C5A5F1CF-A1E6-45F1-8B09-36566778DB57"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5:4610_v3:*:*:*:*:*:*:*","matchCriteriaId":"698C8A49-888B-4675-B3B0-25EDE2FD515E"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5:4610_v4:*:*:*:*:*:*:*","matchCriteriaId":"70D98F97-8EF4-48B5-84BE-C3CC27031FDA"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5:4617:*:*:*:*:*:*:*","matchCriteriaId":"B473D1FA-909B-492E-9C5B-94B0E20E1C0E"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5:4620:*:*:*:*:*:*:*","matchCriteriaId":"BFD5EA7E-322E-4CE6-89D4-7DB1055C9034"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5:4620_v2:*:*:*:*:*:*:*","matchCriteriaId":"67836379-4E1A-45CD-9506-7D3F612E47C8"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5:4620_v3:*:*:*:*:*:*:*","matchCriteriaId":"5B1BBC61-8664-4452-93A7-DDB4D2E4C802"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5:4620_v4:*:*:*:*:*:*:*","matchCriteriaId":"C4F1B50C-FC5F-47F4-87BC-60E1BD3DD1F2"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5:4624l_v2:*:*:*:*:*:*:*","matchCriteriaId":"044F0375-DF2F-4D9B-AD7E-473D34165E8C"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5:4627_v2:*:*:*:*:*:*:*","matchCriteriaId":"2CEE9B72-5C4C-40C0-A8A7-9DF11655DA43"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5:4627_v3:*:*:*:*:*:*:*","matchCriteriaId":"4A0655CA-A88C-4632-9A18-560E3F63B2F7"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5:4627_v4:*:*:*:*:*:*:*","matchCriteriaId":"8C1454DD-DA51-4CBC-8BB2-09D5AB5777DB"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5:4628l_v4:*:*:*:*:*:*:*","matchCriteriaId":"C6965851-3B29-4C21-9556-97FD731EAA85"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5:4640:*:*:*:*:*:*:*","matchCriteriaId":"52984FD2-44E0-4E91-B290-0376737EEF6F"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5:4640_v2:*:*:*:*:*:*:*","matchCriteriaId":"4C5D92E2-E718-4247-BA5D-DFE86C0F6AAE"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5:4640_v3:*:*:*:*:*:*:*","matchCriteriaId":"DF933366-7503-4F8D-B7AA-F6A16210EC37"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5:4640_v4:*:*:*:*:*:*:*","matchCriteriaId":"4E2DAF5D-5BB7-49C6-8426-8B547505B6FC"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5:4648_v3:*:*:*:*:*:*:*","matchCriteriaId":"3EABB21D-D021-434B-B147-CAF687097A5B"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5:4650:*:*:*:*:*:*:*","matchCriteriaId":"7609424D-95F1-4493-A20C-B1BA4EC6439D"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5:4650_v2:*:*:*:*:*:*:*","matchCriteriaId":"966DC636-C802-4D9F-8162-652AFB931203"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5:4650_v3:*:*:*:*:*:*:*","matchCriteriaId":"A75794EB-A5AF-43F0-985F-D9E36F04C6D4"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5:4650_v4:*:*:*:*:*:*:*","matchCriteriaId":"31C2CFF0-98FD-4A0D-8949-D554B2FE53D4"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5:4650l:*:*:*:*:*:*:*","matchCriteriaId":"05F9217F-5028-4659-AA8E-F60548DE4D52"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5:4655_v3:*:*:*:*:*:*:*","matchCriteriaId":"4AC769DC-CF2E-4A3C-A610-264F024E6279"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5:4655_v4:*:*:*:*:*:*:*","matchCriteriaId":"9B2B1CBF-D155-49BC-81A4-4172F177A5C2"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5:4657l_v2:*:*:*:*:*:*:*","matchCriteriaId":"370B2B32-519E-4373-8A04-5C5025D688BB"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5:4660_v3:*:*:*:*:*:*:*","matchCriteriaId":"83D9B562-C279-4A55-A347-F28FC4F9CD12"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5:4660_v4:*:*:*:*:*:*:*","matchCriteriaId":"2A8C2BA0-48A8-4107-8681-A7C34C553D8C"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5:4667_v3:*:*:*:*:*:*:*","matchCriteriaId":"B1B009DE-A82F-4569-9B42-EC1EC4DA8A40"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5:4667_v4:*:*:*:*:*:*:*","matchCriteriaId":"683B6E83-37FF-4F9B-915F-059EBB29DB53"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5:4669_v3:*:*:*:*:*:*:*","matchCriteriaId":"E218718F-4BE6-48B0-A204-9DD4A932A654"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5:4669_v4:*:*:*:*:*:*:*","matchCriteriaId":"FB0AB327-B60A-473C-9D36-97766EE62D7D"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5_1428l:-:*:*:*:*:*:*:*","matchCriteriaId":"3DA249EE-4786-4E27-8787-5E8B88C2AEB9"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5_1428l_v2:-:*:*:*:*:*:*:*","matchCriteriaId":"CEBD0529-1CF3-44E5-85B3-19A3323C9493"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5_1428l_v3:-:*:*:*:*:*:*:*","matchCriteriaId":"D664EE97-07EC-410F-94C3-AEAB2C6A627D"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5_1620:-:*:*:*:*:*:*:*","matchCriteriaId":"D31DB981-03B1-4A84-8D87-CD407C3C149F"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5_1620_v2:-:*:*:*:*:*:*:*","matchCriteriaId":"0CBD155D-89D9-4677-A621-4D7613BE65C6"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5_1620_v3:-:*:*:*:*:*:*:*","matchCriteriaId":"D02BD0D4-FFFD-4355-97D8-170362F10B9F"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5_1620_v4:-:*:*:*:*:*:*:*","matchCriteriaId":"6635781A-2651-4EF2-A5AC-AEEEE63FDE6D"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5_1630_v3:-:*:*:*:*:*:*:*","matchCriteriaId":"8DCE6930-760A-48C0-B964-1E3ED6A8517C"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5_1630_v4:-:*:*:*:*:*:*:*","matchCriteriaId":"9E52DE90-DF96-4CE7-B8D1-226BA50E4D09"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5_1650:-:*:*:*:*:*:*:*","matchCriteriaId":"C8EB40E7-9B91-4106-B303-2B70AF395BFA"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5_1650_v2:-:*:*:*:*:*:*:*","matchCriteriaId":"EAB0D5CD-8AF3-409D-96A7-718641D4B90D"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5_1650_v3:-:*:*:*:*:*:*:*","matchCriteriaId":"6E420B0B-0CD5-41C7-B25A-3DB856055F9E"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5_1650_v4:-:*:*:*:*:*:*:*","matchCriteriaId":"8B0C295B-0D63-4BE7-830D-D927E00C301C"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5_1660:-:*:*:*:*:*:*:*","matchCriteriaId":"605C340D-2220-4669-B827-9009CB099E8B"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5_1660_v2:-:*:*:*:*:*:*:*","matchCriteriaId":"8791879D-2908-4F57-8DB3-6D24100A9108"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5_1660_v3:-:*:*:*:*:*:*:*","matchCriteriaId":"CEBEDBBA-0427-4DE0-BA8D-737DE7DF80E6"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5_1660_v4:-:*:*:*:*:*:*:*","matchCriteriaId":"E823DC5B-98BE-4656-BFBF-3A7018F8F213"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5_1680_v3:-:*:*:*:*:*:*:*","matchCriteriaId":"64E8D558-ADE0-4358-9C76-7BD77BF23AA1"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5_1680_v4:-:*:*:*:*:*:*:*","matchCriteriaId":"7973B3D0-F244-4E26-88F5-A2D9BF2E4503"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5_2403:-:*:*:*:*:*:*:*","matchCriteriaId":"68E6BAB9-CBA4-4362-BC82-00D2C5CC6FB4"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5_2403_v2:-:*:*:*:*:*:*:*","matchCriteriaId":"CD3F4BFF-3CBE-4E4B-8B29-B203F99CFD8A"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5_2407:-:*:*:*:*:*:*:*","matchCriteriaId":"3F5CB567-4F86-4466-BE4D-BFF557ACAE0A"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5_2407_v2:-:*:*:*:*:*:*:*","matchCriteriaId":"8A52611B-6583-4660-90D7-C9472728072B"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5_2408l_v3:-:*:*:*:*:*:*:*","matchCriteriaId":"E80C6E89-B57C-47BB-8B95-50C03DFB3B96"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5_2418l:-:*:*:*:*:*:*:*","matchCriteriaId":"A9AB685B-FEE1-41EF-A046-1B34619E12A1"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5_2418l_v2:-:*:*:*:*:*:*:*","matchCriteriaId":"DB9F6724-967A-4AF0-9896-12BF6164B2CB"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5_2418l_v3:-:*:*:*:*:*:*:*","matchCriteriaId":"FC1116BF-12D7-47CC-98DB-18B200CF9C16"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5_2420:-:*:*:*:*:*:*:*","matchCriteriaId":"9FBB28DE-726B-4AF0-88A5-35987E1E648B"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5_2420_v2:-:*:*:*:*:*:*:*","matchCriteriaId":"5EA1DB22-8FBF-4CF6-AA96-5B68EE28877D"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5_2428l:-:*:*:*:*:*:*:*","matchCriteriaId":"1880E2B8-5E0E-4603-8D17-3ABA43D28179"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5_2428l_v2:-:*:*:*:*:*:*:*","matchCriteriaId":"2FAFBB92-1917-4238-832B-195FBE418271"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5_2428l_v3:-:*:*:*:*:*:*:*","matchCriteriaId":"91DFDF3F-9A3F-42B8-99A1-A3F76B198358"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5_2430:-:*:*:*:*:*:*:*","matchCriteriaId":"8778F972-BF34-482F-9FA7-71A77F6138E1"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5_2430_v2:-:*:*:*:*:*:*:*","matchCriteriaId":"8F288BB0-FE7A-4900-B227-BE80E4F4AADF"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5_2430l:-:*:*:*:*:*:*:*","matchCriteriaId":"3A8DC53A-90C6-47FE-89F1-A1FE8B1C07A9"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5_2430l_v2:-:*:*:*:*:*:*:*","matchCriteriaId":"57E16338-A094-4CA9-B77F-6FE42D3B422C"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5_2438l_v3:-:*:*:*:*:*:*:*","matchCriteriaId":"4E07AB33-5351-487D-9602-495489C7C0B8"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5_2440:-:*:*:*:*:*:*:*","matchCriteriaId":"22115ED6-1707-4840-B0D1-AD36BC0C75A8"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5_2440_v2:-:*:*:*:*:*:*:*","matchCriteriaId":"C7C633BC-831F-4CB7-9D62-16693444B216"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5_2448l:-:*:*:*:*:*:*:*","matchCriteriaId":"9CF5EE7E-F41B-44EC-9F69-7963B1BF1FB0"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5_2448l_v2:-:*:*:*:*:*:*:*","matchCriteriaId":"6DD501E1-E78F-44C6-8A13-C29337B07EBE"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5_2450:-:*:*:*:*:*:*:*","matchCriteriaId":"9085BA0B-B7E2-4908-90C0-B4183891C718"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5_2450_v2:-:*:*:*:*:*:*:*","matchCriteriaId":"F2267CB8-0EE9-4DBD-AD5F-8A13BB62673C"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5_2450l:-:*:*:*:*:*:*:*","matchCriteriaId":"81971C2F-137A-4F11-8C93-3B99D4CD1B58"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5_2450l_v2:-:*:*:*:*:*:*:*","matchCriteriaId":"98E0BDAC-398E-406B-B2DB-AE049D6E98B1"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5_2470:-:*:*:*:*:*:*:*","matchCriteriaId":"FCB66D7E-B465-4A8B-8CBD-7E93CCA2CD6F"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5_2470_v2:-:*:*:*:*:*:*:*","matchCriteriaId":"86AFDE6C-DE58-4C4D-882E-474EF6C3D934"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5_2603:-:*:*:*:*:*:*:*","matchCriteriaId":"950C6BF9-AA47-4287-AC01-D183237490FA"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5_2603_v2:-:*:*:*:*:*:*:*","matchCriteriaId":"2355181D-D8EE-4F80-8280-13D5CBCF4779"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5_2603_v3:-:*:*:*:*:*:*:*","matchCriteriaId":"5209343F-66B0-4DC0-9111-E2E64CFF7409"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5_2603_v4:-:*:*:*:*:*:*:*","matchCriteriaId":"720109A6-B79E-48E1-9AE7-7708B154788E"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5_2608l_v3:-:*:*:*:*:*:*:*","matchCriteriaId":"82FF0DBD-AE13-4232-80F7-F4C2E2CC9721"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5_2608l_v4:-:*:*:*:*:*:*:*","matchCriteriaId":"E5E944ED-8C02-46B8-BF95-0CE4C352753B"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5_2609:-:*:*:*:*:*:*:*","matchCriteriaId":"77AEA3D1-4846-46E2-9B80-20B19F00DC11"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5_2609_v2:-:*:*:*:*:*:*:*","matchCriteriaId":"1576978F-E93D-4A47-90B6-6A4E3A7DE558"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5_2609_v3:-:*:*:*:*:*:*:*","matchCriteriaId":"0D339FE5-001F-4005-88A5-CFFE37F9B63E"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5_2609_v4:-:*:*:*:*:*:*:*","matchCriteriaId":"1BDABA86-497E-497E-A5BA-46F913A4840A"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5_2618l_v2:-:*:*:*:*:*:*:*","matchCriteriaId":"DD886F4C-DB6F-4DDD-9807-8BCBB625C226"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5_2618l_v3:-:*:*:*:*:*:*:*","matchCriteriaId":"9E16912A-7F6A-4A2B-B70F-D1FCD34BC7DB"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5_2618l_v4:-:*:*:*:*:*:*:*","matchCriteriaId":"F4C454B7-E5F4-4AAE-B577-FD71FA002C8A"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5_2620:-:*:*:*:*:*:*:*","matchCriteriaId":"38BE2781-3A06-4D62-AC8B-68B721DA526B"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5_2620_v2:-:*:*:*:*:*:*:*","matchCriteriaId":"E9AE4EA5-B8C8-4AE2-9614-F9DBDB4D79DC"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5_2620_v3:-:*:*:*:*:*:*:*","matchCriteriaId":"2DA23772-2EB8-4BEE-8703-26D967EC4503"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5_2620_v4:-:*:*:*:*:*:*:*","matchCriteriaId":"72DC766A-B1F9-4B83-9F9B-CF603EE476BD"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5_2623_v3:-:*:*:*:*:*:*:*","matchCriteriaId":"EA594740-43C5-4F42-BA5B-00CA8AE7BB60"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5_2623_v4:-:*:*:*:*:*:*:*","matchCriteriaId":"572B16E2-8118-43A0-9A80-5D96831D55FD"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5_2628l_v2:-:*:*:*:*:*:*:*","matchCriteriaId":"9FB5C551-BADC-4A3A-93E5-2EBCA0704C51"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5_2628l_v3:-:*:*:*:*:*:*:*","matchCriteriaId":"5383B7A3-1569-4FEB-B299-B87CE8C8A87B"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5_2628l_v4:-:*:*:*:*:*:*:*","matchCriteriaId":"A05BBDE0-6C47-4489-9455-7DA7D230ECA1"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5_2630:-:*:*:*:*:*:*:*","matchCriteriaId":"1789AA69-EA31-44D1-82E6-228E48E18586"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5_2630_v2:-:*:*:*:*:*:*:*","matchCriteriaId":"B4A7D5FF-3B1F-4C64-BB81-7A349765520D"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5_2630_v3:-:*:*:*:*:*:*:*","matchCriteriaId":"D93A92E9-C8D2-4F6E-A5CA-E8AFFEEC7E13"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5_2630_v4:-:*:*:*:*:*:*:*","matchCriteriaId":"0F0498B3-393A-4C32-B338-E6014B956755"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5_2630l:-:*:*:*:*:*:*:*","matchCriteriaId":"C451F752-6869-4AFA-BAE5-5C9A54427BF2"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5_2630l_v2:-:*:*:*:*:*:*:*","matchCriteriaId":"83710FD1-099B-436D-9640-061D515E10BA"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5_2630l_v3:-:*:*:*:*:*:*:*","matchCriteriaId":"517B71CE-6156-40E1-B068-A2B733E205E3"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5_2630l_v4:-:*:*:*:*:*:*:*","matchCriteriaId":"11DEEEE5-5055-4CE1-962C-C5F075F4CC02"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5_2637:-:*:*:*:*:*:*:*","matchCriteriaId":"8718DDAB-3208-48CF-9BCE-54DA1257C16A"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5_2637_v2:-:*:*:*:*:*:*:*","matchCriteriaId":"FE1AA901-E822-4240-9D82-C9311E4F87B2"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5_2637_v3:-:*:*:*:*:*:*:*","matchCriteriaId":"C1CDE3DF-8E79-4997-94EB-B517FFCAE55C"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5_2637_v4:-:*:*:*:*:*:*:*","matchCriteriaId":"12A0DE13-EB0B-493B-BC84-3AEB3D454776"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5_2640:-:*:*:*:*:*:*:*","matchCriteriaId":"1727697B-1F59-4E29-B036-C32E9076C523"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5_2640_v2:-:*:*:*:*:*:*:*","matchCriteriaId":"E69E827C-C0D0-46C7-913A-1C1E02CEAACE"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5_2640_v3:-:*:*:*:*:*:*:*","matchCriteriaId":"2528F3F9-34DC-41DA-8926-382CB3EF5560"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5_2640_v4:-:*:*:*:*:*:*:*","matchCriteriaId":"E452C262-5A8D-4D97-BC7F-A4F5FF53A659"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5_2643:-:*:*:*:*:*:*:*","matchCriteriaId":"9D57BF69-D750-4278-98AA-976B0D28E347"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5_2643_v2:-:*:*:*:*:*:*:*","matchCriteriaId":"76ADAE30-6CAD-4F5B-B6F7-C18953144C63"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5_2643_v3:-:*:*:*:*:*:*:*","matchCriteriaId":"8A25D792-E21D-43EE-8B9D-67DE066DE5DE"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5_2643_v4:-:*:*:*:*:*:*:*","matchCriteriaId":"2C669783-C058-4B4F-BB9A-84B2C4682247"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5_2648l:-:*:*:*:*:*:*:*","matchCriteriaId":"159B088B-9A85-4CAA-854A-AA080E528F95"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5_2648l_v2:-:*:*:*:*:*:*:*","matchCriteriaId":"FBE74A94-FE8F-4749-A35A-AB7D57E24913"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5_2648l_v3:-:*:*:*:*:*:*:*","matchCriteriaId":"990AC341-0E67-4A81-87E9-EE3EFD9E847E"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5_2648l_v4:-:*:*:*:*:*:*:*","matchCriteriaId":"53BC18B0-58F1-4477-9978-CA7383C197FB"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5_2650:-:*:*:*:*:*:*:*","matchCriteriaId":"474992FB-842D-4661-A565-44AF2CD78693"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5_2650_v2:-:*:*:*:*:*:*:*","matchCriteriaId":"476E1B79-5342-4895-96D7-E97DFC1F5334"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5_2650_v3:-:*:*:*:*:*:*:*","matchCriteriaId":"EBD318D5-89A6-4E28-939C-C5B61396806B"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5_2650_v4:-:*:*:*:*:*:*:*","matchCriteriaId":"981AD3FF-1D14-4ECD-8B6F-BCEB7F2409AF"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5_2650l:-:*:*:*:*:*:*:*","matchCriteriaId":"A32C7E89-32ED-4328-9313-FA7D3DDBDC58"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5_2650l_v2:-:*:*:*:*:*:*:*","matchCriteriaId":"2792EED8-2CBD-478E-BC09-05FE830B3147"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e5_2650l_v3:-:*:*:*:*:*:*:*","matchCriteriaId":"97B1AF2F-6E48-4DBD-A60E-3088CA4C3771"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e7:2803:*:*:*:*:*:*:*","matchCriteriaId":"34E1691D-65B3-45E4-A544-8B29E38D569D"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e7:2820:*:*:*:*:*:*:*","matchCriteriaId":"E42F2703-B8AB-410E-AF7B-CD0BE777F061"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e7:2830:*:*:*:*:*:*:*","matchCriteriaId":"31244C94-00A3-499C-A91A-1BEF2FB0E6B9"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e7:2850:*:*:*:*:*:*:*","matchCriteriaId":"878FF6E8-8A6D-44CE-9DD1-2C912AB8A193"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e7:2850_v2:*:*:*:*:*:*:*","matchCriteriaId":"5078A95B-2BD8-4A37-A356-F53D1A53CB37"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e7:2860:*:*:*:*:*:*:*","matchCriteriaId":"0BFE67CD-DE53-4C4E-8245-35902AEFA6E8"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e7:2870:*:*:*:*:*:*:*","matchCriteriaId":"9F231D31-3AAD-4C5D-A225-D2DF94486718"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e7:2870_v2:*:*:*:*:*:*:*","matchCriteriaId":"5998DF5D-E785-45EC-B8D0-1F4EC4F96D50"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e7:2880_v2:*:*:*:*:*:*:*","matchCriteriaId":"EADFD013-0BFB-427C-98E6-F9E4774DCBC9"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e7:2890_v2:*:*:*:*:*:*:*","matchCriteriaId":"58620B10-FEA6-456D-B6B5-2745F5DBE82D"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e7:4807:*:*:*:*:*:*:*","matchCriteriaId":"E8F698B1-D9CF-4FE5-933D-EFCEA3056E3D"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e7:4809_v2:*:*:*:*:*:*:*","matchCriteriaId":"4858A1F0-97F2-4258-AB98-027BF1EC5117"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e7:4809_v3:*:*:*:*:*:*:*","matchCriteriaId":"3C961A8B-EAFD-4F66-9432-BCC0D154ECCE"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e7:4809_v4:*:*:*:*:*:*:*","matchCriteriaId":"052DE6CD-A1E7-4E81-B476-66EF451061C4"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e7:4820:*:*:*:*:*:*:*","matchCriteriaId":"3BE1AE1E-6FC0-41D8-857C-C5A99CAF5823"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e7:4820_v2:*:*:*:*:*:*:*","matchCriteriaId":"751B3AC8-D45E-46B6-83D5-311B693F3C0D"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e7:4820_v3:*:*:*:*:*:*:*","matchCriteriaId":"9588277A-0B97-4408-9CF7-11271CDAADD6"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e7:4820_v4:*:*:*:*:*:*:*","matchCriteriaId":"479FE854-85E5-4ED0-BFAF-2618C9053082"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e7:4830:*:*:*:*:*:*:*","matchCriteriaId":"E048B9BF-77C8-49F7-9F2D-9999F79BA264"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e7:4830_v2:*:*:*:*:*:*:*","matchCriteriaId":"6CD16D4D-E816-486D-96F4-5A2BF75B959F"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e7:4830_v3:*:*:*:*:*:*:*","matchCriteriaId":"169C558E-1A83-47D5-A66B-035BD1DD56FF"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e7:4830_v4:*:*:*:*:*:*:*","matchCriteriaId":"D683E509-3FB2-4175-BCAB-4EB1B5C04958"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e7:4850:*:*:*:*:*:*:*","matchCriteriaId":"6FCFA915-5445-4732-9F8F-D7561BA4177F"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e7:4850_v2:*:*:*:*:*:*:*","matchCriteriaId":"63A9FD98-C22D-48F6-87A1-60791C818A1E"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e7:4850_v3:*:*:*:*:*:*:*","matchCriteriaId":"85F99F24-1783-4E6E-BE61-04C2E80356ED"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e7:4850_v4:*:*:*:*:*:*:*","matchCriteriaId":"74CC7EB9-3F59-4C0A-B3A1-984BCCFB25BD"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e7:4860:*:*:*:*:*:*:*","matchCriteriaId":"85289E4C-C813-4677-867D-EE8E98F4A1A3"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e7:4860_v2:*:*:*:*:*:*:*","matchCriteriaId":"27C8150F-BEFA-406D-9F0D-E7CB187E26AB"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e7:4870:*:*:*:*:*:*:*","matchCriteriaId":"1E807F90-819F-4103-B1F7-4CE46971BD63"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e7:4870_v2:*:*:*:*:*:*:*","matchCriteriaId":"CD93203F-71B9-4F87-B5D8-FD273451C8A2"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e7:4880_v2:*:*:*:*:*:*:*","matchCriteriaId":"1E652C74-C48D-4F29-9E85-09325632443F"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e7:4890_v2:*:*:*:*:*:*:*","matchCriteriaId":"99158191-3013-4182-8A53-5DFCA1E2C60A"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e7:8830:*:*:*:*:*:*:*","matchCriteriaId":"F7E39A3E-7EAE-47C9-930B-58A980B73FC5"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e7:8837:*:*:*:*:*:*:*","matchCriteriaId":"FFDA54BA-C00D-4890-9B7F-328257607B21"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e7:8850:*:*:*:*:*:*:*","matchCriteriaId":"1F5EFB1E-334C-4B55-8E2E-6AE19B34774D"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e7:8850_v2:*:*:*:*:*:*:*","matchCriteriaId":"B8260DCA-2F0C-45F7-B35F-D489AF5639F2"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e7:8857_v2:*:*:*:*:*:*:*","matchCriteriaId":"7778F81B-6D05-4666-B1D4-53DB0EC16858"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e7:8860:*:*:*:*:*:*:*","matchCriteriaId":"5DC6706A-61F7-4AA0-B2FF-0FFDF739A644"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e7:8860_v3:*:*:*:*:*:*:*","matchCriteriaId":"7EF1B16B-02F2-4ECA-938E-B5CDCFC67816"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e7:8860_v4:*:*:*:*:*:*:*","matchCriteriaId":"3C5501D8-1B0D-4F5A-AFD7-C63181D3281F"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e7:8867_v3:*:*:*:*:*:*:*","matchCriteriaId":"1751F0CE-A0D3-40E2-8EEC-D31141FE33A8"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e7:8867_v4:*:*:*:*:*:*:*","matchCriteriaId":"5FF9AFA7-BBE8-4229-94CB-5A9596728BA5"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e7:8867l:*:*:*:*:*:*:*","matchCriteriaId":"E23A777F-68A4-4217-A75A-4D8A27E6451A"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e7:8870:*:*:*:*:*:*:*","matchCriteriaId":"2CA27DFB-CDD1-4F52-86B3-DB2320A9C7B2"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e7:8870_v2:*:*:*:*:*:*:*","matchCriteriaId":"392A4337-11F6-4980-A138-4FDBCAD0EBA4"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e7:8870_v3:*:*:*:*:*:*:*","matchCriteriaId":"E2E9BB67-F1FF-4190-889F-78B965CCE934"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e7:8870_v4:*:*:*:*:*:*:*","matchCriteriaId":"F4185A70-5D10-448E-A9AB-AA9D5CDF0FF8"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e7:8880_v2:*:*:*:*:*:*:*","matchCriteriaId":"35607317-0928-4297-A33E-D44BEE1BBEC9"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e7:8880_v3:*:*:*:*:*:*:*","matchCriteriaId":"D48323B1-7FEB-451F-A064-23E7CE7F6403"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e7:8880_v4:*:*:*:*:*:*:*","matchCriteriaId":"29EF4E8A-EF37-4DCC-B5D4-DA89AF31DD18"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e7:8880l_v2:*:*:*:*:*:*:*","matchCriteriaId":"F5763189-7980-4A72-92C9-1908FE9E15EF"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e7:8880l_v3:*:*:*:*:*:*:*","matchCriteriaId":"C53ACD49-DA21-4DDE-A0AA-FCCD59D29886"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e7:8890_v2:*:*:*:*:*:*:*","matchCriteriaId":"4326D350-EBC2-48E6-A2C6-0499F6826CEE"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e7:8890_v3:*:*:*:*:*:*:*","matchCriteriaId":"8594E6FE-B6DB-4343-B3DD-AEC19923DAF9"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e7:8890_v4:*:*:*:*:*:*:*","matchCriteriaId":"5BCADA00-E453-414D-9933-FCB43D21BBC3"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e7:8891_v2:*:*:*:*:*:*:*","matchCriteriaId":"E62212D9-F707-4A8E-AB2A-A3985E7A4049"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e7:8891_v3:*:*:*:*:*:*:*","matchCriteriaId":"561755A8-8AAD-4F41-8266-747EFDAF2D55"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e7:8891_v4:*:*:*:*:*:*:*","matchCriteriaId":"E6F4BB0F-DAF4-479B-B78A-7929C151AA1B"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e7:8893_v2:*:*:*:*:*:*:*","matchCriteriaId":"A207312E-1D35-4464-A111-22C4C793E146"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e7:8893_v3:*:*:*:*:*:*:*","matchCriteriaId":"E9B16E32-07D5-445B-BAA5-4E4A0881BFC1"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e7:8893_v4:*:*:*:*:*:*:*","matchCriteriaId":"7CF08F6B-2ECB-414C-82D7-C06085BF8B10"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e7:8894_v4:*:*:*:*:*:*:*","matchCriteriaId":"21032BE3-74D8-4C3F-B461-158F475B6853"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_gold:5115:*:*:*:*:*:*:*","matchCriteriaId":"2F9AC992-59B7-44EE-9FF3-567AC48938AA"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_gold:85115:*:*:*:*:*:*:*","matchCriteriaId":"9DB6A2ED-D433-4A8E-8044-02571D0BBD92"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_gold:85118:*:*:*:*:*:*:*","matchCriteriaId":"4F819519-61B6-4ED0-8A23-509D6B26ACE1"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_gold:85119t:*:*:*:*:*:*:*","matchCriteriaId":"E2D81C40-4BD0-4D25-95B4-44BE2011F117"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_gold:85120:*:*:*:*:*:*:*","matchCriteriaId":"85C3A39E-29D3-4C02-89A6-D5B3475EF592"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_gold:85120t:*:*:*:*:*:*:*","matchCriteriaId":"C70340A2-71DC-4D4D-BA2E-2B2E9ACDBE5F"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_gold:85122:*:*:*:*:*:*:*","matchCriteriaId":"586DB792-9FF6-4253-9DAE-F3ACA3F1C489"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_gold:86126:*:*:*:*:*:*:*","matchCriteriaId":"330576E9-3A92-4E22-BBC0-94A12ACE1032"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_gold:86126f:*:*:*:*:*:*:*","matchCriteriaId":"5C644430-A075-40E1-8E35-15B97D8E9078"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_gold:86126t:*:*:*:*:*:*:*","matchCriteriaId":"BAC094AC-0A3A-43F3-823A-089235D04A7C"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_gold:86128:*:*:*:*:*:*:*","matchCriteriaId":"5835FB20-922D-4478-8E4B-A53CCEE46198"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_gold:86130:*:*:*:*:*:*:*","matchCriteriaId":"667A34BF-8699-477D-B30A-CEF0A36FC81B"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_gold:86130f:*:*:*:*:*:*:*","matchCriteriaId":"FE586938-ED60-40EA-8177-30267C7A3E58"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_gold:86130t:*:*:*:*:*:*:*","matchCriteriaId":"CF902C36-0708-4B93-9504-5EA7EEDD628F"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_gold:86132:*:*:*:*:*:*:*","matchCriteriaId":"F0BC5EBB-2F1A-45C4-A8A7-122FBE4CBC93"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_gold:86134:*:*:*:*:*:*:*","matchCriteriaId":"795F5800-8C06-426B-80AA-20F8E402ACAE"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_gold:86134m:*:*:*:*:*:*:*","matchCriteriaId":"173E49AF-95A9-4DAE-8C74-13CFCA8F0726"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_gold:86136:*:*:*:*:*:*:*","matchCriteriaId":"ECE96391-4F25-4505-B757-D1F15ABD9FAA"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_gold:86138:*:*:*:*:*:*:*","matchCriteriaId":"D037E4BA-35B9-42CB-9DDE-BED3DF49B958"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_gold:86138f:*:*:*:*:*:*:*","matchCriteriaId":"43288516-FA4D-4D8F-9E69-EA27115EB43B"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_gold:86138t:*:*:*:*:*:*:*","matchCriteriaId":"13EF19E9-FE9A-4ED7-8D9E-848F10C088B0"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_gold:86140:*:*:*:*:*:*:*","matchCriteriaId":"4EB72D0E-0E34-4EF3-98FB-52BE4A135D2A"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_gold:86140m:*:*:*:*:*:*:*","matchCriteriaId":"6DDE7F94-D938-40BA-A1F6-CE52D0B74ECB"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_gold:86142:*:*:*:*:*:*:*","matchCriteriaId":"B0E39247-337C-49D1-BF1B-504F2DA4EBA4"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_gold:86142f:*:*:*:*:*:*:*","matchCriteriaId":"A45FA7CB-6523-4042-8832-193D87102F57"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_gold:86142m:*:*:*:*:*:*:*","matchCriteriaId":"61E350A6-9EC7-4E14-9790-040F154CE15D"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_gold:86144:*:*:*:*:*:*:*","matchCriteriaId":"A8D70B4E-6B85-459C-AACA-59AB5CCC0B38"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_gold:86146:*:*:*:*:*:*:*","matchCriteriaId":"565EB5E9-3B86-4353-BFF6-3F5D27140B42"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_gold:86148:*:*:*:*:*:*:*","matchCriteriaId":"A32CBB5D-392A-4CD1-82D3-A97D822FADFE"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_gold:86148f:*:*:*:*:*:*:*","matchCriteriaId":"383E08FE-EE7A-4E41-9AAD-786779D4B5E3"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_gold:86150:*:*:*:*:*:*:*","matchCriteriaId":"2D50C6D5-3452-4214-B3FF-9F8009D75C3A"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_gold:86152:*:*:*:*:*:*:*","matchCriteriaId":"A93954C6-9B01-4CEB-8925-5D3F415AFC1B"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_gold:86154:*:*:*:*:*:*:*","matchCriteriaId":"7B7D54E5-6EDE-44DE-AEA6-F7F76E3EC36F"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_platinum:8153:*:*:*:*:*:*:*","matchCriteriaId":"8CB2949C-4699-49EF-83EB-31199E0CE2DF"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_platinum:8156:*:*:*:*:*:*:*","matchCriteriaId":"66C169DC-EEFE-4DE6-A3D0-65B606527240"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_platinum:8158:*:*:*:*:*:*:*","matchCriteriaId":"FD28227A-8888-43B2-BC41-8D54B49DA58C"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_platinum:8160:*:*:*:*:*:*:*","matchCriteriaId":"7984BAEA-4518-4E17-830E-B34D09648BD8"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_platinum:8160f:*:*:*:*:*:*:*","matchCriteriaId":"2C2214E5-491E-448F-A4B6-A497FB44D722"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_platinum:8160m:*:*:*:*:*:*:*","matchCriteriaId":"2AE93013-C262-46A5-8E77-D647881EE632"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_platinum:8160t:*:*:*:*:*:*:*","matchCriteriaId":"85B53CEC-943F-4966-8EC1-CB2C6AD6A15B"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_platinum:8164:*:*:*:*:*:*:*","matchCriteriaId":"EEAC04A3-EBE3-406B-B784-A3547162ECE4"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_platinum:8168:*:*:*:*:*:*:*","matchCriteriaId":"15720FFE-B2A4-4347-BCD7-DFA6774C0B8F"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_platinum:8170:*:*:*:*:*:*:*","matchCriteriaId":"50F46B0E-C746-44B4-B343-E3DCAB4B98DE"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_platinum:8170m:*:*:*:*:*:*:*","matchCriteriaId":"5AE30903-4F75-4D71-A8BB-44D1099E9837"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_platinum:8176:*:*:*:*:*:*:*","matchCriteriaId":"98311EAA-26C8-4092-8BE5-4E7BEAA68DD4"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_platinum:8176f:*:*:*:*:*:*:*","matchCriteriaId":"DB8CF348-811C-4342-ACB9-AFCABCC34331"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_platinum:8176m:*:*:*:*:*:*:*","matchCriteriaId":"71998EC5-EC0F-496C-B658-3CD91D824944"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_platinum:8180:*:*:*:*:*:*:*","matchCriteriaId":"A1F19B2A-E7A1-4B97-AC40-02B0D3673555"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_silver:4108:*:*:*:*:*:*:*","matchCriteriaId":"CB6387C9-C0A8-4B26-BC62-802775CD0AD3"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_silver:4109t:*:*:*:*:*:*:*","matchCriteriaId":"EFEB0164-77C2-4EC2-92FD-5FCE246119CB"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_silver:4110:*:*:*:*:*:*:*","matchCriteriaId":"FDB20210-337C-4220-8CA1-F4B2BC54EBC3"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_silver:4112:*:*:*:*:*:*:*","matchCriteriaId":"F699569F-4F52-4CC0-90D9-CC4CBC32428A"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_silver:4114:*:*:*:*:*:*:*","matchCriteriaId":"CBAED22B-D097-49C4-ADDF-4B3F3E1262D6"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_silver:4114t:*:*:*:*:*:*:*","matchCriteriaId":"ACF5C3C2-EE69-4DE7-A76C-C797192EE7A1"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_silver:4116:*:*:*:*:*:*:*","matchCriteriaId":"7756B588-5A63-4508-8BDD-92DB8CB0F4AD"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_silver:4116t:*:*:*:*:*:*:*","matchCriteriaId":"316E26AE-67A5-4E75-8F9B-ECF4A03AED51"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:h:arm:cortex-a:15:*:*:*:*:*:*:*","matchCriteriaId":"001AB619-157E-40B4-B86C-5DB18245D62F"},{"vulnerable":true,"criteria":"cpe:2.3:h:arm:cortex-a:57:*:*:*:*:*:*:*","matchCriteriaId":"38D51E27-28A3-47A1-9C36-1A223858E352"},{"vulnerable":true,"criteria":"cpe:2.3:h:arm:cortex-a:72:*:*:*:*:*:*:*","matchCriteriaId":"365DF3EF-E7D1-41FC-8382-D3B095542D59"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:redhat:mrg_realtime:2.0:*:*:*:*:*:*:*","matchCriteriaId":"AFB0FFE3-4BE1-4024-BCC6-1B87074DE2E3"},{"vulnerable":true,"criteria":"cpe:2.3:a:redhat:openstack:7.0:*:*:*:*:*:*:*","matchCriteriaId":"9DAA72A4-AC7D-4544-89D4-5B07961D5A95"},{"vulnerable":true,"criteria":"cpe:2.3:a:redhat:openstack:8:*:*:*:*:*:*:*","matchCriteriaId":"E8B8C725-34CF-4340-BE7B-37E58CF706D6"},{"vulnerable":true,"criteria":"cpe:2.3:a:redhat:openstack:9:*:*:*:*:*:*:*","matchCriteriaId":"F40C26BE-56CB-4022-A1D8-3CA0A8F87F4B"},{"vulnerable":true,"criteria":"cpe:2.3:a:redhat:openstack:10:*:*:*:*:*:*:*","matchCriteriaId":"E722FEF7-58A6-47AD-B1D0-DB0B71B0C7AA"},{"vulnerable":true,"criteria":"cpe:2.3:a:redhat:openstack:12:*:*:*:*:*:*:*","matchCriteriaId":"4D4AC996-B340-4A14-86F7-FF83B4D5EC8F"},{"vulnerable":true,"criteria":"cpe:2.3:a:redhat:openstack:13:*:*:*:*:*:*:*","matchCriteriaId":"704CFA1A-953E-4105-BFBE-406034B83DED"},{"vulnerable":true,"criteria":"cpe:2.3:a:redhat:virtualization_manager:4.2:*:*:*:*:*:*:*","matchCriteriaId":"E938A8EB-68FE-427B-B67E-C880FBF54BBE"},{"vulnerable":true,"criteria":"cpe:2.3:a:redhat:virtualization_manager:4.3:*:*:*:*:*:*:*","matchCriteriaId":"9FA1A18F-D997-4121-A01B-FD9B3BF266CF"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*","matchCriteriaId":"EE249E1B-A1FD-4E08-AA71-A0E1F10FFE97"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*","matchCriteriaId":"33C068A4-3780-4EAB-A937-6082DF847564"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_eus:6.7:*:*:*:*:*:*:*","matchCriteriaId":"967EC28A-607F-48F4-AD64-5E3041C768F0"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_eus:7.3:*:*:*:*:*:*:*","matchCriteriaId":"807C024A-F8E8-4B48-A349-4C68CD252CA1"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_eus:7.4:*:*:*:*:*:*:*","matchCriteriaId":"F96E3779-F56A-45FF-BB3D-4980527D721E"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_eus:7.5:*:*:*:*:*:*:*","matchCriteriaId":"0CF73560-2F5B-4723-A8A1-9AADBB3ADA00"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_eus:7.6:*:*:*:*:*:*:*","matchCriteriaId":"5BF3C7A5-9117-42C7-BEA1-4AA378A582EF"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_eus:7.7:*:*:*:*:*:*:*","matchCriteriaId":"83737173-E12E-4641-BC49-0BD84A6B29D0"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*","matchCriteriaId":"9BBCD86A-E6C7-4444-9D74-F861084090F0"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*","matchCriteriaId":"51EF4996-72F4-4FA4-814F-F5991E7A8318"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_server_aus:5.9:*:*:*:*:*:*:*","matchCriteriaId":"92C9F1C4-55B0-426D-BB5E-01372C23AF97"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_server_aus:6.4:*:*:*:*:*:*:*","matchCriteriaId":"AF83BB87-B203-48F9-9D06-48A5FE399050"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_server_aus:6.5:*:*:*:*:*:*:*","matchCriteriaId":"1F3BEFDB-5156-4E1C-80BB-8BE9FEAA7623"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_server_aus:6.6:*:*:*:*:*:*:*","matchCriteriaId":"16E6D998-B41D-4B49-9E00-8336D2E40A4A"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_server_aus:7.2:*:*:*:*:*:*:*","matchCriteriaId":"1C8D871B-AEA1-4407-AEE3-47EC782250FF"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_server_aus:7.3:*:*:*:*:*:*:*","matchCriteriaId":"98381E61-F082-4302-B51F-5648884F998B"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_server_aus:7.4:*:*:*:*:*:*:*","matchCriteriaId":"D99A687E-EAE6-417E-A88E-D0082BC194CD"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_server_aus:7.7:*:*:*:*:*:*:*","matchCriteriaId":"7431ABC1-9252-419E-8CC1-311B41360078"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_server_tus:6.6:*:*:*:*:*:*:*","matchCriteriaId":"13E02156-E748-4820-B76F-7074793837E1"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_server_tus:7.2:*:*:*:*:*:*:*","matchCriteriaId":"6755B6AD-0422-467B-8115-34A60B1D1A40"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_server_tus:7.3:*:*:*:*:*:*:*","matchCriteriaId":"24C0F4E1-C52C-41E0-9F14-F83ADD5CC7ED"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_server_tus:7.4:*:*:*:*:*:*:*","matchCriteriaId":"D5F7E11E-FB34-4467-8919-2B6BEAABF665"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_server_tus:7.6:*:*:*:*:*:*:*","matchCriteriaId":"B76AA310-FEC7-497F-AF04-C3EC1E76C4CC"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_server_tus:7.7:*:*:*:*:*:*:*","matchCriteriaId":"17F256A9-D3B9-4C72-B013-4EFD878BFEA8"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*","matchCriteriaId":"E5ED5807-55B7-47C5-97A6-03233F4FBC3A"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*","matchCriteriaId":"825ECE2D-E232-46E0-A047-074B34DB1E97"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*","matchCriteriaId":"C11E6FB0-C8C0-4527-9AA0-CB9B316F8F43"},{"vulnerable":true,"criteria":"cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*","matchCriteriaId":"DEECE5FC-CACF-4496-A3E7-164736409252"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:*:*:*:*","matchCriteriaId":"1F3EFED2-F6BC-46D9-AB22-D5ED87EF4549"},{"vulnerable":true,"criteria":"cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:*","matchCriteriaId":"815D70A8-47D3-459C-A32C-9FEACA0659D1"},{"vulnerable":true,"criteria":"cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*","matchCriteriaId":"F7016A2A-8365-4F1A-89A2-7A19F2BCAE5B"},{"vulnerable":true,"criteria":"cpe:2.3:o:canonical:ubuntu_linux:17.10:*:*:*:*:*:*:*","matchCriteriaId":"9070C9D8-A14A-467F-8253-33B966C16886"},{"vulnerable":true,"criteria":"cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*","matchCriteriaId":"23A7C53F-B80F-4E6A-AFA9-58EEA84BE11D"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:siemens:itc1500_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"3.1","matchCriteriaId":"3BC8E8CF-2507-49DE-BF54-CCF16A2861F5"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:siemens:itc1500:3:*:*:*:*:*:*:*","matchCriteriaId":"742BCB01-8856-4F6F-86B6-A1DB878C3062"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:siemens:itc1500_pro_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"3.1","matchCriteriaId":"5178C320-CDB7-4180-951B-BFBCFAFB7FAA"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:siemens:itc1500_pro:3:*:*:*:*:*:*:*","matchCriteriaId":"EEE4079D-C47A-4D57-9B37-947DE42F8A60"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:siemens:itc1900_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"3.1","matchCriteriaId":"4E1F645D-141D-4BCB-8F90-4A7BCC08988B"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:siemens:itc1900:3:*:*:*:*:*:*:*","matchCriteriaId":"B203F60B-0694-4B46-96CB-E8C5E4375E85"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:siemens:itc1900_pro_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"3.1","matchCriteriaId":"F702CAFB-3ED9-4185-9781-1DAA8A0B01DD"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:siemens:itc1900_pro:3:*:*:*:*:*:*:*","matchCriteriaId":"0C231846-D2BC-428F-AADE-A7E09DB3A547"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:siemens:itc2200_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"3.1","matchCriteriaId":"CBA817DF-52C1-4FCC-A661-F81D923A18EF"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:siemens:itc2200:3:*:*:*:*:*:*:*","matchCriteriaId":"D00016F2-3E88-4F57-AD2B-378153E73956"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:siemens:itc2200_pro_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"3.1","matchCriteriaId":"B30A4009-B0DD-492E-AEC1-985261707AC3"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:siemens:itc2200_pro:3:*:*:*:*:*:*:*","matchCriteriaId":"C4ED0315-9898-4110-96AB-5C198357ED83"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:local_service_management_system:*:*:*:*:*:*:*:*","versionStartIncluding":"13.0","versionEndIncluding":"13.3","matchCriteriaId":"7E49B728-E8DE-4B23-9564-7BFDED6F299E"},{"vulnerable":true,"criteria":"cpe:2.3:o:oracle:solaris:11:*:*:*:*:*:*:*","matchCriteriaId":"8E8C192B-8044-4BF9-9F1F-57371FC0E8FD"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:siemens:ruggedcom_ape_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"48B6FA71-3077-4202-A9A1-CBDF9AE2521E"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:siemens:ruggedcom_ape:-:*:*:*:*:*:*:*","matchCriteriaId":"3E4F2A68-3715-4F86-BEEC-8C4D4341B100"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:siemens:simatic_et_200_sp_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"2.6","matchCriteriaId":"B42251AC-8FED-4BDE-93B3-5203F32D6313"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:siemens:simatic_et_200_sp:-:*:*:*:*:*:*:*","matchCriteriaId":"4A661231-49DF-477F-954A-702839A9266B"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:siemens:simatic_field_pg_m4_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"18.01.09","matchCriteriaId":"8CAD5D20-80DB-4A09-AFBA-BCA594DE3B93"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:siemens:simatic_field_pg_m4:-:*:*:*:*:*:*:*","matchCriteriaId":"7ADAD919-32C1-49D2-A419-C9A803DB6250"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:siemens:simatic_field_pg_m5_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"22.01.06","matchCriteriaId":"503E551C-FC5F-4ABC-8DEA-E360701F0B33"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:siemens:simatic_field_pg_m5:-:*:*:*:*:*:*:*","matchCriteriaId":"506DEE00-30D2-4E29-9645-757EB8778C0F"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:siemens:simatic_ipc3000_smart_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"1.5","matchCriteriaId":"664FC58B-33E9-43E4-A87E-5C78F935C332"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:siemens:simatic_ipc3000_smart:2:*:*:*:*:*:*:*","matchCriteriaId":"4809A582-BC22-41A0-815A-32CF2BA197F2"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:siemens:simatic_ipc347e_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"1.5","matchCriteriaId":"45509778-898E-45DF-B14E-68B6C456B9B6"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:siemens:simatic_ipc347e:-:*:*:*:*:*:*:*","matchCriteriaId":"49D276DE-950F-4A61-BA13-DD5D07A17571"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:siemens:simatic_ipc427c_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"D2AB7B8D-D6FB-43A0-865D-58D4CDF96C06"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:siemens:simatic_ipc427c:-:*:*:*:*:*:*:*","matchCriteriaId":"DEA7336B-85CA-4A15-B7A6-D20B67041CCB"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:siemens:simatic_ipc427d_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"17.0x.14","matchCriteriaId":"FBA3B550-EB8B-4EBB-A1F0-14152A6791DD"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:siemens:simatic_ipc427d:-:*:*:*:*:*:*:*","matchCriteriaId":"46CC8AFE-ED6C-4A50-AC80-D2309E03FAE4"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:siemens:simatic_ipc427e_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"21.01.09","matchCriteriaId":"33F546AF-8F80-4E0A-9B92-86E3A1F931C0"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:siemens:simatic_ipc427e:-:*:*:*:*:*:*:*","matchCriteriaId":"A40D0CDB-7BE6-491F-B730-3B4E10CA159A"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:siemens:simatic_ipc477c_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"D55FC2D5-DCF6-4A24-873F-D0CF80DB3921"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:siemens:simatic_ipc477c:-:*:*:*:*:*:*:*","matchCriteriaId":"4E4335E3-D2BB-4465-BBC8-611C7F85BEF8"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:siemens:simatic_ipc477d_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"17.0x.14","matchCriteriaId":"435F7F3C-7483-4101-BC0A-E1E2BB66D6C1"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:siemens:simatic_ipc477d:-:*:*:*:*:*:*:*","matchCriteriaId":"754A6744-5194-4A99-BD3B-944A8707C80F"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:siemens:simatic_ipc477e_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"21.01.09","matchCriteriaId":"6B5B6E6B-16A0-4236-AABE-82385B53EC78"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:siemens:simatic_ipc477e:-:*:*:*:*:*:*:*","matchCriteriaId":"FDF9D4C3-1892-48FA-95B4-835B636A4005"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:siemens:simatic_ipc477e_pro_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"21.01.09","matchCriteriaId":"224D0968-6414-41F7-8929-C69D524A416F"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:siemens:simatic_ipc477e_pro:-:*:*:*:*:*:*:*","matchCriteriaId":"3FC5CE20-7D08-4496-A857-C3A4BD0AB1AC"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:siemens:simatic_ipc547e_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"r1.30.0","matchCriteriaId":"D476D093-4A97-499C-B40D-7A301BC9AA2E"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:siemens:simatic_ipc547e:-:*:*:*:*:*:*:*","matchCriteriaId":"D9DD4A97-1648-4C7F-A5A0-6899BD13A617"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:siemens:simatic_ipc547g_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"r1.23.0","matchCriteriaId":"940CCA5A-EC4A-4D46-B56C-4FC3698707E0"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:siemens:simatic_ipc547g:-:*:*:*:*:*:*:*","matchCriteriaId":"9EB339B5-602F-4AB5-9998-465FDC6ABD6C"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:siemens:simatic_ipc627c_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"15.02.15","matchCriteriaId":"203B30DB-52C6-48ED-8A94-76F775DA1198"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:siemens:simatic_ipc627c:-:*:*:*:*:*:*:*","matchCriteriaId":"CD1A57A9-F6E5-4672-BD22-09EF5522CA10"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:siemens:simatic_ipc627d_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"19.02.11","matchCriteriaId":"790D244A-AC3D-4BBC-9139-A90048FD375A"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:siemens:simatic_ipc627d:-:*:*:*:*:*:*:*","matchCriteriaId":"509AD120-3465-4C00-AAB3-B6F6ED708B51"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:siemens:simatic_ipc647c_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"15.01.14","matchCriteriaId":"05466B50-76ED-41E7-87DC-96CA95AAC6A2"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:siemens:simatic_ipc647c:-:*:*:*:*:*:*:*","matchCriteriaId":"E752006C-6D94-4B14-B3A5-C9BB94141BDB"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:siemens:simatic_ipc647d_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"19.01.14","matchCriteriaId":"0C046182-BB33-41D0-B041-1566B8041917"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:siemens:simatic_ipc647d:-:*:*:*:*:*:*:*","matchCriteriaId":"D0EF28FB-BAB3-4710-9D25-25F67ACADC60"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:siemens:simatic_ipc677d_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"19.02.11","matchCriteriaId":"8DE74300-E061-452E-AD1D-6DD7C2C62729"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:siemens:simatic_ipc677d:-:*:*:*:*:*:*:*","matchCriteriaId":"057D9947-CE4A-4B4C-B721-4B29FB71350C"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:siemens:simatic_ipc677c_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"15.02.15","matchCriteriaId":"F232B7B4-D633-47ED-B435-6EB6530019F4"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:siemens:simatic_ipc677c:-:*:*:*:*:*:*:*","matchCriteriaId":"E74F55B7-DE3D-4D74-A7E7-9BCB8F7B114A"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:siemens:simatic_ipc827c_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"15.02.15","matchCriteriaId":"9C0D4DB3-FBA2-4868-8A38-5D81E622C709"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:siemens:simatic_ipc827c:-:*:*:*:*:*:*:*","matchCriteriaId":"1FFD2D72-5464-4B86-BACB-61F55A081C3A"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:siemens:simatic_ipc827d_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"19.02.11","matchCriteriaId":"BE4A7C13-6F81-4629-9C28-9202028634AE"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:siemens:simatic_ipc827d:-:*:*:*:*:*:*:*","matchCriteriaId":"E6D87239-40C1-4038-B734-D77AC4DDD571"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:siemens:simatic_ipc847c_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"15.01.14","matchCriteriaId":"8014E0E5-F880-4886-8294-7EC971D5BBF9"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:siemens:simatic_ipc847c:-:*:*:*:*:*:*:*","matchCriteriaId":"687E1212-EC5A-47BA-ACAB-74F6C98B7C34"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:siemens:simatic_ipc847d_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"19.01.14","matchCriteriaId":"93485235-481B-4BAF-BB7A-81BB5AA1BC53"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:siemens:simatic_ipc847d:-:*:*:*:*:*:*:*","matchCriteriaId":"D8F37D88-E086-4060-8420-BD0F8D8FF580"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:siemens:simatic_itp1000_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"23.01.04","matchCriteriaId":"AD949046-46E5-48C9-883B-92F04926E8BC"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:siemens:simatic_itp1000:-:*:*:*:*:*:*:*","matchCriteriaId":"187C6D51-5B86-484D-AE0F-26D1C9465580"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:siemens:simatic_s7-1500_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"2.6","matchCriteriaId":"8F81F41D-480F-4443-927E-00607DD40BF5"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:siemens:simatic_s7-1500:-:*:*:*:*:*:*:*","matchCriteriaId":"30DDEA9B-E1BF-4572-8E12-D13C54603E77"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:siemens:simotion_p320-4e_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"17.0x.14","matchCriteriaId":"B8102F17-F6DA-4EE9-B533-EA806D9E7F7E"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:siemens:simotion_p320-4e:-:*:*:*:*:*:*:*","matchCriteriaId":"9EE09494-625A-4FF7-8B3E-6510FF9AFC9C"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:siemens:sinumerik_840_d_sl_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"DE8095A5-3677-4024-9437-C46DA382C280"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:siemens:sinumerik_840_d_sl:-:*:*:*:*:*:*:*","matchCriteriaId":"9565FE15-A705-4D0A-BFA3-30871FDCF9DB"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:siemens:sinumerik_pcu_50.5_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"15.02.15","matchCriteriaId":"8E16526D-CCA8-45B2-829E-4562A7440356"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:siemens:sinumerik_pcu_50.5:-:*:*:*:*:*:*:*","matchCriteriaId":"9220E9B5-5A0E-4F90-9A2C-B4692E937DBA"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:siemens:sinumerik_tcu_30.3_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"CE42ABA9-E5D8-4589-B111-AE191747E03D"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:siemens:sinumerik_tcu_30.3:-:*:*:*:*:*:*:*","matchCriteriaId":"2E53E94C-0F57-4A71-B919-C34984A5ADB6"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:siemens:sinema_remote_connect_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"2051E518-7CCD-4B49-9705-BDDC37177BE0"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:siemens:sinema_remote_connect:-:*:*:*:*:*:*:*","matchCriteriaId":"AF739F2D-744A-44CE-8DA7-F89A14239943"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:mitel:micloud_management_portal:*:*:*:*:*:*:*:*","matchCriteriaId":"417953F8-F722-4CD0-BC59-1192A4533505"},{"vulnerable":true,"criteria":"cpe:2.3:a:mitel:micollab:-:*:*:*:*:*:*:*","matchCriteriaId":"61E87F32-4157-42A3-A758-36AA2A4D7AFD"},{"vulnerable":true,"criteria":"cpe:2.3:a:mitel:mivoic_mx-one:-:*:*:*:*:*:*:*","matchCriteriaId":"4CEABF0C-99D9-415D-B8CB-B632C644664E"},{"vulnerable":true,"criteria":"cpe:2.3:a:mitel:mivoice_5000:-:*:*:*:*:*:*:*","matchCriteriaId":"150C225A-C4A0-4CC7-91AA-8F341D8152F1"},{"vulnerable":true,"criteria":"cpe:2.3:a:mitel:mivoice_border_gateway:-:*:*:*:*:*:*:*","matchCriteriaId":"762B1578-25AD-4ACC-A1AE-C325155F49F1"},{"vulnerable":true,"criteria":"cpe:2.3:a:mitel:mivoice_business:-:*:*:*:*:*:*:*","matchCriteriaId":"E561C59C-9E46-4FE1-8DA7-5E524FB9D87E"},{"vulnerable":true,"criteria":"cpe:2.3:a:mitel:mivoice_connect:-:*:*:*:*:*:*:*","matchCriteriaId":"B1077221-796B-44E7-A278-579F41BA5DE0"},{"vulnerable":true,"criteria":"cpe:2.3:a:mitel:open_integration_gateway:-:*:*:*:*:*:*:*","matchCriteriaId":"2D6F3481-E5DF-452A-AE3C-1ED648B54234"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:sonicwall:cloud_global_management_system:-:*:*:*:*:*:*:*","matchCriteriaId":"1BD39AA6-8D0B-405C-8A69-9264C82BCDAC"},{"vulnerable":true,"criteria":"cpe:2.3:a:sonicwall:email_security:-:*:*:*:*:*:*:*","matchCriteriaId":"2CD00A81-9A08-4C24-B720-BC7C99DCF19B"},{"vulnerable":true,"criteria":"cpe:2.3:a:sonicwall:global_management_system:-:*:*:*:*:*:*:*","matchCriteriaId":"2008DF4A-1AC8-4CC0-8649-823B3B6BD329"},{"vulnerable":true,"criteria":"cpe:2.3:a:sonicwall:secure_mobile_access:-:*:*:*:*:*:*:*","matchCriteriaId":"0AD3D92A-D07F-4087-81AF-0FA78E290DA6"},{"vulnerable":true,"criteria":"cpe:2.3:a:sonicwall:web_application_firewall:-:*:*:*:*:*:*:*","matchCriteriaId":"0220EB54-D74B-451C-8FA6-D71BF39B578F"},{"vulnerable":true,"criteria":"cpe:2.3:o:sonicwall:sonicosv:-:*:*:*:*:*:*:*","matchCriteriaId":"1ED1C215-1656-4113-B571-9479FDEB9ACF"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:schneider-electric:struxureware_data_center_expert:*:*:*:*:*:*:*:*","versionEndExcluding":"7.6.0","matchCriteriaId":"6CB56955-1A47-4F6C-A354-8BBAE7534504"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:redhat:virtualization:4.0:*:*:*:*:*:*:*","matchCriteriaId":"6BBD7A51-0590-4DDF-8249-5AFA8D645CB6"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:*","matchCriteriaId":"142AD0DD-4CF3-4D74-9442-459CE3347E3A"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:nvidia:jetson_tx1:*:*:*:*:*:*:*:*","versionEndExcluding":"r28.3","matchCriteriaId":"D05993AD-FABF-49A6-B3F5-6DF1B0835321"},{"vulnerable":true,"criteria":"cpe:2.3:a:nvidia:jetson_tx2:*:*:*:*:*:*:*:*","versionEndExcluding":"r28.3","matchCriteriaId":"1455BBEB-871A-41FE-A4BD-6DC583777252"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:h:microsoft:surface:-:*:*:*:*:*:*:*","matchCriteriaId":"BC248D3F-1D6D-48FC-94BA-3C24A182D172"},{"vulnerable":true,"criteria":"cpe:2.3:h:microsoft:surface_book:-:*:*:*:*:*:*:*","matchCriteriaId":"987ECFC7-D504-488D-B977-FEC182819567"},{"vulnerable":true,"criteria":"cpe:2.3:h:microsoft:surface_book:2:*:*:*:*:*:*:*","matchCriteriaId":"F75F0910-3EED-4365-B03E-B3295A762656"},{"vulnerable":true,"criteria":"cpe:2.3:h:microsoft:surface_pro:3:*:*:*:*:*:*:*","matchCriteriaId":"12C0B9FE-09FD-4991-BE14-499FFC728EDD"},{"vulnerable":true,"criteria":"cpe:2.3:h:microsoft:surface_pro:4:*:*:*:*:*:*:*","matchCriteriaId":"7585B88F-58FA-4DF2-AA99-185731253A05"},{"vulnerable":true,"criteria":"cpe:2.3:h:microsoft:surface_pro:1796:*:*:*:*:*:*:*","matchCriteriaId":"AFD7F77C-F02B-4EAF-8836-C97ACB5AFEA8"},{"vulnerable":true,"criteria":"cpe:2.3:h:microsoft:surface_pro_with_lte_advanced:1807:*:*:*:*:*:*:*","matchCriteriaId":"A98AB09C-24D8-4B58-9F4A-EF6B42EB27C8"},{"vulnerable":true,"criteria":"cpe:2.3:h:microsoft:surface_studio:-:*:*:*:*:*:*:*","matchCriteriaId":"6FF4194A-8194-4727-8C10-4F44D5041011"},{"vulnerable":true,"criteria":"cpe:2.3:o:microsoft:windows_10:-:*:*:*:*:*:*:*","matchCriteriaId":"21540673-614A-4D40-8BD7-3F07723803B0"},{"vulnerable":true,"criteria":"cpe:2.3:o:microsoft:windows_10:1607:*:*:*:*:*:*:*","matchCriteriaId":"E01A4CCA-4C43-46E0-90E6-3E4DBFBACD64"},{"vulnerable":true,"criteria":"cpe:2.3:o:microsoft:windows_10:1703:*:*:*:*:*:*:*","matchCriteriaId":"AEE2E768-0F45-46E1-B6D7-087917109D98"},{"vulnerable":true,"criteria":"cpe:2.3:o:microsoft:windows_10:1709:*:*:*:*:*:*:*","matchCriteriaId":"83B14968-3985-43C3-ACE5-8307196EFAE3"},{"vulnerable":true,"criteria":"cpe:2.3:o:microsoft:windows_10:1803:*:*:*:*:*:*:*","matchCriteriaId":"7CB85C75-4D35-480E-843D-60579EC75FCB"},{"vulnerable":true,"criteria":"cpe:2.3:o:microsoft:windows_10:1809:*:*:*:*:*:*:*","matchCriteriaId":"6B8F3DD2-A145-4AF1-8545-CC42892DA3D1"},{"vulnerable":true,"criteria":"cpe:2.3:o:microsoft:windows_7:-:sp1:*:*:*:*:*:*","matchCriteriaId":"C2B1C231-DE19-4B8F-A4AA-5B3A65276E46"},{"vulnerable":true,"criteria":"cpe:2.3:o:microsoft:windows_8.1:-:*:*:*:*:*:*:*","matchCriteriaId":"E93068DB-549B-45AB-8E5C-00EB5D8B5CF8"},{"vulnerable":true,"criteria":"cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*","matchCriteriaId":"AF07A81D-12E5-4B1D-BFF9-C8D08C32FF4F"},{"vulnerable":true,"criteria":"cpe:2.3:o:microsoft:windows_server_2008:sp2:*:*:*:*:*:*:*","matchCriteriaId":"66CAFDB7-9D41-4E67-AB83-5EB104551FF5"},{"vulnerable":true,"criteria":"cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*","matchCriteriaId":"A7DF96F8-BA6A-4780-9CA3-F719B3F81074"},{"vulnerable":true,"criteria":"cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*","matchCriteriaId":"DB18C4CE-5917-401E-ACF7-2747084FD36E"},{"vulnerable":true,"criteria":"cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:*","matchCriteriaId":"041FF8BA-0B12-4A1F-B4BF-9C4F33B7C1E7"},{"vulnerable":true,"criteria":"cpe:2.3:o:microsoft:windows_server_2016:1709:*:*:*:*:*:*:*","matchCriteriaId":"5B454BFE-D3AB-4CDC-B79B-F60EA3F57DBA"},{"vulnerable":true,"criteria":"cpe:2.3:o:microsoft:windows_server_2016:1803:*:*:*:*:*:*:*","matchCriteriaId":"CAACE735-003E-4ACB-A82E-C0CF97D7F013"}]}]}],"references":[{"url":"http://lists.opensuse.org/opensuse-security-announce/2019-05/msg00058.html","source":"secure@intel.com","tags":["Broken Link"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2019-05/msg00059.html","source":"secure@intel.com","tags":["Broken Link"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2020-09/msg00007.html","source":"secure@intel.com","tags":["Broken Link"]},{"url":"http://support.lenovo.com/us/en/solutions/LEN-22133","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"http://www.fujitsu.com/global/support/products/software/security/products-f/cve-2018-3639e.html","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"http://www.openwall.com/lists/oss-security/2020/06/10/1","source":"secure@intel.com","tags":["Mailing List","Third Party Advisory"]},{"url":"http://www.openwall.com/lists/oss-security/2020/06/10/2","source":"secure@intel.com","tags":["Mailing List","Third Party Advisory"]},{"url":"http://www.openwall.com/lists/oss-security/2020/06/10/5","source":"secure@intel.com","tags":["Mailing List","Third Party Advisory"]},{"url":"http://www.securityfocus.com/bid/104232","source":"secure@intel.com","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1040949","source":"secure@intel.com","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1042004","source":"secure@intel.com","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://xenbits.xen.org/xsa/advisory-263.html","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:1629","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:1630","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:1632","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:1633","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:1635","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:1636","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:1637","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:1638","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:1639","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:1640","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:1641","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:1642","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:1643","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:1644","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:1645","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:1646","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:1647","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:1648","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:1649","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:1650","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:1651","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:1652","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:1653","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:1654","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:1655","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:1656","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:1657","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:1658","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:1659","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:1660","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:1661","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:1662","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:1663","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:1664","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:1665","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:1666","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:1667","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:1668","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:1669","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:1674","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:1675","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:1676","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:1686","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:1688","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:1689","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:1690","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:1696","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:1710","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:1711","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:1737","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:1738","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:1826","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:1854","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:1965","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:1967","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:1997","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:2001","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:2003","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:2006","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:2060","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:2161","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:2162","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:2164","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:2171","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:2172","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:2216","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:2228","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:2246","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:2250","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:2258","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:2289","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:2309","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:2328","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:2363","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:2364","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:2387","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:2394","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:2396","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:2948","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:3396","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:3397","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:3398","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:3399","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:3400","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:3401","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:3402","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:3407","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:3423","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:3424","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:3425","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2019:0148","source":"secure@intel.com","tags":["Broken Link"]},{"url":"https://access.redhat.com/errata/RHSA-2019:1046","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://bugs.chromium.org/p/project-zero/issues/detail?id=1528","source":"secure@intel.com","tags":["Exploit","Issue Tracking","Patch","Third Party Advisory"]},{"url":"https://cert-portal.siemens.com/productcert/pdf/ssa-268644.pdf","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://cert-portal.siemens.com/productcert/pdf/ssa-505225.pdf","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://cert-portal.siemens.com/productcert/pdf/ssa-608355.pdf","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://developer.arm.com/support/arm-security-updates/speculative-processor-vulnerability","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://help.ecostruxureit.com/display/public/UADCE725/Security+fixes+in+StruxureWare+Data+Center+Expert+v7.6.0","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://lists.debian.org/debian-lts-announce/2018/07/msg00020.html","source":"secure@intel.com","tags":["Mailing List","Third Party Advisory"]},{"url":"https://lists.debian.org/debian-lts-announce/2018/07/msg00038.html","source":"secure@intel.com","tags":["Mailing List","Third Party Advisory"]},{"url":"https://lists.debian.org/debian-lts-announce/2018/09/msg00017.html","source":"secure@intel.com","tags":["Mailing List","Third Party Advisory"]},{"url":"https://lists.debian.org/debian-lts-announce/2019/03/msg00017.html","source":"secure@intel.com","tags":["Mailing List","Third Party Advisory"]},{"url":"https://lists.debian.org/debian-lts-announce/2019/03/msg00034.html","source":"secure@intel.com","tags":["Mailing List","Third Party Advisory"]},{"url":"https://lists.debian.org/debian-lts-announce/2019/04/msg00004.html","source":"secure@intel.com","tags":["Mailing List","Third Party Advisory"]},{"url":"https://nvidia.custhelp.com/app/answers/detail/a_id/4787","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/ADV180012","source":"secure@intel.com","tags":["Patch","Third Party Advisory","Vendor Advisory"]},{"url":"https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2018-0004","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://seclists.org/bugtraq/2019/Jun/36","source":"secure@intel.com","tags":["Issue Tracking","Mailing List","Third Party Advisory"]},{"url":"https://security.netapp.com/advisory/ntap-20180521-0001/","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://support.citrix.com/article/CTX235225","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03850en_us","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://support.oracle.com/knowledge/Sun%20Microsystems/2481872_1.html","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180521-cpusidechannel","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://usn.ubuntu.com/3651-1/","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://usn.ubuntu.com/3652-1/","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://usn.ubuntu.com/3653-1/","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://usn.ubuntu.com/3653-2/","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://usn.ubuntu.com/3654-1/","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://usn.ubuntu.com/3654-2/","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://usn.ubuntu.com/3655-1/","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://usn.ubuntu.com/3655-2/","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://usn.ubuntu.com/3679-1/","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://usn.ubuntu.com/3680-1/","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://usn.ubuntu.com/3756-1/","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://usn.ubuntu.com/3777-3/","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://www.debian.org/security/2018/dsa-4210","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://www.debian.org/security/2018/dsa-4273","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://www.exploit-db.com/exploits/44695/","source":"secure@intel.com","tags":["Exploit","Third Party Advisory","VDB Entry"]},{"url":"https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00115.html","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://www.kb.cert.org/vuls/id/180049","source":"secure@intel.com","tags":["Third Party Advisory","US Government Resource"]},{"url":"https://www.mitel.com/en-ca/support/security-advisories/mitel-product-security-advisory-18-0006","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://www.oracle.com/security-alerts/cpujul2020.html","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://www.oracle.com/technetwork/security-advisory/cpujan2019-5072801.html","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://www.synology.com/support/security/Synology_SA_18_23","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://www.us-cert.gov/ncas/alerts/TA18-141A","source":"secure@intel.com","tags":["Third Party Advisory","US Government Resource"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2019-05/msg00058.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Broken Link"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2019-05/msg00059.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Broken Link"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2020-09/msg00007.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Broken Link"]},{"url":"http://support.lenovo.com/us/en/solutions/LEN-22133","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.fujitsu.com/global/support/products/software/security/products-f/cve-2018-3639e.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.openwall.com/lists/oss-security/2020/06/10/1","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://www.openwall.com/lists/oss-security/2020/06/10/2","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://www.openwall.com/lists/oss-security/2020/06/10/5","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://www.securityfocus.com/bid/104232","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1040949","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1042004","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://xenbits.xen.org/xsa/advisory-263.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:1629","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:1630","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:1632","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:1633","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:1635","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:1636","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:1637","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:1638","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:1639","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:1640","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:1641","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:1642","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:1643","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:1644","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:1645","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:1646","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:1647","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:1648","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:1649","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:1650","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:1651","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:1652","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:1653","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:1654","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:1655","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:1656","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:1657","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:1658","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:1659","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:1660","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:1661","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:1662","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:1663","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:1664","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:1665","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:1666","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:1667","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:1668","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:1669","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:1674","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:1675","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:1676","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:1686","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:1688","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:1689","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:1690","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:1696","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:1710","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:1711","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:1737","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:1738","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:1826","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:1854","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:1965","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:1967","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:1997","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:2001","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:2003","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:2006","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:2060","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:2161","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:2162","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:2164","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:2171","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:2172","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:2216","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:2228","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:2246","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:2250","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:2258","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:2289","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:2309","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:2328","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:2363","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:2364","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:2387","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:2394","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:2396","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:2948","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:3396","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:3397","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:3398","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:3399","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:3400","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:3401","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:3402","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:3407","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:3423","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:3424","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:3425","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2019:0148","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Broken Link"]},{"url":"https://access.redhat.com/errata/RHSA-2019:1046","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://bugs.chromium.org/p/project-zero/issues/detail?id=1528","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Exploit","Issue Tracking","Patch","Third Party Advisory"]},{"url":"https://cert-portal.siemens.com/productcert/pdf/ssa-268644.pdf","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://cert-portal.siemens.com/productcert/pdf/ssa-505225.pdf","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://cert-portal.siemens.com/productcert/pdf/ssa-608355.pdf","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://developer.arm.com/support/arm-security-updates/speculative-processor-vulnerability","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://help.ecostruxureit.com/display/public/UADCE725/Security+fixes+in+StruxureWare+Data+Center+Expert+v7.6.0","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://lists.debian.org/debian-lts-announce/2018/07/msg00020.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"https://lists.debian.org/debian-lts-announce/2018/07/msg00038.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"https://lists.debian.org/debian-lts-announce/2018/09/msg00017.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"https://lists.debian.org/debian-lts-announce/2019/03/msg00017.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"https://lists.debian.org/debian-lts-announce/2019/03/msg00034.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"https://lists.debian.org/debian-lts-announce/2019/04/msg00004.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"https://nvidia.custhelp.com/app/answers/detail/a_id/4787","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/ADV180012","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Third Party Advisory","Vendor Advisory"]},{"url":"https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2018-0004","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://seclists.org/bugtraq/2019/Jun/36","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Issue Tracking","Mailing List","Third Party Advisory"]},{"url":"https://security.netapp.com/advisory/ntap-20180521-0001/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://support.citrix.com/article/CTX235225","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03850en_us","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://support.oracle.com/knowledge/Sun%20Microsystems/2481872_1.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180521-cpusidechannel","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://usn.ubuntu.com/3651-1/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://usn.ubuntu.com/3652-1/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://usn.ubuntu.com/3653-1/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://usn.ubuntu.com/3653-2/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://usn.ubuntu.com/3654-1/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://usn.ubuntu.com/3654-2/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://usn.ubuntu.com/3655-1/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://usn.ubuntu.com/3655-2/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://usn.ubuntu.com/3679-1/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://usn.ubuntu.com/3680-1/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://usn.ubuntu.com/3756-1/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://usn.ubuntu.com/3777-3/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.debian.org/security/2018/dsa-4210","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.debian.org/security/2018/dsa-4273","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.exploit-db.com/exploits/44695/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Exploit","Third Party Advisory","VDB Entry"]},{"url":"https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00115.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.kb.cert.org/vuls/id/180049","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","US Government Resource"]},{"url":"https://www.mitel.com/en-ca/support/security-advisories/mitel-product-security-advisory-18-0006","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.oracle.com/security-alerts/cpujul2020.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.oracle.com/technetwork/security-advisory/cpujan2019-5072801.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.synology.com/support/security/Synology_SA_18_23","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.us-cert.gov/ncas/alerts/TA18-141A","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","US Government Resource"]}]}},{"cve":{"id":"CVE-2018-13785","sourceIdentifier":"cve@mitre.org","published":"2018-07-09T13:29:00.443","lastModified":"2026-05-29T21:16:32.123","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"In libpng 1.6.34, a wrong calculation of row_factor in the png_check_chunk_length function (pngrutil.c) may trigger an integer overflow and resultant divide-by-zero while processing a crafted PNG file, leading to a denial of service."},{"lang":"es","value":"En libpng 1.6.34, un cálculo erróneo de row_factor en la función png_check_chunk_length (pngrutil.c) podría desencadenar un desbordamiento de enteros y una división entre cero resultante al procesar un archivo PNG manipulado, lo que conduciría a una denegación de servicio (DoS)."}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":3.6},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":3.6}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:M/Au:N/C:N/I:N/A:P","baseScore":4.3,"accessVector":"NETWORK","accessComplexity":"MEDIUM","authentication":"NONE","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"PARTIAL"},"baseSeverity":"MEDIUM","exploitabilityScore":8.6,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":true}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-190"},{"lang":"en","value":"CWE-369"}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-190"},{"lang":"en","value":"CWE-369"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:libpng:libpng:1.6.34:*:*:*:*:*:*:*","matchCriteriaId":"8CD36A99-1431-4B6C-9C92-3D94B56B4BED"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*","matchCriteriaId":"B5A6F2F3-4894-4392-8296-3B8DD2679084"},{"vulnerable":true,"criteria":"cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*","matchCriteriaId":"F7016A2A-8365-4F1A-89A2-7A19F2BCAE5B"},{"vulnerable":true,"criteria":"cpe:2.3:o:canonical:ubuntu_linux:17.10:*:*:*:*:*:*:*","matchCriteriaId":"9070C9D8-A14A-467F-8253-33B966C16886"},{"vulnerable":true,"criteria":"cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*","matchCriteriaId":"23A7C53F-B80F-4E6A-AFA9-58EEA84BE11D"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jdk:1.6.0:update201:*:*:*:*:*:*","matchCriteriaId":"9C07DBB8-760D-4A9E-B7C7-A382D650658B"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jdk:1.7.0:update191:*:*:*:*:*:*","matchCriteriaId":"ED6BF214-B45C-405E-83AC-C8A084A6E4C4"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jdk:1.8.0:update181:*:*:*:*:*:*","matchCriteriaId":"7D8C0DB7-6178-4D70-B460-97A49F012560"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jdk:11.0.0:*:*:*:*:*:*:*","matchCriteriaId":"CE66FC86-ADF3-4295-9C10-2A0AF16A538C"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jre:1.6.0:update201:*:*:*:*:*:*","matchCriteriaId":"BBE0F763-B860-4B30-A5E9-2FCE78F5932D"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jre:1.7.0:update191:*:*:*:*:*:*","matchCriteriaId":"C192F54C-108C-4E40-BC29-CF911C3B9EB4"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jre:1.8.0:update181:*:*:*:*:*:*","matchCriteriaId":"4ADC2C70-B7C4-49AC-B4CC-C5FC60903F3B"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jre:11.0.0:*:*:*:*:*:*:*","matchCriteriaId":"32548053-521C-4D17-8791-680074D5C55E"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*","matchCriteriaId":"EE249E1B-A1FD-4E08-AA71-A0E1F10FFE97"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*","matchCriteriaId":"33C068A4-3780-4EAB-A937-6082DF847564"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*","matchCriteriaId":"9BBCD86A-E6C7-4444-9D74-F861084090F0"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*","matchCriteriaId":"51EF4996-72F4-4FA4-814F-F5991E7A8318"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*","matchCriteriaId":"E5ED5807-55B7-47C5-97A6-03233F4FBC3A"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*","matchCriteriaId":"825ECE2D-E232-46E0-A047-074B34DB1E97"}]}]}],"references":[{"url":"http://www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.html","source":"cve@mitre.org","tags":["Patch","Vendor Advisory"]},{"url":"http://www.securityfocus.com/bid/105599","source":"cve@mitre.org","tags":["Broken Link","Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1041889","source":"cve@mitre.org","tags":["Broken Link","Third Party Advisory","VDB Entry"]},{"url":"https://access.redhat.com/errata/RHSA-2018:3000","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:3001","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:3002","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:3003","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:3007","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:3008","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:3533","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:3534","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:3671","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:3672","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:3779","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:3852","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"https://github.com/glennrp/libpng/commit/8a05766cb74af05c04c53e6c9d60c13fc4d59bf2","source":"cve@mitre.org","tags":["Patch","Third Party Advisory"]},{"url":"https://security.gentoo.org/glsa/201908-10","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"https://security.netapp.com/advisory/ntap-20181018-0001/","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"https://sourceforge.net/p/libpng/bugs/278/","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"https://usn.ubuntu.com/3712-1/","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"http://www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Vendor Advisory"]},{"url":"http://www.securityfocus.com/bid/105599","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Broken Link","Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1041889","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Broken Link","Third Party Advisory","VDB Entry"]},{"url":"https://access.redhat.com/errata/RHSA-2018:3000","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:3001","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:3002","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:3003","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:3007","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:3008","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:3533","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:3534","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:3671","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:3672","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:3779","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:3852","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://github.com/glennrp/libpng/commit/8a05766cb74af05c04c53e6c9d60c13fc4d59bf2","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Third Party Advisory"]},{"url":"https://security.gentoo.org/glsa/201908-10","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://security.netapp.com/advisory/ntap-20181018-0001/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://sourceforge.net/p/libpng/bugs/278/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://usn.ubuntu.com/3712-1/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]}]}},{"cve":{"id":"CVE-2018-3615","sourceIdentifier":"secure@intel.com","published":"2018-08-14T19:29:00.670","lastModified":"2026-05-29T21:16:33.047","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Systems with microprocessors utilizing speculative execution and Intel software guard extensions (Intel SGX) may allow unauthorized disclosure of information residing in the L1 data cache from an enclave to an attacker with local user access via a side-channel analysis."},{"lang":"es","value":"Los sistemas con microprocesadores que emplean ejecución especulativa y extensiones Intel software guard (Intel SGX) podría permitir la fuga no autorizada de información que reside en la caché de datos L1 desde un enclave a un atacante con acceso de usuario local mediante un análisis de canal lateral."}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:L/A:N","baseScore":7.3,"baseSeverity":"HIGH","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":2.0,"impactScore":4.7}],"cvssMetricV30":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.0","vectorString":"CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:L/A:N","baseScore":6.4,"baseSeverity":"MEDIUM","attackVector":"LOCAL","attackComplexity":"HIGH","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":1.1,"impactScore":4.7}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:L/AC:M/Au:N/C:C/I:P/A:N","baseScore":5.4,"accessVector":"LOCAL","accessComplexity":"MEDIUM","authentication":"NONE","confidentialityImpact":"COMPLETE","integrityImpact":"PARTIAL","availabilityImpact":"NONE"},"baseSeverity":"MEDIUM","exploitabilityScore":3.4,"impactScore":7.8,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-203"}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-203"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:6006u:*:*:*:*:*:*:*","matchCriteriaId":"B6B859F7-0373-4ADD-92B3-0FAB42FCF23C"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:6098p:*:*:*:*:*:*:*","matchCriteriaId":"AAC76F31-00A5-4719-AA50-92F773919B3C"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:6100:*:*:*:*:*:*:*","matchCriteriaId":"49996F5A-51B2-4D4E-AE04-E98E093A76CC"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:6100e:*:*:*:*:*:*:*","matchCriteriaId":"9F8406B0-D1E5-4633-B17E-53DC99FE7622"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:6100h:*:*:*:*:*:*:*","matchCriteriaId":"3D49435C-7C33-454B-9F43-9C10F28A28A1"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:6100t:*:*:*:*:*:*:*","matchCriteriaId":"D17E1A0F-1150-4899-81BC-BE84E4EF5FA3"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:6100te:*:*:*:*:*:*:*","matchCriteriaId":"EADD98AE-BAB0-440D-AB9F-2D76BE5109E2"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:6100u:*:*:*:*:*:*:*","matchCriteriaId":"ED44A404-8548-4EDC-8928-4094D05A6A38"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:6102e:*:*:*:*:*:*:*","matchCriteriaId":"3A6E4AA3-BEBC-4B14-9A52-A8F8B2954D64"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:6157u:*:*:*:*:*:*:*","matchCriteriaId":"D2AAD8F0-0D31-4806-8A88-A30E5BE43630"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:6167u:*:*:*:*:*:*:*","matchCriteriaId":"8164EE5F-6ABA-4365-8718-2F98C2E57A0F"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:6300:*:*:*:*:*:*:*","matchCriteriaId":"C7110AF9-A407-4EE2-9C46-E5F1E3638E9A"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:6300t:*:*:*:*:*:*:*","matchCriteriaId":"2A06696D-37F0-427D-BFC5-1606E7441C31"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:6320:*:*:*:*:*:*:*","matchCriteriaId":"E9F8A5FC-5EFE-42EC-A49B-D3A312FB5F6F"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:650:*:*:*:*:*:*:*","matchCriteriaId":"2AB02172-B9A7-4801-88F2-98BF5843184A"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:655k:*:*:*:*:*:*:*","matchCriteriaId":"5141380E-BD18-47C1-A84C-384BA821773D"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:660:*:*:*:*:*:*:*","matchCriteriaId":"1AE6C49E-2359-4E44-9979-7D34F8460E35"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:661:*:*:*:*:*:*:*","matchCriteriaId":"C004B75F-37AF-4E61-98F3-1B09A7062DDB"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:670:*:*:*:*:*:*:*","matchCriteriaId":"F7126D19-C6D9-43CB-8809-647B1A20E7DE"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:680:*:*:*:*:*:*:*","matchCriteriaId":"9CC98503-A80A-4114-8BF2-E016659BE84E"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:6200u:*:*:*:*:*:*:*","matchCriteriaId":"0FC246FE-4CA6-4B2D-83C3-D50A386C24A0"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:6260u:*:*:*:*:*:*:*","matchCriteriaId":"758A14DB-1BAF-442A-BA7C-5E9C67847BEA"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:6267u:*:*:*:*:*:*:*","matchCriteriaId":"61309100-CFA7-4607-A236-8910838AA057"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:6287u:*:*:*:*:*:*:*","matchCriteriaId":"82D76265-7BD0-4C51-AE77-22B22524DE81"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:6300hq:*:*:*:*:*:*:*","matchCriteriaId":"DE38B195-BB8D-4747-881D-E8033760B4C8"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:6300u:*:*:*:*:*:*:*","matchCriteriaId":"1AA8BE76-168D-48A3-8DF6-E91F44600408"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:6350hq:*:*:*:*:*:*:*","matchCriteriaId":"3B656975-5D71-4712-9820-BDB7BC248AFA"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:6360u:*:*:*:*:*:*:*","matchCriteriaId":"FA045267-114D-4587-B6D7-E273C28DC9B1"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:6400:*:*:*:*:*:*:*","matchCriteriaId":"77018415-E122-406E-896D-1BC6CF790BE3"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:6400t:*:*:*:*:*:*:*","matchCriteriaId":"3ADF37F1-546B-4EF0-8DEC-DC3B9F5309FF"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:6402p:*:*:*:*:*:*:*","matchCriteriaId":"D7469256-1A64-46FF-8F5A-A8E9E3CF5BE5"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:6440eq:*:*:*:*:*:*:*","matchCriteriaId":"7F9069B9-9FE3-4AD5-9A8E-55C0F73BD756"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:6440hq:*:*:*:*:*:*:*","matchCriteriaId":"F4E1C012-3E05-44DB-B6D2-BFD619C034B4"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:6442eq:*:*:*:*:*:*:*","matchCriteriaId":"15D689D6-8594-42F2-8EEF-DCAEBA885A67"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:6500:*:*:*:*:*:*:*","matchCriteriaId":"A6446000-0494-4DC5-ABAA-F20A44546068"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:6500t:*:*:*:*:*:*:*","matchCriteriaId":"99B94EEC-6690-45D0-B086-F4A5B25C25CB"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:6500te:*:*:*:*:*:*:*","matchCriteriaId":"8B767B6E-B3E6-4424-97A6-89A7E7EB0EEB"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:6585r:*:*:*:*:*:*:*","matchCriteriaId":"832AB3CD-E3A1-4CCB-A210-287973563D0E"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:6600:*:*:*:*:*:*:*","matchCriteriaId":"5A26C0CC-68AD-40F5-96B8-87E6C643F6F8"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:6600k:*:*:*:*:*:*:*","matchCriteriaId":"99C4221A-9994-43B3-9C7A-E13815A50A10"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:6600t:*:*:*:*:*:*:*","matchCriteriaId":"20070B1D-B91C-40BA-A9D8-E80170A2933F"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:6685r:*:*:*:*:*:*:*","matchCriteriaId":"A70129C9-371F-4542-A388-C095869E593A"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:610e:*:*:*:*:*:*:*","matchCriteriaId":"A6A5EC79-1B21-4BB3-8791-73507BC8D4DC"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:620le:*:*:*:*:*:*:*","matchCriteriaId":"FCB4AFC3-FE30-4F46-ADC1-D03EB14E757D"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:620lm:*:*:*:*:*:*:*","matchCriteriaId":"E0387587-AAB6-4284-8516-4DA3E3582D30"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:620m:*:*:*:*:*:*:*","matchCriteriaId":"A238C975-9196-449F-9C15-ABB2E9FD1D06"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:620ue:*:*:*:*:*:*:*","matchCriteriaId":"6F17F4A5-120B-4E00-97C8-8A85841ACBC9"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:620um:*:*:*:*:*:*:*","matchCriteriaId":"2537F047-64C9-4E73-B82C-310253184183"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:640lm:*:*:*:*:*:*:*","matchCriteriaId":"3A55857C-649D-46CE-AEDA-6E553E554FC1"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:640m:*:*:*:*:*:*:*","matchCriteriaId":"7BA4892D-AFDF-4441-821E-5EBF7F64C9F9"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:640um:*:*:*:*:*:*:*","matchCriteriaId":"327E06A3-7F0E-4498-8811-10C8D15398FE"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:660lm:*:*:*:*:*:*:*","matchCriteriaId":"1624E6D6-858E-4085-B0B9-362B819EFD88"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:660ue:*:*:*:*:*:*:*","matchCriteriaId":"50D61F4A-40F0-477C-8326-7359D3626E77"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:660um:*:*:*:*:*:*:*","matchCriteriaId":"1455B4DE-7F1C-4CF2-AE02-2EDD20025D62"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:680um:*:*:*:*:*:*:*","matchCriteriaId":"5B215788-860B-46CD-9A08-43AFF98FAEAA"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:750:*:*:*:*:*:*:*","matchCriteriaId":"01E6F4A7-24BE-4AA0-9CDD-84FBC56FE9BB"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:750s:*:*:*:*:*:*:*","matchCriteriaId":"3821412D-B010-49C4-A7B4-6C5FB6C603B1"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:760:*:*:*:*:*:*:*","matchCriteriaId":"A34CA5CC-9EB1-4063-8B9D-3F566C1EFF76"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:7y75:*:*:*:*:*:*:*","matchCriteriaId":"7DEC55DF-1950-45E5-A5F2-B5604AFA1CBD"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:720qm:*:*:*:*:*:*:*","matchCriteriaId":"2B92FAD5-CA6E-48F7-9613-3A4CE90F5F54"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:740qm:*:*:*:*:*:*:*","matchCriteriaId":"E4EB132B-000C-4A17-AFB3-19F40A73D2CC"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:7500u:*:*:*:*:*:*:*","matchCriteriaId":"6158ED8A-007E-48B7-99BF-8BA03BF584BD"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:7560u:*:*:*:*:*:*:*","matchCriteriaId":"DBA7096A-F321-49A0-911A-F9683ABE6E6A"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:7567u:*:*:*:*:*:*:*","matchCriteriaId":"6A471395-7F8F-4BA5-962D-4D8F271FAB47"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:7600u:*:*:*:*:*:*:*","matchCriteriaId":"B9484380-92B9-44DB-8E20-DC8DE02D1CA6"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:7660u:*:*:*:*:*:*:*","matchCriteriaId":"8010808D-805D-4CA3-9EA2-55EB1E57964C"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:7700:*:*:*:*:*:*:*","matchCriteriaId":"9716FE9F-A056-42A3-A241-F2FE37A6386A"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:7700hq:*:*:*:*:*:*:*","matchCriteriaId":"F73422A3-ECA0-4C41-9AA5-CF7D77885CF6"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:7700k:*:*:*:*:*:*:*","matchCriteriaId":"7A96A5AF-C9EF-4DED-AE25-4540A2B02915"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:7700t:*:*:*:*:*:*:*","matchCriteriaId":"D5115B12-053A-4866-A833-D6EC88D8F93E"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:7820eq:*:*:*:*:*:*:*","matchCriteriaId":"C5619D4D-9685-4595-8A5F-A18273FE4213"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:7820hk:*:*:*:*:*:*:*","matchCriteriaId":"B77E00E7-0EA4-4E32-A693-0E0F66BA4C57"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:7820hq:*:*:*:*:*:*:*","matchCriteriaId":"DAA3457E-7E1A-4878-9752-79382E954A66"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:7920hq:*:*:*:*:*:*:*","matchCriteriaId":"68630C63-4457-4E12-B7BD-AD456B237FC5"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:8100:*:*:*:*:*:*:*","matchCriteriaId":"68A76015-0A05-4EC7-B136-DC13B55D881F"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:8350k:*:*:*:*:*:*:*","matchCriteriaId":"C352DCE8-E8D9-40D3-AFE9-B5FB84F7ED33"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:8250u:*:*:*:*:*:*:*","matchCriteriaId":"6C4DE25F-168A-4C67-8B66-09F61F072BD4"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:8350u:*:*:*:*:*:*:*","matchCriteriaId":"58157F24-D89E-4552-8CE6-2F01E98BD1E5"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:8400:*:*:*:*:*:*:*","matchCriteriaId":"BC7FFD78-1E1C-4246-BBD3-73FAC06AA46B"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:8600k:*:*:*:*:*:*:*","matchCriteriaId":"45ACBBEA-EC95-4F3E-B585-893DB6D21A0F"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:820qm:*:*:*:*:*:*:*","matchCriteriaId":"5C4815AE-B635-4545-83C2-5EC4E0128337"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:840qm:*:*:*:*:*:*:*","matchCriteriaId":"C0046C06-E3E6-4674-A4D1-332DD29D9552"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:860:*:*:*:*:*:*:*","matchCriteriaId":"2C191851-3DC3-41C7-AD89-81F091CCC83A"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:860s:*:*:*:*:*:*:*","matchCriteriaId":"21126922-8E81-47F4-82D4-CBCDDACEC4FA"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:870:*:*:*:*:*:*:*","matchCriteriaId":"209E18B0-BBB5-4C65-B336-44340F7740DE"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:870s:*:*:*:*:*:*:*","matchCriteriaId":"C867C0B8-91A4-482A-B7DD-54AB9599AE52"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:875k:*:*:*:*:*:*:*","matchCriteriaId":"30F03843-8A51-4CE1-BE6C-994BDE3A8F97"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:880:*:*:*:*:*:*:*","matchCriteriaId":"09854948-2657-4261-A32A-0523058F072E"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:8550u:*:*:*:*:*:*:*","matchCriteriaId":"F6FB5695-2950-4CEC-81B4-FD280F835330"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:8650u:*:*:*:*:*:*:*","matchCriteriaId":"9F340AF8-508F-449D-9AFA-4E55F069B4F3"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:8700:*:*:*:*:*:*:*","matchCriteriaId":"E944410E-D674-4141-B50C-9F55090325FF"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:8700k:*:*:*:*:*:*:*","matchCriteriaId":"A6438E07-0AC0-4BF9-B0F2-9072CA9639D6"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3:1515m_v5:*:*:*:*:*:*:*","matchCriteriaId":"687C3BF3-D71A-49AD-8A05-EAC07CBCD949"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3:1535m_v5:*:*:*:*:*:*:*","matchCriteriaId":"90AF90D9-16C4-4F8A-9868-3E2823E3445C"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3:1545m_v5:*:*:*:*:*:*:*","matchCriteriaId":"64596ED7-794A-4D23-987B-D9AD59D48EA5"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3:1558l_v5:*:*:*:*:*:*:*","matchCriteriaId":"C2E52BA6-2F2F-4CD2-A601-5B0ADDE5E23F"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3:1565l_v5:*:*:*:*:*:*:*","matchCriteriaId":"3FDA48F0-0F35-4A8F-8117-B0B28E00AB95"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3:1575m_v5:*:*:*:*:*:*:*","matchCriteriaId":"A561A8E8-79E2-4071-B57D-590C22EF86A8"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3:1578l_v5:*:*:*:*:*:*:*","matchCriteriaId":"92E46658-60AB-4758-9236-3AC0E6464383"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3:1585_v5:*:*:*:*:*:*:*","matchCriteriaId":"207B8FBA-E2FF-485A-9AD9-E604AE0FB903"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3:1585l_v5:*:*:*:*:*:*:*","matchCriteriaId":"33F99640-C753-40BE-A0A1-4C2D92E7DB09"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3_1220_v5:-:*:*:*:*:*:*:*","matchCriteriaId":"7EF7EC93-0170-45A9-86C7-5460320B2AE9"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3_1225_v5:-:*:*:*:*:*:*:*","matchCriteriaId":"4B9FF7FB-AB5A-4549-8C15-E69458C649E2"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3_1230_v5:-:*:*:*:*:*:*:*","matchCriteriaId":"EBAAC728-6A0F-4675-9677-AAF7DD5D38ED"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3_1235l_v5:-:*:*:*:*:*:*:*","matchCriteriaId":"A79C2131-5566-4CC2-B6ED-38E3F6964500"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3_1240_v5:-:*:*:*:*:*:*:*","matchCriteriaId":"605D7552-8184-4B11-96FD-FE501A6C97DD"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3_1240l_v5:-:*:*:*:*:*:*:*","matchCriteriaId":"E7165B43-ED22-4714-8FA4-1E201D1BFA69"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3_1245_v5:-:*:*:*:*:*:*:*","matchCriteriaId":"3E3E6F5F-6B82-43D9-BD6E-D22F9B991DB4"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3_1260l_v5:-:*:*:*:*:*:*:*","matchCriteriaId":"C35AA9AC-28B3-49C2-A9B5-5D26DFEDB723"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3_1268l_v5:-:*:*:*:*:*:*:*","matchCriteriaId":"13878C13-1C7C-4B83-AF27-4998E8F659DC"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3_1270_v5:-:*:*:*:*:*:*:*","matchCriteriaId":"3472AA7B-C0CF-4D65-8A6C-B1D52D27F0CB"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3_1275_v5:-:*:*:*:*:*:*:*","matchCriteriaId":"2C48BBAF-6B27-43D6-B86B-40CD8E7BA056"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3_1280_v5:-:*:*:*:*:*:*:*","matchCriteriaId":"04DB08C8-0018-4A8E-A206-097BDDF83B08"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3_1505l_v5:-:*:*:*:*:*:*:*","matchCriteriaId":"3B1BD2B6-1AF6-4AD4-94FA-94B453A21908"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3_1505m_v5:-:*:*:*:*:*:*:*","matchCriteriaId":"E96F585E-BDEF-45EE-B0AB-94FE23753AC5"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3:1505m_v6:*:*:*:*:*:*:*","matchCriteriaId":"44AA72FB-E78D-419E-AA82-B0538C6504D3"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3:1535m_v6:*:*:*:*:*:*:*","matchCriteriaId":"3C063C53-8970-45B1-85F8-FB2080BF4695"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3_1220_v6:-:*:*:*:*:*:*:*","matchCriteriaId":"A8A7B1C2-D2CE-485A-9376-27E14F3FA05A"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3_1225_v6:-:*:*:*:*:*:*:*","matchCriteriaId":"1CEF6608-B650-4C77-9823-0AD57B3484F1"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3_1230_v6:-:*:*:*:*:*:*:*","matchCriteriaId":"DB3BFEFD-3D0D-48B0-A5AE-6F3C2D791CE1"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3_1240_v6:-:*:*:*:*:*:*:*","matchCriteriaId":"3144BBDE-CC96-4408-AA02-ECC3BF902A34"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3_1245_v6:-:*:*:*:*:*:*:*","matchCriteriaId":"75AD7649-3FEA-4971-9886-6C9312B937A1"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3_1270_v6:-:*:*:*:*:*:*:*","matchCriteriaId":"C07E80D5-70A5-49C9-9044-D683C7ECCFF5"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3_1275_v6:-:*:*:*:*:*:*:*","matchCriteriaId":"D75D0EEB-707C-4C86-A569-E91E9F00BA77"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3_1280_v6:-:*:*:*:*:*:*:*","matchCriteriaId":"B7193E85-30BE-42D5-A26B-3F88817F3574"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3_1285_v6:-:*:*:*:*:*:*:*","matchCriteriaId":"2A371DF9-E224-404F-99C2-C2A4607E62D8"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3_1501l_v6:-:*:*:*:*:*:*:*","matchCriteriaId":"6215EBAC-7C75-4647-9970-482120897F1F"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3_1501m_v6:-:*:*:*:*:*:*:*","matchCriteriaId":"3357FCAC-B6C4-4E3E-A40B-AB5084A7F9B2"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon_e3_1505l_v6:-:*:*:*:*:*:*:*","matchCriteriaId":"8D1FD6E8-80EC-461F-9ED1-CE5912399E80"}]}]}],"references":[{"url":"http://support.lenovo.com/us/en/solutions/LEN-24163","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20180815-01-cpu-en","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"http://www.securityfocus.com/bid/105080","source":"secure@intel.com","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1041451","source":"secure@intel.com","tags":["Third Party Advisory","VDB Entry"]},{"url":"https://cert-portal.siemens.com/productcert/pdf/ssa-254686.pdf","source":"secure@intel.com"},{"url":"https://cert-portal.siemens.com/productcert/pdf/ssa-608355.pdf","source":"secure@intel.com"},{"url":"https://foreshadowattack.eu/","source":"secure@intel.com","tags":["Technical Description","Third Party Advisory"]},{"url":"https://lists.debian.org/debian-lts-announce/2018/09/msg00017.html","source":"secure@intel.com"},{"url":"https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2018-0008","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://security.netapp.com/advisory/ntap-20180815-0001/","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://software.intel.com/security-software-guidance/software-guidance/l1-terminal-fault","source":"secure@intel.com","tags":["Mitigation","Vendor Advisory"]},{"url":"https://support.f5.com/csp/article/K35558453","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03874en_us","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180814-cpusidechannel","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00161.html","source":"secure@intel.com","tags":["Vendor Advisory"]},{"url":"https://www.kb.cert.org/vuls/id/982149","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://www.synology.com/support/security/Synology_SA_18_45","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"http://support.lenovo.com/us/en/solutions/LEN-24163","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20180815-01-cpu-en","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.securityfocus.com/bid/105080","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1041451","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"https://cert-portal.siemens.com/productcert/pdf/ssa-254686.pdf","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://cert-portal.siemens.com/productcert/pdf/ssa-608355.pdf","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://foreshadowattack.eu/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Technical Description","Third Party Advisory"]},{"url":"https://lists.debian.org/debian-lts-announce/2018/09/msg00017.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2018-0008","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://security.netapp.com/advisory/ntap-20180815-0001/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://software.intel.com/security-software-guidance/software-guidance/l1-terminal-fault","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mitigation","Vendor Advisory"]},{"url":"https://support.f5.com/csp/article/K35558453","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03874en_us","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180814-cpusidechannel","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00161.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]},{"url":"https://www.kb.cert.org/vuls/id/982149","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.synology.com/support/security/Synology_SA_18_45","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]}]}},{"cve":{"id":"CVE-2018-3620","sourceIdentifier":"secure@intel.com","published":"2018-08-14T19:29:00.793","lastModified":"2026-05-29T21:16:33.440","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Systems with microprocessors utilizing speculative execution and address translations may allow unauthorized disclosure of information residing in the L1 data cache to an attacker with local user access via a terminal page fault and a side-channel analysis."},{"lang":"es","value":"Los sistemas con microprocesadores que emplean la ejecución especulativa y traducciones de direcciones podría permitir la divulgación no autorizada de información que reside en la caché de datos L1 a un atacante con acceso de usuario local mediante un error de página del terminal y un análisis de canal lateral."}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N","baseScore":5.6,"baseSeverity":"MEDIUM","attackVector":"LOCAL","attackComplexity":"HIGH","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":1.1,"impactScore":4.0}],"cvssMetricV30":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.0","vectorString":"CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N","baseScore":5.6,"baseSeverity":"MEDIUM","attackVector":"LOCAL","attackComplexity":"HIGH","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":1.1,"impactScore":4.0}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:L/AC:M/Au:N/C:C/I:N/A:N","baseScore":4.7,"accessVector":"LOCAL","accessComplexity":"MEDIUM","authentication":"NONE","confidentialityImpact":"COMPLETE","integrityImpact":"NONE","availabilityImpact":"NONE"},"baseSeverity":"MEDIUM","exploitabilityScore":3.4,"impactScore":6.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-203"}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-203"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:330e:*:*:*:*:*:*:*","matchCriteriaId":"A4229DB2-8BBC-49F8-87A8-2E7D56EFD310"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:330m:*:*:*:*:*:*:*","matchCriteriaId":"FEBA7322-4D95-4E70-B6A5-E0D8F1B5D7EB"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:330um:*:*:*:*:*:*:*","matchCriteriaId":"A0E91F46-D950-4894-BACF-05A70C7C6F7B"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:350m:*:*:*:*:*:*:*","matchCriteriaId":"0E12B40B-5221-48A6-B2A6-D44CD5636BB0"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:370m:*:*:*:*:*:*:*","matchCriteriaId":"6BCB77C9-ABE3-44A0-B377-7D7035E8A11F"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:380m:*:*:*:*:*:*:*","matchCriteriaId":"D06639F5-5EE8-44F4-B48A-5694383154DF"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:380um:*:*:*:*:*:*:*","matchCriteriaId":"CD9662C9-59D3-4B3E-A4DA-4F1EE16FC94B"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:390m:*:*:*:*:*:*:*","matchCriteriaId":"637C3687-FBCC-41A0-BFE6-823BAE45FB92"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:530:*:*:*:*:*:*:*","matchCriteriaId":"2350A197-193F-4B22-80E8-3275C97C78EE"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:540:*:*:*:*:*:*:*","matchCriteriaId":"734C7A7E-ACCA-4B34-BF38-0FAED988CC6A"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:550:*:*:*:*:*:*:*","matchCriteriaId":"4D9ABAFC-B3B5-449D-A48E-2E978563EDE7"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:560:*:*:*:*:*:*:*","matchCriteriaId":"99019EA0-6576-4CE7-B60A-975D418AA917"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:2100:*:*:*:*:*:*:*","matchCriteriaId":"8E846AEF-751D-40AD-84B5-EFDC9CF23E2F"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:2100t:*:*:*:*:*:*:*","matchCriteriaId":"EB9DD909-B2AC-46BA-B057-D239D0773CAD"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:2102:*:*:*:*:*:*:*","matchCriteriaId":"54F5C355-FDFC-4E71-93AA-218389EF10E6"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:2105:*:*:*:*:*:*:*","matchCriteriaId":"B0A1CA1E-971D-4F67-864E-2E772C1E736B"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:2115c:*:*:*:*:*:*:*","matchCriteriaId":"1B5F8391-D974-49AC-8550-ADB3FA6C0535"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:2120:*:*:*:*:*:*:*","matchCriteriaId":"8302BF58-9E54-40DA-BCFE-59CA52C460D9"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:2120t:*:*:*:*:*:*:*","matchCriteriaId":"ECCDE9EF-037B-4650-8131-4D57BE141277"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:2125:*:*:*:*:*:*:*","matchCriteriaId":"47BA9DA8-F690-4E3C-AEF6-6A5C7BAA6F19"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:2130:*:*:*:*:*:*:*","matchCriteriaId":"DB8253DA-9A04-40D6-84C1-C682B4023D4B"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:2310e:*:*:*:*:*:*:*","matchCriteriaId":"DAF6D175-85C3-4C72-AD9F-31B47EF43154"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:2310m:*:*:*:*:*:*:*","matchCriteriaId":"7A5FC594-2092-4240-9538-235BBE236DD9"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:2312m:*:*:*:*:*:*:*","matchCriteriaId":"87D95F00-EA89-4FDE-991C-56636B8E0331"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:2328m:*:*:*:*:*:*:*","matchCriteriaId":"32C40D38-F7F2-4A48-ADAA-6A8BBD6A1A00"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:2330e:*:*:*:*:*:*:*","matchCriteriaId":"4158561F-8270-42D1-91D8-E063CE7F5505"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:2330m:*:*:*:*:*:*:*","matchCriteriaId":"FF0DEA96-0202-41EB-BDC3-24E2FC4415B2"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:2340ue:*:*:*:*:*:*:*","matchCriteriaId":"F8BACE1C-5D66-4FBC-8F86-30215A623A94"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:2348m:*:*:*:*:*:*:*","matchCriteriaId":"CF707146-0D64-4F3A-AE22-956EA1CB32B6"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:2350m:*:*:*:*:*:*:*","matchCriteriaId":"8118C3F9-0853-4E87-9E65-86E1398B2780"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:2357m:*:*:*:*:*:*:*","matchCriteriaId":"1A298501-C4D7-48D4-90F9-15AFA59DED48"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:2365m:*:*:*:*:*:*:*","matchCriteriaId":"FEE1B07B-3D92-4D2D-8667-D902F002277F"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:2367m:*:*:*:*:*:*:*","matchCriteriaId":"8F05CB19-1059-4C4D-BFD7-9F51A22A4F97"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:2370m:*:*:*:*:*:*:*","matchCriteriaId":"5588732F-7F1A-4C24-B35F-30532107FFDE"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:2375m:*:*:*:*:*:*:*","matchCriteriaId":"A127DD5D-426D-4F24-A8C5-DC9DAC94B91C"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:2377m:*:*:*:*:*:*:*","matchCriteriaId":"26EE0BBD-3982-4B0F-82F6-D58E077C75DD"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:3110m:*:*:*:*:*:*:*","matchCriteriaId":"FAEEC918-EA25-4B38-B5C3-85899D3EBE6C"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:3115c:*:*:*:*:*:*:*","matchCriteriaId":"813965F4-3BDA-4478-8E6A-0FD52723B764"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:3120m:*:*:*:*:*:*:*","matchCriteriaId":"2C5EA2F4-F3EF-4305-B1A1-92F636ED688F"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:3120me:*:*:*:*:*:*:*","matchCriteriaId":"04384319-EE8C-45B4-8BDD-414502E7C02D"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:3130m:*:*:*:*:*:*:*","matchCriteriaId":"C52528CE-4F31-4E5F-8255-E576B20F3043"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:3210:*:*:*:*:*:*:*","matchCriteriaId":"A6C3F422-F865-4160-AA24-1DAFAE63729C"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:3217u:*:*:*:*:*:*:*","matchCriteriaId":"5D034E7F-4D17-49D7-BDB2-90CB4C709B30"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:3217ue:*:*:*:*:*:*:*","matchCriteriaId":"3C18E6B4-E947-403B-80FB-7095420D482B"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:3220:*:*:*:*:*:*:*","matchCriteriaId":"2814CC9F-E027-4C5A-93AF-84EA445E6C12"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:3220t:*:*:*:*:*:*:*","matchCriteriaId":"24A470C3-AAAA-4A6E-B738-FEB69DB78B9D"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:3225:*:*:*:*:*:*:*","matchCriteriaId":"A1236944-4942-40E4-9BA1-029FEAE94BBC"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:3227u:*:*:*:*:*:*:*","matchCriteriaId":"086CAB4B-A10A-4165-BC33-33CADCD23C0F"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:3229y:*:*:*:*:*:*:*","matchCriteriaId":"B1A6A1EB-B3AB-4CB4-827E-CCAAD783F8E0"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:3240:*:*:*:*:*:*:*","matchCriteriaId":"AAFB6B30-BFB0-4397-9E16-37D1A772E639"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:3240t:*:*:*:*:*:*:*","matchCriteriaId":"DFCB9D7B-7D0A-435D-8499-C16BE09E19FB"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:3245:*:*:*:*:*:*:*","matchCriteriaId":"64277594-9713-436B-8056-542CFA9F4CFC"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:3250:*:*:*:*:*:*:*","matchCriteriaId":"589BB170-7CBA-4F28-99E3-9242B62E2918"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:3250t:*:*:*:*:*:*:*","matchCriteriaId":"91B9C4D9-DA09-4377-9DCD-225857BD9FA7"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:4000m:*:*:*:*:*:*:*","matchCriteriaId":"03D0265F-840B-45A1-90BD-9ED8846A9F63"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:4005u:*:*:*:*:*:*:*","matchCriteriaId":"74BAC0EC-2B38-4553-A399-4BD5483C4753"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:4010u:*:*:*:*:*:*:*","matchCriteriaId":"4477EBA6-F0A7-452B-96E8-BA788370CCA8"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:4010y:*:*:*:*:*:*:*","matchCriteriaId":"1285D817-B5B8-4940-925D-FCDD24810AE6"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:4012y:*:*:*:*:*:*:*","matchCriteriaId":"D289F7B4-27CD-4433-BB45-06AF98A59B7A"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:4020y:*:*:*:*:*:*:*","matchCriteriaId":"00168903-6012-4414-87D1-2EE52AA6D78E"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:4025u:*:*:*:*:*:*:*","matchCriteriaId":"6AE8D524-577E-4994-8A4B-D15022C84D7F"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:4030u:*:*:*:*:*:*:*","matchCriteriaId":"75977B0B-C44D-43BC-8D7A-AF966CDB1901"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:4030y:*:*:*:*:*:*:*","matchCriteriaId":"AE7F5D52-9F41-49A4-B941-E0D777203FF7"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:4100e:*:*:*:*:*:*:*","matchCriteriaId":"52B5B3FD-5BEA-4DE8-B010-55FED1547167"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:4100m:*:*:*:*:*:*:*","matchCriteriaId":"167B1B04-5823-4038-A019-3975A3B447C9"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:4100u:*:*:*:*:*:*:*","matchCriteriaId":"F6C7A4EA-0B5E-47CD-8924-3B1B60EB4BE4"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:4102e:*:*:*:*:*:*:*","matchCriteriaId":"1BA096E0-5480-47CB-822B-D11D7E20F69F"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:4110e:*:*:*:*:*:*:*","matchCriteriaId":"30357469-0B8F-4385-A282-2F50181EA442"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:4110m:*:*:*:*:*:*:*","matchCriteriaId":"3BE70772-7796-4594-880A-6AAD046E4D8D"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:4112e:*:*:*:*:*:*:*","matchCriteriaId":"1A9E2F8D-2974-4833-9EC2-233CEE257C26"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:4120u:*:*:*:*:*:*:*","matchCriteriaId":"17EE3078-454F-48F8-B201-3847DB40D5C4"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:4130:*:*:*:*:*:*:*","matchCriteriaId":"EE32C500-55C2-41A7-8621-14EBF793BF11"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:4130t:*:*:*:*:*:*:*","matchCriteriaId":"52D3DF52-501A-4656-98F1-8DD51D04F31F"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:4150:*:*:*:*:*:*:*","matchCriteriaId":"3EA603AD-6CF1-44B2-876D-6F1C0B7EF2C9"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:4150t:*:*:*:*:*:*:*","matchCriteriaId":"09578301-CF39-4C24-951A-535743E277EF"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:4158u:*:*:*:*:*:*:*","matchCriteriaId":"1F4D14AA-7DBF-4B73-BDEF-6248EF5C0F7A"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:4160:*:*:*:*:*:*:*","matchCriteriaId":"5A65F303-96C8-4884-8D6F-F439B86BA30C"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:4160t:*:*:*:*:*:*:*","matchCriteriaId":"1E046105-9DF5-425F-A97E-16081D54613C"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:4170:*:*:*:*:*:*:*","matchCriteriaId":"B2987BCF-39E6-49B6-8DEE-963A38F12B07"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:4170t:*:*:*:*:*:*:*","matchCriteriaId":"7AEDE2B7-9AA2-4A14-8A02-9A2BFF0DDCBF"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:4330:*:*:*:*:*:*:*","matchCriteriaId":"5AD92AD8-033A-4AAD-91E5-CB446CCE9732"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:4330t:*:*:*:*:*:*:*","matchCriteriaId":"77E0E73A-F1B4-4E70-B9F1-EE97785B8891"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:4330te:*:*:*:*:*:*:*","matchCriteriaId":"61D6E3CC-79B1-4995-9A76-41683C7F254A"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:4340:*:*:*:*:*:*:*","matchCriteriaId":"F9CEB2B1-BD1A-4B89-8E03-4F90F04A0F0E"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:4340te:*:*:*:*:*:*:*","matchCriteriaId":"6FE5773D-3CD1-4E63-8983-E0105C46D185"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:4350:*:*:*:*:*:*:*","matchCriteriaId":"2A7C307A-6576-4A0A-8F4E-0981C9EE2901"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:4350t:*:*:*:*:*:*:*","matchCriteriaId":"18B3A53B-902C-46A5-8CE7-B55102703278"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:4360:*:*:*:*:*:*:*","matchCriteriaId":"AB843479-729A-4E58-8027-0FC586F051AA"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:4360t:*:*:*:*:*:*:*","matchCriteriaId":"1AF5A233-1E77-49FD-AC2C-60D185481E28"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:4370:*:*:*:*:*:*:*","matchCriteriaId":"18519CF2-B0DA-42DD-8A3E-9084298C210A"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:4370t:*:*:*:*:*:*:*","matchCriteriaId":"329D5FCF-7EC5-4471-906B-3619A180BD52"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:5005u:*:*:*:*:*:*:*","matchCriteriaId":"0DD43EAA-F3A5-4748-9187-A6E6707ACD11"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:5010u:*:*:*:*:*:*:*","matchCriteriaId":"C6F3C14D-4BFC-4205-8781-95E6B28C83C1"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:5015u:*:*:*:*:*:*:*","matchCriteriaId":"20942AD8-ADB7-4A50-BDBE-DB36249F4F52"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:5020u:*:*:*:*:*:*:*","matchCriteriaId":"1EC6ED02-134B-4322-AB72-75A0AB22701E"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:5157u:*:*:*:*:*:*:*","matchCriteriaId":"6FA74EEE-54CC-4F80-B1D3-99F7771335ED"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:6006u:*:*:*:*:*:*:*","matchCriteriaId":"B6B859F7-0373-4ADD-92B3-0FAB42FCF23C"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:6098p:*:*:*:*:*:*:*","matchCriteriaId":"AAC76F31-00A5-4719-AA50-92F773919B3C"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:6100:*:*:*:*:*:*:*","matchCriteriaId":"49996F5A-51B2-4D4E-AE04-E98E093A76CC"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:6100e:*:*:*:*:*:*:*","matchCriteriaId":"9F8406B0-D1E5-4633-B17E-53DC99FE7622"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:6100h:*:*:*:*:*:*:*","matchCriteriaId":"3D49435C-7C33-454B-9F43-9C10F28A28A1"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:6100t:*:*:*:*:*:*:*","matchCriteriaId":"D17E1A0F-1150-4899-81BC-BE84E4EF5FA3"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:6100te:*:*:*:*:*:*:*","matchCriteriaId":"EADD98AE-BAB0-440D-AB9F-2D76BE5109E2"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:6100u:*:*:*:*:*:*:*","matchCriteriaId":"ED44A404-8548-4EDC-8928-4094D05A6A38"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:6102e:*:*:*:*:*:*:*","matchCriteriaId":"3A6E4AA3-BEBC-4B14-9A52-A8F8B2954D64"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:6157u:*:*:*:*:*:*:*","matchCriteriaId":"D2AAD8F0-0D31-4806-8A88-A30E5BE43630"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:6167u:*:*:*:*:*:*:*","matchCriteriaId":"8164EE5F-6ABA-4365-8718-2F98C2E57A0F"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:6300:*:*:*:*:*:*:*","matchCriteriaId":"C7110AF9-A407-4EE2-9C46-E5F1E3638E9A"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:6300t:*:*:*:*:*:*:*","matchCriteriaId":"2A06696D-37F0-427D-BFC5-1606E7441C31"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:6320:*:*:*:*:*:*:*","matchCriteriaId":"E9F8A5FC-5EFE-42EC-A49B-D3A312FB5F6F"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:8100:*:*:*:*:*:*:*","matchCriteriaId":"68A76015-0A05-4EC7-B136-DC13B55D881F"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:8350k:*:*:*:*:*:*:*","matchCriteriaId":"C352DCE8-E8D9-40D3-AFE9-B5FB84F7ED33"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:430m:*:*:*:*:*:*:*","matchCriteriaId":"54464F6C-9B2D-46BA-AC44-506389F3EE0C"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:430um:*:*:*:*:*:*:*","matchCriteriaId":"8FA11017-EA58-45EE-8408-FCCCF7183643"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:450m:*:*:*:*:*:*:*","matchCriteriaId":"8A5098A5-E4E8-47E4-8CD0-F607FF0C0C90"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:460m:*:*:*:*:*:*:*","matchCriteriaId":"442AD778-D56F-4C30-BBF8-749D6AAC4737"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:470um:*:*:*:*:*:*:*","matchCriteriaId":"AF7D3F31-AF4D-4C50-8590-A763AAC7AF07"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:480m:*:*:*:*:*:*:*","matchCriteriaId":"445BFC2E-38FA-4130-8550-0866EC4EDA33"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:520e:*:*:*:*:*:*:*","matchCriteriaId":"A6DC2746-CE41-40C9-8CFA-23231BBCAE77"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:520m:*:*:*:*:*:*:*","matchCriteriaId":"3C3A8976-5E4D-490A-A87D-A47D1B2B903C"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:520um:*:*:*:*:*:*:*","matchCriteriaId":"0C8535E6-220E-4747-8992-45B6EAFC555C"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:540m:*:*:*:*:*:*:*","matchCriteriaId":"C7479B49-F484-4DF2-86CB-E52EE89FA238"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:540um:*:*:*:*:*:*:*","matchCriteriaId":"B6D68512-746D-4E95-857B-13A0B6313C5E"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:560m:*:*:*:*:*:*:*","matchCriteriaId":"4312BA84-F9A0-4BD4-8438-058E1E7D6C0C"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:560um:*:*:*:*:*:*:*","matchCriteriaId":"60E52DF5-C713-4BC4-B587-FF6BDA8509CC"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:580m:*:*:*:*:*:*:*","matchCriteriaId":"304ADCAC-9E49-42BD-BC92-58D9B2AD52E0"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:650:*:*:*:*:*:*:*","matchCriteriaId":"2AB02172-B9A7-4801-88F2-98BF5843184A"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:655k:*:*:*:*:*:*:*","matchCriteriaId":"5141380E-BD18-47C1-A84C-384BA821773D"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:660:*:*:*:*:*:*:*","matchCriteriaId":"1AE6C49E-2359-4E44-9979-7D34F8460E35"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:661:*:*:*:*:*:*:*","matchCriteriaId":"C004B75F-37AF-4E61-98F3-1B09A7062DDB"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:670:*:*:*:*:*:*:*","matchCriteriaId":"F7126D19-C6D9-43CB-8809-647B1A20E7DE"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:680:*:*:*:*:*:*:*","matchCriteriaId":"9CC98503-A80A-4114-8BF2-E016659BE84E"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:750:*:*:*:*:*:*:*","matchCriteriaId":"01E6F4A7-24BE-4AA0-9CDD-84FBC56FE9BB"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:750s:*:*:*:*:*:*:*","matchCriteriaId":"3821412D-B010-49C4-A7B4-6C5FB6C603B1"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:760:*:*:*:*:*:*:*","matchCriteriaId":"A34CA5CC-9EB1-4063-8B9D-3F566C1EFF76"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:2300:*:*:*:*:*:*:*","matchCriteriaId":"5CEB5D2D-FF54-4BDB-9E9C-8C1B2719FC9A"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:2310:*:*:*:*:*:*:*","matchCriteriaId":"6AD5B51A-AEA0-4DA2-BA60-94A2D5605352"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:2320:*:*:*:*:*:*:*","matchCriteriaId":"F96C6CA0-434D-428F-B629-A971C2937628"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:2380p:*:*:*:*:*:*:*","matchCriteriaId":"301AB72A-A6F2-42C8-A931-94EF2271443F"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:2390t:*:*:*:*:*:*:*","matchCriteriaId":"59414B5A-05B8-49AF-A197-2A31729DDB65"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:2400:*:*:*:*:*:*:*","matchCriteriaId":"0BFDD380-692F-41D7-996F-F97FC74DC7CF"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:2400s:*:*:*:*:*:*:*","matchCriteriaId":"49602828-2BFC-4571-9F05-6210FD263DF2"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:2405s:*:*:*:*:*:*:*","matchCriteriaId":"87E03978-E16D-4A9B-8AE7-9F4F1171C14A"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:2410m:*:*:*:*:*:*:*","matchCriteriaId":"03096A9A-5758-47E6-81E2-BCFE847C41F4"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:2430m:*:*:*:*:*:*:*","matchCriteriaId":"150CC865-7975-45EC-BFF7-A94146442BA8"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:2435m:*:*:*:*:*:*:*","matchCriteriaId":"C8FA1308-589B-432B-80F9-9A499D083ED5"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:2450m:*:*:*:*:*:*:*","matchCriteriaId":"6ED2453E-30E1-4620-BEC5-21B0083449E2"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:2450p:*:*:*:*:*:*:*","matchCriteriaId":"0FE8DD05-D700-4F89-9B01-D489029DF7A8"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:2467m:*:*:*:*:*:*:*","matchCriteriaId":"050957CA-6191-4F9F-9D07-48B342B3B1B8"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:2500:*:*:*:*:*:*:*","matchCriteriaId":"DACBF998-8B11-45C7-9017-486AED4FAE6C"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:2500k:*:*:*:*:*:*:*","matchCriteriaId":"C9F2F3C4-FC94-414A-A208-913A43D57D75"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:2500s:*:*:*:*:*:*:*","matchCriteriaId":"641152EC-F4B4-4E5E-B396-AC4CAAB805BF"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:2500t:*:*:*:*:*:*:*","matchCriteriaId":"4911E332-B8BA-4336-A448-3F70D2BBB147"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:2510e:*:*:*:*:*:*:*","matchCriteriaId":"330EC403-3174-4543-9BBE-CEC0ABC1575D"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:2515e:*:*:*:*:*:*:*","matchCriteriaId":"5EF585D0-507E-491E-9C3B-78EE26F2F070"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:2520m:*:*:*:*:*:*:*","matchCriteriaId":"DD00F7C6-6762-4DC9-9F6C-5EAC4ACB1C54"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:2537m:*:*:*:*:*:*:*","matchCriteriaId":"1F5D885A-85C4-4A11-B061-61EFF6B6E329"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:2540m:*:*:*:*:*:*:*","matchCriteriaId":"0502B59F-933C-4E25-A2EC-9296B197E139"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:2550k:*:*:*:*:*:*:*","matchCriteriaId":"99D9C0A9-2DFF-4760-8FED-AC2DA7968E51"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:2557m:*:*:*:*:*:*:*","matchCriteriaId":"B5A1BAEC-18BF-4607-BFB7-48102E75186A"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:3210m:*:*:*:*:*:*:*","matchCriteriaId":"D49ED138-F42D-4451-A350-0B2DD5AB9444"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:3230m:*:*:*:*:*:*:*","matchCriteriaId":"5ED91472-90FC-4AC8-96D5-1550A8502411"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:3317u:*:*:*:*:*:*:*","matchCriteriaId":"57CEEFA6-CEED-4CA3-8DDC-B6601D69FB7C"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:3320m:*:*:*:*:*:*:*","matchCriteriaId":"2FD25ECD-0605-4CD7-9DC5-294ACD7EF1B0"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:3330:*:*:*:*:*:*:*","matchCriteriaId":"2784E2AF-A5E5-4960-830C-B3EFB84043D0"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:3330s:*:*:*:*:*:*:*","matchCriteriaId":"9112FA50-5527-4B20-80F5-2DE9E66D09F6"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:3337u:*:*:*:*:*:*:*","matchCriteriaId":"73CE4E2E-B2BF-409E-B18C-D67DA810FE9B"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:3339y:*:*:*:*:*:*:*","matchCriteriaId":"E2B84D67-0B1D-4B74-BC85-AF8F933D8429"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:3340:*:*:*:*:*:*:*","matchCriteriaId":"BCA05A18-1523-4EED-9D2E-0A258A33F24F"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:3340m:*:*:*:*:*:*:*","matchCriteriaId":"C34E70EB-92F0-43F6-8883-FE422BE1A3FC"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:3340s:*:*:*:*:*:*:*","matchCriteriaId":"78D301F1-20C2-4756-9A90-37F14835CE14"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:3350p:*:*:*:*:*:*:*","matchCriteriaId":"B2EEC8B5-1CAB-4FBE-BBA2-D2FFA3EF9489"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:3360m:*:*:*:*:*:*:*","matchCriteriaId":"BA63B803-4D48-42E8-A793-F92ABCB8BFC9"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:3380m:*:*:*:*:*:*:*","matchCriteriaId":"129DB9CB-E878-4856-A954-15FFE1428636"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:3427u:*:*:*:*:*:*:*","matchCriteriaId":"730DB4AA-FD7D-40C6-8D7F-19937832EF9A"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:3437u:*:*:*:*:*:*:*","matchCriteriaId":"07E86978-4820-422A-8C7C-FF0697DAED05"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:3439y:*:*:*:*:*:*:*","matchCriteriaId":"8A7A9DB5-F544-4FD8-A9CC-0BD6257516AF"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:3450:*:*:*:*:*:*:*","matchCriteriaId":"AF813AD9-D296-4915-861C-8DE929E45FE3"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:3450s:*:*:*:*:*:*:*","matchCriteriaId":"04A65469-083F-40B5-86C5-A2EAE5B2F00A"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:3470:*:*:*:*:*:*:*","matchCriteriaId":"8F1AA82E-BD86-40F5-B417-71DF6AF53A37"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:3470s:*:*:*:*:*:*:*","matchCriteriaId":"B71A6DB0-5EB0-4712-8480-CF427F521D33"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:3470t:*:*:*:*:*:*:*","matchCriteriaId":"8223D5A1-ADF1-43C6-AF91-EE5C413BCB37"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:3475s:*:*:*:*:*:*:*","matchCriteriaId":"4DD69605-F52B-4623-921A-983A5A408ECA"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:3550:*:*:*:*:*:*:*","matchCriteriaId":"B1D5685F-6FFE-4A6A-9FF8-940C8DA36499"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:3550s:*:*:*:*:*:*:*","matchCriteriaId":"B94062D9-8DDA-4B4A-B3B5-07F71F5B97E7"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:3570:*:*:*:*:*:*:*","matchCriteriaId":"3832D0A6-419D-4876-B5C4-920578F713F3"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:3570k:*:*:*:*:*:*:*","matchCriteriaId":"E1AA5C8A-83A8-4F96-9D7C-7A50ADDB2341"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:3570s:*:*:*:*:*:*:*","matchCriteriaId":"404E38E6-9EB3-41D0-97A7-DC579688BFB0"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:3570t:*:*:*:*:*:*:*","matchCriteriaId":"40E4A921-AB28-47B7-B5A3-EB82193D15BA"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:3610me:*:*:*:*:*:*:*","matchCriteriaId":"B0357E48-2300-47B4-B9E5-9FE813A2FC09"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:4200h:*:*:*:*:*:*:*","matchCriteriaId":"96CC28B6-57D1-4919-AA55-A262CC16AFE6"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:4200m:*:*:*:*:*:*:*","matchCriteriaId":"0EB4C54D-1265-425A-B507-E1099844875A"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:4200u:*:*:*:*:*:*:*","matchCriteriaId":"97362147-3A71-430D-9064-4435D45C3B8C"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:4200y:*:*:*:*:*:*:*","matchCriteriaId":"89212CF3-4E99-4389-94CE-F4211DDCA01B"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:4202y:*:*:*:*:*:*:*","matchCriteriaId":"FBEA4DA3-0AFB-4FCE-92DB-5B316775BB17"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:4210h:*:*:*:*:*:*:*","matchCriteriaId":"611C0A0A-1FA3-42F9-82E8-BFCB71A077DD"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:4210m:*:*:*:*:*:*:*","matchCriteriaId":"36F027D9-DCB4-4A3D-8987-41F2941DBD45"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:4210u:*:*:*:*:*:*:*","matchCriteriaId":"E23BCEC9-2BFB-4B41-9A7A-18B1347C6202"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:4210y:*:*:*:*:*:*:*","matchCriteriaId":"4924CE39-A846-4DB4-9547-6322FC5AD6B3"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:4220y:*:*:*:*:*:*:*","matchCriteriaId":"6C9E2C9A-94A1-456B-90D5-54932DF64C22"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:4250u:*:*:*:*:*:*:*","matchCriteriaId":"AC04C652-B2D8-4002-A50E-8AFE83204A25"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:4258u:*:*:*:*:*:*:*","matchCriteriaId":"10D413F0-CDBC-4A63-B9A7-9E7725BA1E83"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:4260u:*:*:*:*:*:*:*","matchCriteriaId":"754A8826-59F7-4A71-B74B-737BE9C7DE4F"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:4278u:*:*:*:*:*:*:*","matchCriteriaId":"FADB6BDA-6825-489B-AB39-7729BA45DFD8"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:4288u:*:*:*:*:*:*:*","matchCriteriaId":"7913F57E-E600-4767-AF51-D045E1898E72"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:4300m:*:*:*:*:*:*:*","matchCriteriaId":"BD3783F4-5A05-45AA-9791-A681011FD78C"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:4300u:*:*:*:*:*:*:*","matchCriteriaId":"01E3114D-31D2-4DBF-A664-F4049D8B6266"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:4300y:*:*:*:*:*:*:*","matchCriteriaId":"D8EE6578-981D-470C-BB24-4960B3CB1478"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:4302y:*:*:*:*:*:*:*","matchCriteriaId":"E3320D50-C5C9-4D75-BF1A-5BB7BCBFE2BD"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:4308u:*:*:*:*:*:*:*","matchCriteriaId":"7EE59839-8EB9-47FE-88E2-F0D54BE787A2"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:4310m:*:*:*:*:*:*:*","matchCriteriaId":"75694A3D-080A-4AA7-97DF-5A5833C9D9F7"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:4310u:*:*:*:*:*:*:*","matchCriteriaId":"19C5E27D-BBAB-4395-8FC6-8E3D4FB9A1EE"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:4330m:*:*:*:*:*:*:*","matchCriteriaId":"6E996176-3DEA-46E6-93B7-9C0DF32B59D3"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:4340m:*:*:*:*:*:*:*","matchCriteriaId":"4417007D-126A-478B-87EA-039D088A4515"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:4350u:*:*:*:*:*:*:*","matchCriteriaId":"F78C2825-F6A3-4188-9D25-59EAEC8A7B0A"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:4360u:*:*:*:*:*:*:*","matchCriteriaId":"EF2FA85D-B117-410D-B247-8C5A3479319A"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:4400e:*:*:*:*:*:*:*","matchCriteriaId":"3A041D27-132C-4B15-976F-1750C039A89F"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:4402e:*:*:*:*:*:*:*","matchCriteriaId":"5D495E06-BF2B-4C5A-881D-94C93CD2BA2B"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:4402ec:*:*:*:*:*:*:*","matchCriteriaId":"7C31DFB8-8D8C-47D6-AAFF-BAE829A3D965"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:4410e:*:*:*:*:*:*:*","matchCriteriaId":"088BC395-06D5-4156-85EB-63C4A9552898"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:4422e:*:*:*:*:*:*:*","matchCriteriaId":"33A220A2-A6D2-46A7-B168-607400EEDCE3"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:4430:*:*:*:*:*:*:*","matchCriteriaId":"1E79232F-7196-440B-82D4-165885251232"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:4430s:*:*:*:*:*:*:*","matchCriteriaId":"ED866954-77AB-4CA8-8AED-4252C595FC4D"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:4440:*:*:*:*:*:*:*","matchCriteriaId":"28A1F516-B180-45D4-8EB1-754B7497CB2B"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:4440s:*:*:*:*:*:*:*","matchCriteriaId":"36758A04-64D3-4150-A004-CF042FA31CD9"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:4460:*:*:*:*:*:*:*","matchCriteriaId":"1E01752E-F1DD-400A-A917-216CAF15B0F9"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:4460s:*:*:*:*:*:*:*","matchCriteriaId":"AD47EC58-F776-4F59-8F15-4B208904CF4B"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:4460t:*:*:*:*:*:*:*","matchCriteriaId":"2D3781F4-2123-4FA1-8AF5-D0D1E6C1A5B9"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:4570:*:*:*:*:*:*:*","matchCriteriaId":"94565E35-8A58-4CB6-A489-C796DCB97FC5"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:4570r:*:*:*:*:*:*:*","matchCriteriaId":"49964D35-5323-4412-BD54-661630F9A8CB"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:4570s:*:*:*:*:*:*:*","matchCriteriaId":"F0A37E7D-1BF6-4A2A-BF52-5F0EC4B4F341"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:4570t:*:*:*:*:*:*:*","matchCriteriaId":"A0F66468-87D0-41FC-934B-5924BE2956CB"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:4570te:*:*:*:*:*:*:*","matchCriteriaId":"3E0F93E1-4607-4DF4-AC6E-4B7254D4A8DE"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:4590:*:*:*:*:*:*:*","matchCriteriaId":"45C0D99E-443E-4AB1-A07A-900A09FE177E"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:4590s:*:*:*:*:*:*:*","matchCriteriaId":"C6D0FD76-C1FB-43D0-8511-FC0BA6DA7960"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:4590t:*:*:*:*:*:*:*","matchCriteriaId":"A9DAEE52-09C3-4A09-9958-9D6807B2700B"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:4670:*:*:*:*:*:*:*","matchCriteriaId":"B97690D4-E814-4D40-B170-BE56D7AE2C1B"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:4670k:*:*:*:*:*:*:*","matchCriteriaId":"89804F2C-D32D-4444-ABEA-5B241153D096"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:4670r:*:*:*:*:*:*:*","matchCriteriaId":"2AAAAF9C-B29B-4020-BAFF-C87B1A08294A"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:4670s:*:*:*:*:*:*:*","matchCriteriaId":"ECE60E1E-AB8D-46E4-A779-A54F2D20B5D5"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:4670t:*:*:*:*:*:*:*","matchCriteriaId":"EB958A28-7C9A-4BD0-B002-4E1A65CDB0A4"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:4690:*:*:*:*:*:*:*","matchCriteriaId":"7C27B318-2AC1-423D-B0C8-583BB1800D5A"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:4690k:*:*:*:*:*:*:*","matchCriteriaId":"9E58E3D0-1154-4B13-BA16-67CE67DF0637"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:4690s:*:*:*:*:*:*:*","matchCriteriaId":"32D2ACB3-B906-4944-A021-03C4645965BD"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:4690t:*:*:*:*:*:*:*","matchCriteriaId":"8FFF834A-D7F0-4E48-AD3D-DD0BCE6DEC0E"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:5200u:*:*:*:*:*:*:*","matchCriteriaId":"8E1A41BA-A1D6-484A-BAD2-68DF85598354"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:5250u:*:*:*:*:*:*:*","matchCriteriaId":"11260C9D-69A9-4D81-9CCF-2E116DD75F7C"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:5257u:*:*:*:*:*:*:*","matchCriteriaId":"1C020F06-FD27-46E3-A48F-3F60F33BB969"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:5287u:*:*:*:*:*:*:*","matchCriteriaId":"03C74F10-6A7F-4F68-8A34-E981E1760DE5"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:5300u:*:*:*:*:*:*:*","matchCriteriaId":"24741B98-8D0E-4307-AAEF-A14B2531DCA9"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:5350h:*:*:*:*:*:*:*","matchCriteriaId":"8D4FA4BA-4304-4A70-9F86-120F2A3D8148"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:5350u:*:*:*:*:*:*:*","matchCriteriaId":"367FC8BA-F046-4264-A049-49E933E7698F"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:5575r:*:*:*:*:*:*:*","matchCriteriaId":"DE9B68D3-1DFB-4468-85C4-AC13E6CBC111"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:5675c:*:*:*:*:*:*:*","matchCriteriaId":"C966A016-B650-44D9-B8C4-1ED50AB318DA"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:5675r:*:*:*:*:*:*:*","matchCriteriaId":"DC448FF0-6D3F-4609-864B-4191905EE2B9"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:6200u:*:*:*:*:*:*:*","matchCriteriaId":"0FC246FE-4CA6-4B2D-83C3-D50A386C24A0"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:6260u:*:*:*:*:*:*:*","matchCriteriaId":"758A14DB-1BAF-442A-BA7C-5E9C67847BEA"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:6267u:*:*:*:*:*:*:*","matchCriteriaId":"61309100-CFA7-4607-A236-8910838AA057"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:6287u:*:*:*:*:*:*:*","matchCriteriaId":"82D76265-7BD0-4C51-AE77-22B22524DE81"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:6300hq:*:*:*:*:*:*:*","matchCriteriaId":"DE38B195-BB8D-4747-881D-E8033760B4C8"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:6300u:*:*:*:*:*:*:*","matchCriteriaId":"1AA8BE76-168D-48A3-8DF6-E91F44600408"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:6350hq:*:*:*:*:*:*:*","matchCriteriaId":"3B656975-5D71-4712-9820-BDB7BC248AFA"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:6360u:*:*:*:*:*:*:*","matchCriteriaId":"FA045267-114D-4587-B6D7-E273C28DC9B1"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:6400:*:*:*:*:*:*:*","matchCriteriaId":"77018415-E122-406E-896D-1BC6CF790BE3"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:6400t:*:*:*:*:*:*:*","matchCriteriaId":"3ADF37F1-546B-4EF0-8DEC-DC3B9F5309FF"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:6402p:*:*:*:*:*:*:*","matchCriteriaId":"D7469256-1A64-46FF-8F5A-A8E9E3CF5BE5"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:6440eq:*:*:*:*:*:*:*","matchCriteriaId":"7F9069B9-9FE3-4AD5-9A8E-55C0F73BD756"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:6440hq:*:*:*:*:*:*:*","matchCriteriaId":"F4E1C012-3E05-44DB-B6D2-BFD619C034B4"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:6442eq:*:*:*:*:*:*:*","matchCriteriaId":"15D689D6-8594-42F2-8EEF-DCAEBA885A67"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:6500:*:*:*:*:*:*:*","matchCriteriaId":"A6446000-0494-4DC5-ABAA-F20A44546068"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:6500t:*:*:*:*:*:*:*","matchCriteriaId":"99B94EEC-6690-45D0-B086-F4A5B25C25CB"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:6500te:*:*:*:*:*:*:*","matchCriteriaId":"8B767B6E-B3E6-4424-97A6-89A7E7EB0EEB"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:6585r:*:*:*:*:*:*:*","matchCriteriaId":"832AB3CD-E3A1-4CCB-A210-287973563D0E"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:6600:*:*:*:*:*:*:*","matchCriteriaId":"5A26C0CC-68AD-40F5-96B8-87E6C643F6F8"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:6600k:*:*:*:*:*:*:*","matchCriteriaId":"99C4221A-9994-43B3-9C7A-E13815A50A10"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:6600t:*:*:*:*:*:*:*","matchCriteriaId":"20070B1D-B91C-40BA-A9D8-E80170A2933F"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:6685r:*:*:*:*:*:*:*","matchCriteriaId":"A70129C9-371F-4542-A388-C095869E593A"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:8250u:*:*:*:*:*:*:*","matchCriteriaId":"6C4DE25F-168A-4C67-8B66-09F61F072BD4"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:8350u:*:*:*:*:*:*:*","matchCriteriaId":"58157F24-D89E-4552-8CE6-2F01E98BD1E5"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:8400:*:*:*:*:*:*:*","matchCriteriaId":"BC7FFD78-1E1C-4246-BBD3-73FAC06AA46B"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:8600k:*:*:*:*:*:*:*","matchCriteriaId":"45ACBBEA-EC95-4F3E-B585-893DB6D21A0F"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:7y75:*:*:*:*:*:*:*","matchCriteriaId":"7DEC55DF-1950-45E5-A5F2-B5604AFA1CBD"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:610e:*:*:*:*:*:*:*","matchCriteriaId":"A6A5EC79-1B21-4BB3-8791-73507BC8D4DC"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:620le:*:*:*:*:*:*:*","matchCriteriaId":"FCB4AFC3-FE30-4F46-ADC1-D03EB14E757D"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:620lm:*:*:*:*:*:*:*","matchCriteriaId":"E0387587-AAB6-4284-8516-4DA3E3582D30"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:620m:*:*:*:*:*:*:*","matchCriteriaId":"A238C975-9196-449F-9C15-ABB2E9FD1D06"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:620ue:*:*:*:*:*:*:*","matchCriteriaId":"6F17F4A5-120B-4E00-97C8-8A85841ACBC9"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:620um:*:*:*:*:*:*:*","matchCriteriaId":"2537F047-64C9-4E73-B82C-310253184183"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:640lm:*:*:*:*:*:*:*","matchCriteriaId":"3A55857C-649D-46CE-AEDA-6E553E554FC1"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:640m:*:*:*:*:*:*:*","matchCriteriaId":"7BA4892D-AFDF-4441-821E-5EBF7F64C9F9"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:640um:*:*:*:*:*:*:*","matchCriteriaId":"327E06A3-7F0E-4498-8811-10C8D15398FE"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:660lm:*:*:*:*:*:*:*","matchCriteriaId":"1624E6D6-858E-4085-B0B9-362B819EFD88"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:660ue:*:*:*:*:*:*:*","matchCriteriaId":"50D61F4A-40F0-477C-8326-7359D3626E77"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:660um:*:*:*:*:*:*:*","matchCriteriaId":"1455B4DE-7F1C-4CF2-AE02-2EDD20025D62"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:680um:*:*:*:*:*:*:*","matchCriteriaId":"5B215788-860B-46CD-9A08-43AFF98FAEAA"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:720qm:*:*:*:*:*:*:*","matchCriteriaId":"2B92FAD5-CA6E-48F7-9613-3A4CE90F5F54"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:740qm:*:*:*:*:*:*:*","matchCriteriaId":"E4EB132B-000C-4A17-AFB3-19F40A73D2CC"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:820qm:*:*:*:*:*:*:*","matchCriteriaId":"5C4815AE-B635-4545-83C2-5EC4E0128337"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:840qm:*:*:*:*:*:*:*","matchCriteriaId":"C0046C06-E3E6-4674-A4D1-332DD29D9552"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:860:*:*:*:*:*:*:*","matchCriteriaId":"2C191851-3DC3-41C7-AD89-81F091CCC83A"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:860s:*:*:*:*:*:*:*","matchCriteriaId":"21126922-8E81-47F4-82D4-CBCDDACEC4FA"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:870:*:*:*:*:*:*:*","matchCriteriaId":"209E18B0-BBB5-4C65-B336-44340F7740DE"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:870s:*:*:*:*:*:*:*","matchCriteriaId":"C867C0B8-91A4-482A-B7DD-54AB9599AE52"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:875k:*:*:*:*:*:*:*","matchCriteriaId":"30F03843-8A51-4CE1-BE6C-994BDE3A8F97"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:880:*:*:*:*:*:*:*","matchCriteriaId":"09854948-2657-4261-A32A-0523058F072E"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:920:*:*:*:*:*:*:*","matchCriteriaId":"D13904A5-266D-481C-A42A-734C3823A238"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:920xm:*:*:*:*:*:*:*","matchCriteriaId":"ACC82FCB-0541-45C4-8B7E-CB612D7F702A"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:930:*:*:*:*:*:*:*","matchCriteriaId":"6C18BD84-5E9C-4C9E-B0AA-2CEB0D7A58C3"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:940:*:*:*:*:*:*:*","matchCriteriaId":"0F5ABC7E-C4E0-4850-A1E6-07EBCF4A87D3"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:940xm:*:*:*:*:*:*:*","matchCriteriaId":"501E9355-0CDD-4951-BCC3-47962788BCCB"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:950:*:*:*:*:*:*:*","matchCriteriaId":"B3D976D9-62F0-43C3-8359-E51E26B6CD87"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:960:*:*:*:*:*:*:*","matchCriteriaId":"02AFBCD0-9B4B-4CA3-8FA9-D8B6ECB24894"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:965:*:*:*:*:*:*:*","matchCriteriaId":"64ADE9AF-196F-4E0B-BC66-7DE0183F9032"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:970:*:*:*:*:*:*:*","matchCriteriaId":"C90CCA48-1705-4564-AAF9-271201BD5113"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:975:*:*:*:*:*:*:*","matchCriteriaId":"0B82BAFF-17F5-465C-8032-67D5ECAB2921"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:980:*:*:*:*:*:*:*","matchCriteriaId":"1F694FEC-B97D-4BDA-ADFA-751E8BFB7CD2"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:980x:*:*:*:*:*:*:*","matchCriteriaId":"F831371E-7437-48D7-8281-1F406215041B"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:990x:*:*:*:*:*:*:*","matchCriteriaId":"BC4F06B5-615A-464A-A0C4-7AABEE8530CD"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:2600:*:*:*:*:*:*:*","matchCriteriaId":"92AF503A-A2B1-4FC3-858B-264049ADF0F8"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:2600k:*:*:*:*:*:*:*","matchCriteriaId":"E702C7EC-B1D9-4BDF-B334-2004CD76B52B"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:2600s:*:*:*:*:*:*:*","matchCriteriaId":"E39F31D6-DC4B-46FE-BE5D-EA612D915A96"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:2610ue:*:*:*:*:*:*:*","matchCriteriaId":"51CB8036-5F36-4CD4-9B3E-D2401F2E64F6"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:2617m:*:*:*:*:*:*:*","matchCriteriaId":"F9849BA3-3990-4E30-B99B-ADD043314CDA"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:2620m:*:*:*:*:*:*:*","matchCriteriaId":"A20FB18A-D3DA-4DE9-BEFF-75B7AB9B9A55"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:2629m:*:*:*:*:*:*:*","matchCriteriaId":"7A67CD6F-5E4F-4E69-A2A9-A4033DCE08EA"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:2630qm:*:*:*:*:*:*:*","matchCriteriaId":"A0A22E92-1EA7-45D9-AC86-EC3D9664C294"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:2635qm:*:*:*:*:*:*:*","matchCriteriaId":"D7FA2911-6561-47BF-BEE8-DDA31642C346"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:2637m:*:*:*:*:*:*:*","matchCriteriaId":"1FA6CA23-6F2B-44D5-B2DA-4F142BA3E48A"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:2640m:*:*:*:*:*:*:*","matchCriteriaId":"0F829DED-4D92-401A-BD80-C070DE57FC7C"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:2649m:*:*:*:*:*:*:*","matchCriteriaId":"F560575C-FD8E-485D-B50A-572604BBE903"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:2655le:*:*:*:*:*:*:*","matchCriteriaId":"6ED8C51B-AE59-46DC-85F9-6D3B2891CB3F"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:2657m:*:*:*:*:*:*:*","matchCriteriaId":"1A38D00A-B9DC-44DF-8247-70355FF9A6EF"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:2670qm:*:*:*:*:*:*:*","matchCriteriaId":"381EFC43-D5D9-4D10-90BE-4C333A9BA074"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:2675qm:*:*:*:*:*:*:*","matchCriteriaId":"CBEDED18-2755-4C55-A1A1-04B4D5F40276"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:2677m:*:*:*:*:*:*:*","matchCriteriaId":"F04B57EC-0731-40C8-939F-1C686A65A0FC"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:2700k:*:*:*:*:*:*:*","matchCriteriaId":"2AB301FB-EB3E-4F5F-868D-5B66CC7E1E6B"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:2710qe:*:*:*:*:*:*:*","matchCriteriaId":"CE1D28F9-B135-441B-A9BF-792DD356E374"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:2715qe:*:*:*:*:*:*:*","matchCriteriaId":"4D01CE3E-5C89-4FC0-9097-CAC483ACD441"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:2720qm:*:*:*:*:*:*:*","matchCriteriaId":"7BDD55C4-AFCD-4DF2-921C-DDC1D7556DA3"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:2760qm:*:*:*:*:*:*:*","matchCriteriaId":"8F52334F-BE6A-4FD4-9F63-AE9BB017115B"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:2820qm:*:*:*:*:*:*:*","matchCriteriaId":"C7C9BCC3-B9A6-4195-BF2F-E7BBCE8DC269"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:2860qm:*:*:*:*:*:*:*","matchCriteriaId":"2A4DFFA7-AA0E-4D7E-97B8-13389FD47D4A"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:2920xm:*:*:*:*:*:*:*","matchCriteriaId":"707F6671-57AC-4DF4-8024-444502E5C92E"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:2960xm:*:*:*:*:*:*:*","matchCriteriaId":"3C1FCE07-F9E8-4B14-95CE-01784D472128"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:3517u:*:*:*:*:*:*:*","matchCriteriaId":"C208711F-FC06-46C8-8849-27054DC1B264"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:3517ue:*:*:*:*:*:*:*","matchCriteriaId":"25AB8041-F201-4BB3-AAD9-199B06697DF3"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:3520m:*:*:*:*:*:*:*","matchCriteriaId":"D75C474C-D5EF-42D6-9B2A-A504BEFCB982"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:3537u:*:*:*:*:*:*:*","matchCriteriaId":"1F566CD3-3649-492B-B0AB-A107E51675B9"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:3540m:*:*:*:*:*:*:*","matchCriteriaId":"BB9F3D74-AE72-4FC5-83E9-890781AF3093"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:3555le:*:*:*:*:*:*:*","matchCriteriaId":"0E8EA6A7-4AB8-487E-B5DD-9989CC5F1CD8"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:3610qe:*:*:*:*:*:*:*","matchCriteriaId":"DF63DDC8-A0C1-482B-92F2-CF6135E8C2A5"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:3610qm:*:*:*:*:*:*:*","matchCriteriaId":"C69918C6-7AAD-4AA5-AB72-C275367B1008"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:3612qe:*:*:*:*:*:*:*","matchCriteriaId":"06155B0B-A5AD-4A82-8C02-D264981687A6"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:3612qm:*:*:*:*:*:*:*","matchCriteriaId":"F76C19A4-FA26-432A-9443-9F92B2A946EB"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:3615qe:*:*:*:*:*:*:*","matchCriteriaId":"99BEE9BE-E49A-489B-B333-95D0993F8FA3"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:3615qm:*:*:*:*:*:*:*","matchCriteriaId":"7427A678-EC47-4030-B905-619DD95F5A82"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:3630qm:*:*:*:*:*:*:*","matchCriteriaId":"86749716-1C9F-4C2A-B2A7-E62DEC10EA30"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:3632qm:*:*:*:*:*:*:*","matchCriteriaId":"FD000B53-06DA-4ED4-B0EE-9CB201B75C8D"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:3635qm:*:*:*:*:*:*:*","matchCriteriaId":"A8424463-C329-4BAA-8AA1-25CD8B63292E"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:3667u:*:*:*:*:*:*:*","matchCriteriaId":"52727E62-0048-4C56-BC8C-B3450D257B21"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:3687u:*:*:*:*:*:*:*","matchCriteriaId":"9D8223AA-F077-45FD-A7E3-3C2C1A8F6E91"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:3689y:*:*:*:*:*:*:*","matchCriteriaId":"FAA34B50-2330-4D77-BF1A-6F05F3EF222C"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:3720qm:*:*:*:*:*:*:*","matchCriteriaId":"F6421F69-1076-43D2-B273-DE80FB2D5F72"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:3740qm:*:*:*:*:*:*:*","matchCriteriaId":"C1EDA9E2-CFE7-4917-BE48-A83208BDF0F3"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:3770:*:*:*:*:*:*:*","matchCriteriaId":"9A34E7FC-93A4-45F2-A7B6-4A8ABFCAB0F9"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:3770k:*:*:*:*:*:*:*","matchCriteriaId":"7E611EDD-D44C-4311-B681-431D7C574528"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:3770s:*:*:*:*:*:*:*","matchCriteriaId":"C5E1B6AA-2F9A-43A8-9147-2BD9474E54C7"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:3770t:*:*:*:*:*:*:*","matchCriteriaId":"1886D007-85B6-4E5A-968D-A1FD476A08A8"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:3820qm:*:*:*:*:*:*:*","matchCriteriaId":"BDDDCB65-4404-49BC-9515-ECECD58A667F"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:3840qm:*:*:*:*:*:*:*","matchCriteriaId":"1B8D3E00-64C3-407A-9B00-8B6E383F73FA"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:4500u:*:*:*:*:*:*:*","matchCriteriaId":"CB1B00A1-9C15-47C2-9F57-66586DEACC7D"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:4510u:*:*:*:*:*:*:*","matchCriteriaId":"CB5BF932-459F-4DD2-B160-5FE0371C7D83"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:4550u:*:*:*:*:*:*:*","matchCriteriaId":"A58ACE96-F1BE-4261-8F94-FC3C6E7C7561"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:4558u:*:*:*:*:*:*:*","matchCriteriaId":"783D6EA7-C016-4314-A87B-4FED1DC7114B"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:4578u:*:*:*:*:*:*:*","matchCriteriaId":"7AD0176F-FFAE-4A85-9327-CE72FE059E90"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:4600m:*:*:*:*:*:*:*","matchCriteriaId":"A56970C7-F8D3-41B2-A78B-0C7F4A2A4E0A"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:4600u:*:*:*:*:*:*:*","matchCriteriaId":"26D4CE1F-86C8-4E48-9146-9DB57BF540FB"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:4610m:*:*:*:*:*:*:*","matchCriteriaId":"CB7F9D65-5537-4C25-B02B-2393F60D1299"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:4610y:*:*:*:*:*:*:*","matchCriteriaId":"F09C8A92-820D-4572-A797-180E17A7DEB6"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:4650u:*:*:*:*:*:*:*","matchCriteriaId":"CA7D77A2-0D9A-4D0D-B0DC-152757917BE6"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:4700ec:*:*:*:*:*:*:*","matchCriteriaId":"A07D3F1A-16CE-461F-A2F4-80FE5F841CB3"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:4700eq:*:*:*:*:*:*:*","matchCriteriaId":"0C04557A-C508-4FAD-A535-1C0AEFF08075"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:4700hq:*:*:*:*:*:*:*","matchCriteriaId":"6AFAE489-6679-4705-BF9C-BB6D385A1DC3"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:4700mq:*:*:*:*:*:*:*","matchCriteriaId":"429A99C8-BC55-4887-893C-7124C1A5DB08"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:4702ec:*:*:*:*:*:*:*","matchCriteriaId":"E3A2B709-CC19-4116-A5BE-5DB5C8B45A12"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:4702hq:*:*:*:*:*:*:*","matchCriteriaId":"D79DAC74-1F28-4EC8-B417-3FAFFB74C4BB"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:4702mq:*:*:*:*:*:*:*","matchCriteriaId":"6F1F1377-6220-43FB-BEF9-BAA7B0158147"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:4710hq:*:*:*:*:*:*:*","matchCriteriaId":"18422CA8-3000-46B1-9065-2369E6B0BE16"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:4710mq:*:*:*:*:*:*:*","matchCriteriaId":"5D558C66-E80E-4FC7-A0DF-485466390C46"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:4712hq:*:*:*:*:*:*:*","matchCriteriaId":"E23EA9AE-9E70-47B5-AD9B-0DF13A0939E0"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:4712mq:*:*:*:*:*:*:*","matchCriteriaId":"860F22F6-4C87-47C5-965E-02A1AFF41A72"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:4720hq:*:*:*:*:*:*:*","matchCriteriaId":"19A2CA86-BFA8-4C78-987D-AD26F32622F7"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:4722hq:*:*:*:*:*:*:*","matchCriteriaId":"EEF64E0A-CDB0-427E-A96F-095EFEBA0A3D"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:4750hq:*:*:*:*:*:*:*","matchCriteriaId":"425F6D34-EE60-464B-8EA6-8116EDAA1219"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:4760hq:*:*:*:*:*:*:*","matchCriteriaId":"CEB9F657-1239-4424-A2E8-F8BD98C0095E"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:4765t:*:*:*:*:*:*:*","matchCriteriaId":"F631403C-0A67-42CB-815C-133EB87E0C95"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:4770:*:*:*:*:*:*:*","matchCriteriaId":"6A4A5A57-B1A2-4BBA-AC36-7EA7DF9CDE06"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:4770hq:*:*:*:*:*:*:*","matchCriteriaId":"0453C0EA-BA67-49D5-964F-35493F97D905"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:4770k:*:*:*:*:*:*:*","matchCriteriaId":"4D4D237E-ACB7-4382-AF5B-D27E634BF867"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:4770r:*:*:*:*:*:*:*","matchCriteriaId":"B5461EB2-2958-4923-86AF-C74D449120B5"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:4770s:*:*:*:*:*:*:*","matchCriteriaId":"45C22141-E698-4E38-AF50-9CE04C1168FE"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:4770t:*:*:*:*:*:*:*","matchCriteriaId":"49D0E470-427D-4A68-AFD2-982A4F7CE2D7"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:4770te:*:*:*:*:*:*:*","matchCriteriaId":"43AB50F3-14AC-44BD-B7F0-A683C5FD1A3F"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:4771:*:*:*:*:*:*:*","matchCriteriaId":"713C4B7A-C38A-4818-A258-D07DEDEC906E"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:4785t:*:*:*:*:*:*:*","matchCriteriaId":"C59740BE-FC30-4400-B978-1DB41282971C"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:4790:*:*:*:*:*:*:*","matchCriteriaId":"839728F0-5F23-462F-B493-C37EE4C874F9"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:4790k:*:*:*:*:*:*:*","matchCriteriaId":"6F1B47DA-BA53-4D7A-9B5B-582238D5E99A"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:4790s:*:*:*:*:*:*:*","matchCriteriaId":"D452F1BF-1FA5-463C-8F13-6357509FB5D1"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:4790t:*:*:*:*:*:*:*","matchCriteriaId":"EF6D1F4C-B396-468C-BA32-9367A68C95DD"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:4800mq:*:*:*:*:*:*:*","matchCriteriaId":"B76A812F-D77A-49C8-B7A5-0C08258D4BBD"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:4810mq:*:*:*:*:*:*:*","matchCriteriaId":"6E001AAB-07EC-47BF-BDE9-BB927872781D"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:4850hq:*:*:*:*:*:*:*","matchCriteriaId":"D1DF11F5-61E8-4A98-86C8-49D6B3224FCC"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:4860hq:*:*:*:*:*:*:*","matchCriteriaId":"AED153E7-99A2-4C02-B81B-C3DDF8FAE1A0"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:4870hq:*:*:*:*:*:*:*","matchCriteriaId":"D024802A-EA60-4D9B-B04C-027A0703EABD"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:4900mq:*:*:*:*:*:*:*","matchCriteriaId":"BA731F3C-1F04-4EE2-83EC-9486F5032903"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:4910mq:*:*:*:*:*:*:*","matchCriteriaId":"544A59F6-E731-43C8-8455-69256933E71D"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:4950hq:*:*:*:*:*:*:*","matchCriteriaId":"624258EE-7FFF-4432-9B6D-4D60AA73CD9A"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:4960hq:*:*:*:*:*:*:*","matchCriteriaId":"69A2701A-35A8-4268-B9CF-40BA3219373B"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:4980hq:*:*:*:*:*:*:*","matchCriteriaId":"15E671F6-8DED-4735-BE97-58A60E5B5C13"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:5500u:*:*:*:*:*:*:*","matchCriteriaId":"3FC68B2A-8570-4311-BB60-49DBBDAF7430"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:5550u:*:*:*:*:*:*:*","matchCriteriaId":"9826FA02-937E-4323-B9D5-8AE059ADBE95"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:5557u:*:*:*:*:*:*:*","matchCriteriaId":"9B8630BB-48AA-4688-A6F0-212C1BB4D14C"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:5600u:*:*:*:*:*:*:*","matchCriteriaId":"9AC98D35-D7D5-4C24-B47E-EDE2A80B2B9E"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:5650u:*:*:*:*:*:*:*","matchCriteriaId":"A2F8ABCB-12C3-4C45-844E-B07F77DA2DE9"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:5700eq:*:*:*:*:*:*:*","matchCriteriaId":"326105AC-3926-437E-8AFF-916960107050"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:5700hq:*:*:*:*:*:*:*","matchCriteriaId":"866E1275-7541-4B80-8FDF-53246A204C15"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:5750hq:*:*:*:*:*:*:*","matchCriteriaId":"E190929D-D3CC-46E1-A903-0848829061DF"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:5775c:*:*:*:*:*:*:*","matchCriteriaId":"81E4EBCB-B660-4F6A-AD73-81B9D8964162"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:5775r:*:*:*:*:*:*:*","matchCriteriaId":"55D58CC5-CB46-464D-93B8-6AD5A19AF097"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:5850eq:*:*:*:*:*:*:*","matchCriteriaId":"16541D3E-EBBD-4D92-96D8-F169733377AE"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:5850hq:*:*:*:*:*:*:*","matchCriteriaId":"3F08D257-F570-4D39-A6E8-0F60E55472E6"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:5950hq:*:*:*:*:*:*:*","matchCriteriaId":"C20ED667-2BFB-41C7-82BA-9F0C0044DA08"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:7500u:*:*:*:*:*:*:*","matchCriteriaId":"6158ED8A-007E-48B7-99BF-8BA03BF584BD"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:7560u:*:*:*:*:*:*:*","matchCriteriaId":"DBA7096A-F321-49A0-911A-F9683ABE6E6A"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:7567u:*:*:*:*:*:*:*","matchCriteriaId":"6A471395-7F8F-4BA5-962D-4D8F271FAB47"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:7600u:*:*:*:*:*:*:*","matchCriteriaId":"B9484380-92B9-44DB-8E20-DC8DE02D1CA6"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:7660u:*:*:*:*:*:*:*","matchCriteriaId":"8010808D-805D-4CA3-9EA2-55EB1E57964C"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:7700:*:*:*:*:*:*:*","matchCriteriaId":"9716FE9F-A056-42A3-A241-F2FE37A6386A"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:7700hq:*:*:*:*:*:*:*","matchCriteriaId":"F73422A3-ECA0-4C41-9AA5-CF7D77885CF6"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:7700k:*:*:*:*:*:*:*","matchCriteriaId":"7A96A5AF-C9EF-4DED-AE25-4540A2B02915"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:7700t:*:*:*:*:*:*:*","matchCriteriaId":"D5115B12-053A-4866-A833-D6EC88D8F93E"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:7820eq:*:*:*:*:*:*:*","matchCriteriaId":"C5619D4D-9685-4595-8A5F-A18273FE4213"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:7820hk:*:*:*:*:*:*:*","matchCriteriaId":"B77E00E7-0EA4-4E32-A693-0E0F66BA4C57"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:7820hq:*:*:*:*:*:*:*","matchCriteriaId":"DAA3457E-7E1A-4878-9752-79382E954A66"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:7920hq:*:*:*:*:*:*:*","matchCriteriaId":"68630C63-4457-4E12-B7BD-AD456B237FC5"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:8550u:*:*:*:*:*:*:*","matchCriteriaId":"F6FB5695-2950-4CEC-81B4-FD280F835330"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:8650u:*:*:*:*:*:*:*","matchCriteriaId":"9F340AF8-508F-449D-9AFA-4E55F069B4F3"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:8700:*:*:*:*:*:*:*","matchCriteriaId":"E944410E-D674-4141-B50C-9F55090325FF"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:8700k:*:*:*:*:*:*:*","matchCriteriaId":"A6438E07-0AC0-4BF9-B0F2-9072CA9639D6"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_m:5y10:*:*:*:*:*:*:*","matchCriteriaId":"5079AA70-C864-4AE2-809C-52B50632F2B3"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_m:5y10a:*:*:*:*:*:*:*","matchCriteriaId":"5D124BCB-D8C3-49F5-B05C-E09B3CEBEBCD"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_m:5y10c:*:*:*:*:*:*:*","matchCriteriaId":"6A86291B-C986-4320-BCEF-9F5AD8B309D3"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_m:5y31:*:*:*:*:*:*:*","matchCriteriaId":"1227659F-1393-4189-978B-CC3DC53BF407"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_m:5y51:*:*:*:*:*:*:*","matchCriteriaId":"4C2DB843-638F-41EF-B486-409318AA2DE9"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_m:5y70:*:*:*:*:*:*:*","matchCriteriaId":"A0004D8A-A186-4DA2-A7AB-18A6456438FF"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_m:5y71:*:*:*:*:*:*:*","matchCriteriaId":"75B6BE9F-F113-4976-951D-53F2E183A95A"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_m3:6y30:*:*:*:*:*:*:*","matchCriteriaId":"DEB005F1-9719-4985-B9D9-2140C962ADD1"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_m3:7y30:*:*:*:*:*:*:*","matchCriteriaId":"A94D0C1B-F30F-4724-915E-192C53FAE58A"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_m3:7y32:*:*:*:*:*:*:*","matchCriteriaId":"3F247860-1D2C-415C-AFBD-26BD875AAF02"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_m5:6y54:*:*:*:*:*:*:*","matchCriteriaId":"9697EDCD-A742-4AC6-876E-1080AD684207"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_m5:6y57:*:*:*:*:*:*:*","matchCriteriaId":"6E73924A-875B-44D0-8F7C-A822B0488126"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_m7:6y75:*:*:*:*:*:*:*","matchCriteriaId":"03751B92-EE07-4F16-A476-BD25561810BC"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon:*:*:*:*:*:*:*:*","matchCriteriaId":"DAF71B61-A595-476B-B949-1A0FBDB360A6"}]}]}],"references":[{"url":"http://support.lenovo.com/us/en/solutions/LEN-24163","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20180815-01-cpu-en","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"http://www.securityfocus.com/bid/105080","source":"secure@intel.com","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1041451","source":"secure@intel.com","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.vmware.com/security/advisories/VMSA-2018-0021.html","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"http://xenbits.xen.org/xsa/advisory-273.html","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:2384","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:2387","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:2388","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:2389","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:2390","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:2391","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:2392","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:2393","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:2394","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:2395","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:2396","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:2402","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:2403","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:2404","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:2602","source":"secure@intel.com"},{"url":"https://access.redhat.com/errata/RHSA-2018:2603","source":"secure@intel.com"},{"url":"https://cert-portal.siemens.com/productcert/pdf/ssa-254686.pdf","source":"secure@intel.com"},{"url":"https://cert-portal.siemens.com/productcert/pdf/ssa-608355.pdf","source":"secure@intel.com"},{"url":"https://foreshadowattack.eu/","source":"secure@intel.com","tags":["Technical Description","Third Party Advisory"]},{"url":"https://help.ecostruxureit.com/display/public/UADCE725/Security+fixes+in+StruxureWare+Data+Center+Expert+v7.6.0","source":"secure@intel.com"},{"url":"https://lists.debian.org/debian-lts-announce/2018/08/msg00029.html","source":"secure@intel.com"},{"url":"https://lists.debian.org/debian-lts-announce/2018/09/msg00017.html","source":"secure@intel.com"},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/V4UWGORQWCENCIF2BHWUEF2ODBV75QS2/","source":"secure@intel.com"},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XRFKQWYV2H4BV75CUNGCGE5TNVQCLBGZ/","source":"secure@intel.com"},{"url":"https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/ADV180018","source":"secure@intel.com"},{"url":"https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2018-0009","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://security.FreeBSD.org/advisories/FreeBSD-SA-18:09.l1tf.asc","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://security.gentoo.org/glsa/201810-06","source":"secure@intel.com"},{"url":"https://security.netapp.com/advisory/ntap-20180815-0001/","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://software.intel.com/security-software-guidance/software-guidance/l1-terminal-fault","source":"secure@intel.com","tags":["Mitigation","Vendor Advisory"]},{"url":"https://support.f5.com/csp/article/K95275140","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03874en_us","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180814-cpusidechannel","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://usn.ubuntu.com/3740-1/","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://usn.ubuntu.com/3740-2/","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://usn.ubuntu.com/3741-1/","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://usn.ubuntu.com/3741-2/","source":"secure@intel.com"},{"url":"https://usn.ubuntu.com/3742-1/","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://usn.ubuntu.com/3742-2/","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://usn.ubuntu.com/3823-1/","source":"secure@intel.com"},{"url":"https://www.debian.org/security/2018/dsa-4274","source":"secure@intel.com"},{"url":"https://www.debian.org/security/2018/dsa-4279","source":"secure@intel.com"},{"url":"https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00161.html","source":"secure@intel.com","tags":["Vendor Advisory"]},{"url":"https://www.kb.cert.org/vuls/id/982149","source":"secure@intel.com"},{"url":"https://www.oracle.com/security-alerts/cpujul2020.html","source":"secure@intel.com"},{"url":"https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html","source":"secure@intel.com"},{"url":"https://www.synology.com/support/security/Synology_SA_18_45","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"http://support.lenovo.com/us/en/solutions/LEN-24163","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20180815-01-cpu-en","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.securityfocus.com/bid/105080","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1041451","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.vmware.com/security/advisories/VMSA-2018-0021.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://xenbits.xen.org/xsa/advisory-273.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:2384","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:2387","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:2388","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:2389","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:2390","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:2391","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:2392","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:2393","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:2394","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:2395","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:2396","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:2402","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:2403","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:2404","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:2602","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://access.redhat.com/errata/RHSA-2018:2603","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://cert-portal.siemens.com/productcert/pdf/ssa-254686.pdf","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://cert-portal.siemens.com/productcert/pdf/ssa-608355.pdf","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://foreshadowattack.eu/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Technical Description","Third Party Advisory"]},{"url":"https://help.ecostruxureit.com/display/public/UADCE725/Security+fixes+in+StruxureWare+Data+Center+Expert+v7.6.0","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://lists.debian.org/debian-lts-announce/2018/08/msg00029.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://lists.debian.org/debian-lts-announce/2018/09/msg00017.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/V4UWGORQWCENCIF2BHWUEF2ODBV75QS2/","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XRFKQWYV2H4BV75CUNGCGE5TNVQCLBGZ/","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/ADV180018","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2018-0009","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://security.FreeBSD.org/advisories/FreeBSD-SA-18:09.l1tf.asc","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://security.gentoo.org/glsa/201810-06","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://security.netapp.com/advisory/ntap-20180815-0001/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://software.intel.com/security-software-guidance/software-guidance/l1-terminal-fault","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mitigation","Vendor Advisory"]},{"url":"https://support.f5.com/csp/article/K95275140","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03874en_us","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180814-cpusidechannel","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://usn.ubuntu.com/3740-1/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://usn.ubuntu.com/3740-2/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://usn.ubuntu.com/3741-1/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://usn.ubuntu.com/3741-2/","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://usn.ubuntu.com/3742-1/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://usn.ubuntu.com/3742-2/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://usn.ubuntu.com/3823-1/","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://www.debian.org/security/2018/dsa-4274","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://www.debian.org/security/2018/dsa-4279","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00161.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]},{"url":"https://www.kb.cert.org/vuls/id/982149","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://www.oracle.com/security-alerts/cpujul2020.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://www.synology.com/support/security/Synology_SA_18_45","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]}]}},{"cve":{"id":"CVE-2018-3646","sourceIdentifier":"secure@intel.com","published":"2018-08-14T19:29:00.920","lastModified":"2026-05-29T21:16:36.407","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Systems with microprocessors utilizing speculative execution and address translations may allow unauthorized disclosure of information residing in the L1 data cache to an attacker with local user access with guest OS privilege via a terminal page fault and a side-channel analysis."},{"lang":"es","value":"Los sistemas con microprocesadores que emplean la ejecución especulativa y traducciones de direcciones podría permitir la divulgación no autorizada de información que reside en la caché de datos L1 a un atacante con acceso de usuario local con privilegios de invitado del sistema operativo mediante un error de página del terminal y un análisis de canal lateral."}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N","baseScore":5.6,"baseSeverity":"MEDIUM","attackVector":"LOCAL","attackComplexity":"HIGH","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":1.1,"impactScore":4.0}],"cvssMetricV30":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.0","vectorString":"CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N","baseScore":5.6,"baseSeverity":"MEDIUM","attackVector":"LOCAL","attackComplexity":"HIGH","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":1.1,"impactScore":4.0}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:L/AC:M/Au:N/C:C/I:N/A:N","baseScore":4.7,"accessVector":"LOCAL","accessComplexity":"MEDIUM","authentication":"NONE","confidentialityImpact":"COMPLETE","integrityImpact":"NONE","availabilityImpact":"NONE"},"baseSeverity":"MEDIUM","exploitabilityScore":3.4,"impactScore":6.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"NVD-CWE-noinfo"}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-200"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:330e:*:*:*:*:*:*:*","matchCriteriaId":"A4229DB2-8BBC-49F8-87A8-2E7D56EFD310"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:330m:*:*:*:*:*:*:*","matchCriteriaId":"FEBA7322-4D95-4E70-B6A5-E0D8F1B5D7EB"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:330um:*:*:*:*:*:*:*","matchCriteriaId":"A0E91F46-D950-4894-BACF-05A70C7C6F7B"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:350m:*:*:*:*:*:*:*","matchCriteriaId":"0E12B40B-5221-48A6-B2A6-D44CD5636BB0"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:370m:*:*:*:*:*:*:*","matchCriteriaId":"6BCB77C9-ABE3-44A0-B377-7D7035E8A11F"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:380m:*:*:*:*:*:*:*","matchCriteriaId":"D06639F5-5EE8-44F4-B48A-5694383154DF"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:380um:*:*:*:*:*:*:*","matchCriteriaId":"CD9662C9-59D3-4B3E-A4DA-4F1EE16FC94B"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:390m:*:*:*:*:*:*:*","matchCriteriaId":"637C3687-FBCC-41A0-BFE6-823BAE45FB92"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:530:*:*:*:*:*:*:*","matchCriteriaId":"2350A197-193F-4B22-80E8-3275C97C78EE"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:540:*:*:*:*:*:*:*","matchCriteriaId":"734C7A7E-ACCA-4B34-BF38-0FAED988CC6A"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:550:*:*:*:*:*:*:*","matchCriteriaId":"4D9ABAFC-B3B5-449D-A48E-2E978563EDE7"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:560:*:*:*:*:*:*:*","matchCriteriaId":"99019EA0-6576-4CE7-B60A-975D418AA917"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:2100:*:*:*:*:*:*:*","matchCriteriaId":"8E846AEF-751D-40AD-84B5-EFDC9CF23E2F"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:2100t:*:*:*:*:*:*:*","matchCriteriaId":"EB9DD909-B2AC-46BA-B057-D239D0773CAD"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:2102:*:*:*:*:*:*:*","matchCriteriaId":"54F5C355-FDFC-4E71-93AA-218389EF10E6"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:2105:*:*:*:*:*:*:*","matchCriteriaId":"B0A1CA1E-971D-4F67-864E-2E772C1E736B"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:2115c:*:*:*:*:*:*:*","matchCriteriaId":"1B5F8391-D974-49AC-8550-ADB3FA6C0535"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:2120:*:*:*:*:*:*:*","matchCriteriaId":"8302BF58-9E54-40DA-BCFE-59CA52C460D9"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:2120t:*:*:*:*:*:*:*","matchCriteriaId":"ECCDE9EF-037B-4650-8131-4D57BE141277"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:2125:*:*:*:*:*:*:*","matchCriteriaId":"47BA9DA8-F690-4E3C-AEF6-6A5C7BAA6F19"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:2130:*:*:*:*:*:*:*","matchCriteriaId":"DB8253DA-9A04-40D6-84C1-C682B4023D4B"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:2310e:*:*:*:*:*:*:*","matchCriteriaId":"DAF6D175-85C3-4C72-AD9F-31B47EF43154"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:2310m:*:*:*:*:*:*:*","matchCriteriaId":"7A5FC594-2092-4240-9538-235BBE236DD9"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:2312m:*:*:*:*:*:*:*","matchCriteriaId":"87D95F00-EA89-4FDE-991C-56636B8E0331"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:2328m:*:*:*:*:*:*:*","matchCriteriaId":"32C40D38-F7F2-4A48-ADAA-6A8BBD6A1A00"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:2330e:*:*:*:*:*:*:*","matchCriteriaId":"4158561F-8270-42D1-91D8-E063CE7F5505"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:2330m:*:*:*:*:*:*:*","matchCriteriaId":"FF0DEA96-0202-41EB-BDC3-24E2FC4415B2"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:2340ue:*:*:*:*:*:*:*","matchCriteriaId":"F8BACE1C-5D66-4FBC-8F86-30215A623A94"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:2348m:*:*:*:*:*:*:*","matchCriteriaId":"CF707146-0D64-4F3A-AE22-956EA1CB32B6"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:2350m:*:*:*:*:*:*:*","matchCriteriaId":"8118C3F9-0853-4E87-9E65-86E1398B2780"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:2357m:*:*:*:*:*:*:*","matchCriteriaId":"1A298501-C4D7-48D4-90F9-15AFA59DED48"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:2365m:*:*:*:*:*:*:*","matchCriteriaId":"FEE1B07B-3D92-4D2D-8667-D902F002277F"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:2367m:*:*:*:*:*:*:*","matchCriteriaId":"8F05CB19-1059-4C4D-BFD7-9F51A22A4F97"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:2370m:*:*:*:*:*:*:*","matchCriteriaId":"5588732F-7F1A-4C24-B35F-30532107FFDE"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:2375m:*:*:*:*:*:*:*","matchCriteriaId":"A127DD5D-426D-4F24-A8C5-DC9DAC94B91C"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:2377m:*:*:*:*:*:*:*","matchCriteriaId":"26EE0BBD-3982-4B0F-82F6-D58E077C75DD"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:3110m:*:*:*:*:*:*:*","matchCriteriaId":"FAEEC918-EA25-4B38-B5C3-85899D3EBE6C"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:3115c:*:*:*:*:*:*:*","matchCriteriaId":"813965F4-3BDA-4478-8E6A-0FD52723B764"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:3120m:*:*:*:*:*:*:*","matchCriteriaId":"2C5EA2F4-F3EF-4305-B1A1-92F636ED688F"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:3120me:*:*:*:*:*:*:*","matchCriteriaId":"04384319-EE8C-45B4-8BDD-414502E7C02D"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:3130m:*:*:*:*:*:*:*","matchCriteriaId":"C52528CE-4F31-4E5F-8255-E576B20F3043"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:3210:*:*:*:*:*:*:*","matchCriteriaId":"A6C3F422-F865-4160-AA24-1DAFAE63729C"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:3217u:*:*:*:*:*:*:*","matchCriteriaId":"5D034E7F-4D17-49D7-BDB2-90CB4C709B30"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:3217ue:*:*:*:*:*:*:*","matchCriteriaId":"3C18E6B4-E947-403B-80FB-7095420D482B"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:3220:*:*:*:*:*:*:*","matchCriteriaId":"2814CC9F-E027-4C5A-93AF-84EA445E6C12"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:3220t:*:*:*:*:*:*:*","matchCriteriaId":"24A470C3-AAAA-4A6E-B738-FEB69DB78B9D"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:3225:*:*:*:*:*:*:*","matchCriteriaId":"A1236944-4942-40E4-9BA1-029FEAE94BBC"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:3227u:*:*:*:*:*:*:*","matchCriteriaId":"086CAB4B-A10A-4165-BC33-33CADCD23C0F"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:3229y:*:*:*:*:*:*:*","matchCriteriaId":"B1A6A1EB-B3AB-4CB4-827E-CCAAD783F8E0"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:3240:*:*:*:*:*:*:*","matchCriteriaId":"AAFB6B30-BFB0-4397-9E16-37D1A772E639"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:3240t:*:*:*:*:*:*:*","matchCriteriaId":"DFCB9D7B-7D0A-435D-8499-C16BE09E19FB"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:3245:*:*:*:*:*:*:*","matchCriteriaId":"64277594-9713-436B-8056-542CFA9F4CFC"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:3250:*:*:*:*:*:*:*","matchCriteriaId":"589BB170-7CBA-4F28-99E3-9242B62E2918"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:3250t:*:*:*:*:*:*:*","matchCriteriaId":"91B9C4D9-DA09-4377-9DCD-225857BD9FA7"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:4000m:*:*:*:*:*:*:*","matchCriteriaId":"03D0265F-840B-45A1-90BD-9ED8846A9F63"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:4005u:*:*:*:*:*:*:*","matchCriteriaId":"74BAC0EC-2B38-4553-A399-4BD5483C4753"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:4010u:*:*:*:*:*:*:*","matchCriteriaId":"4477EBA6-F0A7-452B-96E8-BA788370CCA8"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:4010y:*:*:*:*:*:*:*","matchCriteriaId":"1285D817-B5B8-4940-925D-FCDD24810AE6"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:4012y:*:*:*:*:*:*:*","matchCriteriaId":"D289F7B4-27CD-4433-BB45-06AF98A59B7A"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:4020y:*:*:*:*:*:*:*","matchCriteriaId":"00168903-6012-4414-87D1-2EE52AA6D78E"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:4025u:*:*:*:*:*:*:*","matchCriteriaId":"6AE8D524-577E-4994-8A4B-D15022C84D7F"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:4030u:*:*:*:*:*:*:*","matchCriteriaId":"75977B0B-C44D-43BC-8D7A-AF966CDB1901"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:4030y:*:*:*:*:*:*:*","matchCriteriaId":"AE7F5D52-9F41-49A4-B941-E0D777203FF7"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:4100e:*:*:*:*:*:*:*","matchCriteriaId":"52B5B3FD-5BEA-4DE8-B010-55FED1547167"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:4100m:*:*:*:*:*:*:*","matchCriteriaId":"167B1B04-5823-4038-A019-3975A3B447C9"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:4100u:*:*:*:*:*:*:*","matchCriteriaId":"F6C7A4EA-0B5E-47CD-8924-3B1B60EB4BE4"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:4102e:*:*:*:*:*:*:*","matchCriteriaId":"1BA096E0-5480-47CB-822B-D11D7E20F69F"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:4110e:*:*:*:*:*:*:*","matchCriteriaId":"30357469-0B8F-4385-A282-2F50181EA442"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:4110m:*:*:*:*:*:*:*","matchCriteriaId":"3BE70772-7796-4594-880A-6AAD046E4D8D"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:4112e:*:*:*:*:*:*:*","matchCriteriaId":"1A9E2F8D-2974-4833-9EC2-233CEE257C26"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:4120u:*:*:*:*:*:*:*","matchCriteriaId":"17EE3078-454F-48F8-B201-3847DB40D5C4"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:4130:*:*:*:*:*:*:*","matchCriteriaId":"EE32C500-55C2-41A7-8621-14EBF793BF11"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:4130t:*:*:*:*:*:*:*","matchCriteriaId":"52D3DF52-501A-4656-98F1-8DD51D04F31F"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:4150:*:*:*:*:*:*:*","matchCriteriaId":"3EA603AD-6CF1-44B2-876D-6F1C0B7EF2C9"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:4150t:*:*:*:*:*:*:*","matchCriteriaId":"09578301-CF39-4C24-951A-535743E277EF"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:4158u:*:*:*:*:*:*:*","matchCriteriaId":"1F4D14AA-7DBF-4B73-BDEF-6248EF5C0F7A"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:4160:*:*:*:*:*:*:*","matchCriteriaId":"5A65F303-96C8-4884-8D6F-F439B86BA30C"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:4160t:*:*:*:*:*:*:*","matchCriteriaId":"1E046105-9DF5-425F-A97E-16081D54613C"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:4170:*:*:*:*:*:*:*","matchCriteriaId":"B2987BCF-39E6-49B6-8DEE-963A38F12B07"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:4170t:*:*:*:*:*:*:*","matchCriteriaId":"7AEDE2B7-9AA2-4A14-8A02-9A2BFF0DDCBF"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:4330:*:*:*:*:*:*:*","matchCriteriaId":"5AD92AD8-033A-4AAD-91E5-CB446CCE9732"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:4330t:*:*:*:*:*:*:*","matchCriteriaId":"77E0E73A-F1B4-4E70-B9F1-EE97785B8891"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:4330te:*:*:*:*:*:*:*","matchCriteriaId":"61D6E3CC-79B1-4995-9A76-41683C7F254A"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:4340:*:*:*:*:*:*:*","matchCriteriaId":"F9CEB2B1-BD1A-4B89-8E03-4F90F04A0F0E"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:4340te:*:*:*:*:*:*:*","matchCriteriaId":"6FE5773D-3CD1-4E63-8983-E0105C46D185"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:4350:*:*:*:*:*:*:*","matchCriteriaId":"2A7C307A-6576-4A0A-8F4E-0981C9EE2901"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:4350t:*:*:*:*:*:*:*","matchCriteriaId":"18B3A53B-902C-46A5-8CE7-B55102703278"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:4360:*:*:*:*:*:*:*","matchCriteriaId":"AB843479-729A-4E58-8027-0FC586F051AA"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:4360t:*:*:*:*:*:*:*","matchCriteriaId":"1AF5A233-1E77-49FD-AC2C-60D185481E28"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:4370:*:*:*:*:*:*:*","matchCriteriaId":"18519CF2-B0DA-42DD-8A3E-9084298C210A"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:4370t:*:*:*:*:*:*:*","matchCriteriaId":"329D5FCF-7EC5-4471-906B-3619A180BD52"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:5005u:*:*:*:*:*:*:*","matchCriteriaId":"0DD43EAA-F3A5-4748-9187-A6E6707ACD11"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:5010u:*:*:*:*:*:*:*","matchCriteriaId":"C6F3C14D-4BFC-4205-8781-95E6B28C83C1"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:5015u:*:*:*:*:*:*:*","matchCriteriaId":"20942AD8-ADB7-4A50-BDBE-DB36249F4F52"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:5020u:*:*:*:*:*:*:*","matchCriteriaId":"1EC6ED02-134B-4322-AB72-75A0AB22701E"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:5157u:*:*:*:*:*:*:*","matchCriteriaId":"6FA74EEE-54CC-4F80-B1D3-99F7771335ED"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:6006u:*:*:*:*:*:*:*","matchCriteriaId":"B6B859F7-0373-4ADD-92B3-0FAB42FCF23C"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:6098p:*:*:*:*:*:*:*","matchCriteriaId":"AAC76F31-00A5-4719-AA50-92F773919B3C"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:6100:*:*:*:*:*:*:*","matchCriteriaId":"49996F5A-51B2-4D4E-AE04-E98E093A76CC"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:6100e:*:*:*:*:*:*:*","matchCriteriaId":"9F8406B0-D1E5-4633-B17E-53DC99FE7622"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:6100h:*:*:*:*:*:*:*","matchCriteriaId":"3D49435C-7C33-454B-9F43-9C10F28A28A1"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:6100t:*:*:*:*:*:*:*","matchCriteriaId":"D17E1A0F-1150-4899-81BC-BE84E4EF5FA3"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:6100te:*:*:*:*:*:*:*","matchCriteriaId":"EADD98AE-BAB0-440D-AB9F-2D76BE5109E2"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:6100u:*:*:*:*:*:*:*","matchCriteriaId":"ED44A404-8548-4EDC-8928-4094D05A6A38"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:6102e:*:*:*:*:*:*:*","matchCriteriaId":"3A6E4AA3-BEBC-4B14-9A52-A8F8B2954D64"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:6157u:*:*:*:*:*:*:*","matchCriteriaId":"D2AAD8F0-0D31-4806-8A88-A30E5BE43630"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:6167u:*:*:*:*:*:*:*","matchCriteriaId":"8164EE5F-6ABA-4365-8718-2F98C2E57A0F"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:6300:*:*:*:*:*:*:*","matchCriteriaId":"C7110AF9-A407-4EE2-9C46-E5F1E3638E9A"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:6300t:*:*:*:*:*:*:*","matchCriteriaId":"2A06696D-37F0-427D-BFC5-1606E7441C31"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:6320:*:*:*:*:*:*:*","matchCriteriaId":"E9F8A5FC-5EFE-42EC-A49B-D3A312FB5F6F"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:8100:*:*:*:*:*:*:*","matchCriteriaId":"68A76015-0A05-4EC7-B136-DC13B55D881F"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i3:8350k:*:*:*:*:*:*:*","matchCriteriaId":"C352DCE8-E8D9-40D3-AFE9-B5FB84F7ED33"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:430m:*:*:*:*:*:*:*","matchCriteriaId":"54464F6C-9B2D-46BA-AC44-506389F3EE0C"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:430um:*:*:*:*:*:*:*","matchCriteriaId":"8FA11017-EA58-45EE-8408-FCCCF7183643"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:450m:*:*:*:*:*:*:*","matchCriteriaId":"8A5098A5-E4E8-47E4-8CD0-F607FF0C0C90"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:460m:*:*:*:*:*:*:*","matchCriteriaId":"442AD778-D56F-4C30-BBF8-749D6AAC4737"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:470um:*:*:*:*:*:*:*","matchCriteriaId":"AF7D3F31-AF4D-4C50-8590-A763AAC7AF07"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:480m:*:*:*:*:*:*:*","matchCriteriaId":"445BFC2E-38FA-4130-8550-0866EC4EDA33"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:520e:*:*:*:*:*:*:*","matchCriteriaId":"A6DC2746-CE41-40C9-8CFA-23231BBCAE77"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:520m:*:*:*:*:*:*:*","matchCriteriaId":"3C3A8976-5E4D-490A-A87D-A47D1B2B903C"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:520um:*:*:*:*:*:*:*","matchCriteriaId":"0C8535E6-220E-4747-8992-45B6EAFC555C"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:540m:*:*:*:*:*:*:*","matchCriteriaId":"C7479B49-F484-4DF2-86CB-E52EE89FA238"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:540um:*:*:*:*:*:*:*","matchCriteriaId":"B6D68512-746D-4E95-857B-13A0B6313C5E"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:560m:*:*:*:*:*:*:*","matchCriteriaId":"4312BA84-F9A0-4BD4-8438-058E1E7D6C0C"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:560um:*:*:*:*:*:*:*","matchCriteriaId":"60E52DF5-C713-4BC4-B587-FF6BDA8509CC"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:580m:*:*:*:*:*:*:*","matchCriteriaId":"304ADCAC-9E49-42BD-BC92-58D9B2AD52E0"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:650:*:*:*:*:*:*:*","matchCriteriaId":"2AB02172-B9A7-4801-88F2-98BF5843184A"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:655k:*:*:*:*:*:*:*","matchCriteriaId":"5141380E-BD18-47C1-A84C-384BA821773D"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:660:*:*:*:*:*:*:*","matchCriteriaId":"1AE6C49E-2359-4E44-9979-7D34F8460E35"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:661:*:*:*:*:*:*:*","matchCriteriaId":"C004B75F-37AF-4E61-98F3-1B09A7062DDB"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:670:*:*:*:*:*:*:*","matchCriteriaId":"F7126D19-C6D9-43CB-8809-647B1A20E7DE"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:680:*:*:*:*:*:*:*","matchCriteriaId":"9CC98503-A80A-4114-8BF2-E016659BE84E"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:750:*:*:*:*:*:*:*","matchCriteriaId":"01E6F4A7-24BE-4AA0-9CDD-84FBC56FE9BB"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:750s:*:*:*:*:*:*:*","matchCriteriaId":"3821412D-B010-49C4-A7B4-6C5FB6C603B1"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:760:*:*:*:*:*:*:*","matchCriteriaId":"A34CA5CC-9EB1-4063-8B9D-3F566C1EFF76"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:2300:*:*:*:*:*:*:*","matchCriteriaId":"5CEB5D2D-FF54-4BDB-9E9C-8C1B2719FC9A"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:2310:*:*:*:*:*:*:*","matchCriteriaId":"6AD5B51A-AEA0-4DA2-BA60-94A2D5605352"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:2320:*:*:*:*:*:*:*","matchCriteriaId":"F96C6CA0-434D-428F-B629-A971C2937628"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:2380p:*:*:*:*:*:*:*","matchCriteriaId":"301AB72A-A6F2-42C8-A931-94EF2271443F"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:2390t:*:*:*:*:*:*:*","matchCriteriaId":"59414B5A-05B8-49AF-A197-2A31729DDB65"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:2400:*:*:*:*:*:*:*","matchCriteriaId":"0BFDD380-692F-41D7-996F-F97FC74DC7CF"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:2400s:*:*:*:*:*:*:*","matchCriteriaId":"49602828-2BFC-4571-9F05-6210FD263DF2"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:2405s:*:*:*:*:*:*:*","matchCriteriaId":"87E03978-E16D-4A9B-8AE7-9F4F1171C14A"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:2410m:*:*:*:*:*:*:*","matchCriteriaId":"03096A9A-5758-47E6-81E2-BCFE847C41F4"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:2430m:*:*:*:*:*:*:*","matchCriteriaId":"150CC865-7975-45EC-BFF7-A94146442BA8"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:2435m:*:*:*:*:*:*:*","matchCriteriaId":"C8FA1308-589B-432B-80F9-9A499D083ED5"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:2450m:*:*:*:*:*:*:*","matchCriteriaId":"6ED2453E-30E1-4620-BEC5-21B0083449E2"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:2450p:*:*:*:*:*:*:*","matchCriteriaId":"0FE8DD05-D700-4F89-9B01-D489029DF7A8"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:2467m:*:*:*:*:*:*:*","matchCriteriaId":"050957CA-6191-4F9F-9D07-48B342B3B1B8"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:2500:*:*:*:*:*:*:*","matchCriteriaId":"DACBF998-8B11-45C7-9017-486AED4FAE6C"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:2500k:*:*:*:*:*:*:*","matchCriteriaId":"C9F2F3C4-FC94-414A-A208-913A43D57D75"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:2500s:*:*:*:*:*:*:*","matchCriteriaId":"641152EC-F4B4-4E5E-B396-AC4CAAB805BF"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:2500t:*:*:*:*:*:*:*","matchCriteriaId":"4911E332-B8BA-4336-A448-3F70D2BBB147"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:2510e:*:*:*:*:*:*:*","matchCriteriaId":"330EC403-3174-4543-9BBE-CEC0ABC1575D"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:2515e:*:*:*:*:*:*:*","matchCriteriaId":"5EF585D0-507E-491E-9C3B-78EE26F2F070"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:2520m:*:*:*:*:*:*:*","matchCriteriaId":"DD00F7C6-6762-4DC9-9F6C-5EAC4ACB1C54"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:2537m:*:*:*:*:*:*:*","matchCriteriaId":"1F5D885A-85C4-4A11-B061-61EFF6B6E329"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:2540m:*:*:*:*:*:*:*","matchCriteriaId":"0502B59F-933C-4E25-A2EC-9296B197E139"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:2550k:*:*:*:*:*:*:*","matchCriteriaId":"99D9C0A9-2DFF-4760-8FED-AC2DA7968E51"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:2557m:*:*:*:*:*:*:*","matchCriteriaId":"B5A1BAEC-18BF-4607-BFB7-48102E75186A"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:3210m:*:*:*:*:*:*:*","matchCriteriaId":"D49ED138-F42D-4451-A350-0B2DD5AB9444"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:3230m:*:*:*:*:*:*:*","matchCriteriaId":"5ED91472-90FC-4AC8-96D5-1550A8502411"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:3317u:*:*:*:*:*:*:*","matchCriteriaId":"57CEEFA6-CEED-4CA3-8DDC-B6601D69FB7C"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:3320m:*:*:*:*:*:*:*","matchCriteriaId":"2FD25ECD-0605-4CD7-9DC5-294ACD7EF1B0"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:3330:*:*:*:*:*:*:*","matchCriteriaId":"2784E2AF-A5E5-4960-830C-B3EFB84043D0"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:3330s:*:*:*:*:*:*:*","matchCriteriaId":"9112FA50-5527-4B20-80F5-2DE9E66D09F6"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:3337u:*:*:*:*:*:*:*","matchCriteriaId":"73CE4E2E-B2BF-409E-B18C-D67DA810FE9B"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:3339y:*:*:*:*:*:*:*","matchCriteriaId":"E2B84D67-0B1D-4B74-BC85-AF8F933D8429"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:3340:*:*:*:*:*:*:*","matchCriteriaId":"BCA05A18-1523-4EED-9D2E-0A258A33F24F"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:3340m:*:*:*:*:*:*:*","matchCriteriaId":"C34E70EB-92F0-43F6-8883-FE422BE1A3FC"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:3340s:*:*:*:*:*:*:*","matchCriteriaId":"78D301F1-20C2-4756-9A90-37F14835CE14"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:3350p:*:*:*:*:*:*:*","matchCriteriaId":"B2EEC8B5-1CAB-4FBE-BBA2-D2FFA3EF9489"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:3360m:*:*:*:*:*:*:*","matchCriteriaId":"BA63B803-4D48-42E8-A793-F92ABCB8BFC9"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:3380m:*:*:*:*:*:*:*","matchCriteriaId":"129DB9CB-E878-4856-A954-15FFE1428636"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:3427u:*:*:*:*:*:*:*","matchCriteriaId":"730DB4AA-FD7D-40C6-8D7F-19937832EF9A"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:3437u:*:*:*:*:*:*:*","matchCriteriaId":"07E86978-4820-422A-8C7C-FF0697DAED05"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:3439y:*:*:*:*:*:*:*","matchCriteriaId":"8A7A9DB5-F544-4FD8-A9CC-0BD6257516AF"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:3450:*:*:*:*:*:*:*","matchCriteriaId":"AF813AD9-D296-4915-861C-8DE929E45FE3"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:3450s:*:*:*:*:*:*:*","matchCriteriaId":"04A65469-083F-40B5-86C5-A2EAE5B2F00A"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:3470:*:*:*:*:*:*:*","matchCriteriaId":"8F1AA82E-BD86-40F5-B417-71DF6AF53A37"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:3470s:*:*:*:*:*:*:*","matchCriteriaId":"B71A6DB0-5EB0-4712-8480-CF427F521D33"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:3470t:*:*:*:*:*:*:*","matchCriteriaId":"8223D5A1-ADF1-43C6-AF91-EE5C413BCB37"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:3475s:*:*:*:*:*:*:*","matchCriteriaId":"4DD69605-F52B-4623-921A-983A5A408ECA"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:3550:*:*:*:*:*:*:*","matchCriteriaId":"B1D5685F-6FFE-4A6A-9FF8-940C8DA36499"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:3550s:*:*:*:*:*:*:*","matchCriteriaId":"B94062D9-8DDA-4B4A-B3B5-07F71F5B97E7"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:3570:*:*:*:*:*:*:*","matchCriteriaId":"3832D0A6-419D-4876-B5C4-920578F713F3"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:3570k:*:*:*:*:*:*:*","matchCriteriaId":"E1AA5C8A-83A8-4F96-9D7C-7A50ADDB2341"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:3570s:*:*:*:*:*:*:*","matchCriteriaId":"404E38E6-9EB3-41D0-97A7-DC579688BFB0"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:3570t:*:*:*:*:*:*:*","matchCriteriaId":"40E4A921-AB28-47B7-B5A3-EB82193D15BA"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:3610me:*:*:*:*:*:*:*","matchCriteriaId":"B0357E48-2300-47B4-B9E5-9FE813A2FC09"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:4200h:*:*:*:*:*:*:*","matchCriteriaId":"96CC28B6-57D1-4919-AA55-A262CC16AFE6"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:4200m:*:*:*:*:*:*:*","matchCriteriaId":"0EB4C54D-1265-425A-B507-E1099844875A"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:4200u:*:*:*:*:*:*:*","matchCriteriaId":"97362147-3A71-430D-9064-4435D45C3B8C"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:4200y:*:*:*:*:*:*:*","matchCriteriaId":"89212CF3-4E99-4389-94CE-F4211DDCA01B"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:4202y:*:*:*:*:*:*:*","matchCriteriaId":"FBEA4DA3-0AFB-4FCE-92DB-5B316775BB17"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:4210h:*:*:*:*:*:*:*","matchCriteriaId":"611C0A0A-1FA3-42F9-82E8-BFCB71A077DD"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:4210m:*:*:*:*:*:*:*","matchCriteriaId":"36F027D9-DCB4-4A3D-8987-41F2941DBD45"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:4210u:*:*:*:*:*:*:*","matchCriteriaId":"E23BCEC9-2BFB-4B41-9A7A-18B1347C6202"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:4210y:*:*:*:*:*:*:*","matchCriteriaId":"4924CE39-A846-4DB4-9547-6322FC5AD6B3"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:4220y:*:*:*:*:*:*:*","matchCriteriaId":"6C9E2C9A-94A1-456B-90D5-54932DF64C22"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:4250u:*:*:*:*:*:*:*","matchCriteriaId":"AC04C652-B2D8-4002-A50E-8AFE83204A25"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:4258u:*:*:*:*:*:*:*","matchCriteriaId":"10D413F0-CDBC-4A63-B9A7-9E7725BA1E83"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:4260u:*:*:*:*:*:*:*","matchCriteriaId":"754A8826-59F7-4A71-B74B-737BE9C7DE4F"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:4278u:*:*:*:*:*:*:*","matchCriteriaId":"FADB6BDA-6825-489B-AB39-7729BA45DFD8"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:4288u:*:*:*:*:*:*:*","matchCriteriaId":"7913F57E-E600-4767-AF51-D045E1898E72"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:4300m:*:*:*:*:*:*:*","matchCriteriaId":"BD3783F4-5A05-45AA-9791-A681011FD78C"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:4300u:*:*:*:*:*:*:*","matchCriteriaId":"01E3114D-31D2-4DBF-A664-F4049D8B6266"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:4300y:*:*:*:*:*:*:*","matchCriteriaId":"D8EE6578-981D-470C-BB24-4960B3CB1478"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:4302y:*:*:*:*:*:*:*","matchCriteriaId":"E3320D50-C5C9-4D75-BF1A-5BB7BCBFE2BD"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:4308u:*:*:*:*:*:*:*","matchCriteriaId":"7EE59839-8EB9-47FE-88E2-F0D54BE787A2"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:4310m:*:*:*:*:*:*:*","matchCriteriaId":"75694A3D-080A-4AA7-97DF-5A5833C9D9F7"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:4310u:*:*:*:*:*:*:*","matchCriteriaId":"19C5E27D-BBAB-4395-8FC6-8E3D4FB9A1EE"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:4330m:*:*:*:*:*:*:*","matchCriteriaId":"6E996176-3DEA-46E6-93B7-9C0DF32B59D3"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:4340m:*:*:*:*:*:*:*","matchCriteriaId":"4417007D-126A-478B-87EA-039D088A4515"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:4350u:*:*:*:*:*:*:*","matchCriteriaId":"F78C2825-F6A3-4188-9D25-59EAEC8A7B0A"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:4360u:*:*:*:*:*:*:*","matchCriteriaId":"EF2FA85D-B117-410D-B247-8C5A3479319A"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:4400e:*:*:*:*:*:*:*","matchCriteriaId":"3A041D27-132C-4B15-976F-1750C039A89F"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:4402e:*:*:*:*:*:*:*","matchCriteriaId":"5D495E06-BF2B-4C5A-881D-94C93CD2BA2B"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:4402ec:*:*:*:*:*:*:*","matchCriteriaId":"7C31DFB8-8D8C-47D6-AAFF-BAE829A3D965"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:4410e:*:*:*:*:*:*:*","matchCriteriaId":"088BC395-06D5-4156-85EB-63C4A9552898"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:4422e:*:*:*:*:*:*:*","matchCriteriaId":"33A220A2-A6D2-46A7-B168-607400EEDCE3"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:4430:*:*:*:*:*:*:*","matchCriteriaId":"1E79232F-7196-440B-82D4-165885251232"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:4430s:*:*:*:*:*:*:*","matchCriteriaId":"ED866954-77AB-4CA8-8AED-4252C595FC4D"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:4440:*:*:*:*:*:*:*","matchCriteriaId":"28A1F516-B180-45D4-8EB1-754B7497CB2B"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:4440s:*:*:*:*:*:*:*","matchCriteriaId":"36758A04-64D3-4150-A004-CF042FA31CD9"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:4460:*:*:*:*:*:*:*","matchCriteriaId":"1E01752E-F1DD-400A-A917-216CAF15B0F9"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:4460s:*:*:*:*:*:*:*","matchCriteriaId":"AD47EC58-F776-4F59-8F15-4B208904CF4B"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:4460t:*:*:*:*:*:*:*","matchCriteriaId":"2D3781F4-2123-4FA1-8AF5-D0D1E6C1A5B9"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:4570:*:*:*:*:*:*:*","matchCriteriaId":"94565E35-8A58-4CB6-A489-C796DCB97FC5"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:4570r:*:*:*:*:*:*:*","matchCriteriaId":"49964D35-5323-4412-BD54-661630F9A8CB"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:4570s:*:*:*:*:*:*:*","matchCriteriaId":"F0A37E7D-1BF6-4A2A-BF52-5F0EC4B4F341"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:4570t:*:*:*:*:*:*:*","matchCriteriaId":"A0F66468-87D0-41FC-934B-5924BE2956CB"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:4570te:*:*:*:*:*:*:*","matchCriteriaId":"3E0F93E1-4607-4DF4-AC6E-4B7254D4A8DE"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:4590:*:*:*:*:*:*:*","matchCriteriaId":"45C0D99E-443E-4AB1-A07A-900A09FE177E"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:4590s:*:*:*:*:*:*:*","matchCriteriaId":"C6D0FD76-C1FB-43D0-8511-FC0BA6DA7960"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:4590t:*:*:*:*:*:*:*","matchCriteriaId":"A9DAEE52-09C3-4A09-9958-9D6807B2700B"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:4670:*:*:*:*:*:*:*","matchCriteriaId":"B97690D4-E814-4D40-B170-BE56D7AE2C1B"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:4670k:*:*:*:*:*:*:*","matchCriteriaId":"89804F2C-D32D-4444-ABEA-5B241153D096"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:4670r:*:*:*:*:*:*:*","matchCriteriaId":"2AAAAF9C-B29B-4020-BAFF-C87B1A08294A"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:4670s:*:*:*:*:*:*:*","matchCriteriaId":"ECE60E1E-AB8D-46E4-A779-A54F2D20B5D5"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:4670t:*:*:*:*:*:*:*","matchCriteriaId":"EB958A28-7C9A-4BD0-B002-4E1A65CDB0A4"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:4690:*:*:*:*:*:*:*","matchCriteriaId":"7C27B318-2AC1-423D-B0C8-583BB1800D5A"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:4690k:*:*:*:*:*:*:*","matchCriteriaId":"9E58E3D0-1154-4B13-BA16-67CE67DF0637"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:4690s:*:*:*:*:*:*:*","matchCriteriaId":"32D2ACB3-B906-4944-A021-03C4645965BD"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:4690t:*:*:*:*:*:*:*","matchCriteriaId":"8FFF834A-D7F0-4E48-AD3D-DD0BCE6DEC0E"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:5200u:*:*:*:*:*:*:*","matchCriteriaId":"8E1A41BA-A1D6-484A-BAD2-68DF85598354"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:5250u:*:*:*:*:*:*:*","matchCriteriaId":"11260C9D-69A9-4D81-9CCF-2E116DD75F7C"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:5257u:*:*:*:*:*:*:*","matchCriteriaId":"1C020F06-FD27-46E3-A48F-3F60F33BB969"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:5287u:*:*:*:*:*:*:*","matchCriteriaId":"03C74F10-6A7F-4F68-8A34-E981E1760DE5"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:5300u:*:*:*:*:*:*:*","matchCriteriaId":"24741B98-8D0E-4307-AAEF-A14B2531DCA9"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:5350h:*:*:*:*:*:*:*","matchCriteriaId":"8D4FA4BA-4304-4A70-9F86-120F2A3D8148"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:5350u:*:*:*:*:*:*:*","matchCriteriaId":"367FC8BA-F046-4264-A049-49E933E7698F"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:5575r:*:*:*:*:*:*:*","matchCriteriaId":"DE9B68D3-1DFB-4468-85C4-AC13E6CBC111"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:5675c:*:*:*:*:*:*:*","matchCriteriaId":"C966A016-B650-44D9-B8C4-1ED50AB318DA"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:5675r:*:*:*:*:*:*:*","matchCriteriaId":"DC448FF0-6D3F-4609-864B-4191905EE2B9"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:6200u:*:*:*:*:*:*:*","matchCriteriaId":"0FC246FE-4CA6-4B2D-83C3-D50A386C24A0"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:6260u:*:*:*:*:*:*:*","matchCriteriaId":"758A14DB-1BAF-442A-BA7C-5E9C67847BEA"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:6267u:*:*:*:*:*:*:*","matchCriteriaId":"61309100-CFA7-4607-A236-8910838AA057"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:6287u:*:*:*:*:*:*:*","matchCriteriaId":"82D76265-7BD0-4C51-AE77-22B22524DE81"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:6300hq:*:*:*:*:*:*:*","matchCriteriaId":"DE38B195-BB8D-4747-881D-E8033760B4C8"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:6300u:*:*:*:*:*:*:*","matchCriteriaId":"1AA8BE76-168D-48A3-8DF6-E91F44600408"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:6350hq:*:*:*:*:*:*:*","matchCriteriaId":"3B656975-5D71-4712-9820-BDB7BC248AFA"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:6360u:*:*:*:*:*:*:*","matchCriteriaId":"FA045267-114D-4587-B6D7-E273C28DC9B1"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:6400:*:*:*:*:*:*:*","matchCriteriaId":"77018415-E122-406E-896D-1BC6CF790BE3"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:6400t:*:*:*:*:*:*:*","matchCriteriaId":"3ADF37F1-546B-4EF0-8DEC-DC3B9F5309FF"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:6402p:*:*:*:*:*:*:*","matchCriteriaId":"D7469256-1A64-46FF-8F5A-A8E9E3CF5BE5"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:6440eq:*:*:*:*:*:*:*","matchCriteriaId":"7F9069B9-9FE3-4AD5-9A8E-55C0F73BD756"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:6440hq:*:*:*:*:*:*:*","matchCriteriaId":"F4E1C012-3E05-44DB-B6D2-BFD619C034B4"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:6442eq:*:*:*:*:*:*:*","matchCriteriaId":"15D689D6-8594-42F2-8EEF-DCAEBA885A67"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:6500:*:*:*:*:*:*:*","matchCriteriaId":"A6446000-0494-4DC5-ABAA-F20A44546068"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:6500t:*:*:*:*:*:*:*","matchCriteriaId":"99B94EEC-6690-45D0-B086-F4A5B25C25CB"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:6500te:*:*:*:*:*:*:*","matchCriteriaId":"8B767B6E-B3E6-4424-97A6-89A7E7EB0EEB"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:6585r:*:*:*:*:*:*:*","matchCriteriaId":"832AB3CD-E3A1-4CCB-A210-287973563D0E"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:6600:*:*:*:*:*:*:*","matchCriteriaId":"5A26C0CC-68AD-40F5-96B8-87E6C643F6F8"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:6600k:*:*:*:*:*:*:*","matchCriteriaId":"99C4221A-9994-43B3-9C7A-E13815A50A10"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:6600t:*:*:*:*:*:*:*","matchCriteriaId":"20070B1D-B91C-40BA-A9D8-E80170A2933F"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:6685r:*:*:*:*:*:*:*","matchCriteriaId":"A70129C9-371F-4542-A388-C095869E593A"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:8250u:*:*:*:*:*:*:*","matchCriteriaId":"6C4DE25F-168A-4C67-8B66-09F61F072BD4"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:8350u:*:*:*:*:*:*:*","matchCriteriaId":"58157F24-D89E-4552-8CE6-2F01E98BD1E5"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:8400:*:*:*:*:*:*:*","matchCriteriaId":"BC7FFD78-1E1C-4246-BBD3-73FAC06AA46B"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i5:8600k:*:*:*:*:*:*:*","matchCriteriaId":"45ACBBEA-EC95-4F3E-B585-893DB6D21A0F"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:7y75:*:*:*:*:*:*:*","matchCriteriaId":"7DEC55DF-1950-45E5-A5F2-B5604AFA1CBD"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:610e:*:*:*:*:*:*:*","matchCriteriaId":"A6A5EC79-1B21-4BB3-8791-73507BC8D4DC"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:620le:*:*:*:*:*:*:*","matchCriteriaId":"FCB4AFC3-FE30-4F46-ADC1-D03EB14E757D"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:620lm:*:*:*:*:*:*:*","matchCriteriaId":"E0387587-AAB6-4284-8516-4DA3E3582D30"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:620m:*:*:*:*:*:*:*","matchCriteriaId":"A238C975-9196-449F-9C15-ABB2E9FD1D06"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:620ue:*:*:*:*:*:*:*","matchCriteriaId":"6F17F4A5-120B-4E00-97C8-8A85841ACBC9"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:620um:*:*:*:*:*:*:*","matchCriteriaId":"2537F047-64C9-4E73-B82C-310253184183"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:640lm:*:*:*:*:*:*:*","matchCriteriaId":"3A55857C-649D-46CE-AEDA-6E553E554FC1"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:640m:*:*:*:*:*:*:*","matchCriteriaId":"7BA4892D-AFDF-4441-821E-5EBF7F64C9F9"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:640um:*:*:*:*:*:*:*","matchCriteriaId":"327E06A3-7F0E-4498-8811-10C8D15398FE"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:660lm:*:*:*:*:*:*:*","matchCriteriaId":"1624E6D6-858E-4085-B0B9-362B819EFD88"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:660ue:*:*:*:*:*:*:*","matchCriteriaId":"50D61F4A-40F0-477C-8326-7359D3626E77"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:660um:*:*:*:*:*:*:*","matchCriteriaId":"1455B4DE-7F1C-4CF2-AE02-2EDD20025D62"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:680um:*:*:*:*:*:*:*","matchCriteriaId":"5B215788-860B-46CD-9A08-43AFF98FAEAA"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:720qm:*:*:*:*:*:*:*","matchCriteriaId":"2B92FAD5-CA6E-48F7-9613-3A4CE90F5F54"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:740qm:*:*:*:*:*:*:*","matchCriteriaId":"E4EB132B-000C-4A17-AFB3-19F40A73D2CC"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:820qm:*:*:*:*:*:*:*","matchCriteriaId":"5C4815AE-B635-4545-83C2-5EC4E0128337"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:840qm:*:*:*:*:*:*:*","matchCriteriaId":"C0046C06-E3E6-4674-A4D1-332DD29D9552"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:860:*:*:*:*:*:*:*","matchCriteriaId":"2C191851-3DC3-41C7-AD89-81F091CCC83A"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:860s:*:*:*:*:*:*:*","matchCriteriaId":"21126922-8E81-47F4-82D4-CBCDDACEC4FA"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:870:*:*:*:*:*:*:*","matchCriteriaId":"209E18B0-BBB5-4C65-B336-44340F7740DE"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:870s:*:*:*:*:*:*:*","matchCriteriaId":"C867C0B8-91A4-482A-B7DD-54AB9599AE52"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:875k:*:*:*:*:*:*:*","matchCriteriaId":"30F03843-8A51-4CE1-BE6C-994BDE3A8F97"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:880:*:*:*:*:*:*:*","matchCriteriaId":"09854948-2657-4261-A32A-0523058F072E"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:920:*:*:*:*:*:*:*","matchCriteriaId":"D13904A5-266D-481C-A42A-734C3823A238"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:920xm:*:*:*:*:*:*:*","matchCriteriaId":"ACC82FCB-0541-45C4-8B7E-CB612D7F702A"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:930:*:*:*:*:*:*:*","matchCriteriaId":"6C18BD84-5E9C-4C9E-B0AA-2CEB0D7A58C3"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:940:*:*:*:*:*:*:*","matchCriteriaId":"0F5ABC7E-C4E0-4850-A1E6-07EBCF4A87D3"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:940xm:*:*:*:*:*:*:*","matchCriteriaId":"501E9355-0CDD-4951-BCC3-47962788BCCB"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:950:*:*:*:*:*:*:*","matchCriteriaId":"B3D976D9-62F0-43C3-8359-E51E26B6CD87"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:960:*:*:*:*:*:*:*","matchCriteriaId":"02AFBCD0-9B4B-4CA3-8FA9-D8B6ECB24894"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:965:*:*:*:*:*:*:*","matchCriteriaId":"64ADE9AF-196F-4E0B-BC66-7DE0183F9032"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:970:*:*:*:*:*:*:*","matchCriteriaId":"C90CCA48-1705-4564-AAF9-271201BD5113"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:975:*:*:*:*:*:*:*","matchCriteriaId":"0B82BAFF-17F5-465C-8032-67D5ECAB2921"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:980:*:*:*:*:*:*:*","matchCriteriaId":"1F694FEC-B97D-4BDA-ADFA-751E8BFB7CD2"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:980x:*:*:*:*:*:*:*","matchCriteriaId":"F831371E-7437-48D7-8281-1F406215041B"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:990x:*:*:*:*:*:*:*","matchCriteriaId":"BC4F06B5-615A-464A-A0C4-7AABEE8530CD"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:2600:*:*:*:*:*:*:*","matchCriteriaId":"92AF503A-A2B1-4FC3-858B-264049ADF0F8"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:2600k:*:*:*:*:*:*:*","matchCriteriaId":"E702C7EC-B1D9-4BDF-B334-2004CD76B52B"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:2600s:*:*:*:*:*:*:*","matchCriteriaId":"E39F31D6-DC4B-46FE-BE5D-EA612D915A96"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:2610ue:*:*:*:*:*:*:*","matchCriteriaId":"51CB8036-5F36-4CD4-9B3E-D2401F2E64F6"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:2617m:*:*:*:*:*:*:*","matchCriteriaId":"F9849BA3-3990-4E30-B99B-ADD043314CDA"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:2620m:*:*:*:*:*:*:*","matchCriteriaId":"A20FB18A-D3DA-4DE9-BEFF-75B7AB9B9A55"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:2629m:*:*:*:*:*:*:*","matchCriteriaId":"7A67CD6F-5E4F-4E69-A2A9-A4033DCE08EA"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:2630qm:*:*:*:*:*:*:*","matchCriteriaId":"A0A22E92-1EA7-45D9-AC86-EC3D9664C294"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:2635qm:*:*:*:*:*:*:*","matchCriteriaId":"D7FA2911-6561-47BF-BEE8-DDA31642C346"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:2637m:*:*:*:*:*:*:*","matchCriteriaId":"1FA6CA23-6F2B-44D5-B2DA-4F142BA3E48A"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:2640m:*:*:*:*:*:*:*","matchCriteriaId":"0F829DED-4D92-401A-BD80-C070DE57FC7C"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:2649m:*:*:*:*:*:*:*","matchCriteriaId":"F560575C-FD8E-485D-B50A-572604BBE903"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:2655le:*:*:*:*:*:*:*","matchCriteriaId":"6ED8C51B-AE59-46DC-85F9-6D3B2891CB3F"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:2657m:*:*:*:*:*:*:*","matchCriteriaId":"1A38D00A-B9DC-44DF-8247-70355FF9A6EF"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:2670qm:*:*:*:*:*:*:*","matchCriteriaId":"381EFC43-D5D9-4D10-90BE-4C333A9BA074"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:2675qm:*:*:*:*:*:*:*","matchCriteriaId":"CBEDED18-2755-4C55-A1A1-04B4D5F40276"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:2677m:*:*:*:*:*:*:*","matchCriteriaId":"F04B57EC-0731-40C8-939F-1C686A65A0FC"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:2700k:*:*:*:*:*:*:*","matchCriteriaId":"2AB301FB-EB3E-4F5F-868D-5B66CC7E1E6B"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:2710qe:*:*:*:*:*:*:*","matchCriteriaId":"CE1D28F9-B135-441B-A9BF-792DD356E374"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:2715qe:*:*:*:*:*:*:*","matchCriteriaId":"4D01CE3E-5C89-4FC0-9097-CAC483ACD441"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:2720qm:*:*:*:*:*:*:*","matchCriteriaId":"7BDD55C4-AFCD-4DF2-921C-DDC1D7556DA3"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:2760qm:*:*:*:*:*:*:*","matchCriteriaId":"8F52334F-BE6A-4FD4-9F63-AE9BB017115B"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:2820qm:*:*:*:*:*:*:*","matchCriteriaId":"C7C9BCC3-B9A6-4195-BF2F-E7BBCE8DC269"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:2860qm:*:*:*:*:*:*:*","matchCriteriaId":"2A4DFFA7-AA0E-4D7E-97B8-13389FD47D4A"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:2920xm:*:*:*:*:*:*:*","matchCriteriaId":"707F6671-57AC-4DF4-8024-444502E5C92E"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:2960xm:*:*:*:*:*:*:*","matchCriteriaId":"3C1FCE07-F9E8-4B14-95CE-01784D472128"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:3517u:*:*:*:*:*:*:*","matchCriteriaId":"C208711F-FC06-46C8-8849-27054DC1B264"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:3517ue:*:*:*:*:*:*:*","matchCriteriaId":"25AB8041-F201-4BB3-AAD9-199B06697DF3"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:3520m:*:*:*:*:*:*:*","matchCriteriaId":"D75C474C-D5EF-42D6-9B2A-A504BEFCB982"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:3537u:*:*:*:*:*:*:*","matchCriteriaId":"1F566CD3-3649-492B-B0AB-A107E51675B9"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:3540m:*:*:*:*:*:*:*","matchCriteriaId":"BB9F3D74-AE72-4FC5-83E9-890781AF3093"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:3555le:*:*:*:*:*:*:*","matchCriteriaId":"0E8EA6A7-4AB8-487E-B5DD-9989CC5F1CD8"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:3610qe:*:*:*:*:*:*:*","matchCriteriaId":"DF63DDC8-A0C1-482B-92F2-CF6135E8C2A5"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:3610qm:*:*:*:*:*:*:*","matchCriteriaId":"C69918C6-7AAD-4AA5-AB72-C275367B1008"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:3612qe:*:*:*:*:*:*:*","matchCriteriaId":"06155B0B-A5AD-4A82-8C02-D264981687A6"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:3612qm:*:*:*:*:*:*:*","matchCriteriaId":"F76C19A4-FA26-432A-9443-9F92B2A946EB"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:3615qe:*:*:*:*:*:*:*","matchCriteriaId":"99BEE9BE-E49A-489B-B333-95D0993F8FA3"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:3615qm:*:*:*:*:*:*:*","matchCriteriaId":"7427A678-EC47-4030-B905-619DD95F5A82"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:3630qm:*:*:*:*:*:*:*","matchCriteriaId":"86749716-1C9F-4C2A-B2A7-E62DEC10EA30"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:3632qm:*:*:*:*:*:*:*","matchCriteriaId":"FD000B53-06DA-4ED4-B0EE-9CB201B75C8D"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:3635qm:*:*:*:*:*:*:*","matchCriteriaId":"A8424463-C329-4BAA-8AA1-25CD8B63292E"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:3667u:*:*:*:*:*:*:*","matchCriteriaId":"52727E62-0048-4C56-BC8C-B3450D257B21"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:3687u:*:*:*:*:*:*:*","matchCriteriaId":"9D8223AA-F077-45FD-A7E3-3C2C1A8F6E91"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:3689y:*:*:*:*:*:*:*","matchCriteriaId":"FAA34B50-2330-4D77-BF1A-6F05F3EF222C"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:3720qm:*:*:*:*:*:*:*","matchCriteriaId":"F6421F69-1076-43D2-B273-DE80FB2D5F72"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:3740qm:*:*:*:*:*:*:*","matchCriteriaId":"C1EDA9E2-CFE7-4917-BE48-A83208BDF0F3"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:3770:*:*:*:*:*:*:*","matchCriteriaId":"9A34E7FC-93A4-45F2-A7B6-4A8ABFCAB0F9"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:3770k:*:*:*:*:*:*:*","matchCriteriaId":"7E611EDD-D44C-4311-B681-431D7C574528"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:3770s:*:*:*:*:*:*:*","matchCriteriaId":"C5E1B6AA-2F9A-43A8-9147-2BD9474E54C7"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:3770t:*:*:*:*:*:*:*","matchCriteriaId":"1886D007-85B6-4E5A-968D-A1FD476A08A8"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:3820qm:*:*:*:*:*:*:*","matchCriteriaId":"BDDDCB65-4404-49BC-9515-ECECD58A667F"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:3840qm:*:*:*:*:*:*:*","matchCriteriaId":"1B8D3E00-64C3-407A-9B00-8B6E383F73FA"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:4500u:*:*:*:*:*:*:*","matchCriteriaId":"CB1B00A1-9C15-47C2-9F57-66586DEACC7D"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:4510u:*:*:*:*:*:*:*","matchCriteriaId":"CB5BF932-459F-4DD2-B160-5FE0371C7D83"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:4550u:*:*:*:*:*:*:*","matchCriteriaId":"A58ACE96-F1BE-4261-8F94-FC3C6E7C7561"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:4558u:*:*:*:*:*:*:*","matchCriteriaId":"783D6EA7-C016-4314-A87B-4FED1DC7114B"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:4578u:*:*:*:*:*:*:*","matchCriteriaId":"7AD0176F-FFAE-4A85-9327-CE72FE059E90"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:4600m:*:*:*:*:*:*:*","matchCriteriaId":"A56970C7-F8D3-41B2-A78B-0C7F4A2A4E0A"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:4600u:*:*:*:*:*:*:*","matchCriteriaId":"26D4CE1F-86C8-4E48-9146-9DB57BF540FB"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:4610m:*:*:*:*:*:*:*","matchCriteriaId":"CB7F9D65-5537-4C25-B02B-2393F60D1299"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:4610y:*:*:*:*:*:*:*","matchCriteriaId":"F09C8A92-820D-4572-A797-180E17A7DEB6"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:4650u:*:*:*:*:*:*:*","matchCriteriaId":"CA7D77A2-0D9A-4D0D-B0DC-152757917BE6"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:4700ec:*:*:*:*:*:*:*","matchCriteriaId":"A07D3F1A-16CE-461F-A2F4-80FE5F841CB3"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:4700eq:*:*:*:*:*:*:*","matchCriteriaId":"0C04557A-C508-4FAD-A535-1C0AEFF08075"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:4700hq:*:*:*:*:*:*:*","matchCriteriaId":"6AFAE489-6679-4705-BF9C-BB6D385A1DC3"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:4700mq:*:*:*:*:*:*:*","matchCriteriaId":"429A99C8-BC55-4887-893C-7124C1A5DB08"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:4702ec:*:*:*:*:*:*:*","matchCriteriaId":"E3A2B709-CC19-4116-A5BE-5DB5C8B45A12"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:4702hq:*:*:*:*:*:*:*","matchCriteriaId":"D79DAC74-1F28-4EC8-B417-3FAFFB74C4BB"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:4702mq:*:*:*:*:*:*:*","matchCriteriaId":"6F1F1377-6220-43FB-BEF9-BAA7B0158147"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:4710hq:*:*:*:*:*:*:*","matchCriteriaId":"18422CA8-3000-46B1-9065-2369E6B0BE16"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:4710mq:*:*:*:*:*:*:*","matchCriteriaId":"5D558C66-E80E-4FC7-A0DF-485466390C46"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:4712hq:*:*:*:*:*:*:*","matchCriteriaId":"E23EA9AE-9E70-47B5-AD9B-0DF13A0939E0"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:4712mq:*:*:*:*:*:*:*","matchCriteriaId":"860F22F6-4C87-47C5-965E-02A1AFF41A72"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:4720hq:*:*:*:*:*:*:*","matchCriteriaId":"19A2CA86-BFA8-4C78-987D-AD26F32622F7"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:4722hq:*:*:*:*:*:*:*","matchCriteriaId":"EEF64E0A-CDB0-427E-A96F-095EFEBA0A3D"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:4750hq:*:*:*:*:*:*:*","matchCriteriaId":"425F6D34-EE60-464B-8EA6-8116EDAA1219"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:4760hq:*:*:*:*:*:*:*","matchCriteriaId":"CEB9F657-1239-4424-A2E8-F8BD98C0095E"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:4765t:*:*:*:*:*:*:*","matchCriteriaId":"F631403C-0A67-42CB-815C-133EB87E0C95"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:4770:*:*:*:*:*:*:*","matchCriteriaId":"6A4A5A57-B1A2-4BBA-AC36-7EA7DF9CDE06"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:4770hq:*:*:*:*:*:*:*","matchCriteriaId":"0453C0EA-BA67-49D5-964F-35493F97D905"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:4770k:*:*:*:*:*:*:*","matchCriteriaId":"4D4D237E-ACB7-4382-AF5B-D27E634BF867"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:4770r:*:*:*:*:*:*:*","matchCriteriaId":"B5461EB2-2958-4923-86AF-C74D449120B5"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:4770s:*:*:*:*:*:*:*","matchCriteriaId":"45C22141-E698-4E38-AF50-9CE04C1168FE"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:4770t:*:*:*:*:*:*:*","matchCriteriaId":"49D0E470-427D-4A68-AFD2-982A4F7CE2D7"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:4770te:*:*:*:*:*:*:*","matchCriteriaId":"43AB50F3-14AC-44BD-B7F0-A683C5FD1A3F"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:4771:*:*:*:*:*:*:*","matchCriteriaId":"713C4B7A-C38A-4818-A258-D07DEDEC906E"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:4785t:*:*:*:*:*:*:*","matchCriteriaId":"C59740BE-FC30-4400-B978-1DB41282971C"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:4790:*:*:*:*:*:*:*","matchCriteriaId":"839728F0-5F23-462F-B493-C37EE4C874F9"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:4790k:*:*:*:*:*:*:*","matchCriteriaId":"6F1B47DA-BA53-4D7A-9B5B-582238D5E99A"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:4790s:*:*:*:*:*:*:*","matchCriteriaId":"D452F1BF-1FA5-463C-8F13-6357509FB5D1"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:4790t:*:*:*:*:*:*:*","matchCriteriaId":"EF6D1F4C-B396-468C-BA32-9367A68C95DD"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:4800mq:*:*:*:*:*:*:*","matchCriteriaId":"B76A812F-D77A-49C8-B7A5-0C08258D4BBD"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:4810mq:*:*:*:*:*:*:*","matchCriteriaId":"6E001AAB-07EC-47BF-BDE9-BB927872781D"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:4850hq:*:*:*:*:*:*:*","matchCriteriaId":"D1DF11F5-61E8-4A98-86C8-49D6B3224FCC"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:4860hq:*:*:*:*:*:*:*","matchCriteriaId":"AED153E7-99A2-4C02-B81B-C3DDF8FAE1A0"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:4870hq:*:*:*:*:*:*:*","matchCriteriaId":"D024802A-EA60-4D9B-B04C-027A0703EABD"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:4900mq:*:*:*:*:*:*:*","matchCriteriaId":"BA731F3C-1F04-4EE2-83EC-9486F5032903"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:4910mq:*:*:*:*:*:*:*","matchCriteriaId":"544A59F6-E731-43C8-8455-69256933E71D"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:4950hq:*:*:*:*:*:*:*","matchCriteriaId":"624258EE-7FFF-4432-9B6D-4D60AA73CD9A"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:4960hq:*:*:*:*:*:*:*","matchCriteriaId":"69A2701A-35A8-4268-B9CF-40BA3219373B"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:4980hq:*:*:*:*:*:*:*","matchCriteriaId":"15E671F6-8DED-4735-BE97-58A60E5B5C13"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:5500u:*:*:*:*:*:*:*","matchCriteriaId":"3FC68B2A-8570-4311-BB60-49DBBDAF7430"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:5550u:*:*:*:*:*:*:*","matchCriteriaId":"9826FA02-937E-4323-B9D5-8AE059ADBE95"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:5557u:*:*:*:*:*:*:*","matchCriteriaId":"9B8630BB-48AA-4688-A6F0-212C1BB4D14C"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:5600u:*:*:*:*:*:*:*","matchCriteriaId":"9AC98D35-D7D5-4C24-B47E-EDE2A80B2B9E"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:5650u:*:*:*:*:*:*:*","matchCriteriaId":"A2F8ABCB-12C3-4C45-844E-B07F77DA2DE9"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:5700eq:*:*:*:*:*:*:*","matchCriteriaId":"326105AC-3926-437E-8AFF-916960107050"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:5700hq:*:*:*:*:*:*:*","matchCriteriaId":"866E1275-7541-4B80-8FDF-53246A204C15"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:5750hq:*:*:*:*:*:*:*","matchCriteriaId":"E190929D-D3CC-46E1-A903-0848829061DF"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:5775c:*:*:*:*:*:*:*","matchCriteriaId":"81E4EBCB-B660-4F6A-AD73-81B9D8964162"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:5775r:*:*:*:*:*:*:*","matchCriteriaId":"55D58CC5-CB46-464D-93B8-6AD5A19AF097"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:5850eq:*:*:*:*:*:*:*","matchCriteriaId":"16541D3E-EBBD-4D92-96D8-F169733377AE"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:5850hq:*:*:*:*:*:*:*","matchCriteriaId":"3F08D257-F570-4D39-A6E8-0F60E55472E6"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:5950hq:*:*:*:*:*:*:*","matchCriteriaId":"C20ED667-2BFB-41C7-82BA-9F0C0044DA08"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:7500u:*:*:*:*:*:*:*","matchCriteriaId":"6158ED8A-007E-48B7-99BF-8BA03BF584BD"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:7560u:*:*:*:*:*:*:*","matchCriteriaId":"DBA7096A-F321-49A0-911A-F9683ABE6E6A"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:7567u:*:*:*:*:*:*:*","matchCriteriaId":"6A471395-7F8F-4BA5-962D-4D8F271FAB47"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:7600u:*:*:*:*:*:*:*","matchCriteriaId":"B9484380-92B9-44DB-8E20-DC8DE02D1CA6"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:7660u:*:*:*:*:*:*:*","matchCriteriaId":"8010808D-805D-4CA3-9EA2-55EB1E57964C"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:7700:*:*:*:*:*:*:*","matchCriteriaId":"9716FE9F-A056-42A3-A241-F2FE37A6386A"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:7700hq:*:*:*:*:*:*:*","matchCriteriaId":"F73422A3-ECA0-4C41-9AA5-CF7D77885CF6"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:7700k:*:*:*:*:*:*:*","matchCriteriaId":"7A96A5AF-C9EF-4DED-AE25-4540A2B02915"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:7700t:*:*:*:*:*:*:*","matchCriteriaId":"D5115B12-053A-4866-A833-D6EC88D8F93E"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:7820eq:*:*:*:*:*:*:*","matchCriteriaId":"C5619D4D-9685-4595-8A5F-A18273FE4213"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:7820hk:*:*:*:*:*:*:*","matchCriteriaId":"B77E00E7-0EA4-4E32-A693-0E0F66BA4C57"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:7820hq:*:*:*:*:*:*:*","matchCriteriaId":"DAA3457E-7E1A-4878-9752-79382E954A66"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:7920hq:*:*:*:*:*:*:*","matchCriteriaId":"68630C63-4457-4E12-B7BD-AD456B237FC5"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:8550u:*:*:*:*:*:*:*","matchCriteriaId":"F6FB5695-2950-4CEC-81B4-FD280F835330"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:8650u:*:*:*:*:*:*:*","matchCriteriaId":"9F340AF8-508F-449D-9AFA-4E55F069B4F3"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:8700:*:*:*:*:*:*:*","matchCriteriaId":"E944410E-D674-4141-B50C-9F55090325FF"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_i7:8700k:*:*:*:*:*:*:*","matchCriteriaId":"A6438E07-0AC0-4BF9-B0F2-9072CA9639D6"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_m:5y10:*:*:*:*:*:*:*","matchCriteriaId":"5079AA70-C864-4AE2-809C-52B50632F2B3"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_m:5y10a:*:*:*:*:*:*:*","matchCriteriaId":"5D124BCB-D8C3-49F5-B05C-E09B3CEBEBCD"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_m:5y10c:*:*:*:*:*:*:*","matchCriteriaId":"6A86291B-C986-4320-BCEF-9F5AD8B309D3"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_m:5y31:*:*:*:*:*:*:*","matchCriteriaId":"1227659F-1393-4189-978B-CC3DC53BF407"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_m:5y51:*:*:*:*:*:*:*","matchCriteriaId":"4C2DB843-638F-41EF-B486-409318AA2DE9"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_m:5y70:*:*:*:*:*:*:*","matchCriteriaId":"A0004D8A-A186-4DA2-A7AB-18A6456438FF"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_m:5y71:*:*:*:*:*:*:*","matchCriteriaId":"75B6BE9F-F113-4976-951D-53F2E183A95A"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_m3:6y30:*:*:*:*:*:*:*","matchCriteriaId":"DEB005F1-9719-4985-B9D9-2140C962ADD1"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_m3:7y30:*:*:*:*:*:*:*","matchCriteriaId":"A94D0C1B-F30F-4724-915E-192C53FAE58A"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_m3:7y32:*:*:*:*:*:*:*","matchCriteriaId":"3F247860-1D2C-415C-AFBD-26BD875AAF02"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_m5:6y54:*:*:*:*:*:*:*","matchCriteriaId":"9697EDCD-A742-4AC6-876E-1080AD684207"},{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_m5:6y57:*:*:*:*:*:*:*","matchCriteriaId":"6E73924A-875B-44D0-8F7C-A822B0488126"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:h:intel:core_m7:6y75:*:*:*:*:*:*:*","matchCriteriaId":"03751B92-EE07-4F16-A476-BD25561810BC"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:h:intel:xeon:*:*:*:*:*:*:*:*","matchCriteriaId":"DAF71B61-A595-476B-B949-1A0FBDB360A6"}]}]}],"references":[{"url":"http://support.lenovo.com/us/en/solutions/LEN-24163","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20180815-01-cpu-en","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"http://www.securityfocus.com/bid/105080","source":"secure@intel.com","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1041451","source":"secure@intel.com","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1042004","source":"secure@intel.com"},{"url":"http://www.vmware.com/security/advisories/VMSA-2018-0020.html","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"http://xenbits.xen.org/xsa/advisory-273.html","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:2384","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:2387","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:2388","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:2389","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:2390","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:2391","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:2392","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:2393","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:2394","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:2395","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:2396","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:2402","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:2403","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:2404","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:2602","source":"secure@intel.com"},{"url":"https://access.redhat.com/errata/RHSA-2018:2603","source":"secure@intel.com"},{"url":"https://cert-portal.siemens.com/productcert/pdf/ssa-254686.pdf","source":"secure@intel.com"},{"url":"https://cert-portal.siemens.com/productcert/pdf/ssa-608355.pdf","source":"secure@intel.com"},{"url":"https://foreshadowattack.eu/","source":"secure@intel.com","tags":["Technical Description","Third Party Advisory"]},{"url":"https://help.ecostruxureit.com/display/public/UADCE725/Security+fixes+in+StruxureWare+Data+Center+Expert+v7.6.0","source":"secure@intel.com"},{"url":"https://lists.debian.org/debian-lts-announce/2018/08/msg00029.html","source":"secure@intel.com"},{"url":"https://lists.debian.org/debian-lts-announce/2018/09/msg00017.html","source":"secure@intel.com"},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/V4UWGORQWCENCIF2BHWUEF2ODBV75QS2/","source":"secure@intel.com"},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XRFKQWYV2H4BV75CUNGCGE5TNVQCLBGZ/","source":"secure@intel.com"},{"url":"https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/ADV180018","source":"secure@intel.com"},{"url":"https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2018-0010","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://security.FreeBSD.org/advisories/FreeBSD-SA-18:09.l1tf.asc","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://security.gentoo.org/glsa/201810-06","source":"secure@intel.com"},{"url":"https://security.netapp.com/advisory/ntap-20180815-0001/","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://software.intel.com/security-software-guidance/software-guidance/l1-terminal-fault","source":"secure@intel.com","tags":["Mitigation","Vendor Advisory"]},{"url":"https://support.f5.com/csp/article/K31300402","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03874en_us","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180814-cpusidechannel","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://usn.ubuntu.com/3740-1/","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://usn.ubuntu.com/3740-2/","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://usn.ubuntu.com/3741-1/","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://usn.ubuntu.com/3741-2/","source":"secure@intel.com"},{"url":"https://usn.ubuntu.com/3742-1/","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://usn.ubuntu.com/3742-2/","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"https://usn.ubuntu.com/3756-1/","source":"secure@intel.com"},{"url":"https://usn.ubuntu.com/3823-1/","source":"secure@intel.com"},{"url":"https://www.debian.org/security/2018/dsa-4274","source":"secure@intel.com"},{"url":"https://www.debian.org/security/2018/dsa-4279","source":"secure@intel.com"},{"url":"https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00161.html","source":"secure@intel.com","tags":["Vendor Advisory"]},{"url":"https://www.kb.cert.org/vuls/id/982149","source":"secure@intel.com"},{"url":"https://www.oracle.com/security-alerts/cpujul2020.html","source":"secure@intel.com"},{"url":"https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html","source":"secure@intel.com"},{"url":"https://www.oracle.com/technetwork/security-advisory/cpujan2019-5072801.html","source":"secure@intel.com"},{"url":"https://www.synology.com/support/security/Synology_SA_18_45","source":"secure@intel.com","tags":["Third Party Advisory"]},{"url":"http://support.lenovo.com/us/en/solutions/LEN-24163","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20180815-01-cpu-en","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.securityfocus.com/bid/105080","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1041451","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1042004","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.vmware.com/security/advisories/VMSA-2018-0020.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://xenbits.xen.org/xsa/advisory-273.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:2384","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:2387","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:2388","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:2389","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:2390","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:2391","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:2392","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:2393","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:2394","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:2395","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:2396","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:2402","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:2403","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:2404","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2018:2602","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://access.redhat.com/errata/RHSA-2018:2603","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://cert-portal.siemens.com/productcert/pdf/ssa-254686.pdf","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://cert-portal.siemens.com/productcert/pdf/ssa-608355.pdf","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://foreshadowattack.eu/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Technical Description","Third Party Advisory"]},{"url":"https://help.ecostruxureit.com/display/public/UADCE725/Security+fixes+in+StruxureWare+Data+Center+Expert+v7.6.0","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://lists.debian.org/debian-lts-announce/2018/08/msg00029.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://lists.debian.org/debian-lts-announce/2018/09/msg00017.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/V4UWGORQWCENCIF2BHWUEF2ODBV75QS2/","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XRFKQWYV2H4BV75CUNGCGE5TNVQCLBGZ/","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/ADV180018","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2018-0010","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://security.FreeBSD.org/advisories/FreeBSD-SA-18:09.l1tf.asc","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://security.gentoo.org/glsa/201810-06","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://security.netapp.com/advisory/ntap-20180815-0001/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://software.intel.com/security-software-guidance/software-guidance/l1-terminal-fault","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mitigation","Vendor Advisory"]},{"url":"https://support.f5.com/csp/article/K31300402","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03874en_us","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180814-cpusidechannel","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://usn.ubuntu.com/3740-1/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://usn.ubuntu.com/3740-2/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://usn.ubuntu.com/3741-1/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://usn.ubuntu.com/3741-2/","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://usn.ubuntu.com/3742-1/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://usn.ubuntu.com/3742-2/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://usn.ubuntu.com/3756-1/","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://usn.ubuntu.com/3823-1/","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://www.debian.org/security/2018/dsa-4274","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://www.debian.org/security/2018/dsa-4279","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00161.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]},{"url":"https://www.kb.cert.org/vuls/id/982149","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://www.oracle.com/security-alerts/cpujul2020.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://www.oracle.com/technetwork/security-advisory/cpujan2019-5072801.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://www.synology.com/support/security/Synology_SA_18_45","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]}]}},{"cve":{"id":"CVE-2018-7789","sourceIdentifier":"cybersecurity@se.com","published":"2018-08-29T20:29:00.343","lastModified":"2026-05-29T15:16:16.070","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"An Improper Check for Unusual or Exceptional Conditions vulnerability exists in Schneider Electric's Modicon M221 product (all references, all versions prior to firmware V1.6.2.0). The vulnerability allows unauthorized users to remotely reboot Modicon M221 using crafted programing protocol frames."},{"lang":"es","value":"Existe una vulnerabilidad de comprobación incorrecta de condiciones inusuales o excepcionales en el producto Modicon M221, de Schneider Electric (todas las referencias y todas las versiones anteriores al firmware V1.6.2.0). La vulnerabilidad permite que usuarios no autorizados reinicien Modicon M221 remotamente mediante frames manipulados del protocolo de programación."}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":3.6},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:L","baseScore":4.8,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"LOW","availabilityImpact":"LOW"},"exploitabilityScore":2.2,"impactScore":2.5}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:N/I:N/A:C","baseScore":7.8,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"COMPLETE"},"baseSeverity":"HIGH","exploitabilityScore":10.0,"impactScore":6.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-754"}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-754"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_m221_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"1.6.2.0","matchCriteriaId":"55D26878-E5EB-4537-A252-34B3EBB758CC"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_m221:-:*:*:*:*:*:*:*","matchCriteriaId":"BB0D83F4-B718-47AB-AFB8-B576CB138AAC"}]}]}],"references":[{"url":"http://www.securityfocus.com/bid/105171","source":"cybersecurity@se.com","tags":["Third Party Advisory","VDB Entry"]},{"url":"https://ics-cert.us-cert.gov/advisories/ICSA-18-240-02","source":"cybersecurity@se.com","tags":["Mitigation","Third Party Advisory","US Government Resource"]},{"url":"https://www.schneider-electric.com/en/download/document/SEVD-2018-233-01/","source":"cybersecurity@se.com","tags":["Mitigation","Vendor Advisory"]},{"url":"http://www.securityfocus.com/bid/105171","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"https://ics-cert.us-cert.gov/advisories/ICSA-18-240-02","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mitigation","Third Party Advisory","US Government Resource"]},{"url":"https://www.schneider-electric.com/en/download/document/SEVD-2018-233-01/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mitigation","Vendor Advisory"]}]}},{"cve":{"id":"CVE-2018-7795","sourceIdentifier":"cybersecurity@se.com","published":"2018-08-29T20:29:00.437","lastModified":"2026-05-29T18:16:25.983","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"A Cross Protocol Injection vulnerability exists in Schneider Electric's PowerLogic (PM5560 prior to FW version 2.5.4) product. The vulnerability makes the product susceptible to cross site scripting attack on its web browser. User inputs can be manipulated to cause execution of java script code."},{"lang":"es","value":"Existe una vulnerabilidad de inyección de protocolos cruzados en el producto PowerLogic, de Schneider Electric (PM5560 anteriores a la versión de firmware 2.5.4). La vulnerabilidad hace que el producto sea susceptible a un ataque de Cross-Site Scripting (XSS) en su navegador web. Las entradas de usuario pueden manipularse para provocar la ejecución de código JavaScript."}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N","baseScore":5.4,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":2.5}],"cvssMetricV30":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.0","vectorString":"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N","baseScore":6.1,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":2.7}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:M/Au:N/C:N/I:P/A:N","baseScore":4.3,"accessVector":"NETWORK","accessComplexity":"MEDIUM","authentication":"NONE","confidentialityImpact":"NONE","integrityImpact":"PARTIAL","availabilityImpact":"NONE"},"baseSeverity":"MEDIUM","exploitabilityScore":8.6,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":true}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-79"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:powerlogic_pm5560_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"2.5.4","matchCriteriaId":"A237BEC6-C940-49B8-B39B-E3C6DF9EAA7D"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:powerlogic_pm5560:-:*:*:*:*:*:*:*","matchCriteriaId":"6DDB1B76-3862-462E-B55D-875EBE508B92"}]}]}],"references":[{"url":"http://www.securityfocus.com/bid/105170","source":"cybersecurity@se.com","tags":["Third Party Advisory","VDB Entry"]},{"url":"https://ics-cert.us-cert.gov/advisories/ICSA-18-240-03","source":"cybersecurity@se.com","tags":["Mitigation","Third Party Advisory","US Government Resource"]},{"url":"https://www.schneider-electric.com/en/download/document/SEVD-2018-228-01/","source":"cybersecurity@se.com","tags":["Mitigation","Vendor Advisory"]},{"url":"http://www.securityfocus.com/bid/105170","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"https://ics-cert.us-cert.gov/advisories/ICSA-18-240-03","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mitigation","Third Party Advisory","US Government Resource"]},{"url":"https://www.schneider-electric.com/en/download/document/SEVD-2018-228-01/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mitigation","Vendor Advisory"]}]}},{"cve":{"id":"CVE-2018-7790","sourceIdentifier":"cybersecurity@se.com","published":"2018-08-29T21:29:01.070","lastModified":"2026-05-29T15:16:16.280","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"An Information Management Error vulnerability exists in Schneider Electric's Modicon M221 product (all references, all versions prior to firmware V1.6.2.0). The vulnerability allows unauthorized users to replay authentication sequences. If an attacker exploits this vulnerability and connects to a Modicon M221, the attacker can upload the original program from the PLC."},{"lang":"es","value":"Existe una vulnerabilidad de error de gestión de información en el producto Modicon M221, de Schneider Electric (todas las referencias y todas las versiones anteriores al firmware V1.6.2.0). La vulnerabilidad permite que usuarios no autorizados reproduzcan secuencias de autenticación. Si un atacante explota la vulnerabilidad y se conecta a Modicon M221, el atacante puede subir el programa original desde el PLC."}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":9.8,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":5.9},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":9.8,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":5.9}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:P/I:P/A:P","baseScore":7.5,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"PARTIAL","availabilityImpact":"PARTIAL"},"baseSeverity":"HIGH","exploitabilityScore":10.0,"impactScore":6.4,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-294"}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-294"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_m221_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"1.6.2.0","matchCriteriaId":"55D26878-E5EB-4537-A252-34B3EBB758CC"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_m221:-:*:*:*:*:*:*:*","matchCriteriaId":"BB0D83F4-B718-47AB-AFB8-B576CB138AAC"}]}]}],"references":[{"url":"http://www.securityfocus.com/bid/105182","source":"cybersecurity@se.com","tags":["Third Party Advisory","VDB Entry"]},{"url":"https://www.schneider-electric.com/en/download/document/SEVD-2018-235-01/","source":"cybersecurity@se.com","tags":["Mitigation","Vendor Advisory"]},{"url":"http://www.securityfocus.com/bid/105182","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"https://www.schneider-electric.com/en/download/document/SEVD-2018-235-01/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mitigation","Vendor Advisory"]}]}},{"cve":{"id":"CVE-2018-7791","sourceIdentifier":"cybersecurity@se.com","published":"2018-08-29T21:29:01.180","lastModified":"2026-05-29T15:16:16.447","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"A Permissions, Privileges, and Access Control vulnerability exists in Schneider Electric's Modicon M221 product (all references, all versions prior to firmware V1.6.2.0). The vulnerability allows unauthorized users to overwrite the original password with their password. If an attacker exploits this vulnerability and overwrite the password, the attacker can upload the original program from the PLC."},{"lang":"es","value":"Existe una vulnerabilidad de permisos, privilegios y control de acceso en el producto Modicon M221, de Schneider Electric (todas las referencias y todas las versiones anteriores al firmware V1.6.2.0). La vulnerabilidad permite que usuarios no autorizados sobrescriban la contraseña original con su contraseña. Si un atacante explota la vulnerabilidad y sobrescribe la contraseña, el atacante puede subir el programa original desde el PLC."}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":9.8,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":5.9},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":9.8,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":5.9}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:P/I:P/A:P","baseScore":7.5,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"PARTIAL","availabilityImpact":"PARTIAL"},"baseSeverity":"HIGH","exploitabilityScore":10.0,"impactScore":6.4,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-287"}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-284"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_m221_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"1.6.2.0","matchCriteriaId":"55D26878-E5EB-4537-A252-34B3EBB758CC"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_m221:-:*:*:*:*:*:*:*","matchCriteriaId":"BB0D83F4-B718-47AB-AFB8-B576CB138AAC"}]}]}],"references":[{"url":"http://www.securityfocus.com/bid/105182","source":"cybersecurity@se.com","tags":["Third Party Advisory","VDB Entry"]},{"url":"https://www.schneider-electric.com/en/download/document/SEVD-2018-235-01/","source":"cybersecurity@se.com","tags":["Mitigation","Vendor Advisory"]},{"url":"http://www.securityfocus.com/bid/105182","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"https://www.schneider-electric.com/en/download/document/SEVD-2018-235-01/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mitigation","Vendor Advisory"]}]}},{"cve":{"id":"CVE-2018-7792","sourceIdentifier":"cybersecurity@se.com","published":"2018-08-29T21:29:01.273","lastModified":"2026-05-29T15:16:16.623","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"A Permissions, Privileges, and Access Control vulnerability exists in Schneider Electric's Modicon M221 product (all references, all versions prior to firmware V1.6.2.0). The vulnerability allows unauthorized users to decode the password using rainbow table."},{"lang":"es","value":"Existe una vulnerabilidad de permisos, privilegios y control de acceso en el producto Modicon M221, de Schneider Electric (todas las referencias y todas las versiones anteriores al firmware V1.6.2.0). La vulnerabilidad permite que usuarios no autorizados descifren la contraseña mediante tablas rainbow."}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":3.6},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":3.6}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:P/I:N/A:N","baseScore":5.0,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"NONE","availabilityImpact":"NONE"},"baseSeverity":"MEDIUM","exploitabilityScore":10.0,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-862"}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-327"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_m221_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"1.6.2.0","matchCriteriaId":"55D26878-E5EB-4537-A252-34B3EBB758CC"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_m221:-:*:*:*:*:*:*:*","matchCriteriaId":"BB0D83F4-B718-47AB-AFB8-B576CB138AAC"}]}]}],"references":[{"url":"http://www.securityfocus.com/bid/105182","source":"cybersecurity@se.com","tags":["Third Party Advisory","VDB Entry"]},{"url":"https://www.schneider-electric.com/en/download/document/SEVD-2018-235-01/","source":"cybersecurity@se.com","tags":["Mitigation","Vendor Advisory"]},{"url":"http://www.securityfocus.com/bid/105182","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"https://www.schneider-electric.com/en/download/document/SEVD-2018-235-01/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mitigation","Vendor Advisory"]}]}},{"cve":{"id":"CVE-2018-7798","sourceIdentifier":"cybersecurity@se.com","published":"2018-11-02T17:29:00.680","lastModified":"2026-05-29T15:16:16.993","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"A Insufficient Verification of Data Authenticity (CWE-345) vulnerability exists in the Modicon M221, all versions, which could cause a change of IPv4 configuration (IP address, mask and gateway) when remotely connected to the device."},{"lang":"es","value":"Existe una vulnerabilidad de verificación insuficiente de autenticidad de datos (CWE-345) en Modicon Modicon M221, todas las versiones, lo que podría provocar un cambio en la configuración IPv4 (dirección IP, máscara y puerta de enlace) al conectarse remotamente al dispositivo."}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:L","baseScore":8.2,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"HIGH","availabilityImpact":"LOW"},"exploitabilityScore":3.9,"impactScore":4.2},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:L","baseScore":8.2,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"HIGH","availabilityImpact":"LOW"},"exploitabilityScore":3.9,"impactScore":4.2}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:N/I:P/A:P","baseScore":6.4,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"NONE","integrityImpact":"PARTIAL","availabilityImpact":"PARTIAL"},"baseSeverity":"MEDIUM","exploitabilityScore":10.0,"impactScore":4.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-345"}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-345"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:schneider-electric:somachine_basic:*:*:*:*:*:*:*:*","matchCriteriaId":"2BCEA269-6242-41FD-B141-F72CAFC8F114"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_m221:-:*:*:*:*:*:*:*","matchCriteriaId":"BB0D83F4-B718-47AB-AFB8-B576CB138AAC"}]}]}],"references":[{"url":"http://www.securityfocus.com/bid/105970","source":"cybersecurity@se.com","tags":["Third Party Advisory","VDB Entry"]},{"url":"https://www.schneider-electric.com/en/download/document/SEVD-2018-270-01/","source":"cybersecurity@se.com","tags":["Mitigation","Vendor Advisory"]},{"url":"http://www.securityfocus.com/bid/105970","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"https://www.schneider-electric.com/en/download/document/SEVD-2018-270-01/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mitigation","Vendor Advisory"]}]}},{"cve":{"id":"CVE-2019-10953","sourceIdentifier":"ics-cert@hq.dhs.gov","published":"2019-04-17T15:29:00.843","lastModified":"2026-05-29T16:16:20.270","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"ABB, Phoenix Contact, Schneider Electric, Siemens, WAGO - Programmable Logic Controllers, multiple versions. Researchers have found some controllers are susceptible to a denial-of-service attack due to a flood of network packets."},{"lang":"es","value":"En Controladores lógicos programables de ABB, Phoenix Contact, Schneider Electric, Siemens, WAGO - , versiones múltiples. Los investigadores han encontrado que algunos controladores son susceptibles a un ataque de Denegación de Servicio (DoS) debido a una inundación de paquetes de red."}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":3.6},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":3.6}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:N/I:N/A:P","baseScore":5.0,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"PARTIAL"},"baseSeverity":"MEDIUM","exploitabilityScore":10.0,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"ics-cert@hq.dhs.gov","type":"Secondary","description":[{"lang":"en","value":"CWE-400"}]},{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-770"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:abb:pm554-tp-eth_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"847F4C95-9AB3-425F-A878-4DC195DBD668"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:abb:pm554-tp-eth:-:*:*:*:*:*:*:*","matchCriteriaId":"BBE1207A-9B60-47B4-A746-DC152ED24077"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:phoenixcontact:ilc_151_eth_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"FB358CEE-2B29-4DAB-A100-36C841718D56"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:phoenixcontact:ilc_151_eth:-:*:*:*:*:*:*:*","matchCriteriaId":"301BA6C4-3E50-46CC-A6C9-E61948994F20"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_m221_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"1.10.0.0","matchCriteriaId":"F757A52E-2401-4A09-B53E-73135C5289A1"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_m221:-:*:*:*:*:*:*:*","matchCriteriaId":"BB0D83F4-B718-47AB-AFB8-B576CB138AAC"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:siemens:6es7211-1ae40-0xb0_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"4B034C67-6905-4A7F-8ADC-DACC0B73BB8E"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:siemens:6es7211-1ae40-0xb0:-:*:*:*:*:*:*:*","matchCriteriaId":"70357AB0-8076-48BD-AB43-8D7AB53A0722"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:siemens:6es7314-6eh04-0ab0_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"42683ED6-7FA5-41BD-AA18-F356BDD3D4DC"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:siemens:6es7314-6eh04-0ab0:-:*:*:*:*:*:*:*","matchCriteriaId":"577E4267-C1E8-4DBD-BADF-ABCD7234665A"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:siemens:6ed1052-1cc01-0ba8_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"5757EF80-9057-4179-89BC-7C1A86CE84D8"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:siemens:6ed1052-1cc01-0ba8:-:*:*:*:*:*:*:*","matchCriteriaId":"60C0A7A2-8492-42F1-A3D9-013137887FA7"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:wago:knx_ip_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"E13BFBE3-A566-445C-BEE0-0BB8F39A6F42"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:wago:knx_ip:-:*:*:*:*:*:*:*","matchCriteriaId":"E24D4135-A691-479E-963A-0ED39670CEC4"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:wago:pfc100_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"08D508EF-AF32-4987-B3FF-D1A9EFEC94D0"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:wago:pfc100:-:*:*:*:*:*:*:*","matchCriteriaId":"8F636354-95A2-4B36-9666-1FA57F185432"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:wago:ethernet_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"111D5C0E-9346-4553-9D12-3453BA5F70B0"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:wago:ethernet:-:*:*:*:*:*:*:*","matchCriteriaId":"91B48D8E-F0DD-4B6B-91D9-9B5FFF715FFD"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:wago:bacnet\\/ip_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"F6BEBE22-0480-4513-9550-508EB52FBE03"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:wago:bacnet\\/ip:-:*:*:*:*:*:*:*","matchCriteriaId":"2AB69F49-EC3E-4EA4-8DCE-53C04166505E"}]}]}],"references":[{"url":"http://www.securityfocus.com/bid/108413","source":"ics-cert@hq.dhs.gov","tags":["Third Party Advisory","VDB Entry"]},{"url":"https://ics-cert.us-cert.gov/advisories/ICSA-19-106-03","source":"ics-cert@hq.dhs.gov","tags":["Mitigation","Third Party Advisory","US Government Resource"]},{"url":"http://www.securityfocus.com/bid/108413","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"https://ics-cert.us-cert.gov/advisories/ICSA-19-106-03","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mitigation","Third Party Advisory","US Government Resource"]}]}},{"cve":{"id":"CVE-2018-7821","sourceIdentifier":"cybersecurity@se.com","published":"2019-05-22T20:29:01.043","lastModified":"2026-05-29T15:16:17.167","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"An Environment (CWE-2) vulnerability exists in SoMachine Basic, all versions, and Modicon M221(all references, all versions prior to firmware V1.10.0.0) which could cause cycle time impact when flooding the M221 ethernet interface while the Ethernet/IP adapter is activated."},{"lang":"es","value":"Existe una vulnerabilidad de entorno (CWE-2) en SoMachine Basic, todas las versiones, y Modicon M221 (todas las referencias, todas las versiones anteriores al firmware V1.10.0.0), que podría generar un impacto en el tiempo del ciclo al inundar la interfaz ethernet M221 mientras que el  adaptador Ethernet/IP está activado."}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":3.6},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":3.6}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:N/I:N/A:P","baseScore":5.0,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"PARTIAL"},"baseSeverity":"MEDIUM","exploitabilityScore":10.0,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-770"}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-400"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:schneider-electric:somachine_basic:*:*:*:*:*:*:*:*","matchCriteriaId":"2BCEA269-6242-41FD-B141-F72CAFC8F114"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_m221_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"1.10.0.0","matchCriteriaId":"F757A52E-2401-4A09-B53E-73135C5289A1"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_m221:-:*:*:*:*:*:*:*","matchCriteriaId":"BB0D83F4-B718-47AB-AFB8-B576CB138AAC"}]}]}],"references":[{"url":"https://www.schneider-electric.com/en/download/document/SEVD-2019-045-01/","source":"cybersecurity@se.com","tags":["Vendor Advisory"]},{"url":"https://www.schneider-electric.com/en/download/document/SEVD-2019-045-01/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]}]}},{"cve":{"id":"CVE-2018-7852","sourceIdentifier":"cybersecurity@se.com","published":"2019-05-22T20:29:01.900","lastModified":"2026-05-29T15:16:17.330","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"A CWE-248: Uncaught Exception vulnerability exists in all versions of the Modicon M580, Modicon M340, Modicon Quantum, and Modicon Premium which could cause denial of service when an invalid private command parameter is sent to the controller over Modbus."},{"lang":"es","value":"CWE-248: Existe una vulnerabilidad de Excepción no Detectada en todas las versiones de Modicon M580, Modicon M340, Modicon Quantum y Modicon Premium, lo que podría provocar una Denegación de Servicio cuando se envía un parámetro de comando privado no válido hacia el controlador sobre protocolo Modbus."}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":3.6},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":3.6}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:N/I:N/A:P","baseScore":5.0,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"PARTIAL"},"baseSeverity":"MEDIUM","exploitabilityScore":10.0,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-755"}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-248"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_m580_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"D52D735D-8AB5-40FE-A83F-266977601571"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580:-:*:*:*:*:*:*:*","matchCriteriaId":"E876C738-ABF6-4864-98A6-1E06E96A0DF4"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_m340_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"05CBA9AD-ECB7-453F-8551-DD176FDE8043"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_m340:-:*:*:*:*:*:*:*","matchCriteriaId":"138681A2-0146-492B-8E10-06849FC27C6E"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_quantum_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"745CC7A7-70FB-4551-8EBF-600B7A6236D7"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_quantum:-:*:*:*:*:*:*:*","matchCriteriaId":"A9B7CEF7-B9BA-4923-808F-DA2931569EBB"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_premium_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"619CFD8D-9652-4AAB-AFC4-796B3F10F61F"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_premium:-:*:*:*:*:*:*:*","matchCriteriaId":"F00936E2-E6EF-4ABF-8666-7D83BE424F42"}]}]}],"references":[{"url":"https://www.schneider-electric.com/en/download/document/SEVD-2019-134-11/","source":"cybersecurity@se.com","tags":["Vendor Advisory"]},{"url":"https://www.talosintelligence.com/vulnerability_reports/TALOS-2019-0763","source":"cybersecurity@se.com","tags":["Exploit","Third Party Advisory"]},{"url":"https://www.schneider-electric.com/en/download/document/SEVD-2019-134-11/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]},{"url":"https://www.talosintelligence.com/vulnerability_reports/TALOS-2019-0763","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Exploit","Third Party Advisory"]}]}},{"cve":{"id":"CVE-2019-6819","sourceIdentifier":"cybersecurity@se.com","published":"2019-05-22T20:29:02.090","lastModified":"2026-05-29T15:16:17.517","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists which could cause a possible Denial of Service when specific Modbus frames are sent to the controller in the products: Modicon M340 - firmware versions prior to V3.01, Modicon M580 - firmware versions prior to V2.80, All firmware versions of Modicon Quantum and Modicon Premium."},{"lang":"es","value":"Una CWE-754: Existe una vulnerabilidad de Comprobación Inapropiada  para condiciones inusuales o excepcionales, que podría generar una posible Denegación de Servicio cuando se envían tramas Modbus específicas hacia el controlador en los productos: Modicon M340 - versiones de firmware anteriores a la V3.01, Modicon M580 - versiones de firmware anteriores a V2.80, y todas las versiones de firmware de Modicon Quantum y Modicon Premium."}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":3.6},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":3.6}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:N/I:N/A:P","baseScore":5.0,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"PARTIAL"},"baseSeverity":"MEDIUM","exploitabilityScore":10.0,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"cybersecurity@se.com","type":"Secondary","description":[{"lang":"en","value":"CWE-754"}]},{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-754"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_m340_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"3.01","matchCriteriaId":"606AFE88-8C9A-4D18-9209-1193B628669F"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_m340_bmxp341000:-:*:*:*:*:*:*:*","matchCriteriaId":"178D2338-E48E-493C-992F-337AACE794DE"},{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_m340_bmxp341000h:-:*:*:*:*:*:*:*","matchCriteriaId":"69222495-4F18-434E-B86C-F63C5A2C1242"},{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_m340_bmxp342000:-:*:*:*:*:*:*:*","matchCriteriaId":"6D150239-27E2-4CBE-A931-5107C15E362F"},{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_m340_bmxp3420102:-:*:*:*:*:*:*:*","matchCriteriaId":"98212CF5-BCF4-4A55-B62A-484569687B4E"},{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_m340_bmxp3420102cl:-:*:*:*:*:*:*:*","matchCriteriaId":"D30336F0-EDCF-486C-B52E-D0C53BCDFC65"},{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_m340_bmxp342020:-:*:*:*:*:*:*:*","matchCriteriaId":"99F2F851-C18F-4CB8-B47C-516F2AC7955D"},{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_m340_bmxp342020h:-:*:*:*:*:*:*:*","matchCriteriaId":"56BAED8B-EEFA-45D7-A5A3-9B62067CE24C"},{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_m340_bmxp3420302:-:*:*:*:*:*:*:*","matchCriteriaId":"354968F7-C41B-4C21-8E47-81DC07DF0EA5"},{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_m340_bmxp3420302cl:-:*:*:*:*:*:*:*","matchCriteriaId":"32091F91-9397-4506-8801-C68B9E8B60F0"},{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_m340_bmxp3420302h:-:*:*:*:*:*:*:*","matchCriteriaId":"075A16D1-F4DF-4DCB-8DF9-152E282CE01F"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_m580_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"2.80","matchCriteriaId":"6FDEB227-D50B-402C-9C11-E29F52BC10BB"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:bmeh582040:-:*:*:*:*:*:*:*","matchCriteriaId":"4E6E5E62-BBA8-4370-A232-8E1196757C3E"},{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:bmeh582040c:-:*:*:*:*:*:*:*","matchCriteriaId":"9C393EAE-D2A1-42BC-8CE8-2DCAC96EB769"},{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:bmeh584040:-:*:*:*:*:*:*:*","matchCriteriaId":"E2A8BF9D-AFD1-4F19-A0DB-5EB6F343D890"},{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:bmeh584040c:-:*:*:*:*:*:*:*","matchCriteriaId":"63D48211-A734-4F98-A4D5-569268335757"},{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:bmeh586040:-:*:*:*:*:*:*:*","matchCriteriaId":"38D22DD5-677B-42E8-AE1F-11601D4BF110"},{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:bmeh586040c:-:*:*:*:*:*:*:*","matchCriteriaId":"79907FE7-B4B0-4732-9287-B7ED13115F6C"},{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmep581020:-:*:*:*:*:*:*:*","matchCriteriaId":"2317F260-7AA2-4178-B468-03DF36223E26"},{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmep581020h:-:*:*:*:*:*:*:*","matchCriteriaId":"3D7DDC42-37A1-43B0-AD46-2E0D098564BA"},{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmep582020:-:*:*:*:*:*:*:*","matchCriteriaId":"765E4FEE-255E-4C47-824A-5661B84B490B"},{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmep582020h:-:*:*:*:*:*:*:*","matchCriteriaId":"B1FEA377-3C45-4F88-B233-088A24BD0771"},{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmep582040:-:*:*:*:*:*:*:*","matchCriteriaId":"EBCCDD6D-35CE-4680-8B0C-86584B1D8958"},{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmep582040h:-:*:*:*:*:*:*:*","matchCriteriaId":"68FD5968-C522-4231-A98C-93D3101B6148"},{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmep582040s:-:*:*:*:*:*:*:*","matchCriteriaId":"C02B27F6-B8CF-4D3B-9DA6-054F540EA6B6"},{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmep583020:-:*:*:*:*:*:*:*","matchCriteriaId":"BBC38FF1-693E-4899-883C-1B7B80A52F2C"},{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmep583040:-:*:*:*:*:*:*:*","matchCriteriaId":"002E7F33-6729-4C35-9DDA-7D8383BD5668"},{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmep584020:-:*:*:*:*:*:*:*","matchCriteriaId":"47DFEBAC-2F1D-4870-8425-2199BF80B425"},{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmep584040:-:*:*:*:*:*:*:*","matchCriteriaId":"FC4A1DF2-FF4C-4DBE-BF74-6A4A09E3DECE"},{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmep584040s:-:*:*:*:*:*:*:*","matchCriteriaId":"6222C1F8-BE52-4666-B7F5-2E8BBC214F70"},{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmep585040:-:*:*:*:*:*:*:*","matchCriteriaId":"5376D9F4-8AFB-4909-A11B-33C54C4220DB"},{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmep585040c:-:*:*:*:*:*:*:*","matchCriteriaId":"CADB178B-FEFD-48A9-B155-0E8F6D490229"},{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmep586040:-:*:*:*:*:*:*:*","matchCriteriaId":"6B3C1879-269B-47EB-891B-EF2E90C911D7"},{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmep586040c:-:*:*:*:*:*:*:*","matchCriteriaId":"5771A1A5-3DAF-4869-A24F-F9B0A38B5DA5"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_quantum_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"745CC7A7-70FB-4551-8EBF-600B7A6236D7"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_quantum:-:*:*:*:*:*:*:*","matchCriteriaId":"A9B7CEF7-B9BA-4923-808F-DA2931569EBB"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_premium_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"619CFD8D-9652-4AAB-AFC4-796B3F10F61F"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_premium:-:*:*:*:*:*:*:*","matchCriteriaId":"F00936E2-E6EF-4ABF-8666-7D83BE424F42"}]}]}],"references":[{"url":"http://www.securityfocus.com/bid/109004","source":"cybersecurity@se.com","tags":["Broken Link"]},{"url":"https://www.schneider-electric.com/en/download/document/SEVD-2019-134-05/","source":"cybersecurity@se.com","tags":["Vendor Advisory"]},{"url":"http://www.securityfocus.com/bid/109004","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Broken Link"]},{"url":"https://www.schneider-electric.com/en/download/document/SEVD-2019-134-05/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]}]}},{"cve":{"id":"CVE-2018-12126","sourceIdentifier":"secure@intel.com","published":"2019-05-30T16:29:00.870","lastModified":"2026-05-29T21:16:31.073","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Microarchitectural Store Buffer Data Sampling (MSBDS): Store buffers on some microprocessors utilizing speculative execution may allow an authenticated user to potentially enable information disclosure via a side channel with local access. A list of impacted products can be found here: https://www.intel.com/content/dam/www/public/us/en/documents/corporate-information/SA00233-microcode-update-guidance_05132019.pdf"},{"lang":"es","value":"En Microarchitectural Store Buffer Data Sampling (MSBDS): los búferes de almacenamiento en algunos microprocesadores que usan ejecución especulativa pueden permitir que un usuario autenticado active potencialmente la divulgación de información por medio de un canal lateral con acceso local. Puede encontrar una lista de los productos impactados aquí: https://www.intel.com/content/dam/www/public/us/documents/corporate-information/SA00233-microcode-update-guidance_05132019.pdf."}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N","baseScore":5.6,"baseSeverity":"MEDIUM","attackVector":"LOCAL","attackComplexity":"HIGH","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":1.1,"impactScore":4.0}],"cvssMetricV30":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.0","vectorString":"CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N","baseScore":5.6,"baseSeverity":"MEDIUM","attackVector":"LOCAL","attackComplexity":"HIGH","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":1.1,"impactScore":4.0}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:L/AC:M/Au:N/C:C/I:N/A:N","baseScore":4.7,"accessVector":"LOCAL","accessComplexity":"MEDIUM","authentication":"NONE","confidentialityImpact":"COMPLETE","integrityImpact":"NONE","availabilityImpact":"NONE"},"baseSeverity":"MEDIUM","exploitabilityScore":3.4,"impactScore":6.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-200"}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-200"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:intel:microarchitectural_store_buffer_data_sampling_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"F8118C0B-EBAE-43BF-8F2B-19E16BF6BAA9"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:intel:microarchitectural_store_buffer_data_sampling:-:*:*:*:*:*:*:*","matchCriteriaId":"3E47DEBF-9DD8-4D69-BB15-04AB1448C150"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*","matchCriteriaId":"D100F7CE-FC64-4CC6-852A-6136D72DA419"}]}]}],"references":[{"url":"http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00014.html","source":"secure@intel.com"},{"url":"http://lists.opensuse.org/opensuse-security-announce/2019-07/msg00052.html","source":"secure@intel.com"},{"url":"http://lists.opensuse.org/opensuse-security-announce/2019-07/msg00053.html","source":"secure@intel.com"},{"url":"http://packetstormsecurity.com/files/155281/FreeBSD-Security-Advisory-FreeBSD-SA-19-26.mcu.html","source":"secure@intel.com"},{"url":"http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2019-003.txt","source":"secure@intel.com"},{"url":"http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20190712-01-mds-en","source":"secure@intel.com"},{"url":"https://access.redhat.com/errata/RHSA-2019:1455","source":"secure@intel.com"},{"url":"https://access.redhat.com/errata/RHSA-2019:2553","source":"secure@intel.com"},{"url":"https://cert-portal.siemens.com/productcert/pdf/ssa-608355.pdf","source":"secure@intel.com"},{"url":"https://cert-portal.siemens.com/productcert/pdf/ssa-616472.pdf","source":"secure@intel.com"},{"url":"https://kc.mcafee.com/corporate/index?page=content&id=SB10292","source":"secure@intel.com"},{"url":"https://lists.debian.org/debian-lts-announce/2019/06/msg00018.html","source":"secure@intel.com"},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/OH73SGTJ575OBCPSJFX6LX7KP2KZIEN4/","source":"secure@intel.com"},{"url":"https://seclists.org/bugtraq/2019/Jun/28","source":"secure@intel.com"},{"url":"https://seclists.org/bugtraq/2019/Jun/36","source":"secure@intel.com"},{"url":"https://seclists.org/bugtraq/2019/Nov/15","source":"secure@intel.com"},{"url":"https://seclists.org/bugtraq/2019/Nov/16","source":"secure@intel.com"},{"url":"https://seclists.org/bugtraq/2020/Jan/21","source":"secure@intel.com"},{"url":"https://security.FreeBSD.org/advisories/FreeBSD-SA-19:26.mcu.asc","source":"secure@intel.com"},{"url":"https://security.gentoo.org/glsa/202003-56","source":"secure@intel.com"},{"url":"https://usn.ubuntu.com/3977-3/","source":"secure@intel.com"},{"url":"https://www.debian.org/security/2020/dsa-4602","source":"secure@intel.com"},{"url":"https://www.freebsd.org/security/advisories/FreeBSD-SA-19:07.mds.asc","source":"secure@intel.com"},{"url":"https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00233.html","source":"secure@intel.com","tags":["Vendor Advisory"]},{"url":"https://www.synology.com/security/advisory/Synology_SA_19_24","source":"secure@intel.com"},{"url":"http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00014.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://lists.opensuse.org/opensuse-security-announce/2019-07/msg00052.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://lists.opensuse.org/opensuse-security-announce/2019-07/msg00053.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://packetstormsecurity.com/files/155281/FreeBSD-Security-Advisory-FreeBSD-SA-19-26.mcu.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2019-003.txt","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20190712-01-mds-en","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://access.redhat.com/errata/RHSA-2019:1455","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://access.redhat.com/errata/RHSA-2019:2553","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://cert-portal.siemens.com/productcert/pdf/ssa-608355.pdf","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://cert-portal.siemens.com/productcert/pdf/ssa-616472.pdf","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://kc.mcafee.com/corporate/index?page=content&id=SB10292","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://lists.debian.org/debian-lts-announce/2019/06/msg00018.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/OH73SGTJ575OBCPSJFX6LX7KP2KZIEN4/","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://seclists.org/bugtraq/2019/Jun/28","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://seclists.org/bugtraq/2019/Jun/36","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://seclists.org/bugtraq/2019/Nov/15","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://seclists.org/bugtraq/2019/Nov/16","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://seclists.org/bugtraq/2020/Jan/21","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://security.FreeBSD.org/advisories/FreeBSD-SA-19:26.mcu.asc","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://security.gentoo.org/glsa/202003-56","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://usn.ubuntu.com/3977-3/","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://www.debian.org/security/2020/dsa-4602","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://www.freebsd.org/security/advisories/FreeBSD-SA-19:07.mds.asc","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00233.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]},{"url":"https://www.synology.com/security/advisory/Synology_SA_19_24","source":"af854a3a-2127-422b-91ae-364da2661108"}]}},{"cve":{"id":"CVE-2018-12127","sourceIdentifier":"secure@intel.com","published":"2019-05-30T16:29:00.903","lastModified":"2026-05-29T21:16:31.473","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Microarchitectural Load Port Data Sampling (MLPDS): Load ports on some microprocessors utilizing speculative execution may allow an authenticated user to potentially enable information disclosure via a side channel with local access. A list of impacted products can be found here: https://www.intel.com/content/dam/www/public/us/en/documents/corporate-information/SA00233-microcode-update-guidance_05132019.pdf"},{"lang":"es","value":"En Microarchitectural Load Port Data Sampling (MLPDS): los puertos de carga en algunos microprocesadores que usan ejecución especulativa pueden permitir que un usuario autenticado active potencialmente la divulgación de información por medio de un canal lateral con acceso local. Puede encontrar una lista de los productos impactados aquí: https://www.intel.com/content/dam/www/public/us/documents/corporate-information/SA00233-microcode-update-guidance_05132019.pdf"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N","baseScore":5.6,"baseSeverity":"MEDIUM","attackVector":"LOCAL","attackComplexity":"HIGH","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":1.1,"impactScore":4.0}],"cvssMetricV30":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.0","vectorString":"CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N","baseScore":5.6,"baseSeverity":"MEDIUM","attackVector":"LOCAL","attackComplexity":"HIGH","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":1.1,"impactScore":4.0}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:L/AC:M/Au:N/C:C/I:N/A:N","baseScore":4.7,"accessVector":"LOCAL","accessComplexity":"MEDIUM","authentication":"NONE","confidentialityImpact":"COMPLETE","integrityImpact":"NONE","availabilityImpact":"NONE"},"baseSeverity":"MEDIUM","exploitabilityScore":3.4,"impactScore":6.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-200"}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-200"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:intel:microarchitectural_load_port_data_sampling_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"B69C4A00-DC25-4DF1-8AC7-6ACD9E26379A"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:intel:microarchitectural_load_port_data_sampling:-:*:*:*:*:*:*:*","matchCriteriaId":"1C41A27E-7EE0-4998-94A1-B53B3C8E1049"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*","matchCriteriaId":"D100F7CE-FC64-4CC6-852A-6136D72DA419"}]}]}],"references":[{"url":"http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00014.html","source":"secure@intel.com"},{"url":"http://lists.opensuse.org/opensuse-security-announce/2019-07/msg00052.html","source":"secure@intel.com"},{"url":"http://lists.opensuse.org/opensuse-security-announce/2019-07/msg00053.html","source":"secure@intel.com"},{"url":"http://packetstormsecurity.com/files/155281/FreeBSD-Security-Advisory-FreeBSD-SA-19-26.mcu.html","source":"secure@intel.com"},{"url":"http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2019-003.txt","source":"secure@intel.com"},{"url":"http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20190712-01-mds-en","source":"secure@intel.com"},{"url":"https://access.redhat.com/errata/RHSA-2019:1455","source":"secure@intel.com"},{"url":"https://access.redhat.com/errata/RHSA-2019:2553","source":"secure@intel.com"},{"url":"https://cert-portal.siemens.com/productcert/pdf/ssa-608355.pdf","source":"secure@intel.com"},{"url":"https://cert-portal.siemens.com/productcert/pdf/ssa-616472.pdf","source":"secure@intel.com"},{"url":"https://kc.mcafee.com/corporate/index?page=content&id=SB10292","source":"secure@intel.com"},{"url":"https://lists.debian.org/debian-lts-announce/2019/06/msg00018.html","source":"secure@intel.com"},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/OH73SGTJ575OBCPSJFX6LX7KP2KZIEN4/","source":"secure@intel.com"},{"url":"https://seclists.org/bugtraq/2019/Jun/28","source":"secure@intel.com"},{"url":"https://seclists.org/bugtraq/2019/Jun/36","source":"secure@intel.com"},{"url":"https://seclists.org/bugtraq/2019/Nov/15","source":"secure@intel.com"},{"url":"https://seclists.org/bugtraq/2019/Nov/16","source":"secure@intel.com"},{"url":"https://seclists.org/bugtraq/2020/Jan/21","source":"secure@intel.com"},{"url":"https://security.FreeBSD.org/advisories/FreeBSD-SA-19:26.mcu.asc","source":"secure@intel.com"},{"url":"https://security.gentoo.org/glsa/202003-56","source":"secure@intel.com"},{"url":"https://usn.ubuntu.com/3977-3/","source":"secure@intel.com"},{"url":"https://www.debian.org/security/2020/dsa-4602","source":"secure@intel.com"},{"url":"https://www.freebsd.org/security/advisories/FreeBSD-SA-19:07.mds.asc","source":"secure@intel.com"},{"url":"https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00233.html","source":"secure@intel.com","tags":["Vendor Advisory"]},{"url":"https://www.synology.com/security/advisory/Synology_SA_19_24","source":"secure@intel.com"},{"url":"http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00014.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://lists.opensuse.org/opensuse-security-announce/2019-07/msg00052.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://lists.opensuse.org/opensuse-security-announce/2019-07/msg00053.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://packetstormsecurity.com/files/155281/FreeBSD-Security-Advisory-FreeBSD-SA-19-26.mcu.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2019-003.txt","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20190712-01-mds-en","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://access.redhat.com/errata/RHSA-2019:1455","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://access.redhat.com/errata/RHSA-2019:2553","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://cert-portal.siemens.com/productcert/pdf/ssa-608355.pdf","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://cert-portal.siemens.com/productcert/pdf/ssa-616472.pdf","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://kc.mcafee.com/corporate/index?page=content&id=SB10292","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://lists.debian.org/debian-lts-announce/2019/06/msg00018.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/OH73SGTJ575OBCPSJFX6LX7KP2KZIEN4/","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://seclists.org/bugtraq/2019/Jun/28","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://seclists.org/bugtraq/2019/Jun/36","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://seclists.org/bugtraq/2019/Nov/15","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://seclists.org/bugtraq/2019/Nov/16","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://seclists.org/bugtraq/2020/Jan/21","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://security.FreeBSD.org/advisories/FreeBSD-SA-19:26.mcu.asc","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://security.gentoo.org/glsa/202003-56","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://usn.ubuntu.com/3977-3/","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://www.debian.org/security/2020/dsa-4602","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://www.freebsd.org/security/advisories/FreeBSD-SA-19:07.mds.asc","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00233.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]},{"url":"https://www.synology.com/security/advisory/Synology_SA_19_24","source":"af854a3a-2127-422b-91ae-364da2661108"}]}},{"cve":{"id":"CVE-2018-12130","sourceIdentifier":"secure@intel.com","published":"2019-05-30T16:29:00.950","lastModified":"2026-05-29T21:16:31.793","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Microarchitectural Fill Buffer Data Sampling (MFBDS): Fill buffers on some microprocessors utilizing speculative execution may allow an authenticated user to potentially enable information disclosure via a side channel with local access. A list of impacted products can be found here: https://www.intel.com/content/dam/www/public/us/en/documents/corporate-information/SA00233-microcode-update-guidance_05132019.pdf"},{"lang":"es","value":"En Microarchitectural Fill Buffer Data Sampling (MFBDS): El llenado de los búfer en algunos microprocesadores que utilizan ejecución especulativa pueden permitir que un usuario autenticado active potencialmente la divulgación de información por medio de un canal lateral con acceso local. Puede encontrar una lista de los productos impactados aquí: https://www.intel.com/content/dam/www/public/us/documents/corporate-information/SA00233-microcode-update-guidance_05132019.pdf."}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:N/A:N","baseScore":5.9,"baseSeverity":"MEDIUM","attackVector":"LOCAL","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":1.4,"impactScore":4.0}],"cvssMetricV30":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.0","vectorString":"CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N","baseScore":5.6,"baseSeverity":"MEDIUM","attackVector":"LOCAL","attackComplexity":"HIGH","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":1.1,"impactScore":4.0}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:L/AC:M/Au:N/C:C/I:N/A:N","baseScore":4.7,"accessVector":"LOCAL","accessComplexity":"MEDIUM","authentication":"NONE","confidentialityImpact":"COMPLETE","integrityImpact":"NONE","availabilityImpact":"NONE"},"baseSeverity":"MEDIUM","exploitabilityScore":3.4,"impactScore":6.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-200"}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-200"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:intel:microarchitectural_fill_buffer_data_sampling_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"1FACDE6C-6912-4372-A04C-E8ED447B7475"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:intel:microarchitectural_fill_buffer_data_sampling:-:*:*:*:*:*:*:*","matchCriteriaId":"243D3D4E-7AC4-4FE2-8F0C-D5A05F59D6D6"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*","matchCriteriaId":"D100F7CE-FC64-4CC6-852A-6136D72DA419"}]}]}],"references":[{"url":"http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00014.html","source":"secure@intel.com"},{"url":"http://lists.opensuse.org/opensuse-security-announce/2019-07/msg00052.html","source":"secure@intel.com"},{"url":"http://lists.opensuse.org/opensuse-security-announce/2019-07/msg00053.html","source":"secure@intel.com"},{"url":"http://packetstormsecurity.com/files/155281/FreeBSD-Security-Advisory-FreeBSD-SA-19-26.mcu.html","source":"secure@intel.com"},{"url":"http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2019-003.txt","source":"secure@intel.com"},{"url":"http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20190712-01-mds-en","source":"secure@intel.com"},{"url":"https://access.redhat.com/errata/RHSA-2019:1455","source":"secure@intel.com"},{"url":"https://access.redhat.com/errata/RHSA-2019:2553","source":"secure@intel.com"},{"url":"https://cert-portal.siemens.com/productcert/pdf/ssa-608355.pdf","source":"secure@intel.com"},{"url":"https://cert-portal.siemens.com/productcert/pdf/ssa-616472.pdf","source":"secure@intel.com"},{"url":"https://kc.mcafee.com/corporate/index?page=content&id=SB10292","source":"secure@intel.com"},{"url":"https://lists.debian.org/debian-lts-announce/2019/06/msg00018.html","source":"secure@intel.com"},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/OH73SGTJ575OBCPSJFX6LX7KP2KZIEN4/","source":"secure@intel.com"},{"url":"https://seclists.org/bugtraq/2019/Jun/28","source":"secure@intel.com"},{"url":"https://seclists.org/bugtraq/2019/Jun/36","source":"secure@intel.com"},{"url":"https://seclists.org/bugtraq/2019/Nov/15","source":"secure@intel.com"},{"url":"https://seclists.org/bugtraq/2019/Nov/16","source":"secure@intel.com"},{"url":"https://seclists.org/bugtraq/2020/Jan/21","source":"secure@intel.com"},{"url":"https://security.FreeBSD.org/advisories/FreeBSD-SA-19:26.mcu.asc","source":"secure@intel.com"},{"url":"https://security.gentoo.org/glsa/202003-56","source":"secure@intel.com"},{"url":"https://usn.ubuntu.com/3977-3/","source":"secure@intel.com"},{"url":"https://www.debian.org/security/2020/dsa-4602","source":"secure@intel.com"},{"url":"https://www.freebsd.org/security/advisories/FreeBSD-SA-19:07.mds.asc","source":"secure@intel.com"},{"url":"https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00233.html","source":"secure@intel.com","tags":["Vendor Advisory"]},{"url":"https://www.synology.com/security/advisory/Synology_SA_19_24","source":"secure@intel.com"},{"url":"http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00014.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://lists.opensuse.org/opensuse-security-announce/2019-07/msg00052.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://lists.opensuse.org/opensuse-security-announce/2019-07/msg00053.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://packetstormsecurity.com/files/155281/FreeBSD-Security-Advisory-FreeBSD-SA-19-26.mcu.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2019-003.txt","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20190712-01-mds-en","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://access.redhat.com/errata/RHSA-2019:1455","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://access.redhat.com/errata/RHSA-2019:2553","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://cert-portal.siemens.com/productcert/pdf/ssa-608355.pdf","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://cert-portal.siemens.com/productcert/pdf/ssa-616472.pdf","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://kc.mcafee.com/corporate/index?page=content&id=SB10292","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://lists.debian.org/debian-lts-announce/2019/06/msg00018.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/OH73SGTJ575OBCPSJFX6LX7KP2KZIEN4/","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://seclists.org/bugtraq/2019/Jun/28","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://seclists.org/bugtraq/2019/Jun/36","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://seclists.org/bugtraq/2019/Nov/15","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://seclists.org/bugtraq/2019/Nov/16","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://seclists.org/bugtraq/2020/Jan/21","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://security.FreeBSD.org/advisories/FreeBSD-SA-19:26.mcu.asc","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://security.gentoo.org/glsa/202003-56","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://usn.ubuntu.com/3977-3/","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://www.debian.org/security/2020/dsa-4602","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://www.freebsd.org/security/advisories/FreeBSD-SA-19:07.mds.asc","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00233.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]},{"url":"https://www.synology.com/security/advisory/Synology_SA_19_24","source":"af854a3a-2127-422b-91ae-364da2661108"}]}},{"cve":{"id":"CVE-2019-6829","sourceIdentifier":"cybersecurity@se.com","published":"2019-09-17T20:15:12.203","lastModified":"2026-05-29T15:16:17.713","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"A CWE-248: Uncaught Exception vulnerability exists in Modicon M580 (firmware version prior to V2.90) and Modicon M340 (firmware version prior to V3.10), which could cause a possible denial of service when writing to specific memory addresses in the controller over Modbus."},{"lang":"es","value":"Una CWE-248: Se presenta una vulnerabilidad de Excepción No Capturada en Modicon M580 (versión de firmware anterior a V2.90) y Modicon M340 (versión de firmware anterior a V3.10), lo que podría causar una posible denegación de servicio durante la escritura en direcciones específicas de memoria  en el controlador sobre protocolo Modbus."}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":3.6},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":3.6}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:N/I:N/A:C","baseScore":7.8,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"COMPLETE"},"baseSeverity":"HIGH","exploitabilityScore":10.0,"impactScore":6.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"cybersecurity@se.com","type":"Secondary","description":[{"lang":"en","value":"CWE-248"}]},{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-755"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_m580_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"2.90","matchCriteriaId":"B9C5B0D1-D3A4-468A-807E-6BB3F98CC116"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580:-:*:*:*:*:*:*:*","matchCriteriaId":"E876C738-ABF6-4864-98A6-1E06E96A0DF4"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_m340_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"3.10","matchCriteriaId":"3FD2397C-67A1-4AFD-BC42-6ECC3BD88C24"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_m340:-:*:*:*:*:*:*:*","matchCriteriaId":"138681A2-0146-492B-8E10-06849FC27C6E"}]}]}],"references":[{"url":"https://www.schneider-electric.com/en/download/document/SEVD-2019-134-11/","source":"cybersecurity@se.com","tags":["Vendor Advisory"]},{"url":"https://www.schneider-electric.com/en/download/document/SEVD-2019-134-11/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]}]}},{"cve":{"id":"CVE-2018-7794","sourceIdentifier":"cybersecurity@se.com","published":"2020-01-06T23:15:10.893","lastModified":"2026-05-29T15:16:16.790","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists in Modicon M580, Modicon M340, Modicon Quantum, Modicon Premium (see security notification for specific versions) which could cause a Denial of Service when reading data with invalid index using Modbus TCP."},{"lang":"es","value":"CWE-754: Existe una vulnerabilidad de Comprobación Inapropiada de Condiciones Inusuales o Excepcionales en Modicon M580, Modicon M340, Modicon Quantum, Modicon Premium (véase la notificación de seguridad para versiones específicas) que podría causar una Denegación de Servicio cuando se leen datos con índice no válido usando Modbus TCP."}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":3.6},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":3.6}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:N/I:N/A:P","baseScore":5.0,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"PARTIAL"},"baseSeverity":"MEDIUM","exploitabilityScore":10.0,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"cybersecurity@se.com","type":"Secondary","description":[{"lang":"en","value":"CWE-754"}]},{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-754"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_m580_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"2.80","matchCriteriaId":"6FDEB227-D50B-402C-9C11-E29F52BC10BB"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580:-:*:*:*:*:*:*:*","matchCriteriaId":"E876C738-ABF6-4864-98A6-1E06E96A0DF4"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_m340_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"3.01","matchCriteriaId":"606AFE88-8C9A-4D18-9209-1193B628669F"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_m340:-:*:*:*:*:*:*:*","matchCriteriaId":"138681A2-0146-492B-8E10-06849FC27C6E"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:tsxh5744m_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"3.20","matchCriteriaId":"6F6FF401-ED15-45EE-9A84-171166BF4414"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:tsxh5744m:-:*:*:*:*:*:*:*","matchCriteriaId":"8B57B894-5AA4-4412-B425-7338CB2FFA3C"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:tsxh5724m_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"3.20","matchCriteriaId":"70CD95A2-9FAE-4A7E-8331-8904C0E0CE3D"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:tsxh5724m:-:*:*:*:*:*:*:*","matchCriteriaId":"C1F56BA4-6A19-44FB-8555-7360C77F83AF"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:tsxp576634m_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"3.20","matchCriteriaId":"E5EEE1F8-0DCA-4D18-A022-5DBE980F3A16"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:tsxp576634m:-:*:*:*:*:*:*:*","matchCriteriaId":"71146321-B31B-4C5B-A600-2E414D84916E"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:tsxp57554m_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"3.20","matchCriteriaId":"ED646076-2294-4253-92BF-B95D5D5E87A4"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:tsxp57554m:-:*:*:*:*:*:*:*","matchCriteriaId":"5572E616-5D86-46FF-AEA7-4A12E66F0ED4"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:tsxp575634m_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"3.20","matchCriteriaId":"98B1574C-2FC7-4A3C-B260-D8372A268F4A"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:tsxp575634m:-:*:*:*:*:*:*:*","matchCriteriaId":"57BF89C2-27F8-4FF5-9E4F-4F0CB6C2F0E9"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:tsxp57454m_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"3.20","matchCriteriaId":"853895C6-5EDF-4767-9653-F5F7826B4A7E"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:tsxp57454m:-:*:*:*:*:*:*:*","matchCriteriaId":"CC537593-1AB7-438E-AB71-EDB469A1DFF7"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:tsxp574634m_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"3.20","matchCriteriaId":"EC9FBA4C-DA99-4F22-9168-ECD281B090C3"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:tsxp574634m:-:*:*:*:*:*:*:*","matchCriteriaId":"FE60505D-0211-4E8C-B32C-988E25698B1E"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:tsxp57354m_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"3.20","matchCriteriaId":"DD7766E8-40EB-4C72-8234-C8D997F98F6C"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:tsxp57354m:-:*:*:*:*:*:*:*","matchCriteriaId":"FAE46047-D9AF-4720-A130-A0F989423F82"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:tsxp573634m_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"3.20","matchCriteriaId":"C9246F10-84D1-4AE0-BF1A-B61EA1E965A2"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:tsxp573634m:-:*:*:*:*:*:*:*","matchCriteriaId":"80500883-2825-46DD-8ED9-4F324A4494CC"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:tsxp57304m_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"3.20","matchCriteriaId":"889586D3-B64F-42DA-8872-DD44C9790881"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:tsxp57304m:-:*:*:*:*:*:*:*","matchCriteriaId":"B5FDBAB3-C8C2-47F6-ACAA-B89BA53849B9"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:tsxp57254m_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"3.20","matchCriteriaId":"B6EBCADE-8F8C-402B-8FB6-62237168E788"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:tsxp57254m:-:*:*:*:*:*:*:*","matchCriteriaId":"57B75D71-11CA-4DDF-849A-08A9D84C95AC"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:tsxp572634m_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"3.20","matchCriteriaId":"33E3F062-3874-4EB6-829B-285B428E982E"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:tsxp572634m:-:*:*:*:*:*:*:*","matchCriteriaId":"EA2094F4-976F-44FA-A7E5-93E20A80DA00"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:tsxp57204m_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"3.20","matchCriteriaId":"43BE3D1E-5F7D-409F-A932-073D5A566180"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:tsxp57204m_:-:*:*:*:*:*:*:*","matchCriteriaId":"0E25651C-E4B5-47A2-A6CE-79F7ECAE246E"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:tsxp571634m_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"3.20","matchCriteriaId":"D1DEF9B5-6BC0-43A7-AD74-81F9D23BA843"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:tsxp571634m:-:*:*:*:*:*:*:*","matchCriteriaId":"31A5DCC8-9E3D-4919-9DE3-73FC8733E73D"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:tsxp57154m_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"3.20","matchCriteriaId":"4E358F77-1F8F-4F2F-A54C-B5F2373EFEE6"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:tsxp57154m:-:*:*:*:*:*:*:*","matchCriteriaId":"5CC8F0AB-C4A8-40B3-88E0-92F52EA05692"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:tsxp57104m_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"3.20","matchCriteriaId":"56724F0C-2DA8-4710-9D82-EE51FA9B062C"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:tsxp57104m:-:*:*:*:*:*:*:*","matchCriteriaId":"587226C6-6BE2-4A42-B593-34498F647B24"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:140cpu65150_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"3.52","matchCriteriaId":"97C6F04E-FEF7-4DA4-A819-7E4C3DA173F9"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:140cpu65150:-:*:*:*:*:*:*:*","matchCriteriaId":"EC3E5496-C3D0-4DF4-A9AF-F227F889840E"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:140cpu65160_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"3.52","matchCriteriaId":"E9552C20-F295-4AB7-A44E-FB1072BAD1B3"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:140cpu65160:-:*:*:*:*:*:*:*","matchCriteriaId":"B2C2AF70-F0BB-4D17-901C-1FCBECDC44FB"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:140cpu65260_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"3.52","matchCriteriaId":"1BB8ACFC-C693-4C5A-B256-51FF0835FD69"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:140cpu65260:-:*:*:*:*:*:*:*","matchCriteriaId":"3D7304B0-EE18-454B-B3F0-5EF387285D90"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:140cpu67261_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"3.52","matchCriteriaId":"370F0F62-AA12-496B-8107-EEC24B070621"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:140cpu67261:-:*:*:*:*:*:*:*","matchCriteriaId":"164AEEA1-666F-428A-BFCB-5DEEEFE1D771"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:140cpu67060_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"3.52","matchCriteriaId":"06F31148-8213-4B01-AA48-D9D7C515E38A"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:140cpu67060:-:*:*:*:*:*:*:*","matchCriteriaId":"8AF2A7A3-89EF-480D-8E6E-20E11CF60A97"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:140cpu67160_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"3.52","matchCriteriaId":"D6E3B57D-062A-431D-B96F-28463DE757DF"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:140cpu67160:-:*:*:*:*:*:*:*","matchCriteriaId":"3870E952-7A32-43DA-8C66-DE43C862639B"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:140cpu67261_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"3.52","matchCriteriaId":"370F0F62-AA12-496B-8107-EEC24B070621"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:140cpu67261:-:*:*:*:*:*:*:*","matchCriteriaId":"164AEEA1-666F-428A-BFCB-5DEEEFE1D771"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:140cpu67260_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"3.52","matchCriteriaId":"108BA75E-B7B4-4A51-9DB8-B928154DD51A"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:140cpu67260:-:*:*:*:*:*:*:*","matchCriteriaId":"C9E4FCBA-4980-4C8F-A185-5E9C4CF9E8B5"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:140cpu65860_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"3.52","matchCriteriaId":"C4D81FBC-7C66-4367-8A0F-7F96C09A56A4"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:140cpu65860:-:*:*:*:*:*:*:*","matchCriteriaId":"9B8230FD-0C0A-467C-9BAD-09257739D462"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:140cpu67861_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"3.52","matchCriteriaId":"4419CB2D-AABC-4F77-9C75-42ABA62CBA6B"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:140cpu67861:-:*:*:*:*:*:*:*","matchCriteriaId":"CF97B5A6-960F-42BA-A397-09C819A3200C"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:140cpu65160s_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"3.52","matchCriteriaId":"D793BE48-1025-4C6C-8E7D-82E013DDDE5D"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:140cpu65160s:-:*:*:*:*:*:*:*","matchCriteriaId":"95E48F27-F241-4491-AFF7-8BD562F21A52"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:140cpu67160s_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"3.52","matchCriteriaId":"41654852-0E58-46CC-A734-F59FE9B83990"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:140cpu67160s:-:*:*:*:*:*:*:*","matchCriteriaId":"71C1C17A-9111-49B8-A2CE-3A2FB87616F1"}]}]}],"references":[{"url":"https://www.se.com/ww/en/download/document/SEVD-2019-344-01","source":"cybersecurity@se.com","tags":["Vendor Advisory"]},{"url":"https://www.se.com/ww/en/download/document/SEVD-2019-344-01","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]}]}},{"cve":{"id":"CVE-2019-6856","sourceIdentifier":"cybersecurity@se.com","published":"2020-01-06T23:15:11.317","lastModified":"2026-05-29T15:16:17.880","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists in Modicon M580, Modicon M340, Modicon Quantum, Modicon Premium (see security notification for specific versions) which could cause a Denial of Service when writing specific physical memory blocks using Modbus TCP."},{"lang":"es","value":"CWE-754: existe una vulnerabilidad de Comprobación Inapropiada de Condiciones Inusuales o Excepcionales en Modicon M580, Modicon M340, Modicon Quantum, Modicon Premium (véase la notificación de seguridad para versiones específicas) que podría causar una Denegación de Servicio cuando se escriben bloques de memoria física específicos usando Modbus TCP."}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":3.6},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":3.6}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:N/I:N/A:P","baseScore":5.0,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"PARTIAL"},"baseSeverity":"MEDIUM","exploitabilityScore":10.0,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"cybersecurity@se.com","type":"Secondary","description":[{"lang":"en","value":"CWE-754"}]},{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-754"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_m580_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"2.80","matchCriteriaId":"6FDEB227-D50B-402C-9C11-E29F52BC10BB"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580:-:*:*:*:*:*:*:*","matchCriteriaId":"E876C738-ABF6-4864-98A6-1E06E96A0DF4"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_m340_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"3.01","matchCriteriaId":"606AFE88-8C9A-4D18-9209-1193B628669F"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_m340:-:*:*:*:*:*:*:*","matchCriteriaId":"138681A2-0146-492B-8E10-06849FC27C6E"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:tsxh5744m_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"3.20","matchCriteriaId":"6F6FF401-ED15-45EE-9A84-171166BF4414"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:tsxh5744m:-:*:*:*:*:*:*:*","matchCriteriaId":"8B57B894-5AA4-4412-B425-7338CB2FFA3C"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:tsxh5724m_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"3.20","matchCriteriaId":"70CD95A2-9FAE-4A7E-8331-8904C0E0CE3D"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:tsxh5724m:-:*:*:*:*:*:*:*","matchCriteriaId":"C1F56BA4-6A19-44FB-8555-7360C77F83AF"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:tsxp576634m_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"3.20","matchCriteriaId":"E5EEE1F8-0DCA-4D18-A022-5DBE980F3A16"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:tsxp576634m_:-:*:*:*:*:*:*:*","matchCriteriaId":"7F683564-419D-418B-A4D5-BB203F709DD7"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:tsxp57554m_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"3.20","matchCriteriaId":"ED646076-2294-4253-92BF-B95D5D5E87A4"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:tsxp57554m:-:*:*:*:*:*:*:*","matchCriteriaId":"5572E616-5D86-46FF-AEA7-4A12E66F0ED4"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:tsxp575634m_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"3.20","matchCriteriaId":"98B1574C-2FC7-4A3C-B260-D8372A268F4A"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:tsxp575634m:-:*:*:*:*:*:*:*","matchCriteriaId":"57BF89C2-27F8-4FF5-9E4F-4F0CB6C2F0E9"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:tsxp57454m_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"3.20","matchCriteriaId":"853895C6-5EDF-4767-9653-F5F7826B4A7E"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:tsxp57454m:-:*:*:*:*:*:*:*","matchCriteriaId":"CC537593-1AB7-438E-AB71-EDB469A1DFF7"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:tsxp574634m_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"3.20","matchCriteriaId":"EC9FBA4C-DA99-4F22-9168-ECD281B090C3"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:tsxp574634m:-:*:*:*:*:*:*:*","matchCriteriaId":"FE60505D-0211-4E8C-B32C-988E25698B1E"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:tsxp57354m_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"3.20","matchCriteriaId":"DD7766E8-40EB-4C72-8234-C8D997F98F6C"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:tsxp57354m:-:*:*:*:*:*:*:*","matchCriteriaId":"FAE46047-D9AF-4720-A130-A0F989423F82"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:tsxp573634m_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"3.20","matchCriteriaId":"C9246F10-84D1-4AE0-BF1A-B61EA1E965A2"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:tsxp573634m:-:*:*:*:*:*:*:*","matchCriteriaId":"80500883-2825-46DD-8ED9-4F324A4494CC"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:tsxp57304m_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"3.20","matchCriteriaId":"889586D3-B64F-42DA-8872-DD44C9790881"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:tsxp57304m:-:*:*:*:*:*:*:*","matchCriteriaId":"B5FDBAB3-C8C2-47F6-ACAA-B89BA53849B9"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:tsxp57254m_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"3.20","matchCriteriaId":"B6EBCADE-8F8C-402B-8FB6-62237168E788"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:tsxp57254m:-:*:*:*:*:*:*:*","matchCriteriaId":"57B75D71-11CA-4DDF-849A-08A9D84C95AC"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:tsxp572634m_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"3.20","matchCriteriaId":"33E3F062-3874-4EB6-829B-285B428E982E"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:tsxp572634m:-:*:*:*:*:*:*:*","matchCriteriaId":"EA2094F4-976F-44FA-A7E5-93E20A80DA00"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:tsxp57204m_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"3.20","matchCriteriaId":"43BE3D1E-5F7D-409F-A932-073D5A566180"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:tsxp57204m_:-:*:*:*:*:*:*:*","matchCriteriaId":"0E25651C-E4B5-47A2-A6CE-79F7ECAE246E"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:tsxp571634m_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"3.20","matchCriteriaId":"D1DEF9B5-6BC0-43A7-AD74-81F9D23BA843"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:tsxp571634m:-:*:*:*:*:*:*:*","matchCriteriaId":"31A5DCC8-9E3D-4919-9DE3-73FC8733E73D"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:tsxp57154m_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"3.20","matchCriteriaId":"4E358F77-1F8F-4F2F-A54C-B5F2373EFEE6"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:tsxp57154m:-:*:*:*:*:*:*:*","matchCriteriaId":"5CC8F0AB-C4A8-40B3-88E0-92F52EA05692"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:tsxp57104m_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"3.20","matchCriteriaId":"56724F0C-2DA8-4710-9D82-EE51FA9B062C"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:tsxp57104m:-:*:*:*:*:*:*:*","matchCriteriaId":"587226C6-6BE2-4A42-B593-34498F647B24"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:140cpu65150_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"3.52","matchCriteriaId":"97C6F04E-FEF7-4DA4-A819-7E4C3DA173F9"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:140cpu65150:-:*:*:*:*:*:*:*","matchCriteriaId":"EC3E5496-C3D0-4DF4-A9AF-F227F889840E"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:140cpu65160_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"3.52","matchCriteriaId":"E9552C20-F295-4AB7-A44E-FB1072BAD1B3"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:140cpu65160:-:*:*:*:*:*:*:*","matchCriteriaId":"B2C2AF70-F0BB-4D17-901C-1FCBECDC44FB"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:140cpu65260_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"3.52","matchCriteriaId":"1BB8ACFC-C693-4C5A-B256-51FF0835FD69"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:140cpu65260:-:*:*:*:*:*:*:*","matchCriteriaId":"3D7304B0-EE18-454B-B3F0-5EF387285D90"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:140cpu67261_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"3.52","matchCriteriaId":"370F0F62-AA12-496B-8107-EEC24B070621"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:140cpu67261:-:*:*:*:*:*:*:*","matchCriteriaId":"164AEEA1-666F-428A-BFCB-5DEEEFE1D771"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:140cpu67060_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"3.52","matchCriteriaId":"06F31148-8213-4B01-AA48-D9D7C515E38A"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:140cpu67060:-:*:*:*:*:*:*:*","matchCriteriaId":"8AF2A7A3-89EF-480D-8E6E-20E11CF60A97"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:140cpu67160_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"3.52","matchCriteriaId":"D6E3B57D-062A-431D-B96F-28463DE757DF"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:140cpu67160:-:*:*:*:*:*:*:*","matchCriteriaId":"3870E952-7A32-43DA-8C66-DE43C862639B"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:140cpu67261_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"3.52","matchCriteriaId":"370F0F62-AA12-496B-8107-EEC24B070621"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:140cpu67261:-:*:*:*:*:*:*:*","matchCriteriaId":"164AEEA1-666F-428A-BFCB-5DEEEFE1D771"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:140cpu67260_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"3.52","matchCriteriaId":"108BA75E-B7B4-4A51-9DB8-B928154DD51A"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:140cpu67260:-:*:*:*:*:*:*:*","matchCriteriaId":"C9E4FCBA-4980-4C8F-A185-5E9C4CF9E8B5"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:140cpu65860_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"3.52","matchCriteriaId":"C4D81FBC-7C66-4367-8A0F-7F96C09A56A4"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:140cpu65860:-:*:*:*:*:*:*:*","matchCriteriaId":"9B8230FD-0C0A-467C-9BAD-09257739D462"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:140cpu67861_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"3.52","matchCriteriaId":"4419CB2D-AABC-4F77-9C75-42ABA62CBA6B"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:140cpu67861:-:*:*:*:*:*:*:*","matchCriteriaId":"CF97B5A6-960F-42BA-A397-09C819A3200C"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:140cpu65160s_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"3.52","matchCriteriaId":"D793BE48-1025-4C6C-8E7D-82E013DDDE5D"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:140cpu65160s:-:*:*:*:*:*:*:*","matchCriteriaId":"95E48F27-F241-4491-AFF7-8BD562F21A52"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:140cpu67160s_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"3.52","matchCriteriaId":"41654852-0E58-46CC-A734-F59FE9B83990"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:140cpu67160s:-:*:*:*:*:*:*:*","matchCriteriaId":"71C1C17A-9111-49B8-A2CE-3A2FB87616F1"}]}]}],"references":[{"url":"https://www.se.com/ww/en/download/document/SEVD-2019-344-01","source":"cybersecurity@se.com","tags":["Vendor Advisory"]},{"url":"https://www.us-cert.gov/ics/advisories/icsa-20-016-01","source":"cybersecurity@se.com","tags":["Third Party Advisory","US Government Resource"]},{"url":"https://www.se.com/ww/en/download/document/SEVD-2019-344-01","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]},{"url":"https://www.us-cert.gov/ics/advisories/icsa-20-016-01","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","US Government Resource"]}]}},{"cve":{"id":"CVE-2019-6857","sourceIdentifier":"cybersecurity@se.com","published":"2020-01-06T23:15:11.377","lastModified":"2026-05-29T15:16:18.080","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists in Modicon M580, Modicon M340, Modicon Quantum, Modicon Premium (see security notification for specific versions) which could cause a Denial of Service of the controller when reading specific memory blocks using Modbus TCP."},{"lang":"es","value":"CWE-754: Hay una vulnerabilidad de Comprobación Inapropiada de Condiciones Inusuales o Excepcionales en Modicon M580, Modicon M340, Modicon Quantum, Modicon Premium (véase la notificación de seguridad para versiones específicas) que podría causar una Denegación de Servicio del controlador cuando se leen bloques de memoria específicos usando Modbus TCP."}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":3.6},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":3.6}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:N/I:N/A:P","baseScore":5.0,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"PARTIAL"},"baseSeverity":"MEDIUM","exploitabilityScore":10.0,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"cybersecurity@se.com","type":"Secondary","description":[{"lang":"en","value":"CWE-754"}]},{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-754"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_m580_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"2.80","matchCriteriaId":"6FDEB227-D50B-402C-9C11-E29F52BC10BB"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580:-:*:*:*:*:*:*:*","matchCriteriaId":"E876C738-ABF6-4864-98A6-1E06E96A0DF4"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_m340_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"3.01","matchCriteriaId":"606AFE88-8C9A-4D18-9209-1193B628669F"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_m340:-:*:*:*:*:*:*:*","matchCriteriaId":"138681A2-0146-492B-8E10-06849FC27C6E"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:tsxh5744m_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"3.20","matchCriteriaId":"6F6FF401-ED15-45EE-9A84-171166BF4414"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:tsxh5744m:-:*:*:*:*:*:*:*","matchCriteriaId":"8B57B894-5AA4-4412-B425-7338CB2FFA3C"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:tsxh5724m_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"3.20","matchCriteriaId":"70CD95A2-9FAE-4A7E-8331-8904C0E0CE3D"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:tsxh5724m:-:*:*:*:*:*:*:*","matchCriteriaId":"C1F56BA4-6A19-44FB-8555-7360C77F83AF"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:tsxp576634m_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"3.20","matchCriteriaId":"E5EEE1F8-0DCA-4D18-A022-5DBE980F3A16"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:tsxp576634m_:-:*:*:*:*:*:*:*","matchCriteriaId":"7F683564-419D-418B-A4D5-BB203F709DD7"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:tsxp57554m_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"3.20","matchCriteriaId":"ED646076-2294-4253-92BF-B95D5D5E87A4"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:tsxp57554m:-:*:*:*:*:*:*:*","matchCriteriaId":"5572E616-5D86-46FF-AEA7-4A12E66F0ED4"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:tsxp575634m_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"3.20","matchCriteriaId":"98B1574C-2FC7-4A3C-B260-D8372A268F4A"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:tsxp575634m:-:*:*:*:*:*:*:*","matchCriteriaId":"57BF89C2-27F8-4FF5-9E4F-4F0CB6C2F0E9"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:tsxp57454m_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"3.20","matchCriteriaId":"853895C6-5EDF-4767-9653-F5F7826B4A7E"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:tsxp57454m:-:*:*:*:*:*:*:*","matchCriteriaId":"CC537593-1AB7-438E-AB71-EDB469A1DFF7"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:tsxp574634m_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"3.20","matchCriteriaId":"EC9FBA4C-DA99-4F22-9168-ECD281B090C3"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:tsxp574634m:-:*:*:*:*:*:*:*","matchCriteriaId":"FE60505D-0211-4E8C-B32C-988E25698B1E"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:tsxp57354m_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"3.20","matchCriteriaId":"DD7766E8-40EB-4C72-8234-C8D997F98F6C"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:tsxp57354m:-:*:*:*:*:*:*:*","matchCriteriaId":"FAE46047-D9AF-4720-A130-A0F989423F82"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:tsxp573634m_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"3.20","matchCriteriaId":"C9246F10-84D1-4AE0-BF1A-B61EA1E965A2"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:tsxp573634m:-:*:*:*:*:*:*:*","matchCriteriaId":"80500883-2825-46DD-8ED9-4F324A4494CC"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:tsxp57304m_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"3.20","matchCriteriaId":"889586D3-B64F-42DA-8872-DD44C9790881"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:tsxp57304m:-:*:*:*:*:*:*:*","matchCriteriaId":"B5FDBAB3-C8C2-47F6-ACAA-B89BA53849B9"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:tsxp57254m_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"3.20","matchCriteriaId":"B6EBCADE-8F8C-402B-8FB6-62237168E788"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:tsxp57254m:-:*:*:*:*:*:*:*","matchCriteriaId":"57B75D71-11CA-4DDF-849A-08A9D84C95AC"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:tsxp572634m_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"3.20","matchCriteriaId":"33E3F062-3874-4EB6-829B-285B428E982E"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:tsxp572634m:-:*:*:*:*:*:*:*","matchCriteriaId":"EA2094F4-976F-44FA-A7E5-93E20A80DA00"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:tsxp57204m_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"3.20","matchCriteriaId":"43BE3D1E-5F7D-409F-A932-073D5A566180"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:tsxp57204m_:-:*:*:*:*:*:*:*","matchCriteriaId":"0E25651C-E4B5-47A2-A6CE-79F7ECAE246E"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:tsxp571634m_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"3.20","matchCriteriaId":"D1DEF9B5-6BC0-43A7-AD74-81F9D23BA843"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:tsxp571634m:-:*:*:*:*:*:*:*","matchCriteriaId":"31A5DCC8-9E3D-4919-9DE3-73FC8733E73D"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:tsxp57154m_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"3.20","matchCriteriaId":"4E358F77-1F8F-4F2F-A54C-B5F2373EFEE6"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:tsxp57154m:-:*:*:*:*:*:*:*","matchCriteriaId":"5CC8F0AB-C4A8-40B3-88E0-92F52EA05692"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:tsxp57104m_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"3.20","matchCriteriaId":"56724F0C-2DA8-4710-9D82-EE51FA9B062C"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:tsxp57104m:-:*:*:*:*:*:*:*","matchCriteriaId":"587226C6-6BE2-4A42-B593-34498F647B24"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:140cpu65150_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"3.60","matchCriteriaId":"1C81EF48-8A20-48A4-9601-512800EC4770"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:140cpu65150:-:*:*:*:*:*:*:*","matchCriteriaId":"EC3E5496-C3D0-4DF4-A9AF-F227F889840E"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:140cpu65160_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"3.60","matchCriteriaId":"B71AB2E0-FE0C-4ABE-B443-2DE3C271909E"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:140cpu65160:-:*:*:*:*:*:*:*","matchCriteriaId":"B2C2AF70-F0BB-4D17-901C-1FCBECDC44FB"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:140cpu65260_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"3.60","matchCriteriaId":"7DE05725-46D0-4058-B5FB-743B3F353285"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:140cpu65260:-:*:*:*:*:*:*:*","matchCriteriaId":"3D7304B0-EE18-454B-B3F0-5EF387285D90"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:140cpu67261_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"3.60","matchCriteriaId":"AD28EA1B-C90C-4764-BAE4-CB3314C053E4"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:140cpu67261:-:*:*:*:*:*:*:*","matchCriteriaId":"164AEEA1-666F-428A-BFCB-5DEEEFE1D771"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:140cpu67060_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"3.60","matchCriteriaId":"90499B24-178F-47E0-8B02-434B47C748EE"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:140cpu67060:-:*:*:*:*:*:*:*","matchCriteriaId":"8AF2A7A3-89EF-480D-8E6E-20E11CF60A97"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:140cpu67160_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"3.60","matchCriteriaId":"41678F69-BE37-401E-ADD2-87B919767020"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:140cpu67160:-:*:*:*:*:*:*:*","matchCriteriaId":"3870E952-7A32-43DA-8C66-DE43C862639B"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:140cpu67261_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"3.60","matchCriteriaId":"AD28EA1B-C90C-4764-BAE4-CB3314C053E4"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:140cpu67261:-:*:*:*:*:*:*:*","matchCriteriaId":"164AEEA1-666F-428A-BFCB-5DEEEFE1D771"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:140cpu67260_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"3.60","matchCriteriaId":"EBA6F869-D33E-4510-A292-CB41BAB41129"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:140cpu67260:-:*:*:*:*:*:*:*","matchCriteriaId":"C9E4FCBA-4980-4C8F-A185-5E9C4CF9E8B5"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:140cpu65860_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"3.60","matchCriteriaId":"CDC8ABE1-DE6C-485D-9149-F09C5045B40C"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:140cpu65860:-:*:*:*:*:*:*:*","matchCriteriaId":"9B8230FD-0C0A-467C-9BAD-09257739D462"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:140cpu67861_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"3.60","matchCriteriaId":"ED500E27-ADAC-467A-9D63-DFB073748525"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:140cpu67861:-:*:*:*:*:*:*:*","matchCriteriaId":"CF97B5A6-960F-42BA-A397-09C819A3200C"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:140cpu65160s_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"3.60","matchCriteriaId":"A7B10B14-841E-4F8B-94A2-6F0807ED53E9"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:140cpu65160s:-:*:*:*:*:*:*:*","matchCriteriaId":"95E48F27-F241-4491-AFF7-8BD562F21A52"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:140cpu67160s_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"3.60","matchCriteriaId":"3EBB9390-E2A9-4F52-A2C5-924C41C1886E"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:140cpu67160s:-:*:*:*:*:*:*:*","matchCriteriaId":"71C1C17A-9111-49B8-A2CE-3A2FB87616F1"}]}]}],"references":[{"url":"https://www.se.com/ww/en/download/document/SEVD-2019-344-01","source":"cybersecurity@se.com","tags":["Vendor Advisory"]},{"url":"https://www.us-cert.gov/ics/advisories/icsa-20-016-01","source":"cybersecurity@se.com","tags":["Third Party Advisory","US Government Resource"]},{"url":"https://www.se.com/ww/en/download/document/SEVD-2019-344-01","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]},{"url":"https://www.us-cert.gov/ics/advisories/icsa-20-016-01","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","US Government Resource"]}]}},{"cve":{"id":"CVE-2020-11725","sourceIdentifier":"cve@mitre.org","published":"2020-04-12T22:15:11.900","lastModified":"2026-05-29T21:16:37.990","vulnStatus":"Modified","cveTags":[{"sourceIdentifier":"cve@mitre.org","tags":["disputed"]}],"descriptions":[{"lang":"en","value":"snd_ctl_elem_add in sound/core/control.c in the Linux kernel through 5.6.3 has a count=info->owner line, which later affects a private_size*count multiplication for unspecified \"interesting side effects.\" NOTE: kernel engineers dispute this finding, because it could be relevant only if new callers were added that were unfamiliar with the misuse of the info->owner field to represent data unrelated to the \"owner\" concept. The existing callers, SNDRV_CTL_IOCTL_ELEM_ADD and SNDRV_CTL_IOCTL_ELEM_REPLACE, have been designed to misuse the info->owner field in a safe way"},{"lang":"es","value":"** EN DISPUTA ** La función snd_ctl_elem_add en el archivo sound/core/control.c en el kernel de Linux versiones hasta 5.6.3, presenta un error de tipografía de count=info-)owner, que se maneja inapropiadamente en la multiplicación private_size*count. NOTA: los ingenieros de kernel disputan este hallazgo, porque podría ser relevante sólo si se agregaran nuevos llamadores que no estuvieran familiarizados con el mal uso del campo info-&gt;owner para representar datos no relacionados con el concepto de \"owner\". Los llamadores existentes, SNDRV_CTL_IOCTL_ELEM_ADD y SNDRV_CTL_IOCTL_ELEM_REPLACE, han sido diseñados para usar indebidamente el campo info-&gt;owner de una manera segura."}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","baseScore":7.8,"baseSeverity":"HIGH","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.8,"impactScore":5.9},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","baseScore":7.8,"baseSeverity":"HIGH","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.8,"impactScore":5.9}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:L/AC:L/Au:N/C:P/I:P/A:P","baseScore":4.6,"accessVector":"LOCAL","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"PARTIAL","availabilityImpact":"PARTIAL"},"baseSeverity":"MEDIUM","exploitabilityScore":3.9,"impactScore":6.4,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"NVD-CWE-noinfo"}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-704"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionEndIncluding":"5.6.3","matchCriteriaId":"85944226-53BE-401C-BF72-63F1727A3A9F"}]}]}],"references":[{"url":"https://github.com/torvalds/linux/blob/3b2549a3740efb8af0150415737067d87e466c5b/sound/core/control.c#L1434-L1474","source":"cve@mitre.org","tags":["Exploit","Third Party Advisory"]},{"url":"https://lore.kernel.org/alsa-devel/s5h4ktmlfpx.wl-tiwai%40suse.de/","source":"cve@mitre.org"},{"url":"https://twitter.com/yabbadabbadrew/status/1248632267028582400","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"https://github.com/torvalds/linux/blob/3b2549a3740efb8af0150415737067d87e466c5b/sound/core/control.c#L1434-L1474","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Exploit","Third Party Advisory"]},{"url":"https://lore.kernel.org/alsa-devel/s5h4ktmlfpx.wl-tiwai%40suse.de/","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://twitter.com/yabbadabbadrew/status/1248632267028582400","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]}]}},{"cve":{"id":"CVE-2020-9488","sourceIdentifier":"security@apache.org","published":"2020-04-27T16:15:12.897","lastModified":"2026-05-29T18:16:27.647","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Improper validation of certificate with host mismatch in Apache Log4j SMTP appender. This could allow an SMTPS connection to be intercepted by a man-in-the-middle attack which could leak any log messages sent through that appender. Fixed in Apache Log4j 2.12.3 and 2.13.1"},{"lang":"es","value":"Validación incorrecta del certificado con desajuste de host en el apéndice SMTP de Apache Log4j. Esto podría permitir que una conexión SMTPS fuera interceptada por un ataque de tipo man-in-the-middle que podría filtrar cualquier mensaje de registro enviado a través de ese appender. Corregido en Apache Log4j 2.12.3 y 2.13.1"}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N","baseScore":3.7,"baseSeverity":"LOW","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":2.2,"impactScore":1.4},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N","baseScore":3.7,"baseSeverity":"LOW","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":2.2,"impactScore":1.4}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:M/Au:N/C:P/I:N/A:N","baseScore":4.3,"accessVector":"NETWORK","accessComplexity":"MEDIUM","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"NONE","availabilityImpact":"NONE"},"baseSeverity":"MEDIUM","exploitabilityScore":8.6,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-295"}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-295"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:apache:log4j:*:*:*:*:*:*:*:*","versionStartIncluding":"2.0","versionEndExcluding":"2.3.2","matchCriteriaId":"8E5C8636-6A10-4B28-A8CA-E6E33D0CE689"},{"vulnerable":true,"criteria":"cpe:2.3:a:apache:log4j:*:*:*:*:*:*:*:*","versionStartIncluding":"2.4","versionEndExcluding":"2.12.3","matchCriteriaId":"19DA22A8-0B29-4181-B44E-57D28D9DB331"},{"vulnerable":true,"criteria":"cpe:2.3:a:apache:log4j:*:*:*:*:*:*:*:*","versionStartIncluding":"2.13.0","versionEndExcluding":"2.13.2","matchCriteriaId":"CDCA55AC-0DB9-430E-B0EE-858C0D507BEC"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:communications_application_session_controller:3.9m0p1:*:*:*:*:*:*:*","matchCriteriaId":"C6092C11-7779-451C-94F9-24FA2F2010FB"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:communications_billing_and_revenue_management:7.5.0.23.0:*:*:*:*:*:*:*","matchCriteriaId":"790A89FD-6B86-49AE-9B4F-AE7262915E13"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:communications_billing_and_revenue_management:12.0.0.3.0:*:*:*:*:*:*:*","matchCriteriaId":"E39D442D-1997-49AF-8B02-5640BE2A26CC"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:communications_eagle_ftp_table_base_retrieval:4.5:*:*:*:*:*:*:*","matchCriteriaId":"C68536CA-C7E2-4228-A6B8-F0DB6A9D29EC"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:communications_offline_mediation_controller:12.0.0.3.0:*:*:*:*:*:*:*","matchCriteriaId":"49ACFC73-A509-4D1C-8FC3-F68F495AB055"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:communications_services_gatekeeper:7.0:*:*:*:*:*:*:*","matchCriteriaId":"062E4E7C-55BB-46F3-8B61-5A663B565891"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:communications_unified_inventory_management:7.3.0:*:*:*:*:*:*:*","matchCriteriaId":"05AD47CC-8A6D-4AEC-B23E-701D3D649CC6"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:communications_unified_inventory_management:7.4.0:*:*:*:*:*:*:*","matchCriteriaId":"539DA24F-E3E0-4455-84C6-A9D96CD601B3"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:data_integrator:12.2.1.3.0:*:*:*:*:*:*:*","matchCriteriaId":"9901F6BA-78D5-45B8-9409-07FF1C6DDD38"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:data_integrator:12.2.1.4.0:*:*:*:*:*:*:*","matchCriteriaId":"9FADE563-5AAA-42FF-B43F-35B20A2386C9"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:enterprise_manager_for_peoplesoft:13.4.1.1:*:*:*:*:*:*:*","matchCriteriaId":"615C7D0D-A9D5-43BA-AF61-373EC1095354"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:financial_services_analytical_applications_infrastructure:*:*:*:*:*:*:*:*","versionStartIncluding":"8.0.6.0.0","versionEndIncluding":"8.1.0.0.0","matchCriteriaId":"F2BB6A71-6AF6-4C0B-9304-4111E32108D4"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:financial_services_institutional_performance_analytics:8.0.6:*:*:*:*:*:*:*","matchCriteriaId":"37C8EE84-A840-4132-B331-C7D450B1FBBF"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:financial_services_institutional_performance_analytics:8.1.0:*:*:*:*:*:*:*","matchCriteriaId":"A00142E6-EEB3-44BD-AB0D-0E5C5640557F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:financial_services_institutional_performance_analytics:8.7.0:*:*:*:*:*:*:*","matchCriteriaId":"EB4FBBDC-0AAF-4E9B-9902-02E7B4EF4E68"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:financial_services_market_risk_measurement_and_management:8.0.6:*:*:*:*:*:*:*","matchCriteriaId":"EF6D5112-4055-4F89-A5B3-0DCB109481B7"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:financial_services_market_risk_measurement_and_management:8.0.8:*:*:*:*:*:*:*","matchCriteriaId":"D262848E-AA24-4057-A747-6221BA22ADF4"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:financial_services_market_risk_measurement_and_management:8.1.0:*:*:*:*:*:*:*","matchCriteriaId":"080BBC04-92B9-4910-8859-44097610C016"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:financial_services_price_creation_and_discovery:8.0.6:*:*:*:*:*:*:*","matchCriteriaId":"4A01F8ED-64DA-43BC-9C02-488010BCD0F4"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:financial_services_price_creation_and_discovery:8.0.7:*:*:*:*:*:*:*","matchCriteriaId":"75638A6A-88B2-4BC7-84EA-1CF5FC30D555"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:financial_services_retail_customer_analytics:8.0.6:*:*:*:*:*:*:*","matchCriteriaId":"1FBF422E-3F67-4599-A7C1-0E2E4224553A"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:flexcube_core_banking:*:*:*:*:*:*:*:*","versionStartIncluding":"11.5.0","versionEndIncluding":"11.7.0","matchCriteriaId":"6EC0B307-B9D2-497B-81CF-B435ABFB1CFA"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:flexcube_core_banking:5.2.0:*:*:*:*:*:*:*","matchCriteriaId":"DEFE7E72-D419-4040-81AB-B4934C13909F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:flexcube_private_banking:12.0.0:*:*:*:*:*:*:*","matchCriteriaId":"6762F207-93C7-4363-B2F9-7A7C6F8AF993"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:flexcube_private_banking:12.1.0:*:*:*:*:*:*:*","matchCriteriaId":"1B74B912-152D-4F38-9FC1-741D6D0B27FC"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:health_sciences_information_manager:3.0.1:*:*:*:*:*:*:*","matchCriteriaId":"C666FA96-3809-475C-B68F-29E59BD51959"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:insurance_insbridge_rating_and_underwriting:*:*:*:*:*:*:*:*","versionStartIncluding":"5.0.0.0","versionEndIncluding":"5.6.0.0","matchCriteriaId":"B47C73D0-BE89-4D87-8765-12C507F13AFF"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:insurance_insbridge_rating_and_underwriting:5.6.1.0:*:*:*:*:*:*:*","matchCriteriaId":"5B8AA91A-1880-43CD-938D-48EF58ACF2CF"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:insurance_policy_administration_j2ee:10.2.0.37:*:*:*:*:*:*:*","matchCriteriaId":"F10A0811-E8DA-4A8C-ACD4-424B278324BD"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:insurance_policy_administration_j2ee:10.2.4.12:*:*:*:*:*:*:*","matchCriteriaId":"1AECBFB1-D3BC-49ED-9DE8-E51AE25B10CA"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:insurance_policy_administration_j2ee:11.0.2.25:*:*:*:*:*:*:*","matchCriteriaId":"72F28CE3-F835-4458-8D70-CBE9FC2F7E7A"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:insurance_policy_administration_j2ee:11.1.0.15:*:*:*:*:*:*:*","matchCriteriaId":"9F058FDA-04BC-4F32-830D-206983770692"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:insurance_policy_administration_j2ee:11.2.0.26:*:*:*:*:*:*:*","matchCriteriaId":"41FDC9F1-6F9F-4579-828E-BD07F3D2B3D4"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:insurance_rules_palette:10.2.0.37:*:*:*:*:*:*:*","matchCriteriaId":"CFC17C75-5423-4215-8E72-F41DDDC1C5AB"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:insurance_rules_palette:10.2.4.12:*:*:*:*:*:*:*","matchCriteriaId":"6F16267D-963E-41B2-B809-EBBFF44C5097"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:insurance_rules_palette:11.0.2.25:*:*:*:*:*:*:*","matchCriteriaId":"9C6B223B-84FE-4B1E-B2E7-AB5E614D1D79"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:insurance_rules_palette:11.1.0.15:*:*:*:*:*:*:*","matchCriteriaId":"F1A71170-4959-41E8-A0E3-E463522E6F30"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:insurance_rules_palette:11.2.0.26:*:*:*:*:*:*:*","matchCriteriaId":"F36E966F-541C-4F6E-9FEF-5E4DB99DFDD3"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jd_edwards_world_security:a9.4:*:*:*:*:*:*:*","matchCriteriaId":"0B1CAD50-749F-4ADB-A046-BF3585677A58"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:oracle_goldengate_application_adapters:19.1.0.0.0:*:*:*:*:*:*:*","matchCriteriaId":"F607BB7D-BC1D-4153-B2B8-DB2B71EB7B98"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:peoplesoft_enterprise_peopletools:8.56:*:*:*:*:*:*:*","matchCriteriaId":"D0A735B4-4F3C-416B-8C08-9CB21BAD2889"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:peoplesoft_enterprise_peopletools:8.57:*:*:*:*:*:*:*","matchCriteriaId":"7E1E416B-920B-49A0-9523-382898C2979D"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:peoplesoft_enterprise_peopletools:8.58:*:*:*:*:*:*:*","matchCriteriaId":"D9DB4A14-2EF5-4B54-95D2-75E6CF9AA0A9"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:policy_automation:*:*:*:*:*:*:*:*","versionStartIncluding":"12.2.0","versionEndIncluding":"12.2.20","matchCriteriaId":"15512D27-7BEB-4DDD-9A1B-447FC7156E3D"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:policy_automation_connector_for_siebel:10.4.6:*:*:*:*:*:*:*","matchCriteriaId":"0DB5E2C7-9C68-4D3B-95AD-9CBF65DE1E94"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:policy_automation_for_mobile_devices:*:*:*:*:*:*:*:*","versionStartIncluding":"12.2.0","versionEndIncluding":"12.2.20","matchCriteriaId":"90F0B2AB-453C-4585-8753-74D17BD20C79"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:primavera_unifier:18.8:*:*:*:*:*:*:*","matchCriteriaId":"202AD518-2E9B-4062-B063-9858AE1F9CE2"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:primavera_unifier:19.12:*:*:*:*:*:*:*","matchCriteriaId":"10864586-270E-4ACF-BDCC-ECFCD299305F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:retail_advanced_inventory_planning:14.1:*:*:*:*:*:*:*","matchCriteriaId":"56239DBD-E294-44A4-9DD3-CEEC58C1BC0C"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:retail_assortment_planning:15.0.3.0:*:*:*:*:*:*:*","matchCriteriaId":"44357172-4035-4D57-9C83-D80BDDE8E8C7"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:retail_assortment_planning:16.0.3.0:*:*:*:*:*:*:*","matchCriteriaId":"CDDD1BFF-9B0D-45DA-86DC-05CF829107FB"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:retail_bulk_data_integration:15.0.3.0:*:*:*:*:*:*:*","matchCriteriaId":"254D8CE1-E821-44A6-9CAF-03D03986478B"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:retail_bulk_data_integration:16.0.3.0:*:*:*:*:*:*:*","matchCriteriaId":"360B307A-3D7F-4B38-8248-76CF8318B023"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:retail_customer_management_and_segmentation_foundation:16.0:*:*:*:*:*:*:*","matchCriteriaId":"CBEEB907-B163-43FF-86DE-4387123DCC4B"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:retail_customer_management_and_segmentation_foundation:17.0:*:*:*:*:*:*:*","matchCriteriaId":"A7FBF5C7-EC73-4CE4-8CB7-E9CF5705DB25"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:retail_customer_management_and_segmentation_foundation:18.0:*:*:*:*:*:*:*","matchCriteriaId":"36E16AEF-ACEB-413C-888C-8D250F65C180"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:retail_customer_management_and_segmentation_foundation:19.0:*:*:*:*:*:*:*","matchCriteriaId":"9EFAEA84-E376-40A2-8C9F-3E0676FEC527"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:retail_eftlink:15.0.2:*:*:*:*:*:*:*","matchCriteriaId":"1240ECE3-BF51-4558-B3B5-682F202BF938"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:retail_eftlink:16.0.3:*:*:*:*:*:*:*","matchCriteriaId":"F3796186-D3A7-4259-846B-165AD9CEB7F1"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:retail_eftlink:17.0.2:*:*:*:*:*:*:*","matchCriteriaId":"CEDA5540-692D-47DA-9F68-83158D9AE628"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:retail_eftlink:18.0.1:*:*:*:*:*:*:*","matchCriteriaId":"C5435583-C454-4AC9-8A35-D2D30EB252EE"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:retail_eftlink:19.0.1:*:*:*:*:*:*:*","matchCriteriaId":"A2140357-503A-4D2A-A099-CFA4DC649E41"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:retail_insights_cloud_service_suite:19.0:*:*:*:*:*:*:*","matchCriteriaId":"C2774D05-D03B-4754-814E-7554351CB9F9"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:retail_integration_bus:14.1:*:*:*:*:*:*:*","matchCriteriaId":"CE7DB324-98A0-40AD-96D4-0800340F6F3A"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:retail_integration_bus:15.0:*:*:*:*:*:*:*","matchCriteriaId":"42064F46-3012-4FB1-89BA-F13C2E4CBB6B"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:retail_integration_bus:16.0:*:*:*:*:*:*:*","matchCriteriaId":"F73E2EFA-0F43-4D92-8C7D-9E66811B76D6"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:retail_order_broker_cloud_service:16.0:*:*:*:*:*:*:*","matchCriteriaId":"80BF5DE6-E786-4207-BA3F-E8052860B25D"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:retail_order_broker_cloud_service:18.0:*:*:*:*:*:*:*","matchCriteriaId":"28BE7634-CB02-4808-AB78-E7C6C3CDA6FD"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:retail_order_broker_cloud_service:19.0:*:*:*:*:*:*:*","matchCriteriaId":"8B7C509B-9DD8-4926-A0A8-0F5C0216CBEC"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:retail_order_broker_cloud_service:19.1:*:*:*:*:*:*:*","matchCriteriaId":"26862826-409F-487F-9E8F-C72E9016AB02"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:retail_order_broker_cloud_service:19.2:*:*:*:*:*:*:*","matchCriteriaId":"7BA45E7A-4386-42D3-9384-C59DD8F7386F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:retail_order_broker_cloud_service:19.3:*:*:*:*:*:*:*","matchCriteriaId":"1F9D6342-451D-40D7-9CC7-638B003B5EFD"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:retail_predictive_application_server:14.1.3.0:*:*:*:*:*:*:*","matchCriteriaId":"BCF6CCE5-250D-4B10-AD18-7DE7D84BF220"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:retail_predictive_application_server:15.0.3.0:*:*:*:*:*:*:*","matchCriteriaId":"D6D325A0-3441-41AC-B00F-F2A7F85370A1"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:retail_predictive_application_server:16.0.3.0:*:*:*:*:*:*:*","matchCriteriaId":"924AFE2D-D1BB-4026-9C12-BA379F8C5BEA"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:retail_xstore_point_of_service:15.0.4:*:*:*:*:*:*:*","matchCriteriaId":"78D8F551-8DC8-4510-8350-AE6BC64748DF"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:retail_xstore_point_of_service:16.0.6:*:*:*:*:*:*:*","matchCriteriaId":"490B2C44-CECD-4551-B04F-4076D0E053C7"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:retail_xstore_point_of_service:17.0.4:*:*:*:*:*:*:*","matchCriteriaId":"DEC41EB8-73B4-4BDF-9321-F34EC0BAF9E6"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:retail_xstore_point_of_service:18.0.3:*:*:*:*:*:*:*","matchCriteriaId":"48EFC111-B01B-4C34-87E4-D6B2C40C0122"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:retail_xstore_point_of_service:19.0.2:*:*:*:*:*:*:*","matchCriteriaId":"073FEA23-E46A-4C73-9D29-95CFF4F5A59D"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:siebel_apps_-_marketing:*:*:*:*:*:*:*:*","versionEndIncluding":"21.9","matchCriteriaId":"7AACBCC9-FDAC-42DF-B931-BD908CAF5C65"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:siebel_ui_framework:*:*:*:*:*:*:*:*","versionEndIncluding":"21.2","matchCriteriaId":"0D9E0011-6FF5-4C90-9780-7A1297BB09BF"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:spatial_and_graph:12.2.0.1:*:*:*:*:*:*:*","matchCriteriaId":"789DA537-09EA-485F-B41A-CB7E0B513C9A"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:spatial_and_graph:18c:*:*:*:*:*:*:*","matchCriteriaId":"8D379FFE-8A9A-4B9F-B4E3-5315BA4F973E"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:spatial_and_graph:19c:*:*:*:*:*:*:*","matchCriteriaId":"05508099-EEB4-4CE6-8621-D07A5B8B16D5"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:storagetek_acsls:8.5.1:*:*:*:*:*:*:*","matchCriteriaId":"6953CFDB-33C0-4B8E-BBBD-E460A17E8ED3"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:storagetek_tape_analytics_sw_tool:2.3.1:*:*:*:*:*:*:*","matchCriteriaId":"7737E073-B46E-456E-807C-FBEA43872A33"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:utilities_framework:*:*:*:*:*:*:*:*","versionStartIncluding":"4.3.0.1.0","versionEndIncluding":"4.3.0.6.0","matchCriteriaId":"51309958-121D-4649-AB9A-EBFA3A49F7CB"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:utilities_framework:2.2.0.0.0:*:*:*:*:*:*:*","matchCriteriaId":"D883EED9-CC64-479D-9C0A-35EB16F43AB4"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:utilities_framework:4.2.0.2.0:*:*:*:*:*:*:*","matchCriteriaId":"5435B365-BFF3-4A9E-B45C-42D8F1E20FB7"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:utilities_framework:4.2.0.3.0:*:*:*:*:*:*:*","matchCriteriaId":"1FAC3840-2CF8-44CE-81BB-EEEBDA00A34A"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:utilities_framework:4.4.0.0.0:*:*:*:*:*:*:*","matchCriteriaId":"3F906F04-39E4-4BE4-8A73-9D058AAADB43"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:utilities_framework:4.4.0.2.0:*:*:*:*:*:*:*","matchCriteriaId":"7B393A82-476A-4270-A903-38ED4169E431"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:weblogic_server:10.3.6.0.0:*:*:*:*:*:*:*","matchCriteriaId":"B40B13B7-68B3-4510-968C-6A730EB46462"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*","matchCriteriaId":"DEECE5FC-CACF-4496-A3E7-164736409252"},{"vulnerable":true,"criteria":"cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*","matchCriteriaId":"07B237A9-69A3-4A9C-9DA0-4E06BD37AE73"},{"vulnerable":true,"criteria":"cpe:2.3:o:debian:debian_linux:11.0:*:*:*:*:*:*:*","matchCriteriaId":"FA6FEEC2-9F11-4643-8827-749718254FED"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:qos:reload4j:*:*:*:*:*:*:*:*","versionEndExcluding":"1.2.18.3","matchCriteriaId":"84E23FBA-2A0E-426E-8912-193C33E351EE"}]}]}],"references":[{"url":"https://issues.apache.org/jira/browse/LOG4J2-2819","source":"security@apache.org","tags":["Issue Tracking","Mitigation","Patch","Vendor Advisory"]},{"url":"https://lists.apache.org/thread.html/r0a2699f724156a558afd1abb6c044fb9132caa66dce861b82699722a%40%3Cjira.kafka.apache.org%3E","source":"security@apache.org"},{"url":"https://lists.apache.org/thread.html/r0df3d7a5acb98c57e64ab9266aa21eeee1d9b399addb96f9cf1cbe05%40%3Cdev.zookeeper.apache.org%3E","source":"security@apache.org"},{"url":"https://lists.apache.org/thread.html/r1fc73f0e16ec2fa249d3ad39a5194afb9cc5afb4c023dc0bab5a5881%40%3Cissues.hive.apache.org%3E","source":"security@apache.org"},{"url":"https://lists.apache.org/thread.html/r22a56beb76dd8cf18e24fda9072f1e05990f49d6439662d3782a392f%40%3Cissues.hive.apache.org%3E","source":"security@apache.org"},{"url":"https://lists.apache.org/thread.html/r2721aba31a8562639c4b937150897e24f78f747cdbda8641c0f659fe%40%3Cusers.kafka.apache.org%3E","source":"security@apache.org"},{"url":"https://lists.apache.org/thread.html/r2f209d271349bafd91537a558a279c08ebcff8fa3e547357d58833e6%40%3Cdev.zookeeper.apache.org%3E","source":"security@apache.org"},{"url":"https://lists.apache.org/thread.html/r33864a0fc171c1c4bf680645ebb6d4f8057899ab294a43e1e4fe9d04%40%3Cissues.hive.apache.org%3E","source":"security@apache.org"},{"url":"https://lists.apache.org/thread.html/r393943de452406f0f6f4b3def9f8d3c071f96323c1f6ed1a098f7fe4%40%3Ctorque-dev.db.apache.org%3E","source":"security@apache.org"},{"url":"https://lists.apache.org/thread.html/r3d1d00441c55144a4013adda74b051ae7864128ebcfb6ee9721a2eb3%40%3Cissues.hive.apache.org%3E","source":"security@apache.org"},{"url":"https://lists.apache.org/thread.html/r4285398e5585a0456d3d9db021a4fce6e6fcf3ec027dfa13a450ec98%40%3Cissues.zookeeper.apache.org%3E","source":"security@apache.org"},{"url":"https://lists.apache.org/thread.html/r45916179811a32cbaa500f972de9098e6ee80ee81c7f134fce83e03a%40%3Cissues.flink.apache.org%3E","source":"security@apache.org"},{"url":"https://lists.apache.org/thread.html/r48bcd06049c1779ef709564544c3d8a32ae6ee5c3b7281a606ac4463%40%3Cjira.kafka.apache.org%3E","source":"security@apache.org"},{"url":"https://lists.apache.org/thread.html/r48efc7cb5aeb4e1f67aaa06fb4b5479a5635d12f07d0b93fc2d08809%40%3Ccommits.zookeeper.apache.org%3E","source":"security@apache.org"},{"url":"https://lists.apache.org/thread.html/r4d5dc9f3520071338d9ebc26f9f158a43ae28a91923d176b550a807b%40%3Cdev.hive.apache.org%3E","source":"security@apache.org"},{"url":"https://lists.apache.org/thread.html/r4db540cafc5d7232c62e076051ef661d37d345015b2e59b3f81a932f%40%3Cdev.hive.apache.org%3E","source":"security@apache.org"},{"url":"https://lists.apache.org/thread.html/r4ed1f49616a8603832d378cb9d13e7a8b9b27972bb46d946ccd8491f%40%3Cissues.hive.apache.org%3E","source":"security@apache.org"},{"url":"https://lists.apache.org/thread.html/r5a68258e5ab12532dc179edae3d6e87037fa3b50ab9d63a90c432507%40%3Cissues.hive.apache.org%3E","source":"security@apache.org"},{"url":"https://lists.apache.org/thread.html/r65578f3761a89bc164e8964acd5d913b9f8fd997967b195a89a97ca3%40%3Cissues.hive.apache.org%3E","source":"security@apache.org"},{"url":"https://lists.apache.org/thread.html/r7641ee788e1eb1be4bb206a7d15f8a64ec6ef23e5ec6132d5a567695%40%3Cnotifications.zookeeper.apache.org%3E","source":"security@apache.org"},{"url":"https://lists.apache.org/thread.html/r7e5c10534ed06bf805473ac85e8412fe3908a8fa4cabf5027bf11220%40%3Cdev.kafka.apache.org%3E","source":"security@apache.org"},{"url":"https://lists.apache.org/thread.html/r7e739f2961753af95e2a3a637828fb88bfca68e5d6b0221d483a9ee5%40%3Cnotifications.zookeeper.apache.org%3E","source":"security@apache.org"},{"url":"https://lists.apache.org/thread.html/r8c001b9a95c0bbec06f4457721edd94935a55932e64b82cc5582b846%40%3Cissues.zookeeper.apache.org%3E","source":"security@apache.org"},{"url":"https://lists.apache.org/thread.html/r8e96c340004b7898cad3204ea51280ef6e4b553a684e1452bf1b18b1%40%3Cjira.kafka.apache.org%3E","source":"security@apache.org"},{"url":"https://lists.apache.org/thread.html/r9776e71e3c67c5d13a91c1eba0dc025b48b802eb7561cc6956d6961c%40%3Cissues.hive.apache.org%3E","source":"security@apache.org"},{"url":"https://lists.apache.org/thread.html/r9a79175c393d14d760a0ae3731b4a873230a16ef321aa9ca48a810cd%40%3Cissues.zookeeper.apache.org%3E","source":"security@apache.org"},{"url":"https://lists.apache.org/thread.html/ra051e07a0eea4943fa104247e69596f094951f51512d42c924e86c75%40%3Cissues.hive.apache.org%3E","source":"security@apache.org"},{"url":"https://lists.apache.org/thread.html/ra632b329b2ae2324fabbad5da204c4ec2e171ff60348ec4ba698fd40%40%3Cissues.hive.apache.org%3E","source":"security@apache.org"},{"url":"https://lists.apache.org/thread.html/rbc45eb0f53fd6242af3e666c2189464f848a851d408289840cecc6e3%40%3Ccommits.zookeeper.apache.org%3E","source":"security@apache.org"},{"url":"https://lists.apache.org/thread.html/rbc7642b9800249553f13457e46b813bea1aec99d2bc9106510e00ff3%40%3Ctorque-dev.db.apache.org%3E","source":"security@apache.org"},{"url":"https://lists.apache.org/thread.html/rc2dbc4633a6eea1fcbce6831876cfa17b73759a98c65326d1896cb1a%40%3Ctorque-dev.db.apache.org%3E","source":"security@apache.org"},{"url":"https://lists.apache.org/thread.html/rc6b81c013618d1de1b5d6b8c1088aaf87b4bacc10c2371f15a566701%40%3Cnotifications.zookeeper.apache.org%3E","source":"security@apache.org"},{"url":"https://lists.apache.org/thread.html/rd0e44e8ef71eeaaa3cf3d1b8b41eb25894372e2995ec908ce7624d26%40%3Ccommits.pulsar.apache.org%3E","source":"security@apache.org"},{"url":"https://lists.apache.org/thread.html/rd55f65c6822ff235eda435d31488cfbb9aa7055cdf47481ebee777cc%40%3Cissues.zookeeper.apache.org%3E","source":"security@apache.org"},{"url":"https://lists.apache.org/thread.html/rd5d58088812cf8e677d99b07f73c654014c524c94e7fedbdee047604%40%3Ctorque-dev.db.apache.org%3E","source":"security@apache.org"},{"url":"https://lists.apache.org/thread.html/rd8e87c4d69df335d0ba7d815b63be8bd8a6352f429765c52eb07ddac%40%3Cissues.zookeeper.apache.org%3E","source":"security@apache.org"},{"url":"https://lists.apache.org/thread.html/re024d86dffa72ad800f2848d0c77ed93f0b78ee808350b477a6ed987%40%3Cgitbox.hive.apache.org%3E","source":"security@apache.org"},{"url":"https://lists.apache.org/thread.html/rec34b1cccf907898e7cb36051ffac3ccf1ea89d0b261a2a3b3fb267f%40%3Ccommits.zookeeper.apache.org%3E","source":"security@apache.org"},{"url":"https://lists.apache.org/thread.html/rf1c2a81a08034c688b8f15cf58a4cfab322d00002ca46d20133bee20%40%3Cdev.kafka.apache.org%3E","source":"security@apache.org"},{"url":"https://lists.apache.org/thread.html/rf9fa47ab66495c78bb4120b0754dd9531ca2ff0430f6685ac9b07772%40%3Cdev.mina.apache.org%3E","source":"security@apache.org"},{"url":"https://lists.debian.org/debian-lts-announce/2021/12/msg00017.html","source":"security@apache.org","tags":["Mailing List","Third Party Advisory"]},{"url":"https://security.netapp.com/advisory/ntap-20200504-0003/","source":"security@apache.org","tags":["Third Party Advisory"]},{"url":"https://www.debian.org/security/2021/dsa-5020","source":"security@apache.org","tags":["Third Party Advisory"]},{"url":"https://www.oracle.com/security-alerts/cpuApr2021.html","source":"security@apache.org","tags":["Patch","Third Party Advisory"]},{"url":"https://www.oracle.com/security-alerts/cpuapr2022.html","source":"security@apache.org","tags":["Patch","Third Party Advisory"]},{"url":"https://www.oracle.com/security-alerts/cpujan2021.html","source":"security@apache.org","tags":["Third Party Advisory"]},{"url":"https://www.oracle.com/security-alerts/cpujul2020.html","source":"security@apache.org","tags":["Third Party Advisory"]},{"url":"https://www.oracle.com/security-alerts/cpuoct2020.html","source":"security@apache.org","tags":["Third Party Advisory"]},{"url":"https://www.oracle.com/security-alerts/cpuoct2021.html","source":"security@apache.org","tags":["Patch","Third Party Advisory"]},{"url":"https://issues.apache.org/jira/browse/LOG4J2-2819","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Issue Tracking","Mitigation","Patch","Vendor Advisory"]},{"url":"https://lists.apache.org/thread.html/r0a2699f724156a558afd1abb6c044fb9132caa66dce861b82699722a%40%3Cjira.kafka.apache.org%3E","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://lists.apache.org/thread.html/r0df3d7a5acb98c57e64ab9266aa21eeee1d9b399addb96f9cf1cbe05%40%3Cdev.zookeeper.apache.org%3E","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://lists.apache.org/thread.html/r1fc73f0e16ec2fa249d3ad39a5194afb9cc5afb4c023dc0bab5a5881%40%3Cissues.hive.apache.org%3E","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://lists.apache.org/thread.html/r22a56beb76dd8cf18e24fda9072f1e05990f49d6439662d3782a392f%40%3Cissues.hive.apache.org%3E","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://lists.apache.org/thread.html/r2721aba31a8562639c4b937150897e24f78f747cdbda8641c0f659fe%40%3Cusers.kafka.apache.org%3E","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://lists.apache.org/thread.html/r2f209d271349bafd91537a558a279c08ebcff8fa3e547357d58833e6%40%3Cdev.zookeeper.apache.org%3E","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://lists.apache.org/thread.html/r33864a0fc171c1c4bf680645ebb6d4f8057899ab294a43e1e4fe9d04%40%3Cissues.hive.apache.org%3E","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://lists.apache.org/thread.html/r393943de452406f0f6f4b3def9f8d3c071f96323c1f6ed1a098f7fe4%40%3Ctorque-dev.db.apache.org%3E","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://lists.apache.org/thread.html/r3d1d00441c55144a4013adda74b051ae7864128ebcfb6ee9721a2eb3%40%3Cissues.hive.apache.org%3E","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://lists.apache.org/thread.html/r4285398e5585a0456d3d9db021a4fce6e6fcf3ec027dfa13a450ec98%40%3Cissues.zookeeper.apache.org%3E","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://lists.apache.org/thread.html/r45916179811a32cbaa500f972de9098e6ee80ee81c7f134fce83e03a%40%3Cissues.flink.apache.org%3E","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://lists.apache.org/thread.html/r48bcd06049c1779ef709564544c3d8a32ae6ee5c3b7281a606ac4463%40%3Cjira.kafka.apache.org%3E","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://lists.apache.org/thread.html/r48efc7cb5aeb4e1f67aaa06fb4b5479a5635d12f07d0b93fc2d08809%40%3Ccommits.zookeeper.apache.org%3E","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://lists.apache.org/thread.html/r4d5dc9f3520071338d9ebc26f9f158a43ae28a91923d176b550a807b%40%3Cdev.hive.apache.org%3E","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://lists.apache.org/thread.html/r4db540cafc5d7232c62e076051ef661d37d345015b2e59b3f81a932f%40%3Cdev.hive.apache.org%3E","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://lists.apache.org/thread.html/r4ed1f49616a8603832d378cb9d13e7a8b9b27972bb46d946ccd8491f%40%3Cissues.hive.apache.org%3E","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://lists.apache.org/thread.html/r5a68258e5ab12532dc179edae3d6e87037fa3b50ab9d63a90c432507%40%3Cissues.hive.apache.org%3E","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://lists.apache.org/thread.html/r65578f3761a89bc164e8964acd5d913b9f8fd997967b195a89a97ca3%40%3Cissues.hive.apache.org%3E","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://lists.apache.org/thread.html/r7641ee788e1eb1be4bb206a7d15f8a64ec6ef23e5ec6132d5a567695%40%3Cnotifications.zookeeper.apache.org%3E","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://lists.apache.org/thread.html/r7e5c10534ed06bf805473ac85e8412fe3908a8fa4cabf5027bf11220%40%3Cdev.kafka.apache.org%3E","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://lists.apache.org/thread.html/r7e739f2961753af95e2a3a637828fb88bfca68e5d6b0221d483a9ee5%40%3Cnotifications.zookeeper.apache.org%3E","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://lists.apache.org/thread.html/r8c001b9a95c0bbec06f4457721edd94935a55932e64b82cc5582b846%40%3Cissues.zookeeper.apache.org%3E","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://lists.apache.org/thread.html/r8e96c340004b7898cad3204ea51280ef6e4b553a684e1452bf1b18b1%40%3Cjira.kafka.apache.org%3E","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://lists.apache.org/thread.html/r9776e71e3c67c5d13a91c1eba0dc025b48b802eb7561cc6956d6961c%40%3Cissues.hive.apache.org%3E","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://lists.apache.org/thread.html/r9a79175c393d14d760a0ae3731b4a873230a16ef321aa9ca48a810cd%40%3Cissues.zookeeper.apache.org%3E","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://lists.apache.org/thread.html/ra051e07a0eea4943fa104247e69596f094951f51512d42c924e86c75%40%3Cissues.hive.apache.org%3E","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://lists.apache.org/thread.html/ra632b329b2ae2324fabbad5da204c4ec2e171ff60348ec4ba698fd40%40%3Cissues.hive.apache.org%3E","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://lists.apache.org/thread.html/rbc45eb0f53fd6242af3e666c2189464f848a851d408289840cecc6e3%40%3Ccommits.zookeeper.apache.org%3E","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://lists.apache.org/thread.html/rbc7642b9800249553f13457e46b813bea1aec99d2bc9106510e00ff3%40%3Ctorque-dev.db.apache.org%3E","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://lists.apache.org/thread.html/rc2dbc4633a6eea1fcbce6831876cfa17b73759a98c65326d1896cb1a%40%3Ctorque-dev.db.apache.org%3E","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://lists.apache.org/thread.html/rc6b81c013618d1de1b5d6b8c1088aaf87b4bacc10c2371f15a566701%40%3Cnotifications.zookeeper.apache.org%3E","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://lists.apache.org/thread.html/rd0e44e8ef71eeaaa3cf3d1b8b41eb25894372e2995ec908ce7624d26%40%3Ccommits.pulsar.apache.org%3E","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://lists.apache.org/thread.html/rd55f65c6822ff235eda435d31488cfbb9aa7055cdf47481ebee777cc%40%3Cissues.zookeeper.apache.org%3E","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://lists.apache.org/thread.html/rd5d58088812cf8e677d99b07f73c654014c524c94e7fedbdee047604%40%3Ctorque-dev.db.apache.org%3E","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://lists.apache.org/thread.html/rd8e87c4d69df335d0ba7d815b63be8bd8a6352f429765c52eb07ddac%40%3Cissues.zookeeper.apache.org%3E","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://lists.apache.org/thread.html/re024d86dffa72ad800f2848d0c77ed93f0b78ee808350b477a6ed987%40%3Cgitbox.hive.apache.org%3E","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://lists.apache.org/thread.html/rec34b1cccf907898e7cb36051ffac3ccf1ea89d0b261a2a3b3fb267f%40%3Ccommits.zookeeper.apache.org%3E","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://lists.apache.org/thread.html/rf1c2a81a08034c688b8f15cf58a4cfab322d00002ca46d20133bee20%40%3Cdev.kafka.apache.org%3E","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://lists.apache.org/thread.html/rf9fa47ab66495c78bb4120b0754dd9531ca2ff0430f6685ac9b07772%40%3Cdev.mina.apache.org%3E","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://lists.debian.org/debian-lts-announce/2021/12/msg00017.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"https://security.netapp.com/advisory/ntap-20200504-0003/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.debian.org/security/2021/dsa-5020","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.oracle.com/security-alerts/cpuApr2021.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Third Party Advisory"]},{"url":"https://www.oracle.com/security-alerts/cpuapr2022.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Third Party Advisory"]},{"url":"https://www.oracle.com/security-alerts/cpujan2021.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.oracle.com/security-alerts/cpujul2020.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.oracle.com/security-alerts/cpuoct2020.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.oracle.com/security-alerts/cpuoct2021.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Third Party Advisory"]}]}},{"cve":{"id":"CVE-2020-1574","sourceIdentifier":"secure@microsoft.com","published":"2020-08-17T19:15:21.100","lastModified":"2026-05-29T21:16:39.147","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"A remote code execution vulnerability exists in the way that Microsoft Windows Codecs Library handles objects in memory. An attacker who successfully exploited the vulnerability could execute arbitrary code.\nExploitation of the vulnerability requires that a program process a specially crafted image file.\nThe update addresses the vulnerability by correcting how Microsoft Windows Codecs Library handles objects in memory."},{"lang":"es","value":"Se presenta una vulnerabilidad de ejecución de código remota en la manera en que Microsoft Windows Codecs Library maneja objetos en memoria, también se conoce como \"Microsoft Windows Codecs Library Remote Code Execution Vulnerability\". Este ID de CVE es diferente de CVE-2020-1560, CVE-2020-1585."}],"metrics":{"cvssMetricV31":[{"source":"secure@microsoft.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N","baseScore":5.5,"baseSeverity":"MEDIUM","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":1.8,"impactScore":3.6},{"source":"nvd@nist.gov","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H","baseScore":7.3,"baseSeverity":"HIGH","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.3,"impactScore":5.9}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:L/AC:M/Au:N/C:C/I:C/A:C","baseScore":6.9,"accessVector":"LOCAL","accessComplexity":"MEDIUM","authentication":"NONE","confidentialityImpact":"COMPLETE","integrityImpact":"COMPLETE","availabilityImpact":"COMPLETE"},"baseSeverity":"MEDIUM","exploitabilityScore":3.4,"impactScore":10.0,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":true}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"NVD-CWE-noinfo"}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-119"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:microsoft:windows_10:1909:*:*:*:*:*:*:*","matchCriteriaId":"E9273B95-20ED-4547-B0A8-95AD15B30372"},{"vulnerable":true,"criteria":"cpe:2.3:o:microsoft:windows_10:2004:*:*:*:*:*:*:*","matchCriteriaId":"AAE74AF3-C559-4645-A6C0-25C3D647AAC8"}]}]}],"references":[{"url":"https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1574","source":"secure@microsoft.com","tags":["Patch","Vendor Advisory"]},{"url":"https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1574","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Vendor Advisory"]}]}},{"cve":{"id":"CVE-2020-16918","sourceIdentifier":"secure@microsoft.com","published":"2020-10-16T23:15:14.680","lastModified":"2026-05-29T21:16:38.310","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"<p>A remote code execution vulnerability exists when the Base3D rendering engine improperly handles memory.</p>\n<p>An attacker who successfully exploited the vulnerability would gain execution on a victim system.</p>\n<p>The security update addresses the vulnerability by correcting how the Base3D rendering engine handles memory.</p>"},{"lang":"es","value":"Se presenta una vulnerabilidad de ejecución de código remota cuando el motor de renderizado Base3D maneja la memoria inapropiadamente. Un atacante que explotara con éxito la vulnerabilidad conseguiría una ejecución en un sistema víctima. La actualización de seguridad aborda la vulnerabilidad al corregir como el motor de renderizado de Base3D maneja la memoria, también se conoce como \"Base3D Remote Code Execution Vulnerability\".&#xa0;Este ID de CVE es diferente de CVE-2020-17003"}],"metrics":{"cvssMetricV31":[{"source":"secure@microsoft.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","baseScore":7.8,"baseSeverity":"HIGH","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.8,"impactScore":5.9},{"source":"nvd@nist.gov","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","baseScore":7.8,"baseSeverity":"HIGH","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.8,"impactScore":5.9}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:M/Au:N/C:C/I:C/A:C","baseScore":9.3,"accessVector":"NETWORK","accessComplexity":"MEDIUM","authentication":"NONE","confidentialityImpact":"COMPLETE","integrityImpact":"COMPLETE","availabilityImpact":"COMPLETE"},"baseSeverity":"HIGH","exploitabilityScore":8.6,"impactScore":10.0,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":true}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"NVD-CWE-noinfo"}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-787"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:365_apps:-:*:*:*:enterprise:*:*:*","matchCriteriaId":"40C15EDD-98D4-4D06-BA06-21AE0F33C72D"},{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:3d_viewer:-:*:*:*:*:*:*:*","matchCriteriaId":"F0B18D2E-CD4B-4173-9B8B-CEB8779661E7"}]}]}],"references":[{"url":"https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-16918","source":"secure@microsoft.com","tags":["Patch","Vendor Advisory"]},{"url":"https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-16918","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Vendor Advisory"]}]}},{"cve":{"id":"CVE-2020-17003","sourceIdentifier":"secure@microsoft.com","published":"2020-10-16T23:15:17.353","lastModified":"2026-05-29T21:16:38.513","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"<p>A remote code execution vulnerability exists when the Base3D rendering engine improperly handles memory.</p>\n<p>An attacker who successfully exploited the vulnerability would gain execution on a victim system.</p>\n<p>The security update addresses the vulnerability by correcting how the Base3D rendering engine handles memory.</p>"},{"lang":"es","value":"Se presenta una vulnerabilidad de ejecución de código remota cuando el motor de renderizado Base3D maneja la memoria inapropiadamente. Un atacante que explotara con éxito la vulnerabilidad conseguiría una ejecución en un sistema víctima. La actualización de seguridad aborda la vulnerabilidad al corregir como el motor de renderizado Base3D maneja la memoria, también se conoce como \"Base3D Remote Code Execution Vulnerability\". Este ID de CVE es diferente de CVE-2020-16918"}],"metrics":{"cvssMetricV31":[{"source":"secure@microsoft.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","baseScore":7.8,"baseSeverity":"HIGH","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.8,"impactScore":5.9},{"source":"nvd@nist.gov","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","baseScore":7.8,"baseSeverity":"HIGH","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.8,"impactScore":5.9}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:M/Au:N/C:C/I:C/A:C","baseScore":9.3,"accessVector":"NETWORK","accessComplexity":"MEDIUM","authentication":"NONE","confidentialityImpact":"COMPLETE","integrityImpact":"COMPLETE","availabilityImpact":"COMPLETE"},"baseSeverity":"HIGH","exploitabilityScore":8.6,"impactScore":10.0,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":true}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"NVD-CWE-noinfo"}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-119"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:3d_viewer:-:*:*:*:*:*:*:*","matchCriteriaId":"F0B18D2E-CD4B-4173-9B8B-CEB8779661E7"}]}]}],"references":[{"url":"https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-17003","source":"secure@microsoft.com","tags":["Patch","Vendor Advisory"]},{"url":"https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-17003","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Vendor Advisory"]}]}},{"cve":{"id":"CVE-2020-17091","sourceIdentifier":"secure@microsoft.com","published":"2020-11-11T07:15:19.200","lastModified":"2026-05-29T21:16:38.690","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Microsoft Teams Remote Code Execution Vulnerability"},{"lang":"es","value":"Vulnerabilidad de Ejecución Remota de Código de Microsoft Teams"}],"metrics":{"cvssMetricV31":[{"source":"secure@microsoft.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","baseScore":7.8,"baseSeverity":"HIGH","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.8,"impactScore":5.9},{"source":"nvd@nist.gov","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","baseScore":7.8,"baseSeverity":"HIGH","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.8,"impactScore":5.9}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:L/AC:M/Au:N/C:P/I:P/A:P","baseScore":4.4,"accessVector":"LOCAL","accessComplexity":"MEDIUM","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"PARTIAL","availabilityImpact":"PARTIAL"},"baseSeverity":"MEDIUM","exploitabilityScore":3.4,"impactScore":6.4,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":true}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"NVD-CWE-noinfo"}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-94"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:teams:-:*:*:*:*:*:*:*","matchCriteriaId":"52B85963-34CA-49A1-B59A-6005DF151CB0"}]}]}],"references":[{"url":"https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-17091","source":"secure@microsoft.com","tags":["Patch","Vendor Advisory"]},{"url":"https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-17091","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Vendor Advisory"]}]}},{"cve":{"id":"CVE-2020-7562","sourceIdentifier":"cybersecurity@se.com","published":"2020-11-18T14:15:12.377","lastModified":"2026-05-29T14:16:21.857","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"A CWE-125: Out-of-Bounds Read vulnerability exists in the Web Server on Modicon M340, Modicon Quantum and Modicon Premium Legacy offers and their Communication Modules (see notification for details) which could cause a segmentation fault or a buffer overflow when uploading a specially crafted file on the controller over FTP."},{"lang":"es","value":"CWE-125: Una vulnerabilidad Lectura Fuera de Límites se presenta en el Servidor Web en las ofertas Modicon M340, Modicon Quantum y Modicon Premium Legacy y sus Módulos de Comunicación (consulte la notificación para obtener más detalles) que podría causar un fallo de segmentación o un desbordamiento del búfer al cargar un archivo especialmente diseñado en el controlador por medio de FTP"}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H","baseScore":8.1,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":5.2},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:H","baseScore":6.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"LOW","availabilityImpact":"HIGH"},"exploitabilityScore":2.1,"impactScore":4.2}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:M/Au:N/C:P/I:N/A:P","baseScore":5.8,"accessVector":"NETWORK","accessComplexity":"MEDIUM","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"NONE","availabilityImpact":"PARTIAL"},"baseSeverity":"MEDIUM","exploitabilityScore":8.6,"impactScore":4.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"cybersecurity@se.com","type":"Secondary","description":[{"lang":"en","value":"CWE-125"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_tsxety4103_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"8BB30B97-9E87-451D-8CE9-13A8234C64AA"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_tsxety4103:-:*:*:*:*:*:*:*","matchCriteriaId":"F7E65D97-CE1A-4A45-A0C2-19294C52E51D"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_tsxety5103_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"507A5F22-A607-4B1B-BCFF-FB17B27DDAA1"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_tsxety5103:-:*:*:*:*:*:*:*","matchCriteriaId":"E1528A76-4289-4DF3-97A2-D37A3DF904C1"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_tsxp574634_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"954CC47A-6118-4840-92C1-085B6A8BB3AC"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_tsxp574634:-:*:*:*:*:*:*:*","matchCriteriaId":"F168A1AA-14CA-4271-9779-A8A8A894F6C1"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_tsxp575634_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"58A6C886-15CD-4E65-A41C-ADB378537CEC"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_tsxp575634:-:*:*:*:*:*:*:*","matchCriteriaId":"9BB67F62-534E-4011-85EB-A854E80D5C51"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_tsxp576634_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"E6A18442-8172-4611-8796-E7C6786B2D54"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_tsxp576634:-:*:*:*:*:*:*:*","matchCriteriaId":"56843A77-4F72-4C1E-B535-1936B98DC067"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_quantum_140noe77101_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"BA478F7F-4F17-4B92-B2B6-66F406471579"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_quantum_140noe77101:-:*:*:*:*:*:*:*","matchCriteriaId":"820638DC-323D-4187-8468-2495C1505860"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_quantum_140noe77111_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"743CDF67-BC0B-45A4-841D-076C049913E7"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_quantum_140noe77111:-:*:*:*:*:*:*:*","matchCriteriaId":"4C5587FE-4270-490C-BFE7-6DFC2B7AFE79"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_quantum_140noc78100_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"DB8B2F06-7208-4B9F-8645-E615BCBC3F41"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_quantum_140noc78100:-:*:*:*:*:*:*:*","matchCriteriaId":"41D30C1F-F8C6-4B4A-8F62-C4F5B22E485C"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_quantum_140cpu65150_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"25D62146-B69B-4706-975A-8721B06BEE8E"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_quantum_140cpu65150:-:*:*:*:*:*:*:*","matchCriteriaId":"7E3446A5-69F7-4270-93E2-CD5614970698"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_quantum_140cpu65150c_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"10D13B75-6AF9-445F-9B06-19FD678CD388"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_quantum_140cpu65150c:-:*:*:*:*:*:*:*","matchCriteriaId":"08FE0C5D-3132-48AD-92EB-B7C4277C1FAA"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_quantum_140cpu65160c_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"784CC7A2-6A89-4C53-8ED4-7A21824D2C62"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_quantum_140cpu65160c:-:*:*:*:*:*:*:*","matchCriteriaId":"DC9D2D4D-558B-424E-AB04-429C83F06DB7"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_quantum_140cpu65160_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"5F7792A2-5BDB-4F33-ADB8-2D4B6309088A"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_quantum_140cpu65160:-:*:*:*:*:*:*:*","matchCriteriaId":"CD3F1B7C-7972-463E-930E-F359A402DAF5"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_m340_bmx_p34-2010_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"90E09554-8011-4B23-8D35-61843D485DC4"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_m340_bmx_p34-2010:-:*:*:*:*:*:*:*","matchCriteriaId":"A76270E2-D48F-4149-9A97-76F3C5749723"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_m340_bmx_p34-2030_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"750F0C04-9948-4D0B-ADF3-1A8F5EEE1DCB"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_m340_bmx_p34-2030:-:*:*:*:*:*:*:*","matchCriteriaId":"7FA6EC11-5E37-4534-908F-D3424AE01C79"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_m340_bmx_noc_0401_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"C493290F-1375-4C2B-BCCC-A12D4FDFE8AC"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_m340_bmx_noc_0401:-:*:*:*:*:*:*:*","matchCriteriaId":"00B8A86F-B257-49D9-AB43-3B9A28B543BA"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_m340_bmx_noe_0100_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"3B8C54D9-2E50-4271-98A4-865991AAA4CD"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_m340_bmx_noe_0100:-:*:*:*:*:*:*:*","matchCriteriaId":"28A486F8-6C88-43FA-B3BB-CE4AAFE9F5D9"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_m340_bmx_noe_0100h_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"DB39549A-8ACF-447D-A13A-A124AF25889E"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_m340_bmx_noe_0100h:-:*:*:*:*:*:*:*","matchCriteriaId":"C1BDFEB0-C3B6-4329-A663-7EAA9124249F"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_m340_bmx_noe_0110_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"00D579C2-65B6-4602-862A-2EE9F89AE239"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_m340_bmx_noe_0110:-:*:*:*:*:*:*:*","matchCriteriaId":"BE415EC8-0F4B-4B21-8D10-91AFAA6DA4A3"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_m340_bmx_noe_0110h_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"D51906B0-8DC5-4393-9331-5A66F8A51801"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_m340_bmx_noe_0110h:-:*:*:*:*:*:*:*","matchCriteriaId":"B4688DE1-369B-4726-8492-3FB65C682646"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_m340_bmx_nor_0200h_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"02B853AA-1A4C-4AA1-91C0-60A88DA27107"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_m340_bmx_nor_0200h:-:*:*:*:*:*:*:*","matchCriteriaId":"1F283DEA-90D9-4EA5-9A1E-E62BE704D620"}]}]}],"references":[{"url":"https://www.se.com/ww/en/download/document/SEVD-2020-315-01/","source":"cybersecurity@se.com","tags":["Vendor Advisory"]},{"url":"https://www.se.com/ww/en/download/document/SEVD-2020-315-01/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]}]}},{"cve":{"id":"CVE-2020-7563","sourceIdentifier":"cybersecurity@se.com","published":"2020-11-18T14:15:13.017","lastModified":"2026-05-29T14:16:22.050","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"A CWE-787: Out-of-bounds Write vulnerability exists in the Web Server on Modicon M340, Modicon Quantum and Modicon Premium Legacy offers and their Communication Modules (see notification for details) which could cause corruption of data, a crash, or code execution when uploading a specially crafted file on the controller over FTP."},{"lang":"es","value":"CWE-787: Una vulnerabilidad de escritura fuera de límites se presenta en el Servidor Web de unas ofertas de Modicon M340, Modicon Quantum y Modicon Premium Legacy y sus Módulos de Comunicación (véase la notificación para más detalles) que podría causar una corrupción de datos, un bloqueo o una ejecución de código al cargar un archivo especialmente diseñado en el controlador por medio de FTP"}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":5.9},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:H","baseScore":6.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"LOW","availabilityImpact":"HIGH"},"exploitabilityScore":2.1,"impactScore":4.2}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:S/C:P/I:P/A:P","baseScore":6.5,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"SINGLE","confidentialityImpact":"PARTIAL","integrityImpact":"PARTIAL","availabilityImpact":"PARTIAL"},"baseSeverity":"MEDIUM","exploitabilityScore":8.0,"impactScore":6.4,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"cybersecurity@se.com","type":"Secondary","description":[{"lang":"en","value":"CWE-787"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_tsxety4103_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"8BB30B97-9E87-451D-8CE9-13A8234C64AA"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_tsxety4103:-:*:*:*:*:*:*:*","matchCriteriaId":"F7E65D97-CE1A-4A45-A0C2-19294C52E51D"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_tsxety5103_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"507A5F22-A607-4B1B-BCFF-FB17B27DDAA1"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_tsxety5103:-:*:*:*:*:*:*:*","matchCriteriaId":"E1528A76-4289-4DF3-97A2-D37A3DF904C1"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_tsxp574634_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"954CC47A-6118-4840-92C1-085B6A8BB3AC"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_tsxp574634:-:*:*:*:*:*:*:*","matchCriteriaId":"F168A1AA-14CA-4271-9779-A8A8A894F6C1"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_tsxp575634_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"58A6C886-15CD-4E65-A41C-ADB378537CEC"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_tsxp575634:-:*:*:*:*:*:*:*","matchCriteriaId":"9BB67F62-534E-4011-85EB-A854E80D5C51"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_tsxp576634_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"E6A18442-8172-4611-8796-E7C6786B2D54"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_tsxp576634:-:*:*:*:*:*:*:*","matchCriteriaId":"56843A77-4F72-4C1E-B535-1936B98DC067"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_quantum_140noe77101_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"BA478F7F-4F17-4B92-B2B6-66F406471579"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_quantum_140noe77101:-:*:*:*:*:*:*:*","matchCriteriaId":"820638DC-323D-4187-8468-2495C1505860"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_quantum_140noe77111_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"743CDF67-BC0B-45A4-841D-076C049913E7"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_quantum_140noe77111:-:*:*:*:*:*:*:*","matchCriteriaId":"4C5587FE-4270-490C-BFE7-6DFC2B7AFE79"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_quantum_140noc78100_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"DB8B2F06-7208-4B9F-8645-E615BCBC3F41"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_quantum_140noc78100:-:*:*:*:*:*:*:*","matchCriteriaId":"41D30C1F-F8C6-4B4A-8F62-C4F5B22E485C"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_quantum_140cpu65150_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"25D62146-B69B-4706-975A-8721B06BEE8E"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_quantum_140cpu65150:-:*:*:*:*:*:*:*","matchCriteriaId":"7E3446A5-69F7-4270-93E2-CD5614970698"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_quantum_140cpu65150c_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"10D13B75-6AF9-445F-9B06-19FD678CD388"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_quantum_140cpu65150c:-:*:*:*:*:*:*:*","matchCriteriaId":"08FE0C5D-3132-48AD-92EB-B7C4277C1FAA"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_quantum_140cpu65160c_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"784CC7A2-6A89-4C53-8ED4-7A21824D2C62"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_quantum_140cpu65160c:-:*:*:*:*:*:*:*","matchCriteriaId":"DC9D2D4D-558B-424E-AB04-429C83F06DB7"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_quantum_140cpu65160_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"5F7792A2-5BDB-4F33-ADB8-2D4B6309088A"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_quantum_140cpu65160:-:*:*:*:*:*:*:*","matchCriteriaId":"CD3F1B7C-7972-463E-930E-F359A402DAF5"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_m340_bmx_p34-2010_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"90E09554-8011-4B23-8D35-61843D485DC4"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_m340_bmx_p34-2010:-:*:*:*:*:*:*:*","matchCriteriaId":"A76270E2-D48F-4149-9A97-76F3C5749723"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_m340_bmx_p34-2030_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"750F0C04-9948-4D0B-ADF3-1A8F5EEE1DCB"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_m340_bmx_p34-2030:-:*:*:*:*:*:*:*","matchCriteriaId":"7FA6EC11-5E37-4534-908F-D3424AE01C79"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_m340_bmx_noc_0401_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"C493290F-1375-4C2B-BCCC-A12D4FDFE8AC"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_m340_bmx_noc_0401:-:*:*:*:*:*:*:*","matchCriteriaId":"00B8A86F-B257-49D9-AB43-3B9A28B543BA"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_m340_bmx_noe_0100_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"3B8C54D9-2E50-4271-98A4-865991AAA4CD"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_m340_bmx_noe_0100:-:*:*:*:*:*:*:*","matchCriteriaId":"28A486F8-6C88-43FA-B3BB-CE4AAFE9F5D9"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_m340_bmx_noe_0100h_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"DB39549A-8ACF-447D-A13A-A124AF25889E"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_m340_bmx_noe_0100h:-:*:*:*:*:*:*:*","matchCriteriaId":"C1BDFEB0-C3B6-4329-A663-7EAA9124249F"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_m340_bmx_noe_0110_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"00D579C2-65B6-4602-862A-2EE9F89AE239"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_m340_bmx_noe_0110:-:*:*:*:*:*:*:*","matchCriteriaId":"BE415EC8-0F4B-4B21-8D10-91AFAA6DA4A3"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_m340_bmx_noe_0110h_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"D51906B0-8DC5-4393-9331-5A66F8A51801"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_m340_bmx_noe_0110h:-:*:*:*:*:*:*:*","matchCriteriaId":"B4688DE1-369B-4726-8492-3FB65C682646"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_m340_bmx_nor_0200h_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"02B853AA-1A4C-4AA1-91C0-60A88DA27107"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_m340_bmx_nor_0200h:-:*:*:*:*:*:*:*","matchCriteriaId":"1F283DEA-90D9-4EA5-9A1E-E62BE704D620"}]}]}],"references":[{"url":"https://www.se.com/ww/en/download/document/SEVD-2020-315-01/","source":"cybersecurity@se.com","tags":["Vendor Advisory"]},{"url":"https://www.se.com/ww/en/download/document/SEVD-2020-315-01/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]}]}},{"cve":{"id":"CVE-2020-7564","sourceIdentifier":"cybersecurity@se.com","published":"2020-11-18T14:15:13.363","lastModified":"2026-05-29T14:16:22.227","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"A CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') vulnerability exists in the Web Server on Modicon M340, Modicon Quantum and Modicon Premium Legacy offers and their Communication Modules (see notification for details) which could cause write access and the execution of commands when uploading a specially crafted file on the controller over FTP."},{"lang":"es","value":"CWE-120: Una vulnerabilidad de Copia de búfer sin Comprobar el Tamaño de la Entrada (\"Classic Buffer Overflow\") se presenta en el Servidor Web de unas ofertas de Modicon M340, Modicon Quantum y Modicon Premium Legacy y sus Módulos de Comunicación (véase la notificación para más detalles) que podría causar acceso de escritura y una ejecución de comandos al cargar un archivo especialmente diseñado en el controlador por medio de FTP"}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":5.9},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:H","baseScore":6.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"LOW","availabilityImpact":"HIGH"},"exploitabilityScore":2.1,"impactScore":4.2}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:S/C:P/I:P/A:P","baseScore":6.5,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"SINGLE","confidentialityImpact":"PARTIAL","integrityImpact":"PARTIAL","availabilityImpact":"PARTIAL"},"baseSeverity":"MEDIUM","exploitabilityScore":8.0,"impactScore":6.4,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"cybersecurity@se.com","type":"Secondary","description":[{"lang":"en","value":"CWE-120"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_tsxety4103_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"8BB30B97-9E87-451D-8CE9-13A8234C64AA"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_tsxety4103:-:*:*:*:*:*:*:*","matchCriteriaId":"F7E65D97-CE1A-4A45-A0C2-19294C52E51D"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_tsxety5103_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"507A5F22-A607-4B1B-BCFF-FB17B27DDAA1"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_tsxety5103:-:*:*:*:*:*:*:*","matchCriteriaId":"E1528A76-4289-4DF3-97A2-D37A3DF904C1"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_tsxp574634_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"954CC47A-6118-4840-92C1-085B6A8BB3AC"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_tsxp574634:-:*:*:*:*:*:*:*","matchCriteriaId":"F168A1AA-14CA-4271-9779-A8A8A894F6C1"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_tsxp575634_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"58A6C886-15CD-4E65-A41C-ADB378537CEC"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_tsxp575634:-:*:*:*:*:*:*:*","matchCriteriaId":"9BB67F62-534E-4011-85EB-A854E80D5C51"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_tsxp576634_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"E6A18442-8172-4611-8796-E7C6786B2D54"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_tsxp576634:-:*:*:*:*:*:*:*","matchCriteriaId":"56843A77-4F72-4C1E-B535-1936B98DC067"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_quantum_140noe77101_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"BA478F7F-4F17-4B92-B2B6-66F406471579"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_quantum_140noe77101:-:*:*:*:*:*:*:*","matchCriteriaId":"820638DC-323D-4187-8468-2495C1505860"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_quantum_140noe77111_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"743CDF67-BC0B-45A4-841D-076C049913E7"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_quantum_140noe77111:-:*:*:*:*:*:*:*","matchCriteriaId":"4C5587FE-4270-490C-BFE7-6DFC2B7AFE79"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_quantum_140noc78100_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"DB8B2F06-7208-4B9F-8645-E615BCBC3F41"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_quantum_140noc78100:-:*:*:*:*:*:*:*","matchCriteriaId":"41D30C1F-F8C6-4B4A-8F62-C4F5B22E485C"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_quantum_140cpu65150_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"25D62146-B69B-4706-975A-8721B06BEE8E"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_quantum_140cpu65150:-:*:*:*:*:*:*:*","matchCriteriaId":"7E3446A5-69F7-4270-93E2-CD5614970698"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_quantum_140cpu65150c_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"10D13B75-6AF9-445F-9B06-19FD678CD388"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_quantum_140cpu65150c:-:*:*:*:*:*:*:*","matchCriteriaId":"08FE0C5D-3132-48AD-92EB-B7C4277C1FAA"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_quantum_140cpu65160c_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"784CC7A2-6A89-4C53-8ED4-7A21824D2C62"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_quantum_140cpu65160c:-:*:*:*:*:*:*:*","matchCriteriaId":"DC9D2D4D-558B-424E-AB04-429C83F06DB7"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_quantum_140cpu65160_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"5F7792A2-5BDB-4F33-ADB8-2D4B6309088A"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_quantum_140cpu65160:-:*:*:*:*:*:*:*","matchCriteriaId":"CD3F1B7C-7972-463E-930E-F359A402DAF5"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_m340_bmx_p34-2010_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"90E09554-8011-4B23-8D35-61843D485DC4"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_m340_bmx_p34-2010:-:*:*:*:*:*:*:*","matchCriteriaId":"A76270E2-D48F-4149-9A97-76F3C5749723"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_m340_bmx_p34-2030_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"750F0C04-9948-4D0B-ADF3-1A8F5EEE1DCB"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_m340_bmx_p34-2030:-:*:*:*:*:*:*:*","matchCriteriaId":"7FA6EC11-5E37-4534-908F-D3424AE01C79"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_m340_bmx_noc_0401_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"C493290F-1375-4C2B-BCCC-A12D4FDFE8AC"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_m340_bmx_noc_0401:-:*:*:*:*:*:*:*","matchCriteriaId":"00B8A86F-B257-49D9-AB43-3B9A28B543BA"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_m340_bmx_noe_0100_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"3B8C54D9-2E50-4271-98A4-865991AAA4CD"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_m340_bmx_noe_0100:-:*:*:*:*:*:*:*","matchCriteriaId":"28A486F8-6C88-43FA-B3BB-CE4AAFE9F5D9"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_m340_bmx_noe_0100h_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"DB39549A-8ACF-447D-A13A-A124AF25889E"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_m340_bmx_noe_0100h:-:*:*:*:*:*:*:*","matchCriteriaId":"C1BDFEB0-C3B6-4329-A663-7EAA9124249F"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_m340_bmx_noe_0110_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"00D579C2-65B6-4602-862A-2EE9F89AE239"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_m340_bmx_noe_0110:-:*:*:*:*:*:*:*","matchCriteriaId":"BE415EC8-0F4B-4B21-8D10-91AFAA6DA4A3"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_m340_bmx_noe_0110h_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"D51906B0-8DC5-4393-9331-5A66F8A51801"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_m340_bmx_noe_0110h:-:*:*:*:*:*:*:*","matchCriteriaId":"B4688DE1-369B-4726-8492-3FB65C682646"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_m340_bmx_nor_0200h_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"02B853AA-1A4C-4AA1-91C0-60A88DA27107"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_m340_bmx_nor_0200h:-:*:*:*:*:*:*:*","matchCriteriaId":"1F283DEA-90D9-4EA5-9A1E-E62BE704D620"}]}]}],"references":[{"url":"https://www.se.com/ww/en/download/document/SEVD-2020-315-01/","source":"cybersecurity@se.com","tags":["Vendor Advisory"]},{"url":"https://www.se.com/ww/en/download/document/SEVD-2020-315-01/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]}]}},{"cve":{"id":"CVE-2020-28941","sourceIdentifier":"cve@mitre.org","published":"2020-11-19T19:15:11.797","lastModified":"2026-05-29T18:16:27.177","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"An issue was discovered in drivers/accessibility/speakup/spk_ttyio.c in the Linux kernel through 5.9.9. Local attackers on systems with the speakup driver could cause a local denial of service attack, aka CID-d41227544427. This occurs because of an invalid free when the line discipline is used more than once."},{"lang":"es","value":"Se detectó un problema en el archivo drivers/accessibility/speakup/spk_ttyio.c en el kernel de Linux versiones hasta 5.9.9.&#xa0;Los atacantes locales en sistemas con el controlador speakup podrían causar un ataque local de denegación de servicio, también se conoce como CID-d41227544427.&#xa0;Esto ocurre debido a una liberación no válida cuando la disciplina de línea se usa más de una vez"}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","baseScore":5.5,"baseSeverity":"MEDIUM","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":1.8,"impactScore":3.6},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","baseScore":5.5,"baseSeverity":"MEDIUM","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":1.8,"impactScore":3.6}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:L/AC:L/Au:N/C:N/I:N/A:C","baseScore":4.9,"accessVector":"LOCAL","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"COMPLETE"},"baseSeverity":"MEDIUM","exploitabilityScore":3.9,"impactScore":6.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-763"}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-763"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionEndIncluding":"5.9.9","matchCriteriaId":"CA9FD489-2FF3-4B82-9FB2-0D48920CDF88"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:fedoraproject:fedora:32:*:*:*:*:*:*:*","matchCriteriaId":"36D96259-24BD-44E2-96D9-78CE1D41F956"},{"vulnerable":true,"criteria":"cpe:2.3:o:fedoraproject:fedora:33:*:*:*:*:*:*:*","matchCriteriaId":"E460AA51-FCDA-46B9-AE97-E6676AA5E194"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*","matchCriteriaId":"DEECE5FC-CACF-4496-A3E7-164736409252"}]}]}],"references":[{"url":"http://www.openwall.com/lists/oss-security/2020/11/19/5","source":"cve@mitre.org","tags":["Mailing List","Patch","Third Party Advisory"]},{"url":"https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=d4122754442799187d5d537a9c039a49a67e57f1","source":"cve@mitre.org","tags":["Patch","Vendor Advisory"]},{"url":"https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/tty.git/commit/?h=tty-linus&id=d4122754442799187d5d537a9c039a49a67e57f1","source":"cve@mitre.org","tags":["Patch","Vendor Advisory"]},{"url":"https://github.com/torvalds/linux/commit/d4122754442799187d5d537a9c039a49a67e57f1","source":"cve@mitre.org","tags":["Patch","Third Party Advisory"]},{"url":"https://lists.debian.org/debian-lts-announce/2020/12/msg00015.html","source":"cve@mitre.org","tags":["Mailing List","Third Party Advisory"]},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TITJQPYDWZ4NB2ONJWUXW75KSQIPF35T/","source":"cve@mitre.org"},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZF4OGZPKTAJJXWHPIFP3LHEWWEMR5LPT/","source":"cve@mitre.org"},{"url":"https://www.openwall.com/lists/oss-security/2020/11/19/3","source":"cve@mitre.org","tags":["Mailing List","Patch","Third Party Advisory"]},{"url":"http://www.openwall.com/lists/oss-security/2020/11/19/5","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Patch","Third Party Advisory"]},{"url":"https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=d4122754442799187d5d537a9c039a49a67e57f1","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Vendor Advisory"]},{"url":"https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/tty.git/commit/?h=tty-linus&id=d4122754442799187d5d537a9c039a49a67e57f1","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Vendor Advisory"]},{"url":"https://github.com/torvalds/linux/commit/d4122754442799187d5d537a9c039a49a67e57f1","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Third Party Advisory"]},{"url":"https://lists.debian.org/debian-lts-announce/2020/12/msg00015.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TITJQPYDWZ4NB2ONJWUXW75KSQIPF35T/","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZF4OGZPKTAJJXWHPIFP3LHEWWEMR5LPT/","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://www.openwall.com/lists/oss-security/2020/11/19/3","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Patch","Third Party Advisory"]}]}},{"cve":{"id":"CVE-2020-7565","sourceIdentifier":"cybersecurity@se.com","published":"2020-11-19T22:15:14.943","lastModified":"2026-05-29T14:16:22.400","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"A CWE-326: Inadequate Encryption Strength vulnerability exists in Modicon M221 (all references, all versions) that could allow the attacker to break the encryption key when the attacker has captured the traffic between EcoStruxure Machine - Basic software and Modicon M221 controller."},{"lang":"es","value":"CWE-326:  Se presenta una vulnerabilidad de Fortaleza de Cifrado Inadecuada en Modicon M221 (todas las referencias, todas las versiones) que podría permitir al atacante romper la clave de cifrado cuando el atacante haya capturado el tráfico entre EcoStruxure Machine - Software básico y el controlador Modicon M221"}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:A/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N","baseScore":7.3,"baseSeverity":"HIGH","attackVector":"ADJACENT_NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"NONE"},"exploitabilityScore":2.1,"impactScore":5.2},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:A/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H","baseScore":7.1,"baseSeverity":"HIGH","attackVector":"ADJACENT_NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.2,"impactScore":5.9}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:A/AC:M/Au:N/C:P/I:P/A:N","baseScore":4.3,"accessVector":"ADJACENT_NETWORK","accessComplexity":"MEDIUM","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"PARTIAL","availabilityImpact":"NONE"},"baseSeverity":"MEDIUM","exploitabilityScore":5.5,"impactScore":4.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":true}]},"weaknesses":[{"source":"cybersecurity@se.com","type":"Secondary","description":[{"lang":"en","value":"CWE-326"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_m221_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"D7AC7A26-CCFA-40E0-8111-5A3385D34E8B"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_m221:-:*:*:*:*:*:*:*","matchCriteriaId":"BB0D83F4-B718-47AB-AFB8-B576CB138AAC"}]}]}],"references":[{"url":"https://us-cert.cisa.gov/ics/advisories/icsa-20-343-04","source":"cybersecurity@se.com","tags":["Third Party Advisory","US Government Resource"]},{"url":"https://www.se.com/ww/en/download/document/SEVD-2020-315-05/","source":"cybersecurity@se.com","tags":["Vendor Advisory"]},{"url":"https://us-cert.cisa.gov/ics/advisories/icsa-20-343-04","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","US Government Resource"]},{"url":"https://www.se.com/ww/en/download/document/SEVD-2020-315-05/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]}]}},{"cve":{"id":"CVE-2020-7566","sourceIdentifier":"cybersecurity@se.com","published":"2020-11-19T22:15:15.020","lastModified":"2026-05-29T20:16:19.443","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"A CWE-334: Small Space of Random Values vulnerability exists in Modicon M221 (all references, all versions) that could allow the attacker to break the encryption keys when the attacker has captured the traffic between EcoStruxure Machine - Basic software and Modicon M221 controller."},{"lang":"es","value":"CWE-334: Se presenta una vulnerabilidad de Espación Pequeño de Valores Aleatorios ??en Modicon M221 (todas las referencias, todas las versiones) que podría permitir al atacante romper las claves de cifrado cuando el atacante ha capturado el tráfico entre EcoStruxure Machine - Software básico y el controlador Modicon M221"}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:A/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N","baseScore":7.3,"baseSeverity":"HIGH","attackVector":"ADJACENT_NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"NONE"},"exploitabilityScore":2.1,"impactScore":5.2},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:A/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H","baseScore":7.1,"baseSeverity":"HIGH","attackVector":"ADJACENT_NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.2,"impactScore":5.9}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:A/AC:M/Au:N/C:P/I:P/A:N","baseScore":4.3,"accessVector":"ADJACENT_NETWORK","accessComplexity":"MEDIUM","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"PARTIAL","availabilityImpact":"NONE"},"baseSeverity":"MEDIUM","exploitabilityScore":5.5,"impactScore":4.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":true}]},"weaknesses":[{"source":"cybersecurity@se.com","type":"Secondary","description":[{"lang":"en","value":"CWE-334"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_m221_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"D7AC7A26-CCFA-40E0-8111-5A3385D34E8B"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_m221:-:*:*:*:*:*:*:*","matchCriteriaId":"BB0D83F4-B718-47AB-AFB8-B576CB138AAC"}]}]}],"references":[{"url":"https://us-cert.cisa.gov/ics/advisories/icsa-20-343-04","source":"cybersecurity@se.com","tags":["Third Party Advisory","US Government Resource"]},{"url":"https://www.se.com/ww/en/download/document/SEVD-2020-315-05/","source":"cybersecurity@se.com","tags":["Vendor Advisory"]},{"url":"https://us-cert.cisa.gov/ics/advisories/icsa-20-343-04","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","US Government Resource"]},{"url":"https://www.se.com/ww/en/download/document/SEVD-2020-315-05/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]}]}},{"cve":{"id":"CVE-2020-7567","sourceIdentifier":"cybersecurity@se.com","published":"2020-11-19T22:15:15.097","lastModified":"2026-05-29T16:16:21.627","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"A CWE-311: Missing Encryption of Sensitive Data vulnerability exists in Modicon M221 (all references, all versions) that could allow the attacker to find the password hash when the attacker has captured the traffic between EcoStruxure Machine - Basic software and Modicon M221 controller and broke the encryption keys."},{"lang":"es","value":"CWE-311: Se presenta una vulnerabilidad Falta Cifrado de Datos Confidenciales en Modicon M221 (todas las referencias, todas las versiones) que podría permitir al atacante encontrar el hash de contraseña cuando el atacante haya capturado el tráfico entre EcoStruxure Machine - Software básico y el controlador Modicon M221 y rompió las claves de cifrado"}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:A/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N","baseScore":5.7,"baseSeverity":"MEDIUM","attackVector":"ADJACENT_NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":2.1,"impactScore":3.6},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:A/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H","baseScore":7.1,"baseSeverity":"HIGH","attackVector":"ADJACENT_NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.2,"impactScore":5.9}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:A/AC:M/Au:N/C:P/I:N/A:N","baseScore":2.9,"accessVector":"ADJACENT_NETWORK","accessComplexity":"MEDIUM","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"NONE","availabilityImpact":"NONE"},"baseSeverity":"LOW","exploitabilityScore":5.5,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":true}]},"weaknesses":[{"source":"cybersecurity@se.com","type":"Secondary","description":[{"lang":"en","value":"CWE-311"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_m221_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"D7AC7A26-CCFA-40E0-8111-5A3385D34E8B"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_m221:-:*:*:*:*:*:*:*","matchCriteriaId":"BB0D83F4-B718-47AB-AFB8-B576CB138AAC"}]}]}],"references":[{"url":"https://us-cert.cisa.gov/ics/advisories/icsa-20-343-04","source":"cybersecurity@se.com","tags":["Third Party Advisory","US Government Resource"]},{"url":"https://www.se.com/ww/en/download/document/SEVD-2020-315-05/","source":"cybersecurity@se.com","tags":["Vendor Advisory"]},{"url":"https://us-cert.cisa.gov/ics/advisories/icsa-20-343-04","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","US Government Resource"]},{"url":"https://www.se.com/ww/en/download/document/SEVD-2020-315-05/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]}]}},{"cve":{"id":"CVE-2020-7568","sourceIdentifier":"cybersecurity@se.com","published":"2020-11-19T22:15:15.177","lastModified":"2026-05-29T16:16:21.780","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"A CWE-200: Exposure of Sensitive Information to an Unauthorized Actor vulnerability exists in Modicon M221 (all references, all versions) that could allow non sensitive information disclosure when the attacker has captured the traffic between EcoStruxure Machine - Basic software and Modicon M221 controller."},{"lang":"es","value":"CWE-200: Se presenta una vulnerabilidad Exposición de Información Confidencial a un Actor No Autorizado en Modicon M221 (todas las referencias, todas las versiones) que podría permitir una divulgación de información no confidencial cuando el atacante haya capturado el tráfico entre EcoStruxure Machine - Software básico y el controlador Modicon M221"}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N","baseScore":4.3,"baseSeverity":"MEDIUM","attackVector":"ADJACENT_NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":1.4},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N","baseScore":3.1,"baseSeverity":"LOW","attackVector":"ADJACENT_NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":1.6,"impactScore":1.4}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:A/AC:L/Au:N/C:P/I:N/A:N","baseScore":3.3,"accessVector":"ADJACENT_NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"NONE","availabilityImpact":"NONE"},"baseSeverity":"LOW","exploitabilityScore":6.5,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"cybersecurity@se.com","type":"Secondary","description":[{"lang":"en","value":"CWE-200"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_m221_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"D7AC7A26-CCFA-40E0-8111-5A3385D34E8B"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_m221:-:*:*:*:*:*:*:*","matchCriteriaId":"BB0D83F4-B718-47AB-AFB8-B576CB138AAC"}]}]}],"references":[{"url":"https://us-cert.cisa.gov/ics/advisories/icsa-20-343-04","source":"cybersecurity@se.com","tags":["Third Party Advisory","US Government Resource"]},{"url":"https://www.se.com/ww/en/download/document/SEVD-2020-315-05/","source":"cybersecurity@se.com","tags":["Vendor Advisory"]},{"url":"https://us-cert.cisa.gov/ics/advisories/icsa-20-343-04","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","US Government Resource"]},{"url":"https://www.se.com/ww/en/download/document/SEVD-2020-315-05/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]}]}},{"cve":{"id":"CVE-2020-29372","sourceIdentifier":"cve@mitre.org","published":"2020-11-28T07:15:11.727","lastModified":"2026-05-29T16:16:21.407","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"An issue was discovered in do_madvise in mm/madvise.c in the Linux kernel before 5.6.8. There is a race condition between coredump operations and the IORING_OP_MADVISE implementation, aka CID-bc0c4d1e176e."},{"lang":"es","value":"Se detectó un problema en la función do_madvise en el archivo mm/madvise.c en el kernel de Linux versiones anteriores a 5.6.8. Se presenta una condición de carrera entre las operaciones de volcado de núcleo y la implementación de IORING_OP_MADVISE, también se conoce como CID-bc0c4d1e176e"}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H","baseScore":4.7,"baseSeverity":"MEDIUM","attackVector":"LOCAL","attackComplexity":"HIGH","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":1.0,"impactScore":3.6},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H","baseScore":4.7,"baseSeverity":"MEDIUM","attackVector":"LOCAL","attackComplexity":"HIGH","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":1.0,"impactScore":3.6}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:L/AC:M/Au:N/C:N/I:N/A:C","baseScore":4.7,"accessVector":"LOCAL","accessComplexity":"MEDIUM","authentication":"NONE","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"COMPLETE"},"baseSeverity":"MEDIUM","exploitabilityScore":3.4,"impactScore":6.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-362"}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-362"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionEndExcluding":"5.6.8","matchCriteriaId":"BD585B38-A4DA-436C-8F92-3334BD7A443B"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:*","matchCriteriaId":"815D70A8-47D3-459C-A32C-9FEACA0659D1"},{"vulnerable":true,"criteria":"cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*","matchCriteriaId":"F7016A2A-8365-4F1A-89A2-7A19F2BCAE5B"},{"vulnerable":true,"criteria":"cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*","matchCriteriaId":"23A7C53F-B80F-4E6A-AFA9-58EEA84BE11D"},{"vulnerable":true,"criteria":"cpe:2.3:o:canonical:ubuntu_linux:20.04:*:*:*:lts:*:*:*","matchCriteriaId":"902B8056-9E37-443B-8905-8AA93E2447FB"}]}]}],"references":[{"url":"http://packetstormsecurity.com/files/162117/Kernel-Live-Patch-Security-Notice-LSN-0075-1.html","source":"cve@mitre.org","tags":["Third Party Advisory","VDB Entry"]},{"url":"https://bugs.chromium.org/p/project-zero/issues/detail?id=2029","source":"cve@mitre.org","tags":["Exploit","Issue Tracking","Third Party Advisory"]},{"url":"https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.6.8","source":"cve@mitre.org","tags":["Release Notes","Vendor Advisory"]},{"url":"https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=bc0c4d1e176eeb614dc8734fc3ace34292771f11","source":"cve@mitre.org","tags":["Patch","Vendor Advisory"]},{"url":"http://packetstormsecurity.com/files/162117/Kernel-Live-Patch-Security-Notice-LSN-0075-1.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"https://bugs.chromium.org/p/project-zero/issues/detail?id=2029","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Exploit","Issue Tracking","Third Party Advisory"]},{"url":"https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.6.8","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Release Notes","Vendor Advisory"]},{"url":"https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=bc0c4d1e176eeb614dc8734fc3ace34292771f11","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Vendor Advisory"]},{"url":"https://project-zero.issues.chromium.org/issues/42451131","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0"}]}},{"cve":{"id":"CVE-2020-1971","sourceIdentifier":"openssl-security@openssl.org","published":"2020-12-08T16:15:11.730","lastModified":"2026-05-29T16:16:20.507","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"The X.509 GeneralName type is a generic type for representing different types of names. One of those name types is known as EDIPartyName. OpenSSL provides a function GENERAL_NAME_cmp which compares different instances of a GENERAL_NAME to see if they are equal or not. This function behaves incorrectly when both GENERAL_NAMEs contain an EDIPARTYNAME. A NULL pointer dereference and a crash may occur leading to a possible denial of service attack. OpenSSL itself uses the GENERAL_NAME_cmp function for two purposes: 1) Comparing CRL distribution point names between an available CRL and a CRL distribution point embedded in an X509 certificate 2) When verifying that a timestamp response token signer matches the timestamp authority name (exposed via the API functions TS_RESP_verify_response and TS_RESP_verify_token) If an attacker can control both items being compared then that attacker could trigger a crash. For example if the attacker can trick a client or server into checking a malicious certificate against a malicious CRL then this may occur. Note that some applications automatically download CRLs based on a URL embedded in a certificate. This checking happens prior to the signatures on the certificate and CRL being verified. OpenSSL's s_server, s_client and verify tools have support for the \"-crl_download\" option which implements automatic CRL downloading and this attack has been demonstrated to work against those tools. Note that an unrelated bug means that affected versions of OpenSSL cannot parse or construct correct encodings of EDIPARTYNAME. However it is possible to construct a malformed EDIPARTYNAME that OpenSSL's parser will accept and hence trigger this attack. All OpenSSL 1.1.1 and 1.0.2 versions are affected by this issue. Other OpenSSL releases are out of support and have not been checked. Fixed in OpenSSL 1.1.1i (Affected 1.1.1-1.1.1h). Fixed in OpenSSL 1.0.2x (Affected 1.0.2-1.0.2w)."},{"lang":"es","value":"El tipo GeneralName X.509 es un tipo genérico para representar diferentes tipos de nombres.&#xa0;Uno de esos tipos de nombres se conoce como EDIPartyName.&#xa0;OpenSSL proporciona una función GENERAL_NAME_cmp que compara diferentes instancias de GENERAL_NAME para ver si son iguales o no.&#xa0;Esta función se comporta incorrectamente cuando ambos GENERAL_NAME contienen un EDIPARTYNAME.&#xa0;Es posible que se produzca una desreferencia del puntero NULL y un bloqueo que conduzca a un posible ataque de denegación de servicio.&#xa0;El propio OpenSSL usa la función GENERAL_NAME_cmp para dos propósitos:&#xa0;1) Comparación de nombres de puntos de distribución de CRL entre una CRL disponible y un punto de distribución de CRL insertado en un certificado X509 2) Al comparar que un firmante de token de respuesta de marca de tiempo coincide con el nombre de autoridad de marca de tiempo (expuesto por medio de las funciones API TS_RESP_verify_response y TS_RESP_verify_token) Si un atacante puede controlar ambos elementos que se están comparando, entonces ese atacante podría desencadenar un bloqueo.&#xa0;Por ejemplo, si el atacante puede engañar a un cliente o servidor para que compruebe un certificado malicioso con una CRL maliciosa, esto puede ocurrir.&#xa0;Tome en cuenta que algunas aplicaciones descargan automáticamente las CRL basadas en una URL insertada en un certificado.&#xa0;Esta comprobación ocurre antes de que se verifiquen las firmas en el certificado y la CRL.&#xa0;Las herramientas s_server, s_client y verify de OpenSSL tienen soporte para la opción \"-crl_download\"&#xa0;que implementa la descarga automática de CRL y se ha demostrado que este ataque funciona contra esas herramientas.&#xa0;Tome en cuenta que un error no relacionado significa que las versiones afectadas de OpenSSL no pueden analizar ni construir codificaciones correctas de EDIPARTYNAME.&#xa0;Sin embargo, es posible construir un EDIPARTYNAME malformado que el analizador de OpenSSL aceptará y, por lo tanto, desencadenará este ataque.&#xa0;Todas las versiones de OpenSSL 1.1.1 y 1.0.2 están afectadas por este problema.&#xa0;Otras versiones de OpenSSL no son compatibles y no se han comprobado.&#xa0;Corregido en OpenSSL versiones 1.1.1i (Afectado versiones 1.1.1-1.1.1h).&#xa0;Corregido en OpenSSL versiones 1.0.2x (Afectado versiones 1.0.2-1.0.2w).&#xa0;Sin embargo, es posible construir un EDIPARTYNAME malformado que el analizador de OpenSSL aceptará y, por lo tanto, desencadenará este ataque.&#xa0;Todas las versiones de OpenSSL 1.1.1 y 1.0.2 están afectadas por este problema.&#xa0;Otras versiones de OpenSSL no son compatibles y no se han comprobado.&#xa0;Corregido en OpenSSL versión 1.1.1i (Afectada versión 1.1.1-1.1.1h).&#xa0;Corregido en OpenSSL versión 1.0.2x (Afectada versión 1.0.2-1.0.2w).&#xa0;Sin embargo, es posible construir un EDIPARTYNAME malformado que el analizador de OpenSSL aceptará y, por lo tanto, desencadenará este ataque.&#xa0;Todas las versiones de OpenSSL 1.1.1 y 1.0.2 están afectadas por este problema.&#xa0;Otras versiones de OpenSSL no son compatibles y no se han comprobado.&#xa0;Corregido en OpenSSL versión 1.1.1i (Afectada versión 1.1.1-1.1.1h).&#xa0;Corregido en OpenSSL versión 1.0.2x (Afectada versión 1.0.2-1.0.2w)"}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H","baseScore":5.9,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":2.2,"impactScore":3.6},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H","baseScore":5.9,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":2.2,"impactScore":3.6}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:M/Au:N/C:N/I:N/A:P","baseScore":4.3,"accessVector":"NETWORK","accessComplexity":"MEDIUM","authentication":"NONE","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"PARTIAL"},"baseSeverity":"MEDIUM","exploitabilityScore":8.6,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-476"}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-476"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:openssl:openssl:*:*:*:*:*:*:*:*","versionStartIncluding":"1.0.2","versionEndExcluding":"1.0.2x","matchCriteriaId":"4D0947DA-4A07-4C73-9FE7-7666734C568B"},{"vulnerable":true,"criteria":"cpe:2.3:a:openssl:openssl:*:*:*:*:*:*:*:*","versionStartIncluding":"1.1.1","versionEndExcluding":"1.1.1i","matchCriteriaId":"BFE3E95C-90F0-48C0-A737-28AD6AC2BDB8"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*","matchCriteriaId":"DEECE5FC-CACF-4496-A3E7-164736409252"},{"vulnerable":true,"criteria":"cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*","matchCriteriaId":"07B237A9-69A3-4A9C-9DA0-4E06BD37AE73"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:fedoraproject:fedora:32:*:*:*:*:*:*:*","matchCriteriaId":"36D96259-24BD-44E2-96D9-78CE1D41F956"},{"vulnerable":true,"criteria":"cpe:2.3:o:fedoraproject:fedora:33:*:*:*:*:*:*:*","matchCriteriaId":"E460AA51-FCDA-46B9-AE97-E6676AA5E194"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:api_gateway:11.1.2.4.0:*:*:*:*:*:*:*","matchCriteriaId":"A5553591-073B-45E3-999F-21B8BA2EEE22"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:business_intelligence:5.5.0.0.0:*:*:*:enterprise:*:*:*","matchCriteriaId":"D40AD626-B23A-44A3-A6C0-1FFB4D647AE4"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:business_intelligence:5.9.0.0.0:*:*:*:enterprise:*:*:*","matchCriteriaId":"B602F9E8-1580-436C-A26D-6E6F8121A583"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:business_intelligence:12.2.1.3.0:*:*:*:enterprise:*:*:*","matchCriteriaId":"77C3DD16-1D81-40E1-B312-50FBD275507C"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:business_intelligence:12.2.1.4.0:*:*:*:enterprise:*:*:*","matchCriteriaId":"81DAC8C0-D342-44B5-9432-6B88D389584F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:1.10.0:*:*:*:*:*:*:*","matchCriteriaId":"C2A5B24D-BDF2-423C-98EA-A40778C01A05"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:communications_diameter_intelligence_hub:*:*:*:*:*:*:*:*","versionStartIncluding":"8.0.0","versionEndIncluding":"8.1.0","matchCriteriaId":"B5B4A191-44AE-4C35-9164-19237D2CF013"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:communications_diameter_intelligence_hub:*:*:*:*:*:*:*:*","versionStartIncluding":"8.2.0","versionEndIncluding":"8.2.3","matchCriteriaId":"A543B4F8-149A-48AB-B388-AB7FA2ECAC18"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:communications_session_border_controller:cz8.2:*:*:*:*:*:*:*","matchCriteriaId":"45F90ABB-2633-447C-B510-D63D9898BD67"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:communications_session_border_controller:cz8.3:*:*:*:*:*:*:*","matchCriteriaId":"22822A0F-A2C4-427A-931F-428D2C010ECD"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:communications_session_border_controller:cz8.4:*:*:*:*:*:*:*","matchCriteriaId":"62A561CF-09BE-4EDB-AAB7-4B057C0B0E44"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:communications_session_router:cz8.2:*:*:*:*:*:*:*","matchCriteriaId":"58E8C3A9-1B8B-4D13-B0E9-DC620F619DD9"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:communications_session_router:cz8.3:*:*:*:*:*:*:*","matchCriteriaId":"5C880943-5A11-483E-9DA8-88D1D487BAA4"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:communications_session_router:cz8.4:*:*:*:*:*:*:*","matchCriteriaId":"ECF63433-30CC-4E0D-B66A-FD160111763B"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:communications_subscriber-aware_load_balancer:cz8.2:*:*:*:*:*:*:*","matchCriteriaId":"662B8154-6FFA-4B63-B5AD-18B1CECB3AF6"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:communications_subscriber-aware_load_balancer:cz8.3:*:*:*:*:*:*:*","matchCriteriaId":"5F2BFCE3-D743-4AC6-8FEC-75CAF66BFB65"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:communications_subscriber-aware_load_balancer:cz8.4:*:*:*:*:*:*:*","matchCriteriaId":"B8D05530-BFC7-4652-B387-BC931F43AB5B"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:communications_unified_session_manager:scz8.2.5:*:*:*:*:*:*:*","matchCriteriaId":"A200B074-61AF-4E1D-8F96-A73BECF81BC4"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:enterprise_communications_broker:pcz3.1:*:*:*:*:*:*:*","matchCriteriaId":"83739D8B-EAA0-43CD-B0EB-278C2F65CA42"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:enterprise_communications_broker:pcz3.2:*:*:*:*:*:*:*","matchCriteriaId":"2D3AD28E-4372-4B22-A0B9-B9BA7760E381"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:enterprise_communications_broker:pcz3.3:*:*:*:*:*:*:*","matchCriteriaId":"4B317147-064A-4786-B3D6-CDE1653E067E"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:enterprise_manager_base_platform:13.3.0.0:*:*:*:*:*:*:*","matchCriteriaId":"7582B307-3899-4BBB-B868-BC912A4D0109"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:enterprise_manager_base_platform:13.4.0.0:*:*:*:*:*:*:*","matchCriteriaId":"D26F3E23-F1A9-45E7-9E5F-0C0A24EE3783"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:enterprise_manager_for_storage_management:13.4.0.0:*:*:*:*:*:*:*","matchCriteriaId":"61516569-C48F-4362-B334-8CA10EDB0EC2"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:enterprise_manager_ops_center:12.4.0.0:*:*:*:*:*:*:*","matchCriteriaId":"B095CC03-7077-4A58-AB25-CC5380CDCE5A"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:enterprise_session_border_controller:cz8.2:*:*:*:*:*:*:*","matchCriteriaId":"EC124081-4465-4A80-897A-1DAC1013915E"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:enterprise_session_border_controller:cz8.3:*:*:*:*:*:*:*","matchCriteriaId":"B2AFC7C4-9FCC-425B-A010-F9EA0665753F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:enterprise_session_border_controller:cz8.4:*:*:*:*:*:*:*","matchCriteriaId":"FC109637-7BCA-4E9D-AC51-48D488E17E2B"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:essbase:21.2:*:*:*:*:*:*:*","matchCriteriaId":"394A16F2-CCD4-44E5-BF6B-E0C782A9FA38"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:graalvm:19.3.4:*:*:*:enterprise:*:*:*","matchCriteriaId":"937F66F5-F5BA-4156-82E0-EB2C99ABD41A"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:graalvm:20.3.0:*:*:*:enterprise:*:*:*","matchCriteriaId":"BC0F8B31-F93B-40B6-9C06-A3996DC63829"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:http_server:12.2.1.4.0:*:*:*:*:*:*:*","matchCriteriaId":"AD04BEE5-E9A8-4584-A68C-0195CE9C402C"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jd_edwards_enterpriseone_tools:*:*:*:*:*:*:*:*","versionEndExcluding":"9.2.5.3","matchCriteriaId":"4BCA7DD9-8599-4E43-9D82-999BE15483B9"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jd_edwards_world_security:a9.4:*:*:*:*:*:*:*","matchCriteriaId":"0B1CAD50-749F-4ADB-A046-BF3585677A58"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:mysql:*:*:*:*:*:*:*:*","versionEndIncluding":"8.0.22","matchCriteriaId":"16DEEDB2-E304-41A3-97DB-EDDFB16BE624"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:mysql_server:*:*:*:*:*:*:*:*","versionEndIncluding":"5.7.32","matchCriteriaId":"B4335442-548B-48AB-A399-DB146C6A8705"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:mysql_server:*:*:*:*:*:*:*:*","versionStartIncluding":"8.0.15","versionEndIncluding":"8.0.22","matchCriteriaId":"B7EAD39D-A892-4667-89D9-F66A33EAF9B7"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:peoplesoft_enterprise_peopletools:8.56:*:*:*:*:*:*:*","matchCriteriaId":"D0A735B4-4F3C-416B-8C08-9CB21BAD2889"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:peoplesoft_enterprise_peopletools:8.57:*:*:*:*:*:*:*","matchCriteriaId":"7E1E416B-920B-49A0-9523-382898C2979D"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:peoplesoft_enterprise_peopletools:8.58:*:*:*:*:*:*:*","matchCriteriaId":"D9DB4A14-2EF5-4B54-95D2-75E6CF9AA0A9"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:active_iq_unified_manager:-:*:*:*:*:vmware_vsphere:*:*","matchCriteriaId":"3A756737-1CC4-42C2-A4DF-E1C893B4E2D5"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:active_iq_unified_manager:-:*:*:*:*:windows:*:*","matchCriteriaId":"B55E8D50-99B4-47EC-86F9-699B67D473CE"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:clustered_data_ontap_antivirus_connector:-:*:*:*:*:*:*:*","matchCriteriaId":"62347994-1353-497C-9C4A-D5D8D95F67E8"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:data_ontap:-:*:*:*:*:7-mode:*:*","matchCriteriaId":"6C2ACC32-5147-4EA5-95BE-B6B4EAB3D82B"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:e-series_santricity_os_controller:*:*:*:*:*:*:*:*","versionStartIncluding":"11.0.0","versionEndIncluding":"11.60.3","matchCriteriaId":"BD1E9594-C46F-40D1-8BC2-6B16635B55C4"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:hci_management_node:-:*:*:*:*:*:*:*","matchCriteriaId":"A3C19813-E823-456A-B1CE-EC0684CE1953"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:manageability_software_development_kit:-:*:*:*:*:*:*:*","matchCriteriaId":"D39DCAE7-494F-40B2-867F-6C6A077939DD"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:oncommand_insight:-:*:*:*:*:*:*:*","matchCriteriaId":"F1BE6C1F-2565-4E97-92AA-16563E5660A5"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:oncommand_workflow_automation:-:*:*:*:*:*:*:*","matchCriteriaId":"5735E553-9731-4AAC-BCFF-989377F817B3"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:plug-in_for_symantec_netbackup:-:*:*:*:*:*:*:*","matchCriteriaId":"FFE0A9D2-9A49-4BF6-BC6F-8249162D8334"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:santricity_smi-s_provider:-:*:*:*:*:*:*:*","matchCriteriaId":"361B791A-D336-4431-8F68-8135BEFFAEA2"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:snapcenter:-:*:*:*:*:*:*:*","matchCriteriaId":"BDFB1169-41A0-4A86-8E4F-FDA9730B1E94"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:solidfire:-:*:*:*:*:*:*:*","matchCriteriaId":"A6E9EF0C-AFA8-4F7B-9FDC-1E0F7C26E737"},{"vulnerable":true,"criteria":"cpe:2.3:h:netapp:hci_compute_node:-:*:*:*:*:*:*:*","matchCriteriaId":"AD7447BC-F315-4298-A822-549942FC118B"},{"vulnerable":true,"criteria":"cpe:2.3:h:netapp:hci_storage_node:-:*:*:*:*:*:*:*","matchCriteriaId":"02DEB4FB-A21D-4CB1-B522-EEE5093E8521"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:netapp:ef600a_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"5356D8E0-38AB-44F2-BA0A-F884C92222D1"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:netapp:ef600a:-:*:*:*:*:*:*:*","matchCriteriaId":"44824034-DB0C-47AC-A32F-1EA373F30A61"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:netapp:aff_a250_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"0D5DE972-F8B8-4964-943A-DA0BD18289D1"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:netapp:aff_a250:-:*:*:*:*:*:*:*","matchCriteriaId":"D4B1F59C-6ADA-4930-834F-2A8A8444F6AE"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:tenable:log_correlation_engine:*:*:*:*:*:*:*:*","versionEndExcluding":"6.0.9","matchCriteriaId":"4ACF85D6-6B45-43DA-9C01-F0208186F014"},{"vulnerable":true,"criteria":"cpe:2.3:a:tenable:nessus_network_monitor:*:*:*:*:*:*:*:*","versionEndExcluding":"5.13.1","matchCriteriaId":"A87E730E-019C-4DCB-BA73-3994ECEF0C66"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:siemens:sinec_infrastructure_network_services:*:*:*:*:*:*:*:*","versionEndExcluding":"1.0.1.1","matchCriteriaId":"B0F46497-4AB0-49A7-9453-CC26837BF253"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:nodejs:node.js:*:*:*:*:-:*:*:*","versionStartIncluding":"10.0.0","versionEndIncluding":"10.12.0","matchCriteriaId":"25A3180B-21AF-4010-9DAB-41ADFD2D8031"},{"vulnerable":true,"criteria":"cpe:2.3:a:nodejs:node.js:*:*:*:*:lts:*:*:*","versionStartIncluding":"10.13.0","versionEndExcluding":"10.23.1","matchCriteriaId":"33081E31-5166-4064-91AA-951F5CD930D3"},{"vulnerable":true,"criteria":"cpe:2.3:a:nodejs:node.js:*:*:*:*:-:*:*:*","versionStartIncluding":"12.0.0","versionEndIncluding":"12.12.0","matchCriteriaId":"564ED5C8-50D7-413A-B88E-E62B6C07336A"},{"vulnerable":true,"criteria":"cpe:2.3:a:nodejs:node.js:*:*:*:*:lts:*:*:*","versionStartIncluding":"12.13.0","versionEndExcluding":"12.20.1","matchCriteriaId":"58879E00-2C36-4C1B-9993-2422346624D3"},{"vulnerable":true,"criteria":"cpe:2.3:a:nodejs:node.js:*:*:*:*:-:*:*:*","versionStartIncluding":"14.0.0","versionEndIncluding":"14.14.0","matchCriteriaId":"428DCD7B-6F66-4F18-B780-5BD80143D482"},{"vulnerable":true,"criteria":"cpe:2.3:a:nodejs:node.js:*:*:*:*:lts:*:*:*","versionStartIncluding":"14.15.0","versionEndExcluding":"14.15.4","matchCriteriaId":"2F2D8EEB-7A9E-472A-B820-A3C33CB93B61"},{"vulnerable":true,"criteria":"cpe:2.3:a:nodejs:node.js:*:*:*:*:-:*:*:*","versionStartIncluding":"15.0.0","versionEndExcluding":"15.5.0","matchCriteriaId":"1A868E7E-C25A-4B2A-BB37-7F2584ECB2D4"}]}]}],"references":[{"url":"http://www.openwall.com/lists/oss-security/2021/09/14/2","source":"openssl-security@openssl.org","tags":["Mailing List","Third Party Advisory"]},{"url":"https://cert-portal.siemens.com/productcert/pdf/ssa-389290.pdf","source":"openssl-security@openssl.org","tags":["Third Party Advisory"]},{"url":"https://git.openssl.org/gitweb/?p=openssl.git%3Ba=commitdiff%3Bh=2154ab83e14ede338d2ede9bbe5cdfce5d5a6c9e","source":"openssl-security@openssl.org"},{"url":"https://git.openssl.org/gitweb/?p=openssl.git%3Ba=commitdiff%3Bh=f960d81215ebf3f65e03d4d5d857fb9b666d6920","source":"openssl-security@openssl.org"},{"url":"https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA44676","source":"openssl-security@openssl.org","tags":["Third Party Advisory"]},{"url":"https://lists.apache.org/thread.html/r63c6f2dd363d9b514d0a4bcf624580616a679898cc14c109a49b750c%40%3Cdev.tomcat.apache.org%3E","source":"openssl-security@openssl.org"},{"url":"https://lists.apache.org/thread.html/rbb769f771711fb274e0a4acb1b5911c8aab544a6ac5e8c12d40c5143%40%3Ccommits.pulsar.apache.org%3E","source":"openssl-security@openssl.org"},{"url":"https://lists.debian.org/debian-lts-announce/2020/12/msg00020.html","source":"openssl-security@openssl.org","tags":["Mailing List","Third Party Advisory"]},{"url":"https://lists.debian.org/debian-lts-announce/2020/12/msg00021.html","source":"openssl-security@openssl.org","tags":["Mailing List","Third Party Advisory"]},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DGSI34Y5LQ5RYXN4M2I5ZQT65LFVDOUU/","source":"openssl-security@openssl.org"},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PWPSSZNZOBJU2YR6Z4TGHXKYW3YP5QG7/","source":"openssl-security@openssl.org"},{"url":"https://security.FreeBSD.org/advisories/FreeBSD-SA-20:33.openssl.asc","source":"openssl-security@openssl.org","tags":["Third Party Advisory"]},{"url":"https://security.gentoo.org/glsa/202012-13","source":"openssl-security@openssl.org","tags":["Third Party Advisory"]},{"url":"https://security.netapp.com/advisory/ntap-20201218-0005/","source":"openssl-security@openssl.org","tags":["Third Party Advisory"]},{"url":"https://security.netapp.com/advisory/ntap-20210513-0002/","source":"openssl-security@openssl.org","tags":["Third Party Advisory"]},{"url":"https://security.netapp.com/advisory/ntap-20240621-0006/","source":"openssl-security@openssl.org"},{"url":"https://www.debian.org/security/2020/dsa-4807","source":"openssl-security@openssl.org","tags":["Third Party Advisory"]},{"url":"https://www.openssl.org/news/secadv/20201208.txt","source":"openssl-security@openssl.org","tags":["Vendor Advisory"]},{"url":"https://www.oracle.com//security-alerts/cpujul2021.html","source":"openssl-security@openssl.org","tags":["Patch","Third Party Advisory"]},{"url":"https://www.oracle.com/security-alerts/cpuApr2021.html","source":"openssl-security@openssl.org","tags":["Patch","Third Party Advisory"]},{"url":"https://www.oracle.com/security-alerts/cpuapr2022.html","source":"openssl-security@openssl.org","tags":["Patch","Third Party Advisory"]},{"url":"https://www.oracle.com/security-alerts/cpujan2021.html","source":"openssl-security@openssl.org","tags":["Third Party Advisory"]},{"url":"https://www.oracle.com/security-alerts/cpuoct2021.html","source":"openssl-security@openssl.org","tags":["Third Party Advisory"]},{"url":"https://www.tenable.com/security/tns-2020-11","source":"openssl-security@openssl.org","tags":["Third Party Advisory"]},{"url":"https://www.tenable.com/security/tns-2021-09","source":"openssl-security@openssl.org","tags":["Third Party Advisory"]},{"url":"https://www.tenable.com/security/tns-2021-10","source":"openssl-security@openssl.org","tags":["Third Party Advisory"]},{"url":"http://www.openwall.com/lists/oss-security/2021/09/14/2","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"https://cert-portal.siemens.com/productcert/pdf/ssa-389290.pdf","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://git.openssl.org/gitweb/?p=openssl.git%3Ba=commitdiff%3Bh=2154ab83e14ede338d2ede9bbe5cdfce5d5a6c9e","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://git.openssl.org/gitweb/?p=openssl.git%3Ba=commitdiff%3Bh=f960d81215ebf3f65e03d4d5d857fb9b666d6920","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA44676","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://lists.apache.org/thread.html/r63c6f2dd363d9b514d0a4bcf624580616a679898cc14c109a49b750c%40%3Cdev.tomcat.apache.org%3E","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://lists.apache.org/thread.html/rbb769f771711fb274e0a4acb1b5911c8aab544a6ac5e8c12d40c5143%40%3Ccommits.pulsar.apache.org%3E","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://lists.debian.org/debian-lts-announce/2020/12/msg00020.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"https://lists.debian.org/debian-lts-announce/2020/12/msg00021.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DGSI34Y5LQ5RYXN4M2I5ZQT65LFVDOUU/","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PWPSSZNZOBJU2YR6Z4TGHXKYW3YP5QG7/","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://security.FreeBSD.org/advisories/FreeBSD-SA-20:33.openssl.asc","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://security.gentoo.org/glsa/202012-13","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://security.netapp.com/advisory/ntap-20201218-0005/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://security.netapp.com/advisory/ntap-20210513-0002/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://security.netapp.com/advisory/ntap-20240621-0006/","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://www.debian.org/security/2020/dsa-4807","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.openssl.org/news/secadv/20201208.txt","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]},{"url":"https://www.oracle.com//security-alerts/cpujul2021.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Third Party Advisory"]},{"url":"https://www.oracle.com/security-alerts/cpuApr2021.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Third Party Advisory"]},{"url":"https://www.oracle.com/security-alerts/cpuapr2022.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Third Party Advisory"]},{"url":"https://www.oracle.com/security-alerts/cpujan2021.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.oracle.com/security-alerts/cpuoct2021.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.tenable.com/security/tns-2020-11","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.tenable.com/security/tns-2021-09","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.tenable.com/security/tns-2021-10","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]}]}},{"cve":{"id":"CVE-2021-22701","sourceIdentifier":"cybersecurity@se.com","published":"2021-02-19T16:15:12.937","lastModified":"2026-05-29T14:16:22.573","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"A CWE-352: Cross-Site Request Forgery vulnerability exists in PowerLogic ION7400, ION7650, ION83xx/84xx/85xx/8600, ION8650, ION8800, ION9000 and PM800 (see notification for affected versions), that could cause a user to perform an unintended action on the target device when using the HTTP web interface."},{"lang":"es","value":"Una CWE-352: Se presenta una vulnerabilidad de tipo Cross-Site Request Forgery en PowerLogic ION7400, ION7650, ION83xx/84xx/85xx/8600, ION8650, ION8800, ION9000 y PM800 (consulte la notificación para las versiones afectadas), que podría causar que un usuario lleve a cabo una acción no deseada en el dispositivo de destino cuando se usa la interfaz web HTTP"}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:N/I:H/A:N","baseScore":4.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"HIGH","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"HIGH","availabilityImpact":"NONE"},"exploitabilityScore":0.9,"impactScore":3.6},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:N/I:H/A:H","baseScore":6.1,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"HIGH","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":0.9,"impactScore":5.2}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:M/Au:S/C:N/I:P/A:N","baseScore":3.5,"accessVector":"NETWORK","accessComplexity":"MEDIUM","authentication":"SINGLE","confidentialityImpact":"NONE","integrityImpact":"PARTIAL","availabilityImpact":"NONE"},"baseSeverity":"LOW","exploitabilityScore":6.8,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":true}]},"weaknesses":[{"source":"cybersecurity@se.com","type":"Secondary","description":[{"lang":"en","value":"CWE-352"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:powerlogic_ion7400_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"3.0.0","matchCriteriaId":"DCE7015C-02DD-44A1-ADEE-5E71CE312266"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:powerlogic_ion7400:-:*:*:*:*:*:*:*","matchCriteriaId":"C8F28EAA-FC60-4CE0-BD39-DFD3EB88E195"},{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:powerlogic_ion7410:-:*:*:*:*:*:*:*","matchCriteriaId":"C23FEAFC-9F15-4214-BF9C-A33130362110"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:powerlogic_ion7650_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"C1647241-A18D-4E4C-A118-8809EA625FC7"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:powerlogic_ion7650:-:*:*:*:*:*:*:*","matchCriteriaId":"0DF2D964-79EF-43F2-9AC6-D263F75BAFA0"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:powerlogic_ion8600_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"DB6B0276-AB51-4B8F-B2A7-85EDD56C9E7C"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:powerlogic_ion8600:-:*:*:*:*:*:*:*","matchCriteriaId":"324CF58A-753C-4D9C-8E72-FC8EE26EDA0D"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:powerlogic_ion8650_firmware:*:*:*:*:*:*:*:*","versionEndIncluding":"4.31.2","matchCriteriaId":"5D91486A-36CD-49A9-8A45-EDAA75F05E50"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:powerlogic_ion8650:-:*:*:*:*:*:*:*","matchCriteriaId":"FBC3A306-D4F4-4C2A-9D60-DD8F0826AEEC"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:powerlogic_ion8800_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"C95DCE16-BAA5-46DD-835B-2299376387CD"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:powerlogic_ion8800:-:*:*:*:*:*:*:*","matchCriteriaId":"46E8E79E-6DA7-4094-9622-3B91D5913493"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:powerlogic_ion9000_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"3.0.0","matchCriteriaId":"32067EA8-5153-4A00-9DE8-C4BEC42C00A6"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:powerlogic_ion9000:-:*:*:*:*:*:*:*","matchCriteriaId":"6718EAAA-074D-4807-AC2D-DD0A06D397FB"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:powerlogic_pm8000_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"3.0.0","matchCriteriaId":"E5A75862-E1AC-4C6E-83AD-DE5FCD8BA50D"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:powerlogic_pm8000:-:*:*:*:*:*:*:*","matchCriteriaId":"B16A7BEC-1BED-4A61-A6C9-BF7DB13B998C"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:powerlogic_ion8300_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"1047C892-B7F5-49FB-AB36-8E8061A58037"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:powerlogic_ion8300:-:*:*:*:*:*:*:*","matchCriteriaId":"F01E9FE2-4110-4A6D-99F3-49784808D951"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:powerlogic_ion8400_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"70BAC583-6101-4F26-A264-26E5D69E9188"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:powerlogic_ion8400:-:*:*:*:*:*:*:*","matchCriteriaId":"82527983-6167-4D7B-A70A-D1A814ED3D06"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:powerlogic_ion8500_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"768FB179-B6D7-457C-9795-310400460F6E"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:powerlogic_ion8500:-:*:*:*:*:*:*:*","matchCriteriaId":"75E37742-CFF9-4F80-9B6A-0D4F5AD23112"}]}]}],"references":[{"url":"https://www.se.com/ww/en/download/document/SEVD-2021-040-01/","source":"cybersecurity@se.com","tags":["Mitigation","Vendor Advisory"]},{"url":"https://www.se.com/ww/en/download/document/SEVD-2021-040-01/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mitigation","Vendor Advisory"]}]}},{"cve":{"id":"CVE-2021-22702","sourceIdentifier":"cybersecurity@se.com","published":"2021-02-19T16:15:13.077","lastModified":"2026-05-29T14:16:22.757","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"A CWE-319: Cleartext transmission of sensitive information vulnerability exists in PowerLogic ION7400, ION7650, ION7700/73xx, ION83xx/84xx/85xx/8600, ION8650, ION8800, ION9000 and PM800 (see notification for affected versions), that could cause disclosure of user credentials when a malicious actor intercepts Telnet network traffic between a user and the device."},{"lang":"es","value":"A CWE-319: Se presenta una vulnerabilidad de transmisión de información confidencial en texto sin cifrar en PowerLogic ION7400, ION7650, ION7700/73xx, ION83xx/84xx/85xx/8600, ION8650, ION8800, ION9000 y PM800 (consulte la notificación para las versiones afectadas), que podría causar una divulgación de credenciales de usuario cuando un actor malicioso intercepta el tráfico de red Telnet entre un usuario y el dispositivo"}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":3.6},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N","baseScore":5.9,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":2.2,"impactScore":3.6}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:P/I:N/A:N","baseScore":5.0,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"NONE","availabilityImpact":"NONE"},"baseSeverity":"MEDIUM","exploitabilityScore":10.0,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"cybersecurity@se.com","type":"Secondary","description":[{"lang":"en","value":"CWE-319"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:powerlogic_ion7400_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"3.0.0","matchCriteriaId":"DCE7015C-02DD-44A1-ADEE-5E71CE312266"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:powerlogic_ion7400:-:*:*:*:*:*:*:*","matchCriteriaId":"C8F28EAA-FC60-4CE0-BD39-DFD3EB88E195"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:powerlogic_ion7650_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"C1647241-A18D-4E4C-A118-8809EA625FC7"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:powerlogic_ion7650:-:*:*:*:*:*:*:*","matchCriteriaId":"0DF2D964-79EF-43F2-9AC6-D263F75BAFA0"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:powerlogic_ion7700_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"08CA14DE-656C-4D60-986B-FE149560FC2F"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:powerlogic_ion7700:-:*:*:*:*:*:*:*","matchCriteriaId":"07312E20-FF8A-4BD2-AB8D-AEA01B984AFE"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:powerlogic_ion7300_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"36D4CF8E-053E-42CD-8A8D-EBCFD52A7266"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:powerlogic_ion7300:-:*:*:*:*:*:*:*","matchCriteriaId":"F527180F-F818-4D4C-A0BF-F10C8B53B9C4"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:powerlogic_ion8600_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"DB6B0276-AB51-4B8F-B2A7-85EDD56C9E7C"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:powerlogic_ion8600:-:*:*:*:*:*:*:*","matchCriteriaId":"324CF58A-753C-4D9C-8E72-FC8EE26EDA0D"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:powerlogic_ion8650_firmware:*:*:*:*:*:*:*:*","versionEndIncluding":"4.31.2","matchCriteriaId":"5D91486A-36CD-49A9-8A45-EDAA75F05E50"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:powerlogic_ion8650:-:*:*:*:*:*:*:*","matchCriteriaId":"FBC3A306-D4F4-4C2A-9D60-DD8F0826AEEC"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:powerlogic_ion8800_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"C95DCE16-BAA5-46DD-835B-2299376387CD"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:powerlogic_ion8800:-:*:*:*:*:*:*:*","matchCriteriaId":"46E8E79E-6DA7-4094-9622-3B91D5913493"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:powerlogic_ion9000_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"3.0.0","matchCriteriaId":"32067EA8-5153-4A00-9DE8-C4BEC42C00A6"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:powerlogic_ion9000:-:*:*:*:*:*:*:*","matchCriteriaId":"6718EAAA-074D-4807-AC2D-DD0A06D397FB"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:powerlogic_pm8000_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"3.0.0","matchCriteriaId":"E5A75862-E1AC-4C6E-83AD-DE5FCD8BA50D"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:powerlogic_pm8000:-:*:*:*:*:*:*:*","matchCriteriaId":"B16A7BEC-1BED-4A61-A6C9-BF7DB13B998C"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:powerlogic_ion8300_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"1047C892-B7F5-49FB-AB36-8E8061A58037"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:powerlogic_ion8300:-:*:*:*:*:*:*:*","matchCriteriaId":"F01E9FE2-4110-4A6D-99F3-49784808D951"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:powerlogic_ion8400_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"70BAC583-6101-4F26-A264-26E5D69E9188"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:powerlogic_ion8400:-:*:*:*:*:*:*:*","matchCriteriaId":"82527983-6167-4D7B-A70A-D1A814ED3D06"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:powerlogic_ion8500_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"768FB179-B6D7-457C-9795-310400460F6E"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:powerlogic_ion8500:-:*:*:*:*:*:*:*","matchCriteriaId":"75E37742-CFF9-4F80-9B6A-0D4F5AD23112"}]}]}],"references":[{"url":"https://www.se.com/ww/en/download/document/SEVD-2021-040-01/","source":"cybersecurity@se.com","tags":["Mitigation","Vendor Advisory"]},{"url":"https://www.se.com/ww/en/download/document/SEVD-2021-040-01/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mitigation","Vendor Advisory"]}]}},{"cve":{"id":"CVE-2021-22703","sourceIdentifier":"cybersecurity@se.com","published":"2021-02-19T16:15:13.157","lastModified":"2026-05-29T14:16:22.920","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"A CWE-319: Cleartext transmission of sensitive information vulnerability exists in PowerLogic ION7400, ION7650, ION83xx/84xx/85xx/8600, ION8650, ION8800, ION9000 and PM800 (see notification for affected versions), that could cause disclosure of user credentials when a malicious actor intercepts HTTP network traffic between a user and the device."},{"lang":"es","value":"Una CWE-319: Se presenta una vulnerabilidad de transmisión de información confidencial en texto sin cifrar en PowerLogic ION7400, ION7650, ION83xx/84xx/85xx/8600, ION8650, ION8800, ION9000 y PM800 (consulte la notificación para las versiones afectadas), que podría causar una divulgación de las credenciales del usuario cuando un actor malicioso intercepta el tráfico de red HTTP entre un usuario y el dispositivo"}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":3.6},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N","baseScore":5.9,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":2.2,"impactScore":3.6}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:P/I:N/A:N","baseScore":5.0,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"NONE","availabilityImpact":"NONE"},"baseSeverity":"MEDIUM","exploitabilityScore":10.0,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"cybersecurity@se.com","type":"Secondary","description":[{"lang":"en","value":"CWE-319"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:powerlogic_ion7400_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"3.0.0","matchCriteriaId":"DCE7015C-02DD-44A1-ADEE-5E71CE312266"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:powerlogic_ion7400:-:*:*:*:*:*:*:*","matchCriteriaId":"C8F28EAA-FC60-4CE0-BD39-DFD3EB88E195"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:powerlogic_ion7650_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"C1647241-A18D-4E4C-A118-8809EA625FC7"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:powerlogic_ion7650:-:*:*:*:*:*:*:*","matchCriteriaId":"0DF2D964-79EF-43F2-9AC6-D263F75BAFA0"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:powerlogic_ion8600_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"DB6B0276-AB51-4B8F-B2A7-85EDD56C9E7C"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:powerlogic_ion8600:-:*:*:*:*:*:*:*","matchCriteriaId":"324CF58A-753C-4D9C-8E72-FC8EE26EDA0D"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:powerlogic_ion8650_firmware:*:*:*:*:*:*:*:*","versionEndIncluding":"4.31.2","matchCriteriaId":"5D91486A-36CD-49A9-8A45-EDAA75F05E50"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:powerlogic_ion8650:-:*:*:*:*:*:*:*","matchCriteriaId":"FBC3A306-D4F4-4C2A-9D60-DD8F0826AEEC"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:powerlogic_ion8800_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"C95DCE16-BAA5-46DD-835B-2299376387CD"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:powerlogic_ion8800:-:*:*:*:*:*:*:*","matchCriteriaId":"46E8E79E-6DA7-4094-9622-3B91D5913493"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:powerlogic_ion9000_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"3.0.0","matchCriteriaId":"32067EA8-5153-4A00-9DE8-C4BEC42C00A6"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:powerlogic_ion9000:-:*:*:*:*:*:*:*","matchCriteriaId":"6718EAAA-074D-4807-AC2D-DD0A06D397FB"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:powerlogic_pm8000_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"3.0.0","matchCriteriaId":"E5A75862-E1AC-4C6E-83AD-DE5FCD8BA50D"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:powerlogic_pm8000:-:*:*:*:*:*:*:*","matchCriteriaId":"B16A7BEC-1BED-4A61-A6C9-BF7DB13B998C"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:powerlogic_ion8300_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"1047C892-B7F5-49FB-AB36-8E8061A58037"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:powerlogic_ion8300:-:*:*:*:*:*:*:*","matchCriteriaId":"F01E9FE2-4110-4A6D-99F3-49784808D951"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:powerlogic_ion8400_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"70BAC583-6101-4F26-A264-26E5D69E9188"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:powerlogic_ion8400:-:*:*:*:*:*:*:*","matchCriteriaId":"82527983-6167-4D7B-A70A-D1A814ED3D06"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:powerlogic_ion8500_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"768FB179-B6D7-457C-9795-310400460F6E"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:powerlogic_ion8500:-:*:*:*:*:*:*:*","matchCriteriaId":"75E37742-CFF9-4F80-9B6A-0D4F5AD23112"}]}]}],"references":[{"url":"https://www.se.com/ww/en/download/document/SEVD-2021-040-01/","source":"cybersecurity@se.com","tags":["Mitigation","Vendor Advisory"]},{"url":"https://www.se.com/ww/en/download/document/SEVD-2021-040-01/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mitigation","Vendor Advisory"]}]}},{"cve":{"id":"CVE-2021-22713","sourceIdentifier":"cybersecurity@se.com","published":"2021-03-11T21:15:12.407","lastModified":"2026-05-29T20:16:20.073","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"A CWE-119:Improper restriction of operations within the bounds of a memory buffer vulnerability exists in PowerLogic ION8650, ION8800, ION7650, ION7700/73xx, and ION83xx/84xx/85xx/8600 (see security notifcation for affected versions), which could cause the meter to reboot."},{"lang":"es","value":"A CWE-119: se presenta vulnerabilidad de Restricción Inapropiada de Operaciones  dentro de los Límites de un Búfer de la Memoria en PowerLogic ION8650, ION8800, ION7650, ION7700 /73xx e ION83xx /84xx/85xx /8600 (consulte la notificación de seguridad para las versiones afectadas), lo que podría causar al medidor reiniciarse"}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":3.6},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":3.6}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:N/I:N/A:C","baseScore":7.8,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"COMPLETE"},"baseSeverity":"HIGH","exploitabilityScore":10.0,"impactScore":6.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"cybersecurity@se.com","type":"Secondary","description":[{"lang":"en","value":"CWE-119"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:powerlogic_ion8650_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"4.40.1","matchCriteriaId":"33CD5DAD-BE28-491D-A1CD-09F01194115F"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:powerlogic_ion8650:-:*:*:*:*:*:*:*","matchCriteriaId":"FBC3A306-D4F4-4C2A-9D60-DD8F0826AEEC"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:powerlogic_ion8800_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"372","matchCriteriaId":"99A58454-5EF2-4CD2-8391-577771573D2D"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:powerlogic_ion8800:-:*:*:*:*:*:*:*","matchCriteriaId":"46E8E79E-6DA7-4094-9622-3B91D5913493"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:powerlogic_ion7550_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"376","matchCriteriaId":"EDE14AD4-32C5-49C3-AB52-223CBC52A146"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:powerlogic_ion7550:4.0:*:*:*:*:*:*:*","matchCriteriaId":"4AFA65E4-51D6-4D2A-B750-7099DA03B107"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:powerlogic_ion7650_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"376","matchCriteriaId":"97910A81-407C-48C4-94AB-585FCCEAA56B"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:powerlogic_ion7650:4.0:*:*:*:*:*:*:*","matchCriteriaId":"5CD0CD85-457E-4153-B1C2-1B7D39B5854B"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:powerlogic_ion7700_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"08CA14DE-656C-4D60-986B-FE149560FC2F"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:powerlogic_ion7700:-:*:*:*:*:*:*:*","matchCriteriaId":"07312E20-FF8A-4BD2-AB8D-AEA01B984AFE"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:powerlogic_ion7300_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"36D4CF8E-053E-42CD-8A8D-EBCFD52A7266"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:powerlogic_ion7300:-:*:*:*:*:*:*:*","matchCriteriaId":"F527180F-F818-4D4C-A0BF-F10C8B53B9C4"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:powerlogic_ion8300_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"1047C892-B7F5-49FB-AB36-8E8061A58037"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:powerlogic_ion8300:-:*:*:*:*:*:*:*","matchCriteriaId":"F01E9FE2-4110-4A6D-99F3-49784808D951"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:powerlogic_ion8400_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"70BAC583-6101-4F26-A264-26E5D69E9188"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:powerlogic_ion8400:-:*:*:*:*:*:*:*","matchCriteriaId":"82527983-6167-4D7B-A70A-D1A814ED3D06"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:powerlogic_ion8500_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"768FB179-B6D7-457C-9795-310400460F6E"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:powerlogic_ion8500:-:*:*:*:*:*:*:*","matchCriteriaId":"75E37742-CFF9-4F80-9B6A-0D4F5AD23112"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:powerlogic_ion8600_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"DB6B0276-AB51-4B8F-B2A7-85EDD56C9E7C"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:powerlogic_ion8600:-:*:*:*:*:*:*:*","matchCriteriaId":"324CF58A-753C-4D9C-8E72-FC8EE26EDA0D"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:powerlogic_ion7550_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"416","matchCriteriaId":"3A481A07-B2B3-4C35-A19F-DF38885664DA"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:powerlogic_ion7550:5.0:*:*:*:*:*:*:*","matchCriteriaId":"029ADDBB-8F5D-4981-B23E-1CF7803AB371"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:ion7650_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"416","matchCriteriaId":"0A099948-C46C-47E9-A457-8CFADDF740BC"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:powerlogic_ion7650:5.0:*:*:*:*:*:*:*","matchCriteriaId":"A561E460-E2E7-44EB-9579-51C6715C5F60"}]}]}],"references":[{"url":"https://www.se.com/ww/en/download/document/SEVD-2021-068-03","source":"cybersecurity@se.com","tags":["Vendor Advisory"]},{"url":"https://www.se.com/ww/en/download/document/SEVD-2021-068-03","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]}]}},{"cve":{"id":"CVE-2021-29241","sourceIdentifier":"cve@mitre.org","published":"2021-05-03T14:15:07.633","lastModified":"2026-05-29T15:16:20.017","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"CODESYS Gateway 3 before 3.5.16.70 has a NULL pointer dereference that may result in a denial of service (DoS)."},{"lang":"es","value":"CODESYS Gateway versiones 3 anteriores a 3.5.16.70 tiene una derivación de puntero NULL que puede resultar en una denegación de servicio (DoS)"}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":3.6},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":3.6}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:N/I:N/A:P","baseScore":5.0,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"PARTIAL"},"baseSeverity":"MEDIUM","exploitabilityScore":10.0,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-476"}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-476"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:codesys:control_for_beaglebone_sl:*:*:*:*:*:*:*:*","versionStartIncluding":"3.0","versionEndExcluding":"4.0.1.0","matchCriteriaId":"C182D390-3A29-4048-805B-F00AF40E7353"},{"vulnerable":true,"criteria":"cpe:2.3:a:codesys:control_for_empc-a\\/imx6_sl:*:*:*:*:*:*:*:*","versionStartIncluding":"3.0","versionEndExcluding":"4.0.1.0","matchCriteriaId":"4FE1E73E-5A65-4C33-973D-B5E4D997AC7A"},{"vulnerable":true,"criteria":"cpe:2.3:a:codesys:control_for_iot2000_sl:*:*:*:*:*:*:*:*","versionStartIncluding":"3.0","versionEndExcluding":"4.0.1.0","matchCriteriaId":"94EF5004-D1D7-449D-9D99-92FC273FFF1F"},{"vulnerable":true,"criteria":"cpe:2.3:a:codesys:control_for_linux_sl:*:*:*:*:*:*:*:*","versionStartIncluding":"3.0","versionEndExcluding":"4.0.1.0","matchCriteriaId":"7E9AF0BE-05EC-4411-802B-331EA6B0E54E"},{"vulnerable":true,"criteria":"cpe:2.3:a:codesys:control_for_pfc100_sl:*:*:*:*:*:*:*:*","versionStartIncluding":"3.0","versionEndExcluding":"3.5.16.0","matchCriteriaId":"83B749C0-A553-42AB-AFCF-91F990BAA765"},{"vulnerable":true,"criteria":"cpe:2.3:a:codesys:control_for_pfc200_sl:*:*:*:*:*:*:*:*","versionStartIncluding":"3.0","versionEndExcluding":"3.5.16.0","matchCriteriaId":"C13DE019-B415-4373-8FC2-54A2898F50EA"},{"vulnerable":true,"criteria":"cpe:2.3:a:codesys:control_for_raspberry_pi_sl:*:*:*:*:*:*:*:*","versionStartIncluding":"3.0","versionEndExcluding":"4.0.1.0","matchCriteriaId":"763C9946-EFD7-469C-9D40-4186FE650F6F"},{"vulnerable":true,"criteria":"cpe:2.3:a:codesys:control_runtime_system_toolkit:*:*:*:*:*:*:*:*","versionStartIncluding":"3.0","versionEndExcluding":"3.5.16.70","matchCriteriaId":"035E43A5-7350-4B06-B3AA-40DD3A673BA7"},{"vulnerable":true,"criteria":"cpe:2.3:a:codesys:development_system:*:*:*:*:*:*:*:*","versionStartIncluding":"3.0","versionEndExcluding":"3.5.16.70","matchCriteriaId":"B35F55F6-2032-4F5A-AC3A-76835C043D7E"},{"vulnerable":true,"criteria":"cpe:2.3:a:codesys:edge_gateway:*:*:*:*:*:windows:*:*","versionStartIncluding":"3.0","versionEndExcluding":"3.5.16.70","matchCriteriaId":"02017CB2-3E3C-4F89-B1DA-C8E8213BC8C8"},{"vulnerable":true,"criteria":"cpe:2.3:a:codesys:edge_gateway:*:*:*:*:*:linux:*:*","versionStartIncluding":"3.0","versionEndExcluding":"4.1.0.0","matchCriteriaId":"FFBA19D6-9436-4E14-B9D3-28B82CB0321D"},{"vulnerable":true,"criteria":"cpe:2.3:a:codesys:gateway:*:*:*:*:*:*:*:*","versionStartIncluding":"3.0","versionEndExcluding":"3.5.16.70","matchCriteriaId":"671DF92A-D4CB-44E4-B4FD-781D3561FDAB"}]}]}],"references":[{"url":"https://customers.codesys.com/index.php","source":"cve@mitre.org","tags":["Permissions Required","Vendor Advisory"]},{"url":"https://customers.codesys.com/index.php?eID=dumpFile&t=f&f=14637&token=8dbd75ae7553ae3be25e22f741db783b31e14799&download=","source":"cve@mitre.org","tags":["Vendor Advisory"]},{"url":"https://www.codesys.com/security/security-reports.html","source":"cve@mitre.org","tags":["Vendor Advisory"]},{"url":"https://customers.codesys.com/index.php","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Permissions Required","Vendor Advisory"]},{"url":"https://customers.codesys.com/index.php?eID=dumpFile&t=f&f=14637&token=8dbd75ae7553ae3be25e22f741db783b31e14799&download=","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]},{"url":"https://www.codesys.com/security/security-reports.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]}]}},{"cve":{"id":"CVE-2021-22763","sourceIdentifier":"cybersecurity@se.com","published":"2021-06-11T16:15:10.320","lastModified":"2026-05-29T14:16:23.090","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"A CWE-640: Weak Password Recovery Mechanism for Forgotten Password vulnerability exists in PowerLogic PM55xx, PowerLogic PM8ECC, PowerLogic EGX100 and PowerLogic EGX300 (see security notification for version infromation) that could allow an attacker administrator level access to a device."},{"lang":"es","value":"Un CWE-640: Se presenta un Mecanismo Débil de Recuperación de Contraseñas para Contraseñas Olvidadas en PowerLogic PM55xx, PowerLogic PM8ECC, PowerLogic EGX100 y PowerLogic EGX300 (véase la notificación de seguridad para obtener información sobre la versión) que podría permitir a un atacante el acceso a nivel de administrador a un dispositivo"}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":9.8,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":5.9},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":9.8,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":5.9}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:C/I:C/A:C","baseScore":10.0,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"COMPLETE","integrityImpact":"COMPLETE","availabilityImpact":"COMPLETE"},"baseSeverity":"HIGH","exploitabilityScore":10.0,"impactScore":10.0,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"cybersecurity@se.com","type":"Secondary","description":[{"lang":"en","value":"CWE-640"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:powerlogic_pm5560_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"2.7.8","matchCriteriaId":"0F8EC9ED-1E27-40B8-84A8-F66BC9FD0803"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:powerlogic_pm5560:-:*:*:*:*:*:*:*","matchCriteriaId":"6DDB1B76-3862-462E-B55D-875EBE508B92"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:powerlogic_pm5561_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"10.7.3","matchCriteriaId":"EE3EFC50-39EA-4029-9713-9D191357DD29"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:powerlogic_pm5561:-:*:*:*:*:*:*:*","matchCriteriaId":"00D6C9E0-7DB3-4742-86F0-3430E99D1B1D"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:powerlogic_pm5562_firmware:*:*:*:*:*:*:*:*","versionEndIncluding":"2.5.4","matchCriteriaId":"FDBB46A2-4EAD-41DA-AC02-5E985EB755A1"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:powerlogic_pm5562:-:*:*:*:*:*:*:*","matchCriteriaId":"55D7896E-3EFA-4632-B0D2-273084D56936"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:powerlogic_pm5563_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"2.7.8","matchCriteriaId":"4E870589-0ADF-4B76-89CF-2D36F5C61CF0"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:powerlogic_pm5563:-:*:*:*:*:*:*:*","matchCriteriaId":"C5D4C9C4-C258-453B-85E4-893978D6C499"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:powerlogic_pm8ecc_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"064A8AD3-3657-4E66-8A7E-397DAF03BC96"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:powerlogic_pm8ecc:-:*:*:*:*:*:*:*","matchCriteriaId":"38BF2D7A-492B-4A0C-A841-A245C5657192"}]}]}],"references":[{"url":"https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2021-159-02&p_enDocType=Security+and+Safety+Notice&p_File_Name=SEVD-2021-159-02.pdf","source":"cybersecurity@se.com"},{"url":"http://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2021-159-02%2Chttp://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2021-159-03","source":"af854a3a-2127-422b-91ae-364da2661108"}]}},{"cve":{"id":"CVE-2021-22764","sourceIdentifier":"cybersecurity@se.com","published":"2021-06-11T16:15:10.390","lastModified":"2026-05-29T14:16:23.283","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"A CWE-287: Improper Authentication vulnerability exists in PowerLogic PM55xx, PowerLogic PM8ECC, PowerLogic EGX100 and PowerLogic EGX300 (see security notification for version infromation) that could cause loss of connectivity to the device via Modbus TCP protocol when an attacker sends a specially crafted HTTP request."},{"lang":"es","value":"Un CWE-287: Se presenta una vulnerabilidad de autenticación inapropiada en PowerLogic PM55xx, PowerLogic PM8ECC, PowerLogic EGX100 y PowerLogic EGX300 (véase la notificación de seguridad para obtener información sobre la versión) que podría causar la pérdida de conectividad con el dispositivo por medio del protocolo Modbus TCP cuando un atacante envía una petición HTTP especialmente diseñada"}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L","baseScore":5.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"LOW"},"exploitabilityScore":3.9,"impactScore":1.4},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L","baseScore":5.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"LOW"},"exploitabilityScore":3.9,"impactScore":1.4}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:N/I:N/A:P","baseScore":5.0,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"PARTIAL"},"baseSeverity":"MEDIUM","exploitabilityScore":10.0,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"cybersecurity@se.com","type":"Secondary","description":[{"lang":"en","value":"CWE-287"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:powerlogic_pm5560_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"2.7.8","matchCriteriaId":"0F8EC9ED-1E27-40B8-84A8-F66BC9FD0803"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:powerlogic_pm5560:-:*:*:*:*:*:*:*","matchCriteriaId":"6DDB1B76-3862-462E-B55D-875EBE508B92"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:powerlogic_pm5561_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"10.7.3","matchCriteriaId":"EE3EFC50-39EA-4029-9713-9D191357DD29"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:powerlogic_pm5561:-:*:*:*:*:*:*:*","matchCriteriaId":"00D6C9E0-7DB3-4742-86F0-3430E99D1B1D"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:powerlogic_pm5562_firmware:*:*:*:*:*:*:*:*","versionEndIncluding":"2.5.4","matchCriteriaId":"FDBB46A2-4EAD-41DA-AC02-5E985EB755A1"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:powerlogic_pm5562:-:*:*:*:*:*:*:*","matchCriteriaId":"55D7896E-3EFA-4632-B0D2-273084D56936"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:powerlogic_pm5563_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"2.7.8","matchCriteriaId":"4E870589-0ADF-4B76-89CF-2D36F5C61CF0"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:powerlogic_pm5563:-:*:*:*:*:*:*:*","matchCriteriaId":"C5D4C9C4-C258-453B-85E4-893978D6C499"}]}]}],"references":[{"url":"https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2021-159-02&p_enDocType=Security+and+Safety+Notice&p_File_Name=SEVD-2021-159-02.pdf","source":"cybersecurity@se.com"},{"url":"http://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2021-159-02%2Chttp://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2021-159-03","source":"af854a3a-2127-422b-91ae-364da2661108"}]}},{"cve":{"id":"CVE-2021-22765","sourceIdentifier":"cybersecurity@se.com","published":"2021-06-11T16:15:10.457","lastModified":"2026-05-29T15:16:18.290","vulnStatus":"Modified","cveTags":[{"sourceIdentifier":"cybersecurity@se.com","tags":["unsupported-when-assigned"]}],"descriptions":[{"lang":"en","value":"A CWE-20: Improper Input Validation vulnerability exists in PowerLogic EGX100 (Versions 3.0.0 and newer) and PowerLogic EGX300 (All Versions) that could cause denial of service or remote code execution via a specially crafted HTTP packet"},{"lang":"es","value":"** NO COMPATIBLE CUANDO SE ASIGNÓ ** UN CWE-20: Se presenta una vulnerabilidad de comprobación inapropiada de la entrada en PowerLogic EGX100 (versiones 3.0.0 y posteriores) y PowerLogic EGX300 (todas las versiones) que podría provocar una denegación de servicio o una ejecución de código remota por medio de un paquete HTTP especialmente diseñado"}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":9.8,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":5.9},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":9.8,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":5.9}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:P/I:P/A:P","baseScore":7.5,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"PARTIAL","availabilityImpact":"PARTIAL"},"baseSeverity":"HIGH","exploitabilityScore":10.0,"impactScore":6.4,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"cybersecurity@se.com","type":"Secondary","description":[{"lang":"en","value":"CWE-20"}]},{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-20"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:powerlogic_egx100_firmware:*:*:*:*:*:*:*:*","versionStartIncluding":"3.0.0","matchCriteriaId":"29A55C4C-0D14-4C55-ABBC-83280E221DE3"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:powerlogic_egx100:-:*:*:*:*:*:*:*","matchCriteriaId":"FE28A3BC-AD07-48F1-9DB9-65616A9399B5"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:powerlogic_egx300_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"9CB9B239-F219-4DF4-B53B-4DCE38F3205F"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:powerlogic_egx300:-:*:*:*:*:*:*:*","matchCriteriaId":"59A033CD-1DBC-44A4-9C56-1F97C3F40C6F"}]}]}],"references":[{"url":"http://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2021-159-03","source":"cybersecurity@se.com","tags":["Vendor Advisory"]},{"url":"http://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2021-159-03","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]}]}},{"cve":{"id":"CVE-2021-22766","sourceIdentifier":"cybersecurity@se.com","published":"2021-06-11T16:15:10.523","lastModified":"2026-05-29T15:16:18.500","vulnStatus":"Modified","cveTags":[{"sourceIdentifier":"cybersecurity@se.com","tags":["unsupported-when-assigned"]}],"descriptions":[{"lang":"en","value":"A CWE-20: Improper Input Validation vulnerability exists in PowerLogic EGX100 (Versions 3.0.0 and newer) and PowerLogic EGX300 (All Versions) that could cause denial of service via a specially crafted HTTP packet"},{"lang":"es","value":"** NO COMPATIBLE CUANDO SE ASIGNÓ ** UN CWE-20: Se presenta una vulnerabilidad de comprobación inapropiada de la entrada en PowerLogic EGX100 (versiones 3.0.0 y posteriores) y PowerLogic EGX300 (todas las versiones) que podría causar una denegación de servicio por medio de un paquete HTTP especialmente diseñado"}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":3.6},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":3.6}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:N/I:N/A:P","baseScore":5.0,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"PARTIAL"},"baseSeverity":"MEDIUM","exploitabilityScore":10.0,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"cybersecurity@se.com","type":"Secondary","description":[{"lang":"en","value":"CWE-20"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:powerlogic_egx100_firmware:*:*:*:*:*:*:*:*","versionStartIncluding":"3.0.0","matchCriteriaId":"29A55C4C-0D14-4C55-ABBC-83280E221DE3"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:powerlogic_egx100:-:*:*:*:*:*:*:*","matchCriteriaId":"FE28A3BC-AD07-48F1-9DB9-65616A9399B5"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:powerlogic_egx300_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"9CB9B239-F219-4DF4-B53B-4DCE38F3205F"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:powerlogic_egx300:-:*:*:*:*:*:*:*","matchCriteriaId":"59A033CD-1DBC-44A4-9C56-1F97C3F40C6F"}]}]}],"references":[{"url":"http://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2021-159-03","source":"cybersecurity@se.com","tags":["Vendor Advisory"]},{"url":"http://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2021-159-03","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]}]}},{"cve":{"id":"CVE-2021-22767","sourceIdentifier":"cybersecurity@se.com","published":"2021-06-11T16:15:10.593","lastModified":"2026-05-29T15:16:18.660","vulnStatus":"Modified","cveTags":[{"sourceIdentifier":"cybersecurity@se.com","tags":["unsupported-when-assigned"]}],"descriptions":[{"lang":"en","value":"A CWE-20: Improper Input Validation vulnerability exists in PowerLogic EGX100 (Versions 3.0.0 and newer) and PowerLogic EGX300 (All Versions) that could cause denial of service or remote code execution via a specially crafted HTTP packet.This CVE ID is unique from CVE-2021-2276"},{"lang":"es","value":"** NO COMPATIBLE CUANDO SE ASIGNÓ ** UN CWE-20: Se presenta una vulnerabilidad de comprobación inapropiada de la entrada en PowerLogic EGX100 (versiones 3.0.0 y posteriores) y PowerLogic EGX300 (todas las versiones) que podría causar una denegación de servicio o una ejecución de código remota por medio de un paquete HTTP especialmente diseñado. Este ID de CVE es diferente de CVE-2021-22768"}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":9.8,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":5.9},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":9.8,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":5.9}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:P/I:P/A:P","baseScore":7.5,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"PARTIAL","availabilityImpact":"PARTIAL"},"baseSeverity":"HIGH","exploitabilityScore":10.0,"impactScore":6.4,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"cybersecurity@se.com","type":"Secondary","description":[{"lang":"en","value":"CWE-20"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:powerlogic_egx100_firmware:*:*:*:*:*:*:*:*","versionStartIncluding":"3.0.0","matchCriteriaId":"29A55C4C-0D14-4C55-ABBC-83280E221DE3"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:powerlogic_egx100:-:*:*:*:*:*:*:*","matchCriteriaId":"FE28A3BC-AD07-48F1-9DB9-65616A9399B5"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:powerlogic_egx300_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"9CB9B239-F219-4DF4-B53B-4DCE38F3205F"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:powerlogic_egx300:-:*:*:*:*:*:*:*","matchCriteriaId":"59A033CD-1DBC-44A4-9C56-1F97C3F40C6F"}]}]}],"references":[{"url":"http://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2021-159-03","source":"cybersecurity@se.com","tags":["Vendor Advisory"]},{"url":"http://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2021-159-03","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]}]}},{"cve":{"id":"CVE-2021-22768","sourceIdentifier":"cybersecurity@se.com","published":"2021-06-11T16:15:10.663","lastModified":"2026-05-29T15:16:18.830","vulnStatus":"Modified","cveTags":[{"sourceIdentifier":"cybersecurity@se.com","tags":["unsupported-when-assigned"]}],"descriptions":[{"lang":"en","value":"A CWE-20: Improper Input Validation vulnerability exists in PowerLogic EGX100 (Versions 3.0.0 and newer) and PowerLogic EGX300 (All Versions) that could cause denial of service or remote code execution via a specially crafted HTTP packet.This CVE ID is unique from CVE-2021-22767"},{"lang":"es","value":"** NO COMPATIBLE CUANDO SE ASIGNÓ ** UN CWE-20: Se presenta una vulnerabilidad de comprobación inapropiada de la entrada en PowerLogic EGX100 (versiones 3.0.0 y posteriores) y PowerLogic EGX300 (todas las versiones) que podría causar una denegación de servicio o una ejecución de código remota por medio de un paquete HTTP especialmente diseñado. Este ID de CVE es diferente de CVE-2021-22767"}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":9.8,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":5.9},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":9.8,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":5.9}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:P/I:P/A:P","baseScore":7.5,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"PARTIAL","availabilityImpact":"PARTIAL"},"baseSeverity":"HIGH","exploitabilityScore":10.0,"impactScore":6.4,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"cybersecurity@se.com","type":"Secondary","description":[{"lang":"en","value":"CWE-20"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:powerlogic_egx100_firmware:*:*:*:*:*:*:*:*","versionStartIncluding":"3.0.0","matchCriteriaId":"29A55C4C-0D14-4C55-ABBC-83280E221DE3"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:powerlogic_egx100:-:*:*:*:*:*:*:*","matchCriteriaId":"FE28A3BC-AD07-48F1-9DB9-65616A9399B5"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:powerlogic_egx300_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"9CB9B239-F219-4DF4-B53B-4DCE38F3205F"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:powerlogic_egx300:-:*:*:*:*:*:*:*","matchCriteriaId":"59A033CD-1DBC-44A4-9C56-1F97C3F40C6F"}]}]}],"references":[{"url":"http://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2021-159-03","source":"cybersecurity@se.com","tags":["Vendor Advisory"]},{"url":"http://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2021-159-03","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]}]}},{"cve":{"id":"CVE-2021-22779","sourceIdentifier":"cybersecurity@se.com","published":"2021-07-14T15:15:08.240","lastModified":"2026-05-29T15:16:18.987","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Authentication Bypass by Spoofing vulnerability exists in EcoStruxure Control Expert (all versions prior to V15.0 SP1, including all versions of Unity Pro), EcoStruxure Control Expert V15.0 SP1, EcoStruxure Process Expert (all versions, including all versions of EcoStruxure Hybrid DCS), SCADAPack RemoteConnect for x70 (all versions), Modicon M580 CPU (all versions - part numbers BMEP* and BMEH*), Modicon M340 CPU (all versions - part numbers BMXP34*), that could cause unauthorized access in read and write mode to the controller by spoofing the Modbus communication between the engineering software and the controller."},{"lang":"es","value":"Se presenta una vulnerabilidad de Omisión de Autenticación por Spoofing en EcoStruxure Control Expert (todas las versiones anteriores a V15.0 SP1, incluyendo todas las versiones de Unity Pro), EcoStruxure Control Expert versión V15.0 SP1, EcoStruxure Process Expert (todas las versiones, incluyendo todas las versiones de EcoStruxure Hybrid DCS), SCADAPack RemoteConnect for x70 (todas las versiones), Modicon M580 CPU (todas las versiones - números de parte BMEP* y BMEH*), Modicon M340 CPU (todas las versiones - números de parte BMXP34*), que podría causar un acceso no autorizado en modo de lectura y escritura al controlador mediante el spoofing de la comunicación Modbus entre el software de ingeniería y el controlador"}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N","baseScore":9.1,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":5.2},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":2.5}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:P/I:P/A:N","baseScore":6.4,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"PARTIAL","availabilityImpact":"NONE"},"baseSeverity":"MEDIUM","exploitabilityScore":10.0,"impactScore":4.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"cybersecurity@se.com","type":"Secondary","description":[{"lang":"en","value":"CWE-290"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:schneider-electric:ecostruxure_control_expert:*:*:*:*:*:*:*:*","versionEndExcluding":"15.0","matchCriteriaId":"43140BF9-455B-4E3C-BF5E-BB9BBF9802D2"},{"vulnerable":true,"criteria":"cpe:2.3:a:schneider-electric:ecostruxure_control_expert:15.0:-:*:*:*:*:*:*","matchCriteriaId":"A9BF2D84-901E-4D34-941F-FFAB85B0E9D3"},{"vulnerable":true,"criteria":"cpe:2.3:a:schneider-electric:ecostruxure_control_expert:15.0:sp1:*:*:*:*:*:*","matchCriteriaId":"939C02B6-B5C5-4F87-8179-4AFFE13FCFD2"},{"vulnerable":true,"criteria":"cpe:2.3:a:schneider-electric:ecostruxure_process_expert:*:*:*:*:*:*:*:*","matchCriteriaId":"FD97669F-93D5-42C4-BFC4-1993867F5911"},{"vulnerable":true,"criteria":"cpe:2.3:a:schneider-electric:remoteconnect:*:*:*:*:*:*:scadapack_x70:*","matchCriteriaId":"2D7E0B75-171E-4A73-B722-13473CE1B9D7"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_m580_bmep581020_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"49646E6C-381F-495B-A5E8-8F522571D4AD"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmep581020:-:*:*:*:*:*:*:*","matchCriteriaId":"2317F260-7AA2-4178-B468-03DF36223E26"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_m580_bmep581020h_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"2F472ED1-8FE6-43BC-A4FF-E956D17ED427"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmep581020h:-:*:*:*:*:*:*:*","matchCriteriaId":"3D7DDC42-37A1-43B0-AD46-2E0D098564BA"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_m580_bmep582020_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"3F1315A8-FDEE-487F-BA66-A99745783911"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmep582020:-:*:*:*:*:*:*:*","matchCriteriaId":"765E4FEE-255E-4C47-824A-5661B84B490B"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_m580_bmep582020h_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"F543A095-B798-4C5B-A2B6-DF893191EAC3"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmep582020h:-:*:*:*:*:*:*:*","matchCriteriaId":"B1FEA377-3C45-4F88-B233-088A24BD0771"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_m580_bmep582040_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"71823B23-C4E6-40EC-AC9C-2EABFDAFE498"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmep582040:-:*:*:*:*:*:*:*","matchCriteriaId":"EBCCDD6D-35CE-4680-8B0C-86584B1D8958"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_m580_bmep582040h_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"3BDD13AD-681C-4C7D-82D5-3017FB3BE852"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmep582040h:-:*:*:*:*:*:*:*","matchCriteriaId":"68FD5968-C522-4231-A98C-93D3101B6148"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_m580_bmep582040s_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"B782A209-0612-4CA1-8438-6653D75F452C"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmep582040s:-:*:*:*:*:*:*:*","matchCriteriaId":"C02B27F6-B8CF-4D3B-9DA6-054F540EA6B6"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_m580_bmep583020_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"43B3DF32-480E-4CE1-9396-B33CD5F63A22"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmep583020:-:*:*:*:*:*:*:*","matchCriteriaId":"BBC38FF1-693E-4899-883C-1B7B80A52F2C"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_m580_bmep583040_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"EA09FB51-0FDC-4457-8ED6-A963CAB97DF4"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmep583040:-:*:*:*:*:*:*:*","matchCriteriaId":"002E7F33-6729-4C35-9DDA-7D8383BD5668"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_m580_bmep584020_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"A9C82569-7D6C-4FD9-B5BB-2E9576FDFB0E"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmep584020:-:*:*:*:*:*:*:*","matchCriteriaId":"47DFEBAC-2F1D-4870-8425-2199BF80B425"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_m580_bmep584040_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"1DC98F7D-BDCC-4CF1-BA80-55EA68C5DDB5"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmep584040:-:*:*:*:*:*:*:*","matchCriteriaId":"FC4A1DF2-FF4C-4DBE-BF74-6A4A09E3DECE"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_m580_bmep584040s_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"CB7741EA-7955-4FC6-BE64-23EFBB0E3DC6"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmep584040s:-:*:*:*:*:*:*:*","matchCriteriaId":"6222C1F8-BE52-4666-B7F5-2E8BBC214F70"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_m580_bmep585040_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"252FA576-D00F-4BF2-871D-291D209B443C"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmep585040:-:*:*:*:*:*:*:*","matchCriteriaId":"5376D9F4-8AFB-4909-A11B-33C54C4220DB"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_m580_bmep585040c_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"2786E51E-B042-4DEF-98CE-C46F381D468C"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmep585040c:-:*:*:*:*:*:*:*","matchCriteriaId":"CADB178B-FEFD-48A9-B155-0E8F6D490229"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_m580_bmep586040_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"0D9E6C74-FAEE-49D3-807B-7F8416C12725"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmep586040:-:*:*:*:*:*:*:*","matchCriteriaId":"6B3C1879-269B-47EB-891B-EF2E90C911D7"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_m580_bmep586040c_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"B182E938-6B50-4F3A-BAF6-AD2637E31E43"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmep586040c:-:*:*:*:*:*:*:*","matchCriteriaId":"5771A1A5-3DAF-4869-A24F-F9B0A38B5DA5"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_m580_bmeh582040_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"8C610F17-FD8F-425E-A169-47EA7E6E8A0A"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmeh582040:-:*:*:*:*:*:*:*","matchCriteriaId":"F484F8BB-60B5-4045-92C3-0C2A0CD4107E"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_m580_bmeh582040c_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"355FFF2A-2B69-4340-AC49-257C0DC63B70"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmeh582040c:-:*:*:*:*:*:*:*","matchCriteriaId":"F4F0F823-89EA-451D-81DC-07AACA039371"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_m580_bmeh582040s_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"777E63F4-CC75-4D68-98CC-896C58EBDD5A"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmeh582040s:-:*:*:*:*:*:*:*","matchCriteriaId":"610AE743-9FD1-4149-AD45-3B1DAE268BF9"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_m580_bmeh584040_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"BF0ACFD6-D1EE-4C25-A307-2E3FB67F4A20"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmeh584040:-:*:*:*:*:*:*:*","matchCriteriaId":"77116949-1141-432D-964B-29A759939E8F"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_m580_bmeh584040c_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"AB46DD56-7A06-428C-97CB-E01C22BC8214"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmeh584040c:-:*:*:*:*:*:*:*","matchCriteriaId":"B6CE23A2-09CC-4417-A45F-63BCA66C4DD8"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_m580_bmeh584040s_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"29482B31-563A-4931-B11E-FDE86F87F25E"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmeh584040s:-:*:*:*:*:*:*:*","matchCriteriaId":"97AAD857-95C0-4AE3-8510-CB306E8293F4"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_m580_bmeh586040_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"1D261663-D224-4C92-A3F4-3509CAA78A36"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmeh586040:-:*:*:*:*:*:*:*","matchCriteriaId":"07E2FB94-F402-4CF0-BE35-574C1C6528BA"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_m580_bmeh586040c_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"6C6737F3-F881-4BDC-A4F4-F6F08B88EC1E"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmeh586040c:-:*:*:*:*:*:*:*","matchCriteriaId":"2E776EE9-A662-4068-A61A-62CAE23C87F7"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_m580_bmeh586040s_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"CEBCF494-DC4C-4567-A5C8-2C8D93BAF289"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmeh586040s:-:*:*:*:*:*:*:*","matchCriteriaId":"D53BD038-D594-41FF-B3EF-3365C5432AD0"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_m340_bmxp341000_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"8152BD1B-DB69-4BD0-9DD3-79FC059319B1"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_m340_bmxp341000:-:*:*:*:*:*:*:*","matchCriteriaId":"178D2338-E48E-493C-992F-337AACE794DE"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_m340_bmxp342010_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"4A4A2D03-6D4E-4ED9-A0CE-3DD681CB6E9F"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_m340_bmxp342010:-:*:*:*:*:*:*:*","matchCriteriaId":"833B2455-5D39-4457-9D6F-0CD738A2EB02"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_m340_bmxp342020_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"C747D719-51A2-44F5-B940-89D84437DA95"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_m340_bmxp342020:-:*:*:*:*:*:*:*","matchCriteriaId":"99F2F851-C18F-4CB8-B47C-516F2AC7955D"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_m340_bmxp342030_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"34CC8BAD-3D4F-4DAD-B8CE-09D0BF4A5E11"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_m340_bmxp342030:-:*:*:*:*:*:*:*","matchCriteriaId":"E472ABB0-5556-4B96-9CEF-2180E24FA7FD"}]}]}],"references":[{"url":"http://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2021-194-01","source":"cybersecurity@se.com","tags":["Vendor Advisory"]},{"url":"http://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2021-194-01","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]}]}},{"cve":{"id":"CVE-2021-33485","sourceIdentifier":"cve@mitre.org","published":"2021-08-03T16:15:08.583","lastModified":"2026-05-29T15:16:20.230","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"CODESYS Control Runtime system before 3.5.17.10 has a Heap-based Buffer Overflow."},{"lang":"es","value":"CODESYS Control Runtime system versiones anteriores a 3.5.17.10, presenta un Desbordamiento de Buffer en la región Heap de la memoria"}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":9.8,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":5.9},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":9.8,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":5.9}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:P/I:P/A:P","baseScore":7.5,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"PARTIAL","availabilityImpact":"PARTIAL"},"baseSeverity":"HIGH","exploitabilityScore":10.0,"impactScore":6.4,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-787"}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-122"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:codesys:control:*:*:*:*:*:beaglebone_sl:*:*","versionEndExcluding":"4.2.0.0","matchCriteriaId":"57DD6E2E-9B12-4C30-9CCF-26C5EFCFC0EA"},{"vulnerable":true,"criteria":"cpe:2.3:a:codesys:control:*:*:*:*:*:empc-a\\/imx6_sl:*:*","versionEndExcluding":"4.2.0.0","matchCriteriaId":"79E8DFCC-74F7-4B0D-A476-D13CBB32EDEF"},{"vulnerable":true,"criteria":"cpe:2.3:a:codesys:control:*:*:*:*:*:iot2000_sl:*:*","versionEndExcluding":"4.2.0.0","matchCriteriaId":"58160302-830A-463B-AE5F-782B01893F40"},{"vulnerable":true,"criteria":"cpe:2.3:a:codesys:control:*:*:*:*:*:linux_sl:*:*","versionEndIncluding":"4.2.0.0","matchCriteriaId":"2E740918-B35E-4583-8580-046A7C7F3113"},{"vulnerable":true,"criteria":"cpe:2.3:a:codesys:control:*:*:*:*:*:pfc100_sl:*:*","versionEndExcluding":"4.2.0.0","matchCriteriaId":"F00E63D5-8CA2-4082-B522-4B0C51772A4C"},{"vulnerable":true,"criteria":"cpe:2.3:a:codesys:control:*:*:*:*:*:pfc200_sl:*:*","versionEndExcluding":"4.2.0.0","matchCriteriaId":"6890F3F3-6DF2-4D0C-A431-B3705900E1EB"},{"vulnerable":true,"criteria":"cpe:2.3:a:codesys:control:*:*:*:*:*:plcnext_sl:*:*","versionEndExcluding":"4.2.0.0","matchCriteriaId":"7D6CA947-A0F3-4F45-804B-BAD4BD24CBC4"},{"vulnerable":true,"criteria":"cpe:2.3:a:codesys:control:*:*:*:*:*:raspberry_pi_sl:*:*","versionEndExcluding":"4.2.0.0","matchCriteriaId":"1545D5A9-739E-4C36-933A-B87A3D593A22"},{"vulnerable":true,"criteria":"cpe:2.3:a:codesys:control:*:*:*:*:*:wago_touch_panels_600_sl:*:*","versionEndExcluding":"4.2.0.0","matchCriteriaId":"7D0A2D1F-F297-4D5D-8FB1-1C80297E91A1"},{"vulnerable":true,"criteria":"cpe:2.3:a:codesys:control_rte:*:*:*:*:*:-:*:*","versionEndExcluding":"3.5.17.10","matchCriteriaId":"102C898A-8CA9-4C6E-AAAD-ED947F6DCEA2"},{"vulnerable":true,"criteria":"cpe:2.3:a:codesys:control_rte:*:*:*:*:*:beckhoff_cx:*:*","versionEndExcluding":"3.5.17.10","matchCriteriaId":"C629084B-E59E-4FA4-A866-7F2FE8C6D26B"},{"vulnerable":true,"criteria":"cpe:2.3:a:codesys:control_runtime_system_toolkit:*:*:*:*:*:*:*:*","versionEndExcluding":"3.5.17.10","matchCriteriaId":"48B1957E-472D-4A21-A8FC-DF2AF0C118F5"},{"vulnerable":true,"criteria":"cpe:2.3:a:codesys:control_win_sl:*:*:*:*:*:*:*:*","versionEndExcluding":"3.5.17.10","matchCriteriaId":"FBCFD26C-0262-4D2B-99CA-E7EA0E6B75E3"},{"vulnerable":true,"criteria":"cpe:2.3:a:codesys:embedded_target_visu_toolkit:*:*:*:*:*:*:*:*","versionEndExcluding":"3.5.17.10","matchCriteriaId":"B640C5A9-8241-4191-87F6-E31D6902702E"},{"vulnerable":true,"criteria":"cpe:2.3:a:codesys:hmi:*:*:*:*:*:*:*:*","versionEndExcluding":"3.5.17.10","matchCriteriaId":"9116B38E-7B7C-48DB-B742-A8741EB63892"},{"vulnerable":true,"criteria":"cpe:2.3:a:codesys:remote_target_visu_toolkit:*:*:*:*:*:*:*:*","versionEndExcluding":"3.5.17.10","matchCriteriaId":"C86F931B-F172-4B00-B484-48048756655F"}]}]}],"references":[{"url":"https://customers.codesys.com/index.php?eID=dumpFile&t=f&f=14805&token=f0b86f99bb302ddd4aadec483aed5f5d3fddbf1a&download=","source":"cve@mitre.org","tags":["Vendor Advisory"]},{"url":"https://customers.codesys.com/index.php?eID=dumpFile&t=f&f=14805&token=f0b86f99bb302ddd4aadec483aed5f5d3fddbf1a&download=","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]}]}},{"cve":{"id":"CVE-2021-22789","sourceIdentifier":"cybersecurity@se.com","published":"2021-09-02T17:15:08.180","lastModified":"2026-05-29T15:16:19.190","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"A CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability that could cause a Denial of Service on the Modicon PLC controller / simulator when updating the controller application with a specially crafted project file exists in Modicon M580 CPU (part numbers BMEP* and BMEH*, all versions), Modicon M340 CPU (part numbers BMXP34*, all versions), Modicon MC80 (part numbers BMKC80*, all versions), Modicon Momentum Ethernet CPU (part numbers 171CBU*, all versions), PLC Simulator for EcoStruxureª Control Expert, including all Unity Pro versions (former name of EcoStruxureª Control Expert, all versions), PLC Simulator for EcoStruxureª Process Expert including all HDCS versions (former name of EcoStruxureª Process Expert, all versions), Modicon Quantum CPU (part numbers 140CPU*, all versions), Modicon Premium CPU (part numbers TSXP5*, all versions)."},{"lang":"es","value":"Una CWE-119: Una vulnerabilidad de Restricción Inapropiada de Operaciones dentro de los Límites de un Búfer de Memoria que podría causar una Denegación de Servicio en el controlador/simulador del PLC Modicon cuando se actualiza la aplicación del controlador con un archivo de proyecto especialmente diseñado se presenta en Modicon M580 CPU (números de pieza BMEP* and BMEH*, todas las versiones), Modicon M340 CPU (números de pieza BMXP34*, todas las versiones), Modicon MC80 (números de pieza BMKC80*, todas las versiones), Modicon Momentum Ethernet CPU (números de pieza 171CBU*, todas las versiones), PLC Simulator for EcoStruxureª Control Expert, incluyendo todas las versiones Unity Pro (antiguo nombre de EcoStruxureª Control Expert, todas las versiones), PLC Simulator for EcoStruxureª Process Expert incluyendo todas las versiones HDCS (antiguo nombre de EcoStruxureª Process Expert, todas las versiones), Modicon Quantum CPU (números de pieza 140CPU*, todas las versiones), Modicon Premium CPU (números de pieza TSXP5*, todas las versiones)"}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":3.6},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":3.6}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:S/C:N/I:N/A:P","baseScore":4.0,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"SINGLE","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"PARTIAL"},"baseSeverity":"MEDIUM","exploitabilityScore":8.0,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"cybersecurity@se.com","type":"Secondary","description":[{"lang":"en","value":"CWE-119"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_m340_bmxp341000:-:*:*:*:*:*:*:*","matchCriteriaId":"178D2338-E48E-493C-992F-337AACE794DE"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_m340_bmxp342010:-:*:*:*:*:*:*:*","matchCriteriaId":"833B2455-5D39-4457-9D6F-0CD738A2EB02"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_m340_bmxp342020:-:*:*:*:*:*:*:*","matchCriteriaId":"99F2F851-C18F-4CB8-B47C-516F2AC7955D"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_m340_bmxp342030:-:*:*:*:*:*:*:*","matchCriteriaId":"E472ABB0-5556-4B96-9CEF-2180E24FA7FD"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmeh582040:-:*:*:*:*:*:*:*","matchCriteriaId":"F484F8BB-60B5-4045-92C3-0C2A0CD4107E"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmeh582040c:-:*:*:*:*:*:*:*","matchCriteriaId":"F4F0F823-89EA-451D-81DC-07AACA039371"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmeh582040s:-:*:*:*:*:*:*:*","matchCriteriaId":"610AE743-9FD1-4149-AD45-3B1DAE268BF9"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmeh584040:-:*:*:*:*:*:*:*","matchCriteriaId":"77116949-1141-432D-964B-29A759939E8F"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmeh584040c:-:*:*:*:*:*:*:*","matchCriteriaId":"B6CE23A2-09CC-4417-A45F-63BCA66C4DD8"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmeh584040s:-:*:*:*:*:*:*:*","matchCriteriaId":"97AAD857-95C0-4AE3-8510-CB306E8293F4"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmeh586040:-:*:*:*:*:*:*:*","matchCriteriaId":"07E2FB94-F402-4CF0-BE35-574C1C6528BA"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmeh586040c:-:*:*:*:*:*:*:*","matchCriteriaId":"2E776EE9-A662-4068-A61A-62CAE23C87F7"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmeh586040s:-:*:*:*:*:*:*:*","matchCriteriaId":"D53BD038-D594-41FF-B3EF-3365C5432AD0"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmep581020:-:*:*:*:*:*:*:*","matchCriteriaId":"2317F260-7AA2-4178-B468-03DF36223E26"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmep581020h:-:*:*:*:*:*:*:*","matchCriteriaId":"3D7DDC42-37A1-43B0-AD46-2E0D098564BA"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmep582020:-:*:*:*:*:*:*:*","matchCriteriaId":"765E4FEE-255E-4C47-824A-5661B84B490B"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmep582020h:-:*:*:*:*:*:*:*","matchCriteriaId":"B1FEA377-3C45-4F88-B233-088A24BD0771"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmep582040:-:*:*:*:*:*:*:*","matchCriteriaId":"EBCCDD6D-35CE-4680-8B0C-86584B1D8958"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmep582040h:-:*:*:*:*:*:*:*","matchCriteriaId":"68FD5968-C522-4231-A98C-93D3101B6148"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmep582040s:-:*:*:*:*:*:*:*","matchCriteriaId":"C02B27F6-B8CF-4D3B-9DA6-054F540EA6B6"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmep583020:-:*:*:*:*:*:*:*","matchCriteriaId":"BBC38FF1-693E-4899-883C-1B7B80A52F2C"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmep583040:-:*:*:*:*:*:*:*","matchCriteriaId":"002E7F33-6729-4C35-9DDA-7D8383BD5668"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmep584020:-:*:*:*:*:*:*:*","matchCriteriaId":"47DFEBAC-2F1D-4870-8425-2199BF80B425"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmep584040:-:*:*:*:*:*:*:*","matchCriteriaId":"FC4A1DF2-FF4C-4DBE-BF74-6A4A09E3DECE"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmep584040s:-:*:*:*:*:*:*:*","matchCriteriaId":"6222C1F8-BE52-4666-B7F5-2E8BBC214F70"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmep585040:-:*:*:*:*:*:*:*","matchCriteriaId":"5376D9F4-8AFB-4909-A11B-33C54C4220DB"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmep585040c:-:*:*:*:*:*:*:*","matchCriteriaId":"CADB178B-FEFD-48A9-B155-0E8F6D490229"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmep586040:-:*:*:*:*:*:*:*","matchCriteriaId":"6B3C1879-269B-47EB-891B-EF2E90C911D7"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmep586040c:-:*:*:*:*:*:*:*","matchCriteriaId":"5771A1A5-3DAF-4869-A24F-F9B0A38B5DA5"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_mc80_bmkc8020301:-:*:*:*:*:*:*:*","matchCriteriaId":"62B3CEFA-BCF8-4305-B81A-980AA1352515"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_mc80_bmkc8020310:-:*:*:*:*:*:*:*","matchCriteriaId":"2C1A9EE4-9564-45F6-8CF8-1A820E469B41"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_mc80_bmkc8030311:-:*:*:*:*:*:*:*","matchCriteriaId":"026D5E27-E50D-4614-A3EB-C54150C85572"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_momentum_171cbu78090:-:*:*:*:*:*:*:*","matchCriteriaId":"0B765DF6-1D0A-4191-9AD7-250A7EB691BF"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_momentum_171cbu98090:-:*:*:*:*:*:*:*","matchCriteriaId":"67152082-E085-4111-98BA-6E9EF14ADB91"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_momentum_171cbu98091:-:*:*:*:*:*:*:*","matchCriteriaId":"BD68FC34-691B-406E-A59D-2596215AE314"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_premium_tsxp57_1634m:-:*:*:*:*:*:*:*","matchCriteriaId":"FB98E7F1-DD61-47F5-A6BB-18D75FDFAB70"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_premium_tsxp57_2634m:-:*:*:*:*:*:*:*","matchCriteriaId":"39E46898-7206-45C1-9A93-729B5905EF38"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_premium_tsxp57_2834m:-:*:*:*:*:*:*:*","matchCriteriaId":"C97A89AF-103A-4D2A-9EAF-42CEC88A2BCA"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_premium_tsxp57_454m:-:*:*:*:*:*:*:*","matchCriteriaId":"32B611B6-1138-40DF-848A-A4A10E1DB0F2"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_premium_tsxp57_4634m:-:*:*:*:*:*:*:*","matchCriteriaId":"EF901CCB-1BC4-4EDA-A3D7-ED7523128EAA"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_premium_tsxp57_554m:-:*:*:*:*:*:*:*","matchCriteriaId":"4479C318-EE74-4338-B172-EC13D4D62246"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_premium_tsxp57_5634m:-:*:*:*:*:*:*:*","matchCriteriaId":"98A25B72-B3A9-4717-8AA9-B164226DF9D9"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_premium_tsxp57_6634m:-:*:*:*:*:*:*:*","matchCriteriaId":"889E9E8B-688E-420E-9A99-AB64BA7ABCDC"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_quantum_140cpu65150:-:*:*:*:*:*:*:*","matchCriteriaId":"7E3446A5-69F7-4270-93E2-CD5614970698"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_quantum_140cpu65150c:-:*:*:*:*:*:*:*","matchCriteriaId":"08FE0C5D-3132-48AD-92EB-B7C4277C1FAA"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_quantum_140cpu65160:-:*:*:*:*:*:*:*","matchCriteriaId":"CD3F1B7C-7972-463E-930E-F359A402DAF5"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_quantum_140cpu65160c:-:*:*:*:*:*:*:*","matchCriteriaId":"DC9D2D4D-558B-424E-AB04-429C83F06DB7"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:plc_simulator_for_ecostruxure_control_expert:-:*:*:*:*:*:*:*","matchCriteriaId":"1A63ECFF-261A-4C39-964E-CBC4B97147DC"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:plc_simulator_for_ecostruxure_process_expert:-:*:*:*:*:*:*:*","matchCriteriaId":"0B722F22-2CEB-426B-9615-DD3B73A671F4"}]}]}],"references":[{"url":"https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2021-222-04","source":"cybersecurity@se.com","tags":["Patch","Vendor Advisory"]},{"url":"https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2021-222-04","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Vendor Advisory"]}]}},{"cve":{"id":"CVE-2021-22790","sourceIdentifier":"cybersecurity@se.com","published":"2021-09-02T17:15:08.237","lastModified":"2026-05-29T15:16:19.440","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"A CWE-125: Out-of-bounds Read vulnerability that could cause a Denial of Service on the Modicon PLC controller / simulator when updating the controller application with a specially crafted project file exists in Modicon M580 CPU (part numbers BMEP* and BMEH*, all versions), Modicon M340 CPU (part numbers BMXP34*, all versions), Modicon MC80 (part numbers BMKC80*, all versions), Modicon Momentum Ethernet CPU (part numbers 171CBU*, all versions), PLC Simulator for EcoStruxureª Control Expert, including all Unity Pro versions (former name of EcoStruxureª Control Expert, all versions), PLC Simulator for EcoStruxureª Process Expert including all HDCS versions (former name of EcoStruxureª Process Expert, all versions), Modicon Quantum CPU (part numbers 140CPU*, all versions), Modicon Premium CPU (part numbers TSXP5*, all versions)."},{"lang":"es","value":"UN CWE-125: Una vulnerabilidad de Lectura Fuera de Límites que podría causar una Denegación de Servicio en el controlador/simulador del PLC Modicon cuando se actualiza la aplicación del controlador con un archivo de proyecto especialmente diseñado se presenta en Modicon M580 CPU (números de pieza BMEP* y BMEH*, todas las versiones), CPU Modicon M340 (números de pieza BMXP34*, todas las versiones), Modicon MC80 (números de pieza BMKC80*, todas las versiones), CPU Modicon Momentum Ethernet (números de pieza 171CBU*, todas las versiones), PLC Simulator for EcoStruxureª Control Expert, incluyendo todas las versiones Unity Pro (antiguo nombre de EcoStruxureª Control Expert, todas las versiones), PLC Simulator for EcoStruxureª Process Expert incluyendo todas las versiones HDCS (antiguo nombre de EcoStruxureª Process Expert, todas las versiones), Modicon Quantum CPU (números de pieza 140CPU*, todas las versiones), Modicon Premium CPU (números de pieza TSXP5*, todas las versiones)"}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":3.6},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":3.6}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:S/C:N/I:N/A:P","baseScore":4.0,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"SINGLE","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"PARTIAL"},"baseSeverity":"MEDIUM","exploitabilityScore":8.0,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"cybersecurity@se.com","type":"Secondary","description":[{"lang":"en","value":"CWE-125"}]},{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-125"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_m340_bmxp341000:-:*:*:*:*:*:*:*","matchCriteriaId":"178D2338-E48E-493C-992F-337AACE794DE"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_m340_bmxp342010:-:*:*:*:*:*:*:*","matchCriteriaId":"833B2455-5D39-4457-9D6F-0CD738A2EB02"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_m340_bmxp342020:-:*:*:*:*:*:*:*","matchCriteriaId":"99F2F851-C18F-4CB8-B47C-516F2AC7955D"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_m340_bmxp342030:-:*:*:*:*:*:*:*","matchCriteriaId":"E472ABB0-5556-4B96-9CEF-2180E24FA7FD"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmeh582040:-:*:*:*:*:*:*:*","matchCriteriaId":"F484F8BB-60B5-4045-92C3-0C2A0CD4107E"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmeh582040c:-:*:*:*:*:*:*:*","matchCriteriaId":"F4F0F823-89EA-451D-81DC-07AACA039371"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmeh582040s:-:*:*:*:*:*:*:*","matchCriteriaId":"610AE743-9FD1-4149-AD45-3B1DAE268BF9"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmeh584040:-:*:*:*:*:*:*:*","matchCriteriaId":"77116949-1141-432D-964B-29A759939E8F"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmeh584040c:-:*:*:*:*:*:*:*","matchCriteriaId":"B6CE23A2-09CC-4417-A45F-63BCA66C4DD8"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmeh584040s:-:*:*:*:*:*:*:*","matchCriteriaId":"97AAD857-95C0-4AE3-8510-CB306E8293F4"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmeh586040:-:*:*:*:*:*:*:*","matchCriteriaId":"07E2FB94-F402-4CF0-BE35-574C1C6528BA"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmeh586040c:-:*:*:*:*:*:*:*","matchCriteriaId":"2E776EE9-A662-4068-A61A-62CAE23C87F7"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmeh586040s:-:*:*:*:*:*:*:*","matchCriteriaId":"D53BD038-D594-41FF-B3EF-3365C5432AD0"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmep581020:-:*:*:*:*:*:*:*","matchCriteriaId":"2317F260-7AA2-4178-B468-03DF36223E26"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmep581020h:-:*:*:*:*:*:*:*","matchCriteriaId":"3D7DDC42-37A1-43B0-AD46-2E0D098564BA"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmep582020:-:*:*:*:*:*:*:*","matchCriteriaId":"765E4FEE-255E-4C47-824A-5661B84B490B"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmep582020h:-:*:*:*:*:*:*:*","matchCriteriaId":"B1FEA377-3C45-4F88-B233-088A24BD0771"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmep582040:-:*:*:*:*:*:*:*","matchCriteriaId":"EBCCDD6D-35CE-4680-8B0C-86584B1D8958"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmep582040h:-:*:*:*:*:*:*:*","matchCriteriaId":"68FD5968-C522-4231-A98C-93D3101B6148"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmep582040s:-:*:*:*:*:*:*:*","matchCriteriaId":"C02B27F6-B8CF-4D3B-9DA6-054F540EA6B6"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmep583020:-:*:*:*:*:*:*:*","matchCriteriaId":"BBC38FF1-693E-4899-883C-1B7B80A52F2C"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmep583040:-:*:*:*:*:*:*:*","matchCriteriaId":"002E7F33-6729-4C35-9DDA-7D8383BD5668"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmep584020:-:*:*:*:*:*:*:*","matchCriteriaId":"47DFEBAC-2F1D-4870-8425-2199BF80B425"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmep584040:-:*:*:*:*:*:*:*","matchCriteriaId":"FC4A1DF2-FF4C-4DBE-BF74-6A4A09E3DECE"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmep584040s:-:*:*:*:*:*:*:*","matchCriteriaId":"6222C1F8-BE52-4666-B7F5-2E8BBC214F70"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmep585040:-:*:*:*:*:*:*:*","matchCriteriaId":"5376D9F4-8AFB-4909-A11B-33C54C4220DB"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmep585040c:-:*:*:*:*:*:*:*","matchCriteriaId":"CADB178B-FEFD-48A9-B155-0E8F6D490229"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmep586040:-:*:*:*:*:*:*:*","matchCriteriaId":"6B3C1879-269B-47EB-891B-EF2E90C911D7"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmep586040c:-:*:*:*:*:*:*:*","matchCriteriaId":"5771A1A5-3DAF-4869-A24F-F9B0A38B5DA5"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_mc80_bmkc8020301:-:*:*:*:*:*:*:*","matchCriteriaId":"62B3CEFA-BCF8-4305-B81A-980AA1352515"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_mc80_bmkc8020310:-:*:*:*:*:*:*:*","matchCriteriaId":"2C1A9EE4-9564-45F6-8CF8-1A820E469B41"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_mc80_bmkc8030311:-:*:*:*:*:*:*:*","matchCriteriaId":"026D5E27-E50D-4614-A3EB-C54150C85572"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_momentum_171cbu78090:-:*:*:*:*:*:*:*","matchCriteriaId":"0B765DF6-1D0A-4191-9AD7-250A7EB691BF"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_momentum_171cbu98090:-:*:*:*:*:*:*:*","matchCriteriaId":"67152082-E085-4111-98BA-6E9EF14ADB91"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_momentum_171cbu98091:-:*:*:*:*:*:*:*","matchCriteriaId":"BD68FC34-691B-406E-A59D-2596215AE314"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_premium_tsxp57_1634m:-:*:*:*:*:*:*:*","matchCriteriaId":"FB98E7F1-DD61-47F5-A6BB-18D75FDFAB70"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_premium_tsxp57_2634m:-:*:*:*:*:*:*:*","matchCriteriaId":"39E46898-7206-45C1-9A93-729B5905EF38"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_premium_tsxp57_2834m:-:*:*:*:*:*:*:*","matchCriteriaId":"C97A89AF-103A-4D2A-9EAF-42CEC88A2BCA"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_premium_tsxp57_454m:-:*:*:*:*:*:*:*","matchCriteriaId":"32B611B6-1138-40DF-848A-A4A10E1DB0F2"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_premium_tsxp57_4634m:-:*:*:*:*:*:*:*","matchCriteriaId":"EF901CCB-1BC4-4EDA-A3D7-ED7523128EAA"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_premium_tsxp57_554m:-:*:*:*:*:*:*:*","matchCriteriaId":"4479C318-EE74-4338-B172-EC13D4D62246"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_premium_tsxp57_5634m:-:*:*:*:*:*:*:*","matchCriteriaId":"98A25B72-B3A9-4717-8AA9-B164226DF9D9"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_premium_tsxp57_6634m:-:*:*:*:*:*:*:*","matchCriteriaId":"889E9E8B-688E-420E-9A99-AB64BA7ABCDC"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_quantum_140cpu65150:-:*:*:*:*:*:*:*","matchCriteriaId":"7E3446A5-69F7-4270-93E2-CD5614970698"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_quantum_140cpu65150c:-:*:*:*:*:*:*:*","matchCriteriaId":"08FE0C5D-3132-48AD-92EB-B7C4277C1FAA"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_quantum_140cpu65160:-:*:*:*:*:*:*:*","matchCriteriaId":"CD3F1B7C-7972-463E-930E-F359A402DAF5"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_quantum_140cpu65160c:-:*:*:*:*:*:*:*","matchCriteriaId":"DC9D2D4D-558B-424E-AB04-429C83F06DB7"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:plc_simulator_for_ecostruxure_control_expert:-:*:*:*:*:*:*:*","matchCriteriaId":"1A63ECFF-261A-4C39-964E-CBC4B97147DC"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:plc_simulator_for_ecostruxure_process_expert:-:*:*:*:*:*:*:*","matchCriteriaId":"0B722F22-2CEB-426B-9615-DD3B73A671F4"}]}]}],"references":[{"url":"https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2021-222-05","source":"cybersecurity@se.com","tags":["Not Applicable"]},{"url":"https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2021-222-04","source":"nvd@nist.gov","tags":["Patch","Vendor Advisory"]},{"url":"https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2021-222-05","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Not Applicable"]}]}},{"cve":{"id":"CVE-2021-22791","sourceIdentifier":"cybersecurity@se.com","published":"2021-09-02T17:15:08.290","lastModified":"2026-05-29T15:16:19.630","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"A CWE-787: Out-of-bounds Write vulnerability that could cause a Denial of Service on the Modicon PLC controller / simulator when updating the controller application with a specially crafted project file exists in Modicon M580 CPU (part numbers BMEP* and BMEH*, all versions), Modicon M340 CPU (part numbers BMXP34*, all versions), Modicon MC80 (part numbers BMKC80*, all versions), Modicon Momentum Ethernet CPU (part numbers 171CBU*, all versions), PLC Simulator for EcoStruxureª Control Expert, including all Unity Pro versions (former name of EcoStruxureª Control Expert, all versions), PLC Simulator for EcoStruxureª Process Expert including all HDCS versions (former name of EcoStruxureª Process Expert, all versions), Modicon Quantum CPU (part numbers 140CPU*, all versions), Modicon Premium CPU (part numbers TSXP5*, all versions)."},{"lang":"es","value":"Una CWE-787: Una vulnerabilidad de Escritura Fuera de Límites que podría causar una Denegación de Servicio en el controlador/simulador del PLC Modicon cuando se actualiza la aplicación del controlador con un archivo de proyecto especialmente diseñado se presenta en Modicon M580 CPU (números de pieza BMEP* y BMEH*, todas las versiones), Modicon M340 CPU (números de pieza BMXP34*, todas las versiones), Modicon MC80 (números de pieza BMKC80*, todas las versiones), Modicon Momentum Ethernet CPU (números de pieza 171CBU*, todas las versiones), PLC Simulator para EcoStruxureª Control Expert, incluidas todas las versiones Unity Pro (antiguo nombre de EcoStruxureª Control Expert, todas las versiones), PLC Simulator para EcoStruxureª Process Expert, incluidas todas las versiones HDCS (antiguo nombre de EcoStruxureª Process Expert, todas las versiones), Modicon Quantum CPU (números de pieza 140CPU*, todas las versiones), Modicon Premium CPU (números de pieza TSXP5*, todas las versiones)"}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":3.6},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":3.6}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:S/C:N/I:N/A:P","baseScore":4.0,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"SINGLE","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"PARTIAL"},"baseSeverity":"MEDIUM","exploitabilityScore":8.0,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"cybersecurity@se.com","type":"Secondary","description":[{"lang":"en","value":"CWE-787"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_m340_bmxp341000:-:*:*:*:*:*:*:*","matchCriteriaId":"178D2338-E48E-493C-992F-337AACE794DE"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_m340_bmxp342010:-:*:*:*:*:*:*:*","matchCriteriaId":"833B2455-5D39-4457-9D6F-0CD738A2EB02"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_m340_bmxp342020:-:*:*:*:*:*:*:*","matchCriteriaId":"99F2F851-C18F-4CB8-B47C-516F2AC7955D"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_m340_bmxp342030:-:*:*:*:*:*:*:*","matchCriteriaId":"E472ABB0-5556-4B96-9CEF-2180E24FA7FD"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmeh582040:-:*:*:*:*:*:*:*","matchCriteriaId":"F484F8BB-60B5-4045-92C3-0C2A0CD4107E"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmeh582040c:-:*:*:*:*:*:*:*","matchCriteriaId":"F4F0F823-89EA-451D-81DC-07AACA039371"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmeh582040s:-:*:*:*:*:*:*:*","matchCriteriaId":"610AE743-9FD1-4149-AD45-3B1DAE268BF9"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmeh584040:-:*:*:*:*:*:*:*","matchCriteriaId":"77116949-1141-432D-964B-29A759939E8F"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmeh584040c:-:*:*:*:*:*:*:*","matchCriteriaId":"B6CE23A2-09CC-4417-A45F-63BCA66C4DD8"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmeh584040s:-:*:*:*:*:*:*:*","matchCriteriaId":"97AAD857-95C0-4AE3-8510-CB306E8293F4"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmeh586040:-:*:*:*:*:*:*:*","matchCriteriaId":"07E2FB94-F402-4CF0-BE35-574C1C6528BA"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmeh586040c:-:*:*:*:*:*:*:*","matchCriteriaId":"2E776EE9-A662-4068-A61A-62CAE23C87F7"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmeh586040s:-:*:*:*:*:*:*:*","matchCriteriaId":"D53BD038-D594-41FF-B3EF-3365C5432AD0"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmep581020:-:*:*:*:*:*:*:*","matchCriteriaId":"2317F260-7AA2-4178-B468-03DF36223E26"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmep581020h:-:*:*:*:*:*:*:*","matchCriteriaId":"3D7DDC42-37A1-43B0-AD46-2E0D098564BA"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmep582020:-:*:*:*:*:*:*:*","matchCriteriaId":"765E4FEE-255E-4C47-824A-5661B84B490B"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmep582020h:-:*:*:*:*:*:*:*","matchCriteriaId":"B1FEA377-3C45-4F88-B233-088A24BD0771"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmep582040:-:*:*:*:*:*:*:*","matchCriteriaId":"EBCCDD6D-35CE-4680-8B0C-86584B1D8958"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmep582040h:-:*:*:*:*:*:*:*","matchCriteriaId":"68FD5968-C522-4231-A98C-93D3101B6148"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmep582040s:-:*:*:*:*:*:*:*","matchCriteriaId":"C02B27F6-B8CF-4D3B-9DA6-054F540EA6B6"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmep583020:-:*:*:*:*:*:*:*","matchCriteriaId":"BBC38FF1-693E-4899-883C-1B7B80A52F2C"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmep583040:-:*:*:*:*:*:*:*","matchCriteriaId":"002E7F33-6729-4C35-9DDA-7D8383BD5668"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmep584020:-:*:*:*:*:*:*:*","matchCriteriaId":"47DFEBAC-2F1D-4870-8425-2199BF80B425"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmep584040:-:*:*:*:*:*:*:*","matchCriteriaId":"FC4A1DF2-FF4C-4DBE-BF74-6A4A09E3DECE"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmep584040s:-:*:*:*:*:*:*:*","matchCriteriaId":"6222C1F8-BE52-4666-B7F5-2E8BBC214F70"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmep585040:-:*:*:*:*:*:*:*","matchCriteriaId":"5376D9F4-8AFB-4909-A11B-33C54C4220DB"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmep585040c:-:*:*:*:*:*:*:*","matchCriteriaId":"CADB178B-FEFD-48A9-B155-0E8F6D490229"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmep586040:-:*:*:*:*:*:*:*","matchCriteriaId":"6B3C1879-269B-47EB-891B-EF2E90C911D7"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmep586040c:-:*:*:*:*:*:*:*","matchCriteriaId":"5771A1A5-3DAF-4869-A24F-F9B0A38B5DA5"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_mc80_bmkc8020301:-:*:*:*:*:*:*:*","matchCriteriaId":"62B3CEFA-BCF8-4305-B81A-980AA1352515"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_mc80_bmkc8020310:-:*:*:*:*:*:*:*","matchCriteriaId":"2C1A9EE4-9564-45F6-8CF8-1A820E469B41"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_mc80_bmkc8030311:-:*:*:*:*:*:*:*","matchCriteriaId":"026D5E27-E50D-4614-A3EB-C54150C85572"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_momentum_171cbu78090:-:*:*:*:*:*:*:*","matchCriteriaId":"0B765DF6-1D0A-4191-9AD7-250A7EB691BF"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_momentum_171cbu98090:-:*:*:*:*:*:*:*","matchCriteriaId":"67152082-E085-4111-98BA-6E9EF14ADB91"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_momentum_171cbu98091:-:*:*:*:*:*:*:*","matchCriteriaId":"BD68FC34-691B-406E-A59D-2596215AE314"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_premium_tsxp57_1634m:-:*:*:*:*:*:*:*","matchCriteriaId":"FB98E7F1-DD61-47F5-A6BB-18D75FDFAB70"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_premium_tsxp57_2634m:-:*:*:*:*:*:*:*","matchCriteriaId":"39E46898-7206-45C1-9A93-729B5905EF38"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_premium_tsxp57_2834m:-:*:*:*:*:*:*:*","matchCriteriaId":"C97A89AF-103A-4D2A-9EAF-42CEC88A2BCA"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_premium_tsxp57_454m:-:*:*:*:*:*:*:*","matchCriteriaId":"32B611B6-1138-40DF-848A-A4A10E1DB0F2"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_premium_tsxp57_4634m:-:*:*:*:*:*:*:*","matchCriteriaId":"EF901CCB-1BC4-4EDA-A3D7-ED7523128EAA"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_premium_tsxp57_554m:-:*:*:*:*:*:*:*","matchCriteriaId":"4479C318-EE74-4338-B172-EC13D4D62246"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_premium_tsxp57_5634m:-:*:*:*:*:*:*:*","matchCriteriaId":"98A25B72-B3A9-4717-8AA9-B164226DF9D9"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_premium_tsxp57_6634m:-:*:*:*:*:*:*:*","matchCriteriaId":"889E9E8B-688E-420E-9A99-AB64BA7ABCDC"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_quantum_140cpu65150:-:*:*:*:*:*:*:*","matchCriteriaId":"7E3446A5-69F7-4270-93E2-CD5614970698"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_quantum_140cpu65150c:-:*:*:*:*:*:*:*","matchCriteriaId":"08FE0C5D-3132-48AD-92EB-B7C4277C1FAA"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_quantum_140cpu65160:-:*:*:*:*:*:*:*","matchCriteriaId":"CD3F1B7C-7972-463E-930E-F359A402DAF5"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_quantum_140cpu65160c:-:*:*:*:*:*:*:*","matchCriteriaId":"DC9D2D4D-558B-424E-AB04-429C83F06DB7"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:plc_simulator_for_ecostruxure_control_expert:-:*:*:*:*:*:*:*","matchCriteriaId":"1A63ECFF-261A-4C39-964E-CBC4B97147DC"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:plc_simulator_for_ecostruxure_process_expert:-:*:*:*:*:*:*:*","matchCriteriaId":"0B722F22-2CEB-426B-9615-DD3B73A671F4"}]}]}],"references":[{"url":"https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2021-222-06","source":"cybersecurity@se.com","tags":["Not Applicable"]},{"url":"https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2021-222-04","source":"nvd@nist.gov","tags":["Patch","Vendor Advisory"]},{"url":"https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2021-222-06","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Not Applicable"]}]}},{"cve":{"id":"CVE-2021-22792","sourceIdentifier":"cybersecurity@se.com","published":"2021-09-02T17:15:08.343","lastModified":"2026-05-29T15:16:19.830","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"A CWE-476: NULL Pointer Dereference vulnerability that could cause a Denial of Service on the Modicon PLC controller / simulator when updating the controller application with a specially crafted project file exists in Modicon M580 CPU (part numbers BMEP* and BMEH*, all versions), Modicon M340 CPU (part numbers BMXP34*, all versions), Modicon MC80 (part numbers BMKC80*, all versions), Modicon Momentum Ethernet CPU (part numbers 171CBU*, all versions), PLC Simulator for EcoStruxureª Control Expert, including all Unity Pro versions (former name of EcoStruxureª Control Expert, all versions), PLC Simulator for EcoStruxureª Process Expert including all HDCS versions (former name of EcoStruxureª Process Expert, all versions), Modicon Quantum CPU (part numbers 140CPU*, all versions), Modicon Premium CPU (part numbers TSXP5*, all versions)."},{"lang":"es","value":"Una CWE-476: Una vulnerabilidad de Desreferencia de Puntero NULL que podría causar una Denegación de Servicio en el controlador/simulador del PLC Modicon cuando se actualiza la aplicación del controlador con un archivo de proyecto especialmente diseñado se presenta en Modicon M580 CPU (números de pieza BMEP* and BMEH*, todas las versiones), Modicon M340 CPU (números de pieza BMXP34*, todas las versiones), Modicon MC80 (números de pieza BMKC80*, todas las versiones), Modicon Momentum Ethernet CPU (números de pieza 171CBU*, todas las versiones), PLC Simulator para EcoStruxureª Control Expert, incluidas todas las versiones Unity Pro (antiguo nombre de EcoStruxureª Control Expert, todas las versiones), PLC Simulator para EcoStruxureª Process Expert, incluidas todas las versiones HDCS (antiguo nombre de EcoStruxureª Process Expert, todas las versiones), Modicon Quantum CPU (números de pieza 140CPU*, todas las versiones), Modicon Premium CPU (números de pieza TSXP5*, todas las versiones)"}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":3.6},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":3.6}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:N/I:N/A:P","baseScore":5.0,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"PARTIAL"},"baseSeverity":"MEDIUM","exploitabilityScore":10.0,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"cybersecurity@se.com","type":"Secondary","description":[{"lang":"en","value":"CWE-476"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_m340_bmxp341000:-:*:*:*:*:*:*:*","matchCriteriaId":"178D2338-E48E-493C-992F-337AACE794DE"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_m340_bmxp342010:-:*:*:*:*:*:*:*","matchCriteriaId":"833B2455-5D39-4457-9D6F-0CD738A2EB02"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_m340_bmxp342020:-:*:*:*:*:*:*:*","matchCriteriaId":"99F2F851-C18F-4CB8-B47C-516F2AC7955D"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_m340_bmxp342030:-:*:*:*:*:*:*:*","matchCriteriaId":"E472ABB0-5556-4B96-9CEF-2180E24FA7FD"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmeh582040:-:*:*:*:*:*:*:*","matchCriteriaId":"F484F8BB-60B5-4045-92C3-0C2A0CD4107E"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmeh582040c:-:*:*:*:*:*:*:*","matchCriteriaId":"F4F0F823-89EA-451D-81DC-07AACA039371"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmeh582040s:-:*:*:*:*:*:*:*","matchCriteriaId":"610AE743-9FD1-4149-AD45-3B1DAE268BF9"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmeh584040:-:*:*:*:*:*:*:*","matchCriteriaId":"77116949-1141-432D-964B-29A759939E8F"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmeh584040c:-:*:*:*:*:*:*:*","matchCriteriaId":"B6CE23A2-09CC-4417-A45F-63BCA66C4DD8"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmeh584040s:-:*:*:*:*:*:*:*","matchCriteriaId":"97AAD857-95C0-4AE3-8510-CB306E8293F4"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmeh586040:-:*:*:*:*:*:*:*","matchCriteriaId":"07E2FB94-F402-4CF0-BE35-574C1C6528BA"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmeh586040c:-:*:*:*:*:*:*:*","matchCriteriaId":"2E776EE9-A662-4068-A61A-62CAE23C87F7"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmeh586040s:-:*:*:*:*:*:*:*","matchCriteriaId":"D53BD038-D594-41FF-B3EF-3365C5432AD0"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmep581020:-:*:*:*:*:*:*:*","matchCriteriaId":"2317F260-7AA2-4178-B468-03DF36223E26"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmep581020h:-:*:*:*:*:*:*:*","matchCriteriaId":"3D7DDC42-37A1-43B0-AD46-2E0D098564BA"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmep582020:-:*:*:*:*:*:*:*","matchCriteriaId":"765E4FEE-255E-4C47-824A-5661B84B490B"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmep582020h:-:*:*:*:*:*:*:*","matchCriteriaId":"B1FEA377-3C45-4F88-B233-088A24BD0771"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmep582040:-:*:*:*:*:*:*:*","matchCriteriaId":"EBCCDD6D-35CE-4680-8B0C-86584B1D8958"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmep582040h:-:*:*:*:*:*:*:*","matchCriteriaId":"68FD5968-C522-4231-A98C-93D3101B6148"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmep582040s:-:*:*:*:*:*:*:*","matchCriteriaId":"C02B27F6-B8CF-4D3B-9DA6-054F540EA6B6"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmep583020:-:*:*:*:*:*:*:*","matchCriteriaId":"BBC38FF1-693E-4899-883C-1B7B80A52F2C"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmep583040:-:*:*:*:*:*:*:*","matchCriteriaId":"002E7F33-6729-4C35-9DDA-7D8383BD5668"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmep584020:-:*:*:*:*:*:*:*","matchCriteriaId":"47DFEBAC-2F1D-4870-8425-2199BF80B425"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmep584040:-:*:*:*:*:*:*:*","matchCriteriaId":"FC4A1DF2-FF4C-4DBE-BF74-6A4A09E3DECE"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmep584040s:-:*:*:*:*:*:*:*","matchCriteriaId":"6222C1F8-BE52-4666-B7F5-2E8BBC214F70"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmep585040:-:*:*:*:*:*:*:*","matchCriteriaId":"5376D9F4-8AFB-4909-A11B-33C54C4220DB"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmep585040c:-:*:*:*:*:*:*:*","matchCriteriaId":"CADB178B-FEFD-48A9-B155-0E8F6D490229"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmep586040:-:*:*:*:*:*:*:*","matchCriteriaId":"6B3C1879-269B-47EB-891B-EF2E90C911D7"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_m580_bmep586040c:-:*:*:*:*:*:*:*","matchCriteriaId":"5771A1A5-3DAF-4869-A24F-F9B0A38B5DA5"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_mc80_bmkc8020301:-:*:*:*:*:*:*:*","matchCriteriaId":"62B3CEFA-BCF8-4305-B81A-980AA1352515"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_mc80_bmkc8020310:-:*:*:*:*:*:*:*","matchCriteriaId":"2C1A9EE4-9564-45F6-8CF8-1A820E469B41"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_mc80_bmkc8030311:-:*:*:*:*:*:*:*","matchCriteriaId":"026D5E27-E50D-4614-A3EB-C54150C85572"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_momentum_171cbu78090:-:*:*:*:*:*:*:*","matchCriteriaId":"0B765DF6-1D0A-4191-9AD7-250A7EB691BF"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_momentum_171cbu98090:-:*:*:*:*:*:*:*","matchCriteriaId":"67152082-E085-4111-98BA-6E9EF14ADB91"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_momentum_171cbu98091:-:*:*:*:*:*:*:*","matchCriteriaId":"BD68FC34-691B-406E-A59D-2596215AE314"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_premium_tsxp57_1634m:-:*:*:*:*:*:*:*","matchCriteriaId":"FB98E7F1-DD61-47F5-A6BB-18D75FDFAB70"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_premium_tsxp57_2634m:-:*:*:*:*:*:*:*","matchCriteriaId":"39E46898-7206-45C1-9A93-729B5905EF38"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_premium_tsxp57_2834m:-:*:*:*:*:*:*:*","matchCriteriaId":"C97A89AF-103A-4D2A-9EAF-42CEC88A2BCA"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_premium_tsxp57_454m:-:*:*:*:*:*:*:*","matchCriteriaId":"32B611B6-1138-40DF-848A-A4A10E1DB0F2"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_premium_tsxp57_4634m:-:*:*:*:*:*:*:*","matchCriteriaId":"EF901CCB-1BC4-4EDA-A3D7-ED7523128EAA"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_premium_tsxp57_554m:-:*:*:*:*:*:*:*","matchCriteriaId":"4479C318-EE74-4338-B172-EC13D4D62246"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_premium_tsxp57_5634m:-:*:*:*:*:*:*:*","matchCriteriaId":"98A25B72-B3A9-4717-8AA9-B164226DF9D9"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_premium_tsxp57_6634m:-:*:*:*:*:*:*:*","matchCriteriaId":"889E9E8B-688E-420E-9A99-AB64BA7ABCDC"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_quantum_140cpu65150:-:*:*:*:*:*:*:*","matchCriteriaId":"7E3446A5-69F7-4270-93E2-CD5614970698"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_quantum_140cpu65150c:-:*:*:*:*:*:*:*","matchCriteriaId":"08FE0C5D-3132-48AD-92EB-B7C4277C1FAA"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_quantum_140cpu65160:-:*:*:*:*:*:*:*","matchCriteriaId":"CD3F1B7C-7972-463E-930E-F359A402DAF5"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:modicon_quantum_140cpu65160c:-:*:*:*:*:*:*:*","matchCriteriaId":"DC9D2D4D-558B-424E-AB04-429C83F06DB7"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:plc_simulator_for_ecostruxure_control_expert:-:*:*:*:*:*:*:*","matchCriteriaId":"1A63ECFF-261A-4C39-964E-CBC4B97147DC"},{"vulnerable":true,"criteria":"cpe:2.3:h:schneider-electric:plc_simulator_for_ecostruxure_process_expert:-:*:*:*:*:*:*:*","matchCriteriaId":"0B722F22-2CEB-426B-9615-DD3B73A671F4"}]}]}],"references":[{"url":"https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2021-222-07","source":"cybersecurity@se.com","tags":["Not Applicable"]},{"url":"https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2021-222-04","source":"nvd@nist.gov","tags":["Patch","Vendor Advisory"]},{"url":"https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2021-222-07","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Not Applicable"]}]}},{"cve":{"id":"CVE-2016-20012","sourceIdentifier":"cve@mitre.org","published":"2021-09-15T20:15:07.310","lastModified":"2026-05-29T16:16:16.030","vulnStatus":"Modified","cveTags":[{"sourceIdentifier":"cve@mitre.org","tags":["disputed"]}],"descriptions":[{"lang":"en","value":"OpenSSH through 8.7 allows remote attackers, who have a suspicion that a certain combination of username and public key is known to an SSH server, to test whether this suspicion is correct. This occurs because a challenge is sent only when that combination could be valid for a login session. NOTE: the vendor does not recognize user enumeration as a vulnerability for this product"},{"lang":"es","value":"** EN DISPTUTA ** OpenSSH versiones hasta 8.7, permite a atacantes remotos, que presentan la sospecha de que una determinada combinación de nombre de usuario y clave pública es conocida por un servidor SSH, comprobar si esta sospecha es correcta. Esto ocurre porque es enviado un desafío sólo cuando esa combinación podría ser válida para una sesión de inicio de sesión. NOTA: el proveedor no reconoce la enumeración de usuarios como una vulnerabilidad para este producto"}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N","baseScore":5.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":1.4},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N","baseScore":5.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":1.4}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:M/Au:N/C:P/I:N/A:N","baseScore":4.3,"accessVector":"NETWORK","accessComplexity":"MEDIUM","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"NONE","availabilityImpact":"NONE"},"baseSeverity":"MEDIUM","exploitabilityScore":8.6,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"NVD-CWE-Other"}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-203"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:*:*:*:*:*:*:*:*","versionEndIncluding":"8.7","matchCriteriaId":"2E1A0346-2185-4EE6-AC3A-DE31E6A21AE4"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:clustered_data_ontap:-:*:*:*:*:*:*:*","matchCriteriaId":"1FE996B1-6951-4F85-AA58-B99A379D2163"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:hci_management_node:-:*:*:*:*:*:*:*","matchCriteriaId":"A3C19813-E823-456A-B1CE-EC0684CE1953"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:ontap_select_deploy_administration_utility:-:*:*:*:*:*:*:*","matchCriteriaId":"E7CF3019-975D-40BB-A8A4-894E62BD3797"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:solidfire:-:*:*:*:*:*:*:*","matchCriteriaId":"A6E9EF0C-AFA8-4F7B-9FDC-1E0F7C26E737"}]}]}],"references":[{"url":"https://github.com/openssh/openssh-portable/blob/d0fffc88c8fe90c1815c6f4097bc8cbcabc0f3dd/auth2-pubkey.c#L261-L265","source":"cve@mitre.org","tags":["Exploit","Third Party Advisory"]},{"url":"https://github.com/openssh/openssh-portable/pull/270","source":"cve@mitre.org","tags":["Patch","Third Party Advisory"]},{"url":"https://github.com/openssh/openssh-portable/pull/270#issuecomment-920577097","source":"cve@mitre.org","tags":["Issue Tracking","Third Party Advisory"]},{"url":"https://github.com/openssh/openssh-portable/pull/270#issuecomment-943909185","source":"cve@mitre.org","tags":["Issue Tracking","Third Party Advisory"]},{"url":"https://rushter.com/blog/public-ssh-keys/","source":"cve@mitre.org","tags":["Exploit","Third Party Advisory"]},{"url":"https://security.netapp.com/advisory/ntap-20211014-0005/","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"https://utcc.utoronto.ca/~cks/space/blog/tech/SSHKeysAreInfoLeak","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"https://www.openwall.com/lists/oss-security/2018/08/24/1","source":"cve@mitre.org","tags":["Mailing List","Third Party Advisory"]},{"url":"https://github.com/openssh/openssh-portable/blob/d0fffc88c8fe90c1815c6f4097bc8cbcabc0f3dd/auth2-pubkey.c#L261-L265","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Exploit","Third Party Advisory"]},{"url":"https://github.com/openssh/openssh-portable/pull/270","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Third Party Advisory"]},{"url":"https://github.com/openssh/openssh-portable/pull/270#issuecomment-920577097","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Issue Tracking","Third Party Advisory"]},{"url":"https://github.com/openssh/openssh-portable/pull/270#issuecomment-943909185","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Issue Tracking","Third Party Advisory"]},{"url":"https://rushter.com/blog/public-ssh-keys/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Exploit","Third Party Advisory"]},{"url":"https://security.netapp.com/advisory/ntap-20211014-0005/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://utcc.utoronto.ca/~cks/space/blog/tech/SSHKeysAreInfoLeak","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.openwall.com/lists/oss-security/2018/08/24/1","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"https://github.com/openssh/openssh-portable/blob/d0fffc88c8fe90c1815c6f4097bc8cbcabc0f3dd/auth2-pubkey.c#L261-L265","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","tags":["Exploit","Third Party Advisory"]}]}},{"cve":{"id":"CVE-2021-4019","sourceIdentifier":"security@huntr.dev","published":"2021-12-01T10:15:07.913","lastModified":"2026-05-29T20:09:37.023","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"vim is vulnerable to Heap-based Buffer Overflow"},{"lang":"es","value":"vim es vulnerable a un Desbordamiento del Búfer en la región Heap de la Memoria"}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","baseScore":7.8,"baseSeverity":"HIGH","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.8,"impactScore":5.9}],"cvssMetricV30":[{"source":"security@huntr.dev","type":"Secondary","cvssData":{"version":"3.0","vectorString":"CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H","baseScore":7.1,"baseSeverity":"HIGH","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":2.5,"impactScore":4.0}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:M/Au:N/C:P/I:P/A:P","baseScore":6.8,"accessVector":"NETWORK","accessComplexity":"MEDIUM","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"PARTIAL","availabilityImpact":"PARTIAL"},"baseSeverity":"MEDIUM","exploitabilityScore":8.6,"impactScore":6.4,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":true}]},"weaknesses":[{"source":"security@huntr.dev","type":"Secondary","description":[{"lang":"en","value":"CWE-122"}]},{"source":"nvd@nist.gov","type":"Secondary","description":[{"lang":"en","value":"CWE-787"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:neovim:neovim:*:*:*:*:*:*:*:*","versionEndExcluding":"0.7.0","matchCriteriaId":"C26F7FDD-1155-4484-9E80-9E1D5C0D4A86"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:vim:vim:*:*:*:*:*:*:*:*","versionEndExcluding":"8.2.3669","matchCriteriaId":"03F019AF-0276-4483-88B0-8F51EEBF630C"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:fedoraproject:fedora:34:*:*:*:*:*:*:*","matchCriteriaId":"A930E247-0B43-43CB-98FF-6CE7B8189835"},{"vulnerable":true,"criteria":"cpe:2.3:o:fedoraproject:fedora:35:*:*:*:*:*:*:*","matchCriteriaId":"80E516C0-98A4-4ADE-B69F-66A772E2BAAA"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*","matchCriteriaId":"DEECE5FC-CACF-4496-A3E7-164736409252"},{"vulnerable":true,"criteria":"cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*","matchCriteriaId":"07B237A9-69A3-4A9C-9DA0-4E06BD37AE73"},{"vulnerable":true,"criteria":"cpe:2.3:o:debian:debian_linux:11.0:*:*:*:*:*:*:*","matchCriteriaId":"FA6FEEC2-9F11-4643-8827-749718254FED"}]}]}],"references":[{"url":"http://www.openwall.com/lists/oss-security/2022/01/15/1","source":"security@huntr.dev","tags":["Mailing List","Third Party Advisory"]},{"url":"https://github.com/vim/vim/commit/bd228fd097b41a798f90944b5d1245eddd484142","source":"security@huntr.dev","tags":["Patch","Third Party Advisory"]},{"url":"https://huntr.dev/bounties/d8798584-a6c9-4619-b18f-001b9a6fca92","source":"security@huntr.dev","tags":["Exploit","Third Party Advisory"]},{"url":"https://lists.debian.org/debian-lts-announce/2022/03/msg00018.html","source":"security@huntr.dev","tags":["Mailing List","Third Party Advisory"]},{"url":"https://lists.debian.org/debian-lts-announce/2022/11/msg00009.html","source":"security@huntr.dev","tags":["Mailing List","Third Party Advisory"]},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DRPAI5JVZLI7WHWSBR6NWAPBQAYUQREW/","source":"security@huntr.dev","tags":["Broken Link","Third Party Advisory"]},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FNXY7T5OORA7UJIMGSJBGHFMU6UZWS6P/","source":"security@huntr.dev","tags":["Broken Link","Third Party Advisory"]},{"url":"https://security.gentoo.org/glsa/202208-32","source":"security@huntr.dev","tags":["Third Party Advisory"]},{"url":"http://www.openwall.com/lists/oss-security/2022/01/15/1","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"https://github.com/vim/vim/commit/bd228fd097b41a798f90944b5d1245eddd484142","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Third Party Advisory"]},{"url":"https://huntr.dev/bounties/d8798584-a6c9-4619-b18f-001b9a6fca92","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Exploit","Third Party Advisory"]},{"url":"https://lists.debian.org/debian-lts-announce/2022/03/msg00018.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"https://lists.debian.org/debian-lts-announce/2022/11/msg00009.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"https://lists.debian.org/debian-lts-announce/2025/03/msg00023.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DRPAI5JVZLI7WHWSBR6NWAPBQAYUQREW/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Broken Link","Third Party Advisory"]},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FNXY7T5OORA7UJIMGSJBGHFMU6UZWS6P/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Broken Link","Third Party Advisory"]},{"url":"https://security.gentoo.org/glsa/202208-32","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]}]}},{"cve":{"id":"CVE-2021-44832","sourceIdentifier":"security@apache.org","published":"2021-12-28T20:15:08.400","lastModified":"2026-05-29T20:16:21.410","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Apache Log4j2 versions 2.0-beta7 through 2.17.0 (excluding security fix releases 2.3.2 and 2.12.4) are vulnerable to a remote code execution (RCE) attack when a configuration uses a JDBC Appender with a JNDI LDAP data source URI when an attacker has control of the target LDAP server. This issue is fixed by limiting JNDI data source names to the java protocol in Log4j2 versions 2.17.1, 2.12.4, and 2.3.2."},{"lang":"es","value":"Las versiones de Apache Log4j2 de la 2.0-beta7 a la 2.17.0 (excluyendo las versiones de corrección de seguridad 2.3.2 y 2.12.4) son vulnerables a un ataque de ejecución remota de código (RCE) cuando una configuración utiliza un JDBC Appender con un URI de origen de datos JNDI LDAP cuando un atacante tiene el control del servidor LDAP de destino. Este problema se soluciona limitando los nombres de fuentes de datos JNDI al protocolo java en las versiones 2.17.1, 2.12.4 y 2.3.2 de Log4j2"}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H","baseScore":6.6,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"HIGH","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":0.7,"impactScore":5.9},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H","baseScore":6.6,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"HIGH","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":0.7,"impactScore":5.9}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:M/Au:S/C:C/I:C/A:C","baseScore":8.5,"accessVector":"NETWORK","accessComplexity":"MEDIUM","authentication":"SINGLE","confidentialityImpact":"COMPLETE","integrityImpact":"COMPLETE","availabilityImpact":"COMPLETE"},"baseSeverity":"HIGH","exploitabilityScore":6.8,"impactScore":10.0,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"security@apache.org","type":"Secondary","description":[{"lang":"en","value":"CWE-20"},{"lang":"en","value":"CWE-74"}]},{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-20"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:apache:log4j:*:*:*:*:*:*:*:*","versionStartIncluding":"2.0.1","versionEndExcluding":"2.3.2","matchCriteriaId":"E5737813-009A-4FDD-AC84-42E871EA1676"},{"vulnerable":true,"criteria":"cpe:2.3:a:apache:log4j:*:*:*:*:*:*:*:*","versionStartIncluding":"2.4","versionEndExcluding":"2.12.4","matchCriteriaId":"0D1858C4-53AC-4528-B86F-0AB83777B4F4"},{"vulnerable":true,"criteria":"cpe:2.3:a:apache:log4j:*:*:*:*:*:*:*:*","versionStartIncluding":"2.13.0","versionEndExcluding":"2.17.1","matchCriteriaId":"D127EBB0-E86F-4349-96E5-19BD198E0CCA"},{"vulnerable":true,"criteria":"cpe:2.3:a:apache:log4j:2.0:-:*:*:*:*:*:*","matchCriteriaId":"17854E42-7063-4A55-BF2A-4C7074CC2D60"},{"vulnerable":true,"criteria":"cpe:2.3:a:apache:log4j:2.0:beta7:*:*:*:*:*:*","matchCriteriaId":"F9D58C21-34AE-4782-8580-816B2F6A8F9D"},{"vulnerable":true,"criteria":"cpe:2.3:a:apache:log4j:2.0:beta8:*:*:*:*:*:*","matchCriteriaId":"DCFCBA59-E0DF-46FD-8431-C1043E7AB4EE"},{"vulnerable":true,"criteria":"cpe:2.3:a:apache:log4j:2.0:beta9:*:*:*:*:*:*","matchCriteriaId":"53F32FB2-6970-4975-8BD0-EAE12E9AD03A"},{"vulnerable":true,"criteria":"cpe:2.3:a:apache:log4j:2.0:rc1:*:*:*:*:*:*","matchCriteriaId":"B773ED91-1D39-42E6-9C52-D02210DE1A94"},{"vulnerable":true,"criteria":"cpe:2.3:a:apache:log4j:2.0:rc2:*:*:*:*:*:*","matchCriteriaId":"EF24312D-1A62-482E-8078-7EC24758B710"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:communications_diameter_signaling_router:*:*:*:*:*:*:*:*","versionStartIncluding":"8.0.0.0","versionEndIncluding":"8.5.1.0","matchCriteriaId":"83F42D52-1E43-44E0-8B53-A2A918BDDEC3"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:communications_interactive_session_recorder:6.3:*:*:*:*:*:*:*","matchCriteriaId":"46E23F2E-6733-45AF-9BD9-1A600BD278C8"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:communications_interactive_session_recorder:6.4:*:*:*:*:*:*:*","matchCriteriaId":"E812639B-EE28-4C68-9F6F-70C8BF981C86"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:primavera_gateway:*:*:*:*:*:*:*:*","versionStartIncluding":"17.12.0","versionEndIncluding":"17.12.11","matchCriteriaId":"8B1C88FD-C2EC-4C96-AC7E-6F95C8763B48"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:primavera_gateway:*:*:*:*:*:*:*:*","versionStartIncluding":"18.8.0","versionEndIncluding":"18.8.13","matchCriteriaId":"A621A5AE-6974-4BA5-B1AC-7130A46F68F5"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:primavera_gateway:*:*:*:*:*:*:*:*","versionStartIncluding":"19.12.0","versionEndIncluding":"19.12.12","matchCriteriaId":"4096281D-2EBA-490D-8180-3C9D05EB890A"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:primavera_gateway:*:*:*:*:*:*:*:*","versionStartIncluding":"20.12.0","versionEndIncluding":"20.12.7","matchCriteriaId":"E6B70E72-B9FC-4E49-8EDD-29C7E14F5792"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:primavera_gateway:21.12.0:*:*:*:*:*:*:*","matchCriteriaId":"15F45363-236B-4040-8AE4-C6C0E204EDBA"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:primavera_p6_enterprise_project_portfolio_management:*:*:*:*:*:*:*:*","versionStartIncluding":"19.12.0","versionEndIncluding":"19.12.18.0","matchCriteriaId":"A66F0C7C-4310-489F-8E91-4171D17DB32F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:primavera_p6_enterprise_project_portfolio_management:*:*:*:*:*:*:*:*","versionStartIncluding":"20.12.0.0","versionEndIncluding":"20.12.12.0","matchCriteriaId":"651104CE-0569-4E6D-ACAB-AD2AC85084DD"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:primavera_p6_enterprise_project_portfolio_management:21.12.0.0:*:*:*:*:*:*:*","matchCriteriaId":"45D89239-9142-46BD-846D-76A5A74A67B1"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:primavera_unifier:18.8:*:*:*:*:*:*:*","matchCriteriaId":"202AD518-2E9B-4062-B063-9858AE1F9CE2"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:primavera_unifier:19.12:*:*:*:*:*:*:*","matchCriteriaId":"10864586-270E-4ACF-BDCC-ECFCD299305F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:primavera_unifier:20.12:*:*:*:*:*:*:*","matchCriteriaId":"38340E3C-C452-4370-86D4-355B6B4E0A06"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:primavera_unifier:21.12:*:*:*:*:*:*:*","matchCriteriaId":"E9C55C69-E22E-4B80-9371-5CD821D79FE2"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:retail_assortment_planning:16.0.3:*:*:*:*:*:*:*","matchCriteriaId":"48C9BD8E-7214-4B44-B549-6F11B3EA8A04"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:retail_fiscal_management:14.2:*:*:*:*:*:*:*","matchCriteriaId":"A5F6FD19-A314-4A1F-96CB-6DB1CED79430"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:siebel_ui_framework:21.12:*:*:*:*:*:*:*","matchCriteriaId":"8D62731F-3290-4383-A4F6-5274B4D63B1D"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:weblogic_server:12.2.1.3.0:*:*:*:*:*:*:*","matchCriteriaId":"F14A818F-AA16-4438-A3E4-E64C9287AC66"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:weblogic_server:12.2.1.4.0:*:*:*:*:*:*:*","matchCriteriaId":"4A5BB153-68E0-4DDA-87D1-0D9AB7F0A418"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:weblogic_server:14.1.1.0.0:*:*:*:*:*:*:*","matchCriteriaId":"04BCDC24-4A21-473C-8733-0D9CFB38A752"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:cisco:cloudcenter:4.10.0.16:*:*:*:*:*:*:*","matchCriteriaId":"66AB39B2-0CE1-4C7E-9E7B-B288A080D584"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:fedoraproject:fedora:34:*:*:*:*:*:*:*","matchCriteriaId":"A930E247-0B43-43CB-98FF-6CE7B8189835"},{"vulnerable":true,"criteria":"cpe:2.3:o:fedoraproject:fedora:35:*:*:*:*:*:*:*","matchCriteriaId":"80E516C0-98A4-4ADE-B69F-66A772E2BAAA"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*","matchCriteriaId":"DEECE5FC-CACF-4496-A3E7-164736409252"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:communications_brm_-_elastic_charging_engine:*:*:*:*:*:*:*:*","versionEndExcluding":"12.0.0.4.6","matchCriteriaId":"6894D860-000E-439D-8AB7-07E9B2ACC31B"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:communications_brm_-_elastic_charging_engine:12.0.0.5.0:*:*:*:*:*:*:*","matchCriteriaId":"FD66C717-85E0-40E7-A51F-549C8196D557"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:communications_diameter_signaling_router:*:*:*:*:*:*:*:*","versionStartIncluding":"8.3.0.0","versionEndIncluding":"8.5.1.0","matchCriteriaId":"F9550113-7423-48D8-A1C7-95D6AEE9B33C"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:communications_interactive_session_recorder:6.3:*:*:*:*:*:*:*","matchCriteriaId":"46E23F2E-6733-45AF-9BD9-1A600BD278C8"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:communications_interactive_session_recorder:6.4:*:*:*:*:*:*:*","matchCriteriaId":"E812639B-EE28-4C68-9F6F-70C8BF981C86"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:communications_offline_mediation_controller:*:*:*:*:*:*:*:*","versionEndExcluding":"12.0.0.4.4","matchCriteriaId":"61A2E42A-4EF2-437D-A0EC-4A6A4F1EBD11"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:communications_offline_mediation_controller:12.0.0.5.0:*:*:*:*:*:*:*","matchCriteriaId":"5933FEA2-B79E-4EE7-B821-54D676B45734"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:flexcube_private_banking:12.1.0:*:*:*:*:*:*:*","matchCriteriaId":"1B74B912-152D-4F38-9FC1-741D6D0B27FC"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:health_sciences_data_management_workbench:2.5.2.1:*:*:*:*:*:*:*","matchCriteriaId":"E6C9A32B-B776-4704-818D-977B4B20D677"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:health_sciences_data_management_workbench:3.0.0.0:*:*:*:*:*:*:*","matchCriteriaId":"6989178B-A3D5-4441-A56C-6C639D4759DF"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:health_sciences_data_management_workbench:3.1.0.3:*:*:*:*:*:*:*","matchCriteriaId":"F5049591-AA1B-4D64-A925-40D0724074D1"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:policy_automation:*:*:*:*:*:*:*:*","versionStartIncluding":"12.2.0","versionEndIncluding":"12.2.24","matchCriteriaId":"F47057A9-2DDE-4178-B140-F7D70EAED8F6"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:policy_automation_for_mobile_devices:*:*:*:*:*:*:*:*","versionStartIncluding":"12.2.0","versionEndIncluding":"12.2.24","matchCriteriaId":"9132D7F2-43B3-4595-B8BF-C9DE897087F6"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:primavera_gateway:*:*:*:*:*:*:*:*","versionStartIncluding":"17.12.0","versionEndIncluding":"17.12.11","matchCriteriaId":"8B1C88FD-C2EC-4C96-AC7E-6F95C8763B48"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:primavera_gateway:*:*:*:*:*:*:*:*","versionStartIncluding":"18.8.0","versionEndIncluding":"18.8.13","matchCriteriaId":"A621A5AE-6974-4BA5-B1AC-7130A46F68F5"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:primavera_gateway:*:*:*:*:*:*:*:*","versionStartIncluding":"19.12.0","versionEndIncluding":"19.12.12","matchCriteriaId":"4096281D-2EBA-490D-8180-3C9D05EB890A"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:primavera_gateway:*:*:*:*:*:*:*:*","versionStartIncluding":"20.12.0","versionEndIncluding":"20.12.7","matchCriteriaId":"E6B70E72-B9FC-4E49-8EDD-29C7E14F5792"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:primavera_gateway:21.12.0:*:*:*:*:*:*:*","matchCriteriaId":"15F45363-236B-4040-8AE4-C6C0E204EDBA"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:primavera_p6_enterprise_project_portfolio_management:*:*:*:*:*:*:*:*","versionStartIncluding":"19.12.0.0","versionEndIncluding":"19.12.18.0","matchCriteriaId":"AD0DEC50-F4CD-4ACA-A118-D4F0D4F4C981"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:primavera_p6_enterprise_project_portfolio_management:*:*:*:*:*:*:*:*","versionStartIncluding":"20.12.0.0","versionEndIncluding":"20.12.12.0","matchCriteriaId":"651104CE-0569-4E6D-ACAB-AD2AC85084DD"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:primavera_p6_enterprise_project_portfolio_management:21.12.0.0:*:*:*:*:*:*:*","matchCriteriaId":"45D89239-9142-46BD-846D-76A5A74A67B1"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:primavera_unifier:18.8:*:*:*:*:*:*:*","matchCriteriaId":"202AD518-2E9B-4062-B063-9858AE1F9CE2"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:primavera_unifier:19.12:*:*:*:*:*:*:*","matchCriteriaId":"10864586-270E-4ACF-BDCC-ECFCD299305F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:primavera_unifier:20.12:*:*:*:*:*:*:*","matchCriteriaId":"38340E3C-C452-4370-86D4-355B6B4E0A06"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:primavera_unifier:21.12:*:*:*:*:*:*:*","matchCriteriaId":"E9C55C69-E22E-4B80-9371-5CD821D79FE2"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:product_lifecycle_analytics:3.6.1:*:*:*:*:*:*:*","matchCriteriaId":"7F978162-CB2C-4166-947A-9048C6E878BC"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:retail_order_broker:18.0:*:*:*:*:*:*:*","matchCriteriaId":"0783F0D1-8FAC-4BCA-A6F5-C5C60E86D56D"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:retail_order_broker:19.1:*:*:*:*:*:*:*","matchCriteriaId":"C7BD0D41-1BED-4C4F-95C8-8987C98908DA"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:retail_xstore_point_of_service:17.0.4:*:*:*:*:*:*:*","matchCriteriaId":"DEC41EB8-73B4-4BDF-9321-F34EC0BAF9E6"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:retail_xstore_point_of_service:18.0.3:*:*:*:*:*:*:*","matchCriteriaId":"48EFC111-B01B-4C34-87E4-D6B2C40C0122"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:retail_xstore_point_of_service:19.0.2:*:*:*:*:*:*:*","matchCriteriaId":"073FEA23-E46A-4C73-9D29-95CFF4F5A59D"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:retail_xstore_point_of_service:20.0.1:*:*:*:*:*:*:*","matchCriteriaId":"A69FB468-EAF3-4E67-95E7-DF92C281C1F1"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:retail_xstore_point_of_service:21.0.1:*:*:*:*:*:*:*","matchCriteriaId":"0ABA57AC-4BBF-4E4F-9F7E-D42472C36EEB"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:siebel_ui_framework:*:*:*:*:*:*:*:*","versionEndIncluding":"21.12","matchCriteriaId":"889916ED-5EB2-49D6-8400-E6DBBD6C287F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:weblogic_server:12.2.1.3.0:*:*:*:*:*:*:*","matchCriteriaId":"F14A818F-AA16-4438-A3E4-E64C9287AC66"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:weblogic_server:12.2.1.4.0:*:*:*:*:*:*:*","matchCriteriaId":"4A5BB153-68E0-4DDA-87D1-0D9AB7F0A418"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:weblogic_server:14.1.1.0.0:*:*:*:*:*:*:*","matchCriteriaId":"04BCDC24-4A21-473C-8733-0D9CFB38A752"}]}]}],"references":[{"url":"http://www.openwall.com/lists/oss-security/2021/12/28/1","source":"security@apache.org","tags":["Mailing List","Third Party Advisory"]},{"url":"https://cert-portal.siemens.com/productcert/pdf/ssa-784507.pdf","source":"security@apache.org","tags":["Third Party Advisory"]},{"url":"https://issues.apache.org/jira/browse/LOG4J2-3293","source":"security@apache.org","tags":["Issue Tracking","Patch","Vendor Advisory"]},{"url":"https://lists.apache.org/thread/s1o5vlo78ypqxnzn6p8zf6t9shtq5143","source":"security@apache.org","tags":["Mailing List","Vendor Advisory"]},{"url":"https://lists.debian.org/debian-lts-announce/2021/12/msg00036.html","source":"security@apache.org","tags":["Mailing List","Third Party Advisory"]},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/EVV25FXL4FU5X6X5BSL7RLQ7T6F65MRA/","source":"security@apache.org"},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/T57MPJUW3MA6QGWZRTMCHHMMPQNVKGFC/","source":"security@apache.org"},{"url":"https://security.netapp.com/advisory/ntap-20220104-0001/","source":"security@apache.org","tags":["Third Party Advisory"]},{"url":"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-apache-log4j-qRuKNEbd","source":"security@apache.org","tags":["Third Party Advisory"]},{"url":"https://www.oracle.com/security-alerts/cpuapr2022.html","source":"security@apache.org","tags":["Patch","Third Party Advisory"]},{"url":"https://www.oracle.com/security-alerts/cpujan2022.html","source":"security@apache.org","tags":["Patch","Third Party Advisory"]},{"url":"https://www.oracle.com/security-alerts/cpujul2022.html","source":"security@apache.org","tags":["Patch","Third Party Advisory"]},{"url":"http://www.openwall.com/lists/oss-security/2021/12/28/1","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"https://cert-portal.siemens.com/productcert/pdf/ssa-784507.pdf","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://issues.apache.org/jira/browse/LOG4J2-3293","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Issue Tracking","Patch","Vendor Advisory"]},{"url":"https://lists.apache.org/thread/s1o5vlo78ypqxnzn6p8zf6t9shtq5143","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Vendor Advisory"]},{"url":"https://lists.debian.org/debian-lts-announce/2021/12/msg00036.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/EVV25FXL4FU5X6X5BSL7RLQ7T6F65MRA/","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/T57MPJUW3MA6QGWZRTMCHHMMPQNVKGFC/","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://security.netapp.com/advisory/ntap-20220104-0001/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-apache-log4j-qRuKNEbd","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.oracle.com/security-alerts/cpuapr2022.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Third Party Advisory"]},{"url":"https://www.oracle.com/security-alerts/cpujan2022.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Third Party Advisory"]},{"url":"https://www.oracle.com/security-alerts/cpujul2022.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Third Party Advisory"]}]}},{"cve":{"id":"CVE-2021-22785","sourceIdentifier":"cybersecurity@se.com","published":"2022-02-11T18:15:08.947","lastModified":"2026-05-29T20:16:20.273","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"A CWE-200: Information Exposure vulnerability exists that could cause sensitive information of files located in the web root directory to leak when an attacker sends a HTTP request to the web server of the device. Affected Product: Modicon M340 CPUs: BMXP34 (Versions prior to V3.40), Modicon M340 X80 Ethernet Communication Modules: BMXNOE0100 (H), BMXNOE0110 (H), BMXNOC0401, BMXNOR0200H RTU (All Versions), Modicon Premium Processors with integrated Ethernet (Copro): TSXP574634, TSXP575634, TSXP576634 (All Versions), Modicon Quantum Processors with Integrated Ethernet (Copro): 140CPU65xxxxx (All Versions), Modicon Quantum Communication Modules: 140NOE771x1, 140NOC78x00, 140NOC77101 (All Versions), Modicon Premium Communication Modules: TSXETY4103, TSXETY5103 (All Versions)"},{"lang":"es","value":"Una CWE-200: Se presenta una vulnerabilidad de Exposición de Información que podría causar un filtrado de información confidencial de archivos ubicados en el directorio root de la web cuando un atacante envía una petición HTTP al servidor web del dispositivo. Producto afectado: CPUs Modicon M340: BMXP34 (Versiones anteriores a V3.40), Módulos de Comunicación Ethernet Modicon M340 X80: BMXNOE0100 (H), BMXNOE0110 (H), BMXNOC0401, BMXNOR0200H RTU (Todas las versiones), Procesadores Modicon Premium con Ethernet integrada (Copro): TSXP574634, TSXP575634, TSXP576634 (Todas las versiones), Procesadores Modicon Quantum con Ethernet integrado (Copro): 140CPU65xxxxx (Todas las versiones), Módulos de comunicación Modicon Quantum: 140NOE771x1, 140NOC78x00, 140NOC77101 (Todas las versiones), Módulos de comunicación Modicon Premium: TSXETY4103, TSXETY5103 (todas las versiones)"}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":3.6},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":3.6}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:P/I:N/A:N","baseScore":5.0,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"NONE","availabilityImpact":"NONE"},"baseSeverity":"MEDIUM","exploitabilityScore":10.0,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"cybersecurity@se.com","type":"Secondary","description":[{"lang":"en","value":"CWE-200"}]},{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-200"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_m340_bmxp342020_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"3.40","matchCriteriaId":"866BFE7D-D688-40B1-B6E9-B140529001C3"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_m340_bmxp342020:-:*:*:*:*:*:*:*","matchCriteriaId":"99F2F851-C18F-4CB8-B47C-516F2AC7955D"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:bmxnoe0100_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"6E00817A-E140-418F-93AB-A9B516F090A7"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:bmxnoe0100:-:*:*:*:*:*:*:*","matchCriteriaId":"80FC6FF2-D662-4A57-AAA6-BC04351DC779"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:bmxnoe0110_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"F2F33A35-37ED-41AD-94A2-34FEA8E7259B"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:bmxnoe0110:-:*:*:*:*:*:*:*","matchCriteriaId":"98F3B055-8919-4E09-9827-288F0A03DAFF"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:bmxnoc0401_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"FEF0DA3B-F89B-487D-AAE6-AEA88E28055A"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:bmxnoc0401:-:*:*:*:*:*:*:*","matchCriteriaId":"DF08654A-FFCB-47D3-AC82-DF7284548962"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:bmxnor0200h_rtu_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"D9318D16-AA6D-4DE4-B812-D995B291E802"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:bmxnor0200h_rtu:-:*:*:*:*:*:*:*","matchCriteriaId":"8D792EDB-A93E-495B-AF0A-486C9AC6BACA"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:tsxp574634_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"C32BDE35-7AC6-44C3-8135-BAA128B44559"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:tsxp574634:-:*:*:*:*:*:*:*","matchCriteriaId":"76B1122A-56A2-44BB-8648-C6E96D1966D9"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:tsxp575634_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"8CAEBC02-9BA6-4D36-AC3D-E1CE531F918E"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:tsxp575634:-:*:*:*:*:*:*:*","matchCriteriaId":"A0678A50-FE23-49BD-A6CF-A7094EFDAFA1"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:tsxp576634_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"23918D88-851B-480E-972E-EB48CAFA7AF4"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:tsxp576634:-:*:*:*:*:*:*:*","matchCriteriaId":"38F83CCC-4A66-4D47-A563-777A16028F3B"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:140cpu65150_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"8048EA69-8FC8-4415-BA20-D2813F8BD83D"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:140cpu65150:-:*:*:*:*:*:*:*","matchCriteriaId":"EC3E5496-C3D0-4DF4-A9AF-F227F889840E"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:140noe771x1_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"1468EBB2-8AD8-4886-B4A9-13D1F34EFD8B"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:140noe771x1:-:*:*:*:*:*:*:*","matchCriteriaId":"A6EFD78F-DB37-4407-A91C-9D01FA9CAF2F"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:140noc78x00_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"F6E80811-AE57-4B01-B3D5-4B346A9F3D8F"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:140noc78x00:-:*:*:*:*:*:*:*","matchCriteriaId":"9F4A72EA-E15A-4C31-B0F3-6B9EB48A09B2"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:140noc77101_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"10B16121-8DC3-4EA1-AC7B-D611A1C3C9A4"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:140noc77101:-:*:*:*:*:*:*:*","matchCriteriaId":"0B688E46-6D5B-4197-BBA2-23F361E656E0"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:tsxety4103_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"066E3E6C-8A0E-4360-A4ED-32A84B7647FC"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:tsxety4103:-:*:*:*:*:*:*:*","matchCriteriaId":"18B13865-038C-4073-955A-36E6F5037C2C"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:tsxety5103_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"C7B418F6-DCED-40B9-8B35-DC50FD8EF6FD"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:tsxety5103:-:*:*:*:*:*:*:*","matchCriteriaId":"6A901BF2-9316-4067-9AFC-8A7CB3549F68"}]}]}],"references":[{"url":"https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2021-257-02","source":"cybersecurity@se.com","tags":["Patch","Vendor Advisory"]},{"url":"https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2021-257-02","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Vendor Advisory"]}]}},{"cve":{"id":"CVE-2021-22787","sourceIdentifier":"cybersecurity@se.com","published":"2022-02-11T18:15:09.000","lastModified":"2026-05-29T20:16:20.500","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"A CWE-20: Improper Input Validation vulnerability exists that could cause denial of service of the device when an attacker sends a specially crafted HTTP request to the web server of the device. Affected Product: Modicon M340 CPUs: BMXP34 (Versions prior to V3.40), Modicon M340 X80 Ethernet Communication Modules: BMXNOE0100 (H), BMXNOE0110 (H), BMXNOC0401, BMXNOR0200H RTU (All Versions), Modicon Premium Processors with integrated Ethernet (Copro): TSXP574634, TSXP575634, TSXP576634 (All Versions), Modicon Quantum Processors with Integrated Ethernet (Copro): 140CPU65xxxxx (All Versions), Modicon Quantum Communication Modules: 140NOE771x1, 140NOC78x00, 140NOC77101 (All Versions), Modicon Premium Communication Modules: TSXETY4103, TSXETY5103 (All Versions)"},{"lang":"es","value":"Una CWE-20: Se presenta una vulnerabilidad de Comprobación de Entrada Inapropiada que podría causar una denegación de servicio del dispositivo cuando un atacante envía una petición HTTP especialmente diseñada al servidor web del dispositivo. Producto afectado: CPUs Modicon M340: BMXP34 (Versiones anteriores a V3.40), Módulos de Comunicación Ethernet Modicon M340 X80: BMXNOE0100 (H), BMXNOE0110 (H), BMXNOC0401, BMXNOR0200H RTU (Todas las versiones), Procesadores Modicon Premium con Ethernet integrada (Copro): TSXP574634, TSXP575634, TSXP576634 (Todas las versiones), Procesadores Modicon Quantum con Ethernet integrado (Copro): 140CPU65xxxxx (Todas las versiones), Módulos de comunicación Modicon Quantum: 140NOE771x1, 140NOC78x00, 140NOC77101 (Todas las versiones), Módulos de comunicación Modicon Premium: TSXETY4103, TSXETY5103 (todas las versiones)"}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":3.6},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":3.6}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:N/I:N/A:P","baseScore":5.0,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"PARTIAL"},"baseSeverity":"MEDIUM","exploitabilityScore":10.0,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"cybersecurity@se.com","type":"Secondary","description":[{"lang":"en","value":"CWE-20"}]},{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-20"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_m340_bmxp342020_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"3.40","matchCriteriaId":"866BFE7D-D688-40B1-B6E9-B140529001C3"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_m340_bmxp342020:-:*:*:*:*:*:*:*","matchCriteriaId":"99F2F851-C18F-4CB8-B47C-516F2AC7955D"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:bmxnoe0100_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"6E00817A-E140-418F-93AB-A9B516F090A7"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:bmxnoe0100:-:*:*:*:*:*:*:*","matchCriteriaId":"80FC6FF2-D662-4A57-AAA6-BC04351DC779"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:bmxnoe0110_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"F2F33A35-37ED-41AD-94A2-34FEA8E7259B"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:bmxnoe0110:-:*:*:*:*:*:*:*","matchCriteriaId":"98F3B055-8919-4E09-9827-288F0A03DAFF"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:bmxnoc0401_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"FEF0DA3B-F89B-487D-AAE6-AEA88E28055A"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:bmxnoc0401:-:*:*:*:*:*:*:*","matchCriteriaId":"DF08654A-FFCB-47D3-AC82-DF7284548962"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:bmxnor0200h_rtu_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"D9318D16-AA6D-4DE4-B812-D995B291E802"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:bmxnor0200h_rtu:-:*:*:*:*:*:*:*","matchCriteriaId":"8D792EDB-A93E-495B-AF0A-486C9AC6BACA"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:tsxp574634_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"C32BDE35-7AC6-44C3-8135-BAA128B44559"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:tsxp574634:-:*:*:*:*:*:*:*","matchCriteriaId":"76B1122A-56A2-44BB-8648-C6E96D1966D9"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:tsxp575634_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"8CAEBC02-9BA6-4D36-AC3D-E1CE531F918E"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:tsxp575634:-:*:*:*:*:*:*:*","matchCriteriaId":"A0678A50-FE23-49BD-A6CF-A7094EFDAFA1"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:tsxp576634_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"23918D88-851B-480E-972E-EB48CAFA7AF4"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:tsxp576634:-:*:*:*:*:*:*:*","matchCriteriaId":"38F83CCC-4A66-4D47-A563-777A16028F3B"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:140cpu65150_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"8048EA69-8FC8-4415-BA20-D2813F8BD83D"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:140cpu65150:-:*:*:*:*:*:*:*","matchCriteriaId":"EC3E5496-C3D0-4DF4-A9AF-F227F889840E"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:140noe771x1_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"1468EBB2-8AD8-4886-B4A9-13D1F34EFD8B"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:140noe771x1:-:*:*:*:*:*:*:*","matchCriteriaId":"A6EFD78F-DB37-4407-A91C-9D01FA9CAF2F"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:140noc78x00_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"F6E80811-AE57-4B01-B3D5-4B346A9F3D8F"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:140noc78x00:-:*:*:*:*:*:*:*","matchCriteriaId":"9F4A72EA-E15A-4C31-B0F3-6B9EB48A09B2"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:140noc77101_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"10B16121-8DC3-4EA1-AC7B-D611A1C3C9A4"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:140noc77101:-:*:*:*:*:*:*:*","matchCriteriaId":"0B688E46-6D5B-4197-BBA2-23F361E656E0"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:tsxety4103_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"066E3E6C-8A0E-4360-A4ED-32A84B7647FC"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:tsxety4103:-:*:*:*:*:*:*:*","matchCriteriaId":"18B13865-038C-4073-955A-36E6F5037C2C"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:tsxety5103_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"C7B418F6-DCED-40B9-8B35-DC50FD8EF6FD"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:tsxety5103:-:*:*:*:*:*:*:*","matchCriteriaId":"6A901BF2-9316-4067-9AFC-8A7CB3549F68"}]}]}],"references":[{"url":"https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2021-257-02","source":"cybersecurity@se.com","tags":["Patch","Vendor Advisory"]},{"url":"https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2021-257-02","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Vendor Advisory"]}]}},{"cve":{"id":"CVE-2021-22788","sourceIdentifier":"cybersecurity@se.com","published":"2022-02-11T18:15:09.057","lastModified":"2026-05-29T20:16:20.693","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"A CWE-787: Out-of-bounds Write vulnerability exists that could cause denial of service when an attacker sends a specially crafted HTTP request to the web server of the device. Affected Product: Modicon M340 CPUs: BMXP34 (Versions prior to V3.40), Modicon M340 X80 Ethernet Communication Modules: BMXNOE0100 (H), BMXNOE0110 (H), BMXNOC0401, BMXNOR0200H RTU (All Versions), Modicon Premium Processors with integrated Ethernet (Copro): TSXP574634, TSXP575634, TSXP576634 (All Versions), Modicon Quantum Processors with Integrated Ethernet (Copro): 140CPU65xxxxx (All Versions), Modicon Quantum Communication Modules: 140NOE771x1, 140NOC78x00, 140NOC77101 (All Versions), Modicon Premium Communication Modules: TSXETY4103, TSXETY5103 (All Versions)"},{"lang":"es","value":"Una CWE-787: Se presenta una vulnerabilidad de Escritura Fuera de Límites que podría causar una denegación de servicio cuando un atacante envía una petición HTTP especialmente diseñada al servidor web del dispositivo. Producto afectado: CPUs Modicon M340: BMXP34 (Versiones anteriores a V3.40), Módulos de Comunicación Ethernet Modicon M340 X80: BMXNOE0100 (H), BMXNOE0110 (H), BMXNOC0401, BMXNOR0200H RTU (Todas las versiones), Procesadores Modicon Premium con Ethernet integrada (Copro): TSXP574634, TSXP575634, TSXP576634 (Todas las versiones), Procesadores Modicon Quantum con Ethernet integrado (Copro): 140CPU65xxxxx (Todas las versiones), Módulos de comunicación Modicon Quantum: 140NOE771x1, 140NOC78x00, 140NOC77101 (Todas las versiones), Módulos de comunicación Modicon Premium: TSXETY4103, TSXETY5103 (todas las versiones)"}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":3.6},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":3.6}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:N/I:N/A:P","baseScore":5.0,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"PARTIAL"},"baseSeverity":"MEDIUM","exploitabilityScore":10.0,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"cybersecurity@se.com","type":"Secondary","description":[{"lang":"en","value":"CWE-787"}]},{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-787"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:modicon_m340_bmxp342020_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"3.40","matchCriteriaId":"866BFE7D-D688-40B1-B6E9-B140529001C3"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:modicon_m340_bmxp342020:-:*:*:*:*:*:*:*","matchCriteriaId":"99F2F851-C18F-4CB8-B47C-516F2AC7955D"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:bmxnoe0100_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"6E00817A-E140-418F-93AB-A9B516F090A7"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:bmxnoe0100:-:*:*:*:*:*:*:*","matchCriteriaId":"80FC6FF2-D662-4A57-AAA6-BC04351DC779"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:bmxnoe0110_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"F2F33A35-37ED-41AD-94A2-34FEA8E7259B"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:bmxnoe0110:-:*:*:*:*:*:*:*","matchCriteriaId":"98F3B055-8919-4E09-9827-288F0A03DAFF"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:bmxnoc0401_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"FEF0DA3B-F89B-487D-AAE6-AEA88E28055A"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:bmxnoc0401:-:*:*:*:*:*:*:*","matchCriteriaId":"DF08654A-FFCB-47D3-AC82-DF7284548962"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:bmxnor0200h_rtu_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"D9318D16-AA6D-4DE4-B812-D995B291E802"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:bmxnor0200h_rtu:-:*:*:*:*:*:*:*","matchCriteriaId":"8D792EDB-A93E-495B-AF0A-486C9AC6BACA"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:tsxp574634_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"C32BDE35-7AC6-44C3-8135-BAA128B44559"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:tsxp574634:-:*:*:*:*:*:*:*","matchCriteriaId":"76B1122A-56A2-44BB-8648-C6E96D1966D9"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:tsxp575634_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"8CAEBC02-9BA6-4D36-AC3D-E1CE531F918E"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:tsxp575634:-:*:*:*:*:*:*:*","matchCriteriaId":"A0678A50-FE23-49BD-A6CF-A7094EFDAFA1"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:tsxp576634_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"23918D88-851B-480E-972E-EB48CAFA7AF4"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:tsxp576634:-:*:*:*:*:*:*:*","matchCriteriaId":"38F83CCC-4A66-4D47-A563-777A16028F3B"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:140cpu65150_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"8048EA69-8FC8-4415-BA20-D2813F8BD83D"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:140cpu65150:-:*:*:*:*:*:*:*","matchCriteriaId":"EC3E5496-C3D0-4DF4-A9AF-F227F889840E"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:140noe771x1_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"1468EBB2-8AD8-4886-B4A9-13D1F34EFD8B"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:140noe771x1:-:*:*:*:*:*:*:*","matchCriteriaId":"A6EFD78F-DB37-4407-A91C-9D01FA9CAF2F"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:140noc78x00_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"F6E80811-AE57-4B01-B3D5-4B346A9F3D8F"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:140noc78x00:-:*:*:*:*:*:*:*","matchCriteriaId":"9F4A72EA-E15A-4C31-B0F3-6B9EB48A09B2"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:140noc77101_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"10B16121-8DC3-4EA1-AC7B-D611A1C3C9A4"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:140noc77101:-:*:*:*:*:*:*:*","matchCriteriaId":"0B688E46-6D5B-4197-BBA2-23F361E656E0"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:tsxety4103_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"066E3E6C-8A0E-4360-A4ED-32A84B7647FC"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:tsxety4103:-:*:*:*:*:*:*:*","matchCriteriaId":"18B13865-038C-4073-955A-36E6F5037C2C"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:tsxety5103_firmware:*:*:*:*:*:*:*:*","matchCriteriaId":"C7B418F6-DCED-40B9-8B35-DC50FD8EF6FD"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:tsxety5103:-:*:*:*:*:*:*:*","matchCriteriaId":"6A901BF2-9316-4067-9AFC-8A7CB3549F68"}]}]}],"references":[{"url":"https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2021-257-02","source":"cybersecurity@se.com","tags":["Patch","Vendor Advisory"]},{"url":"https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2021-257-02","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Vendor Advisory"]}]}},{"cve":{"id":"CVE-2022-0715","sourceIdentifier":"cybersecurity@se.com","published":"2022-03-09T20:15:08.300","lastModified":"2026-05-29T15:16:20.427","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"A CWE-287: Improper Authentication vulnerability exists that could cause an attacker to arbitrarily change the behavior of the UPS when a key is leaked and used to upload malicious firmware. Affected Product: APC Smart-UPS Family: SMT Series (SMT Series ID=18: UPS 09.8 and prior / SMT Series ID=1040: UPS 01.2 and prior / SMT Series ID=1031: UPS 03.1 and prior), SMC Series (SMC Series ID=1005: UPS 14.1 and prior / SMC Series ID=1007: UPS 11.0 and prior / SMC Series ID=1041: UPS 01.1 and prior), SCL Series (SCL Series ID=1030: UPS 02.5 and prior / SCL Series ID=1036: UPS 02.5 and prior), SMX Series (SMX Series ID=20: UPS 10.2 and prior / SMX Series ID=23: UPS 07.0 and prior), SRT Series (SRT Series ID=1010/1019/1025: UPS 08.3 and prior / SRT Series ID=1024: UPS 01.0 and prior / SRT Series ID=1020: UPS 10.4 and prior / SRT Series ID=1021: UPS 12.2 and prior / SRT Series ID=1001/1013: UPS 05.1 and prior / SRT Series ID=1002/1014: UPSa05.2 and prior), APC SmartConnect Family: SMT Series (SMT Series ID=1015: UPS 04.5 and prior), SMC Series (SMC Series ID=1018: UPS 04.2 and prior), SMTL Series (SMTL Series ID=1026: UPS 02.9 and prior), SCL Series (SCL Series ID=1029: UPS 02.5 and prior / SCL Series ID=1030: UPS 02.5 and prior / SCL Series ID=1036: UPS 02.5 and prior / SCL Series ID=1037: UPS 03.1 and prior), SMX Series (SMX Series ID=1031: UPS 03.1 and prior)"},{"lang":"es","value":"Una CWE-287: Se presenta una vulnerabilidad de autenticación inapropiada que podría causar que un atacante cambie arbitrariamente el comportamiento del SAI cuando es filtrada una clave y es usada para cargar firmware malicioso. Producto afectado: Familia de Smart-UPS de APC: Serie SMT (SMT Series ID=18: UPS versiones 09.8 y anteriores / SMT Series ID=1040: UPS versiones 01.2 y anteriores / SMT Series ID=1031: UPS versiones 03.1 y anteriores), SMC Series (SMC Series ID=1005: UPS versiones 14.1 y anteriores / SMC Series ID=1007: UPS versiones 11.0 y anteriores / SMC Series ID=1041: UPS versiones 01.1 y anteriores), SCL Series (SCL Series ID=1030: UPS versiones 02.5 y anteriores / SCL Series ID=1036: UPS versiones 02.5 y anteriores), SMX Series (SMX Series ID=20: UPS versiones 10.2 y anteriores / SMX Series ID=23: UPS versiones 07.0 y anteriores), SRT Series (SRT Series ID=1010/1019/1025: UPS versiones 08.3 y anteriores / SRT Series ID=1024: UPS versiones 01.0 y anteriores / SRT Series ID=1020: UPS versiones 10.4 y anteriores / SRT Series ID=1021: UPS versiones 12.2 y anteriores / SRT Series ID=1001/1013: UPS versiones 05.1 y anteriores / SRT Series ID=1002/1014: UPS versiones a05.2 y anteriores), Familia SmartConnect de APC: Serie SMT (Serie SMT ID=1015: UPS versiones 04.5 y anteriores), Serie SMC (Serie SMC ID=1018: UPS versiones 04.2 y anteriores), Serie SMTL (Serie SMTL ID=1026: UPS versiones 02.9 y anteriores), Serie SCL (Serie SCL ID=1029: UPS versiones 02.5 y anteriores / SCL Series ID=1030: UPS versiones 02.5 y anteriores / SCL Series ID=1036: UPS versiones 02.5 y anteriores / SCL Series ID=1037: UPS versiones 03.1 y anteriores), SMX Series (SMX Series ID=1031: UPS versiones 03.1 y anteriores)"}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H","baseScore":9.1,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":5.2},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:L/I:H/A:H","baseScore":8.9,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.2,"impactScore":6.0}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:N/I:P/A:P","baseScore":6.4,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"NONE","integrityImpact":"PARTIAL","availabilityImpact":"PARTIAL"},"baseSeverity":"MEDIUM","exploitabilityScore":10.0,"impactScore":4.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"cybersecurity@se.com","type":"Secondary","description":[{"lang":"en","value":"CWE-287"}]},{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-345"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:smt_series_1015_ups_firmware:*:*:*:*:*:*:*:*","versionEndIncluding":"04.5","matchCriteriaId":"2C3EA55B-DB09-4124-A9D9-A92431C38D1F"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:smt_series_1015_ups:-:*:*:*:*:*:*:*","matchCriteriaId":"95C1E3D9-606B-4C57-A4E7-0A45C9D46332"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:smc_series_1018_ups_firmware:*:*:*:*:*:*:*:*","versionEndIncluding":"04.2","matchCriteriaId":"FFE2D844-ED18-44D3-9E75-4BB3082E4B51"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:smc_series_1018_ups:-:*:*:*:*:*:*:*","matchCriteriaId":"154E788E-173C-4D16-A492-B61D39D420EF"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:smtl_series_1026_ups_firmware:*:*:*:*:*:*:*:*","versionEndIncluding":"02.9","matchCriteriaId":"AE693F05-B0A7-452D-94C6-D36E37ACF6CB"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:smtl_series_1026_ups:-:*:*:*:*:*:*:*","matchCriteriaId":"6B138EB4-6264-4BFA-B4C7-4B23FFA676B1"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:scl_series_1029_ups_firmware:*:*:*:*:*:*:*:*","versionEndIncluding":"02.5","matchCriteriaId":"C2E0803A-637E-4BBA-B9D5-AB59EE122844"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:scl_series_1029_ups:-:*:*:*:*:*:*:*","matchCriteriaId":"4175BEC7-DA4D-4E19-A642-A5FC13D3598E"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:scl_series_1030_ups_firmware:*:*:*:*:*:*:*:*","versionEndIncluding":"02.5","matchCriteriaId":"469F9813-DE0E-4752-91EB-FECC001C6825"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:scl_series_1030_ups:-:*:*:*:*:*:*:*","matchCriteriaId":"E8DC43CB-66C0-469B-AF87-0120D6280584"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:scl_series_1036_ups_firmware:*:*:*:*:*:*:*:*","versionEndIncluding":"02.5","matchCriteriaId":"22E4C951-876D-46F7-8CF4-D943464E8338"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:scl_series_1036_ups:-:*:*:*:*:*:*:*","matchCriteriaId":"9FB7E0EB-AF6D-4107-B343-50309E9DF03E"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:scl_series_1037_ups_firmware:*:*:*:*:*:*:*:*","versionEndIncluding":"03.1","matchCriteriaId":"3E52A522-88D4-4B6A-83B4-C56C093C7F54"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:scl_series_1037_ups:-:*:*:*:*:*:*:*","matchCriteriaId":"04C627CE-E3F8-4E3F-8B93-07C92AA21296"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:smx_series_1031_ups_firmware:*:*:*:*:*:*:*:*","versionEndIncluding":"03.1","matchCriteriaId":"6251AE4E-FFED-4B0C-A90B-A3BD852A2ED8"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:smx_series_1031_ups:-:*:*:*:*:*:*:*","matchCriteriaId":"9E1E7040-8123-483C-AE62-F190D83D0ADC"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:smt_series_18_ups_firmware:*:*:*:*:*:*:*:*","versionEndIncluding":"09.8","matchCriteriaId":"A9B1431D-822C-47DF-8643-7D5E778A43AD"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:smt_series_18_ups:-:*:*:*:*:*:*:*","matchCriteriaId":"0E1F03F0-11F1-437A-8FD8-A3C8186D02DE"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:smt_series_1040_ups_firmware:*:*:*:*:*:*:*:*","versionEndIncluding":"01.2","matchCriteriaId":"660A5F99-3370-48C9-A3C8-A54FFAC9BEE6"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:smt_series_1040_ups:-:*:*:*:*:*:*:*","matchCriteriaId":"848020CF-D33A-4196-BB0C-ECD1D43372D7"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:smt_series_1031_ups_firmware:*:*:*:*:*:*:*:*","versionEndIncluding":"03.1","matchCriteriaId":"CE801653-57F9-4C13-8D23-91D5F22FD2C9"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:smt_series_1031_ups:-:*:*:*:*:*:*:*","matchCriteriaId":"E1467655-7784-4287-8C32-3F522A49411D"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:smc_series_1005_ups_firmware:*:*:*:*:*:*:*:*","versionEndIncluding":"14.1","matchCriteriaId":"1B5D15FE-D25F-4827-99C2-2B15DA5726F3"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:smc_series_1005_ups:-:*:*:*:*:*:*:*","matchCriteriaId":"26B5EC8E-4FF9-4ED0-AB70-B5F6DBA72632"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:smc_series_1007_ups_firmware:*:*:*:*:*:*:*:*","versionEndIncluding":"11.0","matchCriteriaId":"4929654C-D91D-4228-807B-F9DAC9D8C931"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:smc_series_1007_ups:-:*:*:*:*:*:*:*","matchCriteriaId":"2761A47B-326E-4CD0-96D6-12796992769D"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:smc_series_1041_ups_firmware:*:*:*:*:*:*:*:*","versionEndIncluding":"01.1","matchCriteriaId":"428CBB13-0227-4557-8A22-DE8165949D3B"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:smc_series_1041_ups:-:*:*:*:*:*:*:*","matchCriteriaId":"7FEFAD29-12AD-454B-BAFC-4C17A1D1E8E1"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:scl_series_1030_ups_firmware:*:*:*:*:*:*:*:*","versionEndIncluding":"02.5","matchCriteriaId":"469F9813-DE0E-4752-91EB-FECC001C6825"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:scl_series_1030_ups:-:*:*:*:*:*:*:*","matchCriteriaId":"E8DC43CB-66C0-469B-AF87-0120D6280584"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:scl_series_1036_ups_firmware:*:*:*:*:*:*:*:*","versionEndIncluding":"02.5","matchCriteriaId":"22E4C951-876D-46F7-8CF4-D943464E8338"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:scl_series_1036_ups:-:*:*:*:*:*:*:*","matchCriteriaId":"9FB7E0EB-AF6D-4107-B343-50309E9DF03E"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:smx_series_20_ups_firmware:*:*:*:*:*:*:*:*","versionEndIncluding":"10.2","matchCriteriaId":"49A9A0AA-9E54-426D-B3DF-A896119DCFCB"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:smx_series_20_ups:-:*:*:*:*:*:*:*","matchCriteriaId":"9869EFE8-DED1-40D9-8BD6-003E0507995F"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:smx_series_23_ups_firmware:*:*:*:*:*:*:*:*","versionEndIncluding":"07.0","matchCriteriaId":"AD04C6BF-A05F-41DC-9DB8-6ECBEF570FA3"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:smx_series_23_ups:-:*:*:*:*:*:*:*","matchCriteriaId":"A58B76AA-7DFC-4F6C-B6E6-4B19746788B3"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:srt_series_1010_ups_firmware:*:*:*:*:*:*:*:*","versionEndIncluding":"08.3","matchCriteriaId":"6717F4F6-F033-48CB-A4BA-6E19DAD98FE5"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:srt_series_1010_ups:-:*:*:*:*:*:*:*","matchCriteriaId":"83769E66-3290-4559-AD5A-C65BE83B27A1"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:srt_series_1019_ups_firmware:*:*:*:*:*:*:*:*","versionEndIncluding":"08.3","matchCriteriaId":"A45A70DF-4794-4E45-B134-EB8435AC5FB8"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:srt_series_1019_ups:-:*:*:*:*:*:*:*","matchCriteriaId":"09A53A75-F08A-47E9-A3CF-691EE7B475B7"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:srt_series_1025_ups_firmware:*:*:*:*:*:*:*:*","versionEndIncluding":"08.3","matchCriteriaId":"B73BB6AE-8CC4-465F-9C48-B125D0C25F59"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:srt_series_1025_ups:-:*:*:*:*:*:*:*","matchCriteriaId":"D883C4EF-0530-4E8B-8C83-57B452219687"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:srt_series_1020_ups_firmware:*:*:*:*:*:*:*:*","versionEndIncluding":"10.4","matchCriteriaId":"CC69A97E-D632-42FE-A217-572EB966085A"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:srt_series_1020_ups:-:*:*:*:*:*:*:*","matchCriteriaId":"94F049E9-F1D2-4006-9C9A-5DA9C7229087"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:srt_series_1021_ups_firmware:*:*:*:*:*:*:*:*","versionEndIncluding":"12.2","matchCriteriaId":"CF0C5ED3-2100-48C1-AC5A-E6285487815D"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:srt_series_1021_ups:-:*:*:*:*:*:*:*","matchCriteriaId":"DEC3AD24-6B13-4A44-A58C-9189BCF480D4"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:srt_series_1001_ups_firmware:*:*:*:*:*:*:*:*","versionEndIncluding":"05.1","matchCriteriaId":"1D4D6B50-3B1A-47EF-9055-2887128F0224"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:srt_series_1001_ups:-:*:*:*:*:*:*:*","matchCriteriaId":"EB599BB4-82F4-4E97-BEF5-0ECC587F0A68"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:srt_series_1013_ups_firmware:*:*:*:*:*:*:*:*","versionEndIncluding":"05.1","matchCriteriaId":"B4B35543-73E5-4EDD-9018-3BE90A5B99C5"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:srt_series_1013_ups:-:*:*:*:*:*:*:*","matchCriteriaId":"833DCA70-FCBA-4C58-80EE-DEFFD0F661EF"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:srt_series_1002_ups_firmware:*:*:*:*:*:*:*:*","versionEndIncluding":"a05.2","matchCriteriaId":"318BBEA4-EAF2-499A-8E89-39EC58781BA6"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:srt_series_1002_ups:-:*:*:*:*:*:*:*","matchCriteriaId":"20C49E94-8D0A-4202-A433-6787BF8E4B68"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:srt_series_1014_ups_firmware:*:*:*:*:*:*:*:*","versionEndIncluding":"a05.2","matchCriteriaId":"043062A8-6D85-46CD-934F-82BF075B8D53"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:srt_series_1014_ups:-:*:*:*:*:*:*:*","matchCriteriaId":"B55E3932-EBCF-44CA-930D-F254EFF5FC68"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:srtl1000rmxli_firmware:*:*:*:*:*:*:*:*","versionEndIncluding":"01.0","matchCriteriaId":"4A9B5DEA-467F-4C36-854A-F7A5967F0BD1"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:srtl1000rmxli:-:*:*:*:*:*:*:*","matchCriteriaId":"5165586B-64EF-4E2C-B496-2E82A61113A4"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:srtl1000rmxli-nc_firmware:*:*:*:*:*:*:*:*","versionEndIncluding":"01.0","matchCriteriaId":"FD635E09-A358-422A-9BD0-2B177D98E3EE"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:srtl1000rmxli-nc:-:*:*:*:*:*:*:*","matchCriteriaId":"13699C09-1AB8-4C43-9621-295413A974FF"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:srtl1500rmxli-nc_firmware:*:*:*:*:*:*:*:*","versionEndIncluding":"01.0","matchCriteriaId":"1A5732D4-6BBD-41CA-8D24-84F2FC1412AC"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:srtl1500rmxli-nc:-:*:*:*:*:*:*:*","matchCriteriaId":"773C3D26-4C71-440E-8CCA-85478C59B247"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:srtl1500rmxli_firmware:*:*:*:*:*:*:*:*","versionEndIncluding":"01.0","matchCriteriaId":"ECDE919A-70ED-411B-9AAA-12C8B9EB1785"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:srtl1500rmxli:-:*:*:*:*:*:*:*","matchCriteriaId":"C418AEA1-3C77-4969-9651-9995F7DE99EA"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:srtl2200rmxli_firmware:*:*:*:*:*:*:*:*","versionEndIncluding":"01.0","matchCriteriaId":"40D232F8-B3F7-4CCF-9E08-6EA63AD7596C"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:srtl2200rmxli:-:*:*:*:*:*:*:*","matchCriteriaId":"7883EDB6-5A6D-4CDF-A467-A46E522B3B22"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:srtl2200rmxli-nc_firmware:*:*:*:*:*:*:*:*","versionEndIncluding":"01.0","matchCriteriaId":"EB73EFDD-0994-4553-9075-5EB390816B31"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:srtl2200rmxli-nc:-:*:*:*:*:*:*:*","matchCriteriaId":"54F5A2E5-DA9A-412E-A5FF-9EA97A8A2D9F"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:srtl3000rmxli-nc_firmware:*:*:*:*:*:*:*:*","versionEndIncluding":"01.0","matchCriteriaId":"66BFDC2B-B658-4782-AB42-14978BFD2ECC"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:srtl3000rmxli-nc:-:*:*:*:*:*:*:*","matchCriteriaId":"5FE692C1-4995-430A-896E-BDD68325BD16"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:schneider-electric:srtl3000rmxli_firmware:*:*:*:*:*:*:*:*","versionEndIncluding":"01.0","matchCriteriaId":"83E06F71-7148-4B01-913C-5D92AA36C499"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:schneider-electric:srtl3000rmxli:-:*:*:*:*:*:*:*","matchCriteriaId":"42A83199-87D4-4DD2-854F-2EDBD09509C4"}]}]}],"references":[{"url":"https://www.se.com/ww/en/download/document/SEVD-2022-067-02/","source":"cybersecurity@se.com","tags":["Vendor Advisory"]},{"url":"https://www.se.com/ww/en/download/document/SEVD-2022-067-02/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]}]}},{"cve":{"id":"CVE-2021-36368","sourceIdentifier":"cve@mitre.org","published":"2022-03-13T00:15:07.937","lastModified":"2026-05-29T20:16:20.900","vulnStatus":"Modified","cveTags":[{"sourceIdentifier":"cve@mitre.org","tags":["disputed"]}],"descriptions":[{"lang":"en","value":"An issue was discovered in OpenSSH before 8.9. If a client is using public-key authentication with agent forwarding but without -oLogLevel=verbose, and an attacker has silently modified the server to support the None authentication option, then the user cannot determine whether FIDO authentication is going to confirm that the user wishes to connect to that server, or that the user wishes to allow that server to connect to a different server on the user's behalf. NOTE: the vendor's position is \"this is not an authentication bypass, since nothing is being bypassed."},{"lang":"es","value":"** EN DISPUTA ** Se ha detectado un problema en OpenSSH versiones anteriores a 8.9. Si un cliente está usando autenticación de clave pública con reenvío de agentes pero sin -oLogLevel=verbose, y un atacante ha modificado silenciosamente el servidor para que soporte la opción de autenticación None, entonces el usuario no puede determinar si la autenticación FIDO va a confirmar que el usuario desea conectarse a ese servidor, o que el usuario desea permitir que ese servidor sea conectado a un servidor diferente en nombre del usuario. NOTA: la posición del proveedor es que \"esto no es una omisión de la autenticación, ya que no está omitiéndose nada\""}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N","baseScore":3.7,"baseSeverity":"LOW","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":2.2,"impactScore":1.4},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N","baseScore":3.7,"baseSeverity":"LOW","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":2.2,"impactScore":1.4}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:H/Au:N/C:P/I:N/A:N","baseScore":2.6,"accessVector":"NETWORK","accessComplexity":"HIGH","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"NONE","availabilityImpact":"NONE"},"baseSeverity":"LOW","exploitabilityScore":4.9,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-287"}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-287"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:*:*:*:*:*:*:*:*","versionEndExcluding":"8.9","matchCriteriaId":"E32FF036-1293-4C11-85EB-ACAD8ACBAC2C"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*","matchCriteriaId":"DEECE5FC-CACF-4496-A3E7-164736409252"},{"vulnerable":true,"criteria":"cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*","matchCriteriaId":"07B237A9-69A3-4A9C-9DA0-4E06BD37AE73"},{"vulnerable":true,"criteria":"cpe:2.3:o:debian:debian_linux:11.0:*:*:*:*:*:*:*","matchCriteriaId":"FA6FEEC2-9F11-4643-8827-749718254FED"}]}]}],"references":[{"url":"https://bugzilla.mindrot.org/show_bug.cgi?id=3316","source":"cve@mitre.org","tags":["Issue Tracking","Third Party Advisory"]},{"url":"https://docs.ssh-mitm.at/trivialauth.html","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"https://github.com/openssh/openssh-portable/pull/258","source":"cve@mitre.org","tags":["Patch","Third Party Advisory"]},{"url":"https://security-tracker.debian.org/tracker/CVE-2021-36368","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"https://www.openssh.com/security.html","source":"cve@mitre.org","tags":["Vendor Advisory"]},{"url":"https://bugzilla.mindrot.org/show_bug.cgi?id=3316","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Issue Tracking","Third Party Advisory"]},{"url":"https://docs.ssh-mitm.at/trivialauth.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://github.com/openssh/openssh-portable/pull/258","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Third Party Advisory"]},{"url":"https://security-tracker.debian.org/tracker/CVE-2021-36368","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.openssh.com/security.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]}]}},{"cve":{"id":"CVE-2021-41556","sourceIdentifier":"cve@mitre.org","published":"2022-07-28T21:15:08.057","lastModified":"2026-05-29T20:16:21.173","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"sqclass.cpp in Squirrel through 2.2.5 and 3.x through 3.1 allows an out-of-bounds read (in the core interpreter) that can lead to Code Execution. If a victim executes an attacker-controlled squirrel script, it is possible for the attacker to break out of the squirrel script sandbox even if all dangerous functionality such as File System functions has been disabled. An attacker might abuse this bug to target (for example) Cloud services that allow customization via SquirrelScripts, or distribute malware through video games that embed a Squirrel Engine."},{"lang":"es","value":"El archivo sqclass.cpp en Squirrel versiones hasta 2.2.5 y 3.x hasta 3.1 permite una lectura fuera de límites (en el intérprete del núcleo) que puede conllevar a una ejecución de código. Si una víctima ejecuta un script de Squirrel controlado por un atacante, es posible que el atacante salga del sandbox del script de Squirrel incluso si toda la funcionalidad peligrosa, como las funciones del sistema de archivos, ha sido deshabilitada. Un atacante podría abusar de este fallo para dirigirse (por ejemplo) a servicios en la nube que permitan la personalización por medio de SquirrelScripts, o distribuir malware mediante videojuegos que incorporen un Squirrel Engine"}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H","baseScore":10.0,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":6.0},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H","baseScore":10.0,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":6.0}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-125"}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-125"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:squirrel-lang:squirrel:*:*:*:*:*:*:*:*","versionEndIncluding":"2.2.5","matchCriteriaId":"27238A56-A2B2-4A34-8BF6-3AD58BB93126"},{"vulnerable":true,"criteria":"cpe:2.3:a:squirrel-lang:squirrel:*:*:*:*:*:*:*:*","versionStartIncluding":"3.0","versionEndIncluding":"3.1","matchCriteriaId":"E46EF8F0-BDBD-478E-9C80-F16555DB3FC0"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:fedoraproject:fedora:35:*:*:*:*:*:*:*","matchCriteriaId":"80E516C0-98A4-4ADE-B69F-66A772E2BAAA"},{"vulnerable":true,"criteria":"cpe:2.3:o:fedoraproject:fedora:36:*:*:*:*:*:*:*","matchCriteriaId":"5C675112-476C-4D7C-BCB9-A2FB2D0BC9FD"}]}]}],"references":[{"url":"http://www.squirrel-lang.org/#download","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"https://blog.sonarsource.com/squirrel-vm-sandbox-escape/","source":"cve@mitre.org","tags":["Exploit","Third Party Advisory"]},{"url":"https://github.com/albertodemichelis/squirrel/commit/23a0620658714b996d20da3d4dd1a0dcf9b0bd98","source":"cve@mitre.org","tags":["Patch","Third Party Advisory"]},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BV7SJJ44AGAX4ILIVPREIXPJ2GOG3FKV/","source":"cve@mitre.org"},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/M3FQILX7UUEERSDPMZP3MKGTMY2E7ESU/","source":"cve@mitre.org"},{"url":"http://www.squirrel-lang.org/#download","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://blog.sonarsource.com/squirrel-vm-sandbox-escape/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Exploit","Third Party Advisory"]},{"url":"https://github.com/albertodemichelis/squirrel/commit/23a0620658714b996d20da3d4dd1a0dcf9b0bd98","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Third Party Advisory"]},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BV7SJJ44AGAX4ILIVPREIXPJ2GOG3FKV/","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/M3FQILX7UUEERSDPMZP3MKGTMY2E7ESU/","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://www.sonarsource.com/blog/squirrel-vm-sandbox-escape/","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0"}]}},{"cve":{"id":"CVE-2025-0130","sourceIdentifier":"psirt@paloaltonetworks.com","published":"2025-05-14T18:15:29.723","lastModified":"2026-05-29T22:16:22.507","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"A missing exception check in Palo Alto Networks PAN-OS® software with the web proxy feature enabled allows an unauthenticated attacker to send a burst of maliciously crafted packets that causes the firewall to become unresponsive and eventually reboot. Repeated successful attempts to trigger this condition will cause the firewall to enter maintenance mode.\n\n\n\nThis issue does not affect Cloud NGFW or Prisma Access."},{"lang":"es","value":"Una comprobación de excepción faltante en el software PAN-OS® de Palo Alto Networks con la función de proxy web habilitada permite que un atacante no autenticado envíe una ráfaga de paquetes maliciosos que provocan que el firewall deje de responder y, finalmente, se reinicie. Los intentos repetidos de activar esta condición harán que el firewall entre en modo de mantenimiento. Este problema no afecta a Cloud NGFW ni a Prisma Access."}],"metrics":{"cvssMetricV40":[{"source":"psirt@paloaltonetworks.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:Y/R:U/V:C/RE:L/U:Amber","baseScore":8.2,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"HIGH","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"NONE","vulnIntegrityImpact":"NONE","vulnAvailabilityImpact":"HIGH","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"YES","Recovery":"USER","valueDensity":"CONCENTRATED","vulnerabilityResponseEffort":"LOW","providerUrgency":"AMBER"}}],"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":3.6}]},"weaknesses":[{"source":"psirt@paloaltonetworks.com","type":"Secondary","description":[{"lang":"en","value":"CWE-754"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:*:*:*:*:*:*:*:*","versionStartIncluding":"11.1.0","versionEndExcluding":"11.1.6","matchCriteriaId":"19A95C11-17B8-45BB-8A73-B0896C136935"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:*:h1:*:*:*:*:*:*","versionStartIncluding":"11.2.0","versionEndExcluding":"11.2.5","matchCriteriaId":"87CF5534-403B-4BC4-9E36-677BE4ACE3E4"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:11.1.7:-:*:*:*:*:*:*","matchCriteriaId":"64B56778-2698-493D-80AD-B4AE81F48124"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:11.1.7:h1:*:*:*:*:*:*","matchCriteriaId":"0A9D3E2E-BA37-4F2A-BD43-97DD93E43D08"}]}]}],"references":[{"url":"https://security.paloaltonetworks.com/CVE-2025-0130","source":"psirt@paloaltonetworks.com","tags":["Vendor Advisory"]}]}},{"cve":{"id":"CVE-2026-20994","sourceIdentifier":"mobile.security@samsung.com","published":"2026-03-16T14:18:10.290","lastModified":"2026-05-29T19:22:06.407","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"URL redirection in Samsung Account prior to version 15.5.01.1 allows local attackers to potentially get access token."},{"lang":"es","value":"Redirección de URL en Samsung Account anterior a la versión 15.5.01.1 permite a atacantes remotos obtener potencialmente un token de acceso."}],"metrics":{"cvssMetricV40":[{"source":"mobile.security@samsung.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":6.9,"baseSeverity":"MEDIUM","attackVector":"LOCAL","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"NONE","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N","baseScore":6.1,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":2.7}]},"weaknesses":[{"source":"mobile.security@samsung.com","type":"Secondary","description":[{"lang":"en","value":"CWE-601"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:samsung:account:*:*:*:*:*:*:*:*","versionEndExcluding":"15.5.01.1","matchCriteriaId":"ADCF1AE1-0682-4C36-AB63-0A6B114BA75E"}]}]}],"references":[{"url":"https://security.samsungmobile.com/serviceWeb.smsb?year=2026&month=03","source":"mobile.security@samsung.com","tags":["Vendor Advisory"]}]}},{"cve":{"id":"CVE-2026-23258","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-03-18T18:16:24.167","lastModified":"2026-05-29T18:52:01.810","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nnet: liquidio: Initialize netdev pointer before queue setup\n\nIn setup_nic_devices(), the netdev is allocated using alloc_etherdev_mq().\nHowever, the pointer to this structure is stored in oct->props[i].netdev\nonly after the calls to netif_set_real_num_rx_queues() and\nnetif_set_real_num_tx_queues().\n\nIf either of these functions fails, setup_nic_devices() returns an error\nwithout freeing the allocated netdev. Since oct->props[i].netdev is still\nNULL at this point, the cleanup function liquidio_destroy_nic_device()\nwill fail to find and free the netdev, resulting in a memory leak.\n\nFix this by initializing oct->props[i].netdev before calling the queue\nsetup functions. This ensures that the netdev is properly accessible for\ncleanup in case of errors.\n\nCompile tested only. Issue found using a prototype static analysis tool\nand code review."},{"lang":"es","value":"En el kernel de Linux, la siguiente vulnerabilidad ha sido resuelta:\n\nnet: liquidio: Inicializar el puntero netdev antes de la configuración de la cola\n\nEn setup_nic_devices(), el netdev se asigna usando alloc_etherdev_mq(). Sin embargo, el puntero a esta estructura se almacena en oct-&gt;props[i].netdev solo después de las llamadas a netif_set_real_num_rx_queues() y netif_set_real_num_tx_queues().\n\nSi alguna de estas funciones falla, setup_nic_devices() devuelve un error sin liberar el netdev asignado. Dado que oct-&gt;props[i].netdev sigue siendo NULL en este punto, la función de limpieza liquidio_destroy_nic_device() no logrará encontrar y liberar el netdev, lo que resultará en una fuga de memoria.\n\nCorrija esto inicializando oct-&gt;props[i].netdev antes de llamar a las funciones de configuración de cola. Esto asegura que el netdev sea correctamente accesible para la limpieza en caso de errores.\n\nProbado solo en compilación. Problema encontrado usando una herramienta prototipo de análisis estático y revisión de código."}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","baseScore":5.5,"baseSeverity":"MEDIUM","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":1.8,"impactScore":3.6}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-401"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.18","versionEndExcluding":"5.10.250","matchCriteriaId":"8CEB0981-1AAD-42BA-9010-D136F620EF41"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"5.11","versionEndExcluding":"5.15.200","matchCriteriaId":"D16F6370-B70F-471C-8363-3A17B0BB1DA9"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"5.16","versionEndExcluding":"6.1.163","matchCriteriaId":"E9C856E1-4308-4C0B-A973-7DD375DF66C4"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.2","versionEndExcluding":"6.6.124","matchCriteriaId":"76183B9F-CABE-4E21-A3E3-F0EBF99DC3C7"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.7","versionEndExcluding":"6.12.70","matchCriteriaId":"F3791390-0628-4808-99EF-1ED8ABF60933"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.13","versionEndExcluding":"6.18.10","matchCriteriaId":"7156C23F-009E-4D05-838C-A2DA417B5B8D"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:6.19:rc1:*:*:*:*:*:*","matchCriteriaId":"17B67AA7-40D6-4AFA-8459-F200F3D7CFD1"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:6.19:rc2:*:*:*:*:*:*","matchCriteriaId":"C47E4CC9-C826-4FA9-B014-7FE3D9B318B2"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:6.19:rc3:*:*:*:*:*:*","matchCriteriaId":"F71D92C0-C023-48BD-B3B6-70B638EEE298"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:6.19:rc4:*:*:*:*:*:*","matchCriteriaId":"13580667-0A98-40CC-B29F-D12790B91BDB"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:6.19:rc5:*:*:*:*:*:*","matchCriteriaId":"CAD1FED7-CF48-47BF-AC7D-7B6FA3C065FC"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:6.19:rc6:*:*:*:*:*:*","matchCriteriaId":"3EF854A1-ABB1-4E93-BE9A-44569EC76C0D"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:6.19:rc7:*:*:*:*:*:*","matchCriteriaId":"F5DC0CA6-F0AF-4DDF-A882-3DADB9A886A7"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:6.19:rc8:*:*:*:*:*:*","matchCriteriaId":"EB5B7DFC-C36B-45D8-922C-877569FDDF43"}]}]}],"references":[{"url":"https://git.kernel.org/stable/c/1d4590fde856cb94bd9a46e795c29d8288c238fc","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/926ede0c85e1e57c97d64d9612455267d597bb2c","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/a0e57c0b68c9e6f9a8fd7c1167861a5a730eb2f4","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/be109646cdaecab262f6276303b1763468c94378","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/c0ed6c77ec34050971fd0df2a94dfdea66d09331","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/c81a8515fb8c8fb5d0dbc21f48337494bf1d60df","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/d028147ae06407cb355245db1774793600670169","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]}]}},{"cve":{"id":"CVE-2026-23259","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-03-18T18:16:24.353","lastModified":"2026-05-29T18:52:38.090","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nio_uring/rw: free potentially allocated iovec on cache put failure\n\nIf a read/write request goes through io_req_rw_cleanup() and has an\nallocated iovec attached and fails to put to the rw_cache, then it may\nend up with an unaccounted iovec pointer. Have io_rw_recycle() return\nwhether it recycled the request or not, and use that to gauge whether to\nfree a potential iovec or not."},{"lang":"es","value":"En el kernel de Linux, la siguiente vulnerabilidad ha sido resuelta:\n\nio_uring/rw: liberar iovec potencialmente asignado en caso de fallo al colocar en la caché\n\nSi una solicitud de lectura/escritura pasa por io_req_rw_cleanup() y tiene un iovec asignado adjunto y falla al colocarlo en la rw_cache, entonces puede terminar con un puntero iovec no contabilizado. Hacer que io_rw_recycle() devuelva si recicló la solicitud o no, y usar eso para determinar si liberar un iovec potencial o no."}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","baseScore":5.5,"baseSeverity":"MEDIUM","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":1.8,"impactScore":3.6}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"NVD-CWE-noinfo"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.10","versionEndExcluding":"6.18.10","matchCriteriaId":"5EB04473-D8B8-4B0C-B867-CA415645B406"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:6.19:rc1:*:*:*:*:*:*","matchCriteriaId":"17B67AA7-40D6-4AFA-8459-F200F3D7CFD1"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:6.19:rc2:*:*:*:*:*:*","matchCriteriaId":"C47E4CC9-C826-4FA9-B014-7FE3D9B318B2"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:6.19:rc3:*:*:*:*:*:*","matchCriteriaId":"F71D92C0-C023-48BD-B3B6-70B638EEE298"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:6.19:rc4:*:*:*:*:*:*","matchCriteriaId":"13580667-0A98-40CC-B29F-D12790B91BDB"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:6.19:rc5:*:*:*:*:*:*","matchCriteriaId":"CAD1FED7-CF48-47BF-AC7D-7B6FA3C065FC"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:6.19:rc6:*:*:*:*:*:*","matchCriteriaId":"3EF854A1-ABB1-4E93-BE9A-44569EC76C0D"}]}]}],"references":[{"url":"https://git.kernel.org/stable/c/1d5f2329ab4df65c2ee011b986d8a6e05ad0f67c","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/4b9748055457ac3a0710bf210c229d01ea1b01b9","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]}]}},{"cve":{"id":"CVE-2026-23260","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-03-18T18:16:24.477","lastModified":"2026-05-29T18:53:10.737","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nregmap: maple: free entry on mas_store_gfp() failure\n\nregcache_maple_write() allocates a new block ('entry') to merge\nadjacent ranges and then stores it with mas_store_gfp().\nWhen mas_store_gfp() fails, the new 'entry' remains allocated and\nis never freed, leaking memory.\n\nFree 'entry' on the failure path; on success continue freeing the\nreplaced neighbor blocks ('lower', 'upper')."},{"lang":"es","value":"En el kernel de Linux, la siguiente vulnerabilidad ha sido resuelta:\n\nregmap: maple: liberar entrada en caso de fallo de mas_store_gfp()\n\nregcache_maple_write() asigna un nuevo bloque ('entrada') para fusionar rangos adyacentes y luego lo almacena con mas_store_gfp().\nCuando mas_store_gfp() falla, la nueva 'entrada' permanece asignada y nunca es liberada, provocando una fuga de memoria.\n\nLiberar 'entrada' en la ruta de fallo; en caso de éxito, continuar liberando los bloques vecinos reemplazados ('inferior', 'superior')."}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","baseScore":5.5,"baseSeverity":"MEDIUM","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":1.8,"impactScore":3.6}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-401"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.4","versionEndExcluding":"6.6.124","matchCriteriaId":"0B6A0D23-7B51-4807-8FF1-7F6D3DF0D7C6"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.7","versionEndExcluding":"6.12.70","matchCriteriaId":"F3791390-0628-4808-99EF-1ED8ABF60933"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.13","versionEndExcluding":"6.18.10","matchCriteriaId":"7156C23F-009E-4D05-838C-A2DA417B5B8D"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:6.19:rc1:*:*:*:*:*:*","matchCriteriaId":"17B67AA7-40D6-4AFA-8459-F200F3D7CFD1"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:6.19:rc2:*:*:*:*:*:*","matchCriteriaId":"C47E4CC9-C826-4FA9-B014-7FE3D9B318B2"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:6.19:rc3:*:*:*:*:*:*","matchCriteriaId":"F71D92C0-C023-48BD-B3B6-70B638EEE298"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:6.19:rc4:*:*:*:*:*:*","matchCriteriaId":"13580667-0A98-40CC-B29F-D12790B91BDB"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:6.19:rc5:*:*:*:*:*:*","matchCriteriaId":"CAD1FED7-CF48-47BF-AC7D-7B6FA3C065FC"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:6.19:rc6:*:*:*:*:*:*","matchCriteriaId":"3EF854A1-ABB1-4E93-BE9A-44569EC76C0D"}]}]}],"references":[{"url":"https://git.kernel.org/stable/c/811b45e2d795d955bb7fd9c816b40036f4fde350","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/d61171cf097156030142643942c217759a9cc806","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/f08f2d2907675926ac5657b25f86d921f269602a","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/f3f380ce6b3d5c9805c7e0b3d5bc28d9ec41e2e8","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]}]}},{"cve":{"id":"CVE-2026-23264","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-03-18T18:16:25.073","lastModified":"2026-05-29T18:44:27.880","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nRevert \"drm/amd: Check if ASPM is enabled from PCIe subsystem\"\n\nThis reverts commit 7294863a6f01248d72b61d38478978d638641bee.\n\nThis commit was erroneously applied again after commit 0ab5d711ec74\n(\"drm/amd: Refactor `amdgpu_aspm` to be evaluated per device\")\nremoved it, leading to very hard to debug crashes, when used with a system with two\nAMD GPUs of which only one supports ASPM.\n\n(cherry picked from commit 97a9689300eb2b393ba5efc17c8e5db835917080)"},{"lang":"es","value":"En el kernel de Linux, la siguiente vulnerabilidad ha sido resuelta:\n\nRevertir 'drm/amd: Comprobar si ASPM está habilitado desde el subsistema PCIe'\n\nEsto revierte el commit 7294863a6f01248d72b61d38478978d638641bee.\n\nEste commit fue aplicado erróneamente de nuevo después del commit 0ab5d711ec74\n('drm/amd: Refactorizar amdgpu_aspm para ser evaluado por dispositivo')\nlo eliminó, lo que llevó a fallos muy difíciles de depurar, cuando se usaba con un sistema con dos GPU AMD de las cuales solo una soporta ASPM.\n\n(seleccionado de forma selectiva del commit 97a9689300eb2b393ba5efc17c8e5db835917080)"}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","baseScore":5.5,"baseSeverity":"MEDIUM","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":1.8,"impactScore":3.6}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"NVD-CWE-noinfo"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"5.15.54","versionEndExcluding":"5.16","matchCriteriaId":"420A7F9A-23A1-4578-83CE-F7E16D5ABF38"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"5.18","versionEndExcluding":"6.1.163","matchCriteriaId":"E5611481-5F41-431D-9129-B4C670728DE6"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.2","versionEndExcluding":"6.6.124","matchCriteriaId":"76183B9F-CABE-4E21-A3E3-F0EBF99DC3C7"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.7","versionEndExcluding":"6.12.70","matchCriteriaId":"F3791390-0628-4808-99EF-1ED8ABF60933"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.13","versionEndExcluding":"6.18.10","matchCriteriaId":"7156C23F-009E-4D05-838C-A2DA417B5B8D"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:6.19:rc1:*:*:*:*:*:*","matchCriteriaId":"17B67AA7-40D6-4AFA-8459-F200F3D7CFD1"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:6.19:rc2:*:*:*:*:*:*","matchCriteriaId":"C47E4CC9-C826-4FA9-B014-7FE3D9B318B2"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:6.19:rc3:*:*:*:*:*:*","matchCriteriaId":"F71D92C0-C023-48BD-B3B6-70B638EEE298"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:6.19:rc4:*:*:*:*:*:*","matchCriteriaId":"13580667-0A98-40CC-B29F-D12790B91BDB"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:6.19:rc5:*:*:*:*:*:*","matchCriteriaId":"CAD1FED7-CF48-47BF-AC7D-7B6FA3C065FC"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:6.19:rc6:*:*:*:*:*:*","matchCriteriaId":"3EF854A1-ABB1-4E93-BE9A-44569EC76C0D"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:6.19:rc7:*:*:*:*:*:*","matchCriteriaId":"F5DC0CA6-F0AF-4DDF-A882-3DADB9A886A7"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:6.19:rc8:*:*:*:*:*:*","matchCriteriaId":"EB5B7DFC-C36B-45D8-922C-877569FDDF43"}]}]}],"references":[{"url":"https://git.kernel.org/stable/c/243b467dea1735fed904c2e54d248a46fa417a2d","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/5b794951541e84d2968980a68dd1ac38420f75f3","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/5f645222eb30c91135119e12eccfd1b8ea88140e","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/d2bddc2da2b3ba5d738877c476bf97932dba32e8","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/f02c9052aaa031ef3c2285d86a155d4263180ddd","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]}]}},{"cve":{"id":"CVE-2026-23265","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-03-18T18:16:25.233","lastModified":"2026-05-29T18:43:55.787","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nf2fs: fix to do sanity check on node footer in {read,write}_end_io\n\n-----------[ cut here ]------------\nkernel BUG at fs/f2fs/data.c:358!\nCall Trace:\n <IRQ>\n blk_update_request+0x5eb/0xe70 block/blk-mq.c:987\n blk_mq_end_request+0x3e/0x70 block/blk-mq.c:1149\n blk_complete_reqs block/blk-mq.c:1224 [inline]\n blk_done_softirq+0x107/0x160 block/blk-mq.c:1229\n handle_softirqs+0x283/0x870 kernel/softirq.c:579\n __do_softirq kernel/softirq.c:613 [inline]\n invoke_softirq kernel/softirq.c:453 [inline]\n __irq_exit_rcu+0xca/0x1f0 kernel/softirq.c:680\n irq_exit_rcu+0x9/0x30 kernel/softirq.c:696\n instr_sysvec_apic_timer_interrupt arch/x86/kernel/apic/apic.c:1050 [inline]\n sysvec_apic_timer_interrupt+0xa6/0xc0 arch/x86/kernel/apic/apic.c:1050\n </IRQ>\n\nIn f2fs_write_end_io(), it detects there is inconsistency in between\nnode page index (nid) and footer.nid of node page.\n\nIf footer of node page is corrupted in fuzzed image, then we load corrupted\nnode page w/ async method, e.g. f2fs_ra_node_pages() or f2fs_ra_node_page(),\nin where we won't do sanity check on node footer, once node page becomes\ndirty, we will encounter this bug after node page writeback."},{"lang":"es","value":"En el kernel de Linux, la siguiente vulnerabilidad ha sido resuelta:\n\nf2fs: corrección para realizar una comprobación de coherencia en el pie de página del nodo en {read,write}_end_io\n\n-----------[ cut here ]------------\nBUG del kernel en fs/f2fs/data.c:358!\nTraza de llamadas:\n \n blk_update_request+0x5eb/0xe70 block/blk-mq.c:987\n blk_mq_end_request+0x3e/0x70 block/blk-mq.c:1149\n blk_complete_reqs block/blk-mq.c:1224 [inline]\n blk_done_softirq+0x107/0x160 block/blk-mq.c:1229\n handle_softirqs+0x283/0x870 kernel/softirq.c:579\n __do_softirq kernel/softirq.c:613 [inline]\n invoke_softirq kernel/softirq.c:453 [inline]\n __irq_exit_rcu+0xca/0x1f0 kernel/softirq.c:680\n irq_exit_rcu+0x9/0x30 kernel/softirq.c:696\n instr_sysvec_apic_timer_interrupt arch/x86/kernel/apic/apic.c:1050 [inline]\n sysvec_apic_timer_interrupt+0xa6/0xc0 arch/x86/kernel/apic/apic.c:1050\n \n\nEn f2fs_write_end_io(), se detecta una inconsistencia entre el índice de la página de nodo (nid) y footer.nid de la página de nodo.\n\nSi el pie de página de la página de nodo está corrupto en una imagen sometida a fuzzing, entonces cargamos la página de nodo corrupta con un método asíncrono, p. ej., f2fs_ra_node_pages() o f2fs_ra_node_page(), donde no realizaremos una comprobación de coherencia en el pie de página del nodo; una vez que la página de nodo se vuelve sucia, encontraremos este error después de la escritura de vuelta de la página de nodo."}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","baseScore":5.5,"baseSeverity":"MEDIUM","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":1.8,"impactScore":3.6}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"NVD-CWE-noinfo"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"3.8","versionEndExcluding":"6.18.13","matchCriteriaId":"8F3C30C1-5691-4A68-9D9F-1190984B5F2F"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.19","versionEndExcluding":"6.19.3","matchCriteriaId":"7853A337-FB2A-4E19-AB47-4E38343532AA"}]}]}],"references":[{"url":"https://git.kernel.org/stable/c/50ac3ecd8e05b6bcc350c71a4307d40c030ec7e4","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/855c54f1803e3ebc613677b4f389c7f92656a1fc","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/c386753db52b3a80afa6612bfdcb925aa5ca260f","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]}]}},{"cve":{"id":"CVE-2026-23266","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-03-18T18:16:25.370","lastModified":"2026-05-29T18:43:22.847","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nfbdev: rivafb: fix divide error in nv3_arb()\n\nA userspace program can trigger the RIVA NV3 arbitration code by calling\nthe FBIOPUT_VSCREENINFO ioctl on /dev/fb*. When doing so, the driver\nrecomputes FIFO arbitration parameters in nv3_arb(), using state->mclk_khz\n(derived from the PRAMDAC MCLK PLL) as a divisor without validating it\nfirst.\n\nIn a normal setup, state->mclk_khz is provided by the real hardware and is\nnon-zero. However, an attacker can construct a malicious or misconfigured\ndevice (e.g. a crafted/emulated PCI device) that exposes a bogus PLL\nconfiguration, causing state->mclk_khz to become zero.  Once\nnv3_get_param() calls nv3_arb(), the division by state->mclk_khz in the gns\ncalculation causes a divide error and crashes the kernel.\n\nFix this by checking whether state->mclk_khz is zero and bailing out before\ndoing the division.\n\nThe following log reveals it:\n\nrivafb: setting virtual Y resolution to 2184\ndivide error: 0000 [#1] PREEMPT SMP KASAN PTI\nCPU: 0 PID: 2187 Comm: syz-executor.0 Not tainted 5.18.0-rc1+ #1\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.12.0-59-gc9ba5276e321-prebuilt.qemu.org 04/01/2014\nRIP: 0010:nv3_arb drivers/video/fbdev/riva/riva_hw.c:439 [inline]\nRIP: 0010:nv3_get_param+0x3ab/0x13b0 drivers/video/fbdev/riva/riva_hw.c:546\nCall Trace:\n  nv3CalcArbitration.constprop.0+0x255/0x460 drivers/video/fbdev/riva/riva_hw.c:603\n  nv3UpdateArbitrationSettings drivers/video/fbdev/riva/riva_hw.c:637 [inline]\n  CalcStateExt+0x447/0x1b90 drivers/video/fbdev/riva/riva_hw.c:1246\n  riva_load_video_mode+0x8a9/0xea0 drivers/video/fbdev/riva/fbdev.c:779\n  rivafb_set_par+0xc0/0x5f0 drivers/video/fbdev/riva/fbdev.c:1196\n  fb_set_var+0x604/0xeb0 drivers/video/fbdev/core/fbmem.c:1033\n  do_fb_ioctl+0x234/0x670 drivers/video/fbdev/core/fbmem.c:1109\n  fb_ioctl+0xdd/0x130 drivers/video/fbdev/core/fbmem.c:1188\n  __x64_sys_ioctl+0x122/0x190 fs/ioctl.c:856"},{"lang":"es","value":"En el kernel de Linux, la siguiente vulnerabilidad ha sido resuelta:\n\nfbdev: rivafb: corrige error de división en nv3_arb()\n\nUn programa de espacio de usuario puede activar el código de arbitraje RIVA NV3 llamando al ioctl FBIOPUT_VSCREENINFO en /dev/fb*. Al hacerlo, el controlador recalcula los parámetros de arbitraje FIFO en nv3_arb(), usando state-&gt;mclk_khz (derivado del PRAMDAC MCLK PLL) como divisor sin validarlo primero.\n\nEn una configuración normal, state-&gt;mclk_khz es proporcionado por el hardware real y no es cero. Sin embargo, un atacante puede construir un dispositivo malicioso o mal configurado (p. ej., un dispositivo PCI manipulado/emulado) que expone una configuración PLL falsa, haciendo que state-&gt;mclk_khz se vuelva cero. Una vez que nv3_get_param() llama a nv3_arb(), la división por state-&gt;mclk_khz en el cálculo de gns causa un error de división y bloquea el kernel.\n\nSolucione esto verificando si state-&gt;mclk_khz es cero y saliendo antes de realizar la división.\n\nEl siguiente registro lo revela:\n\nrivafb: estableciendo la resolución Y virtual a 2184\nerror de división: 0000 [#1] PREEMPT SMP KASAN PTI\nCPU: 0 PID: 2187 Comm: syz-executor.0 No contaminado 5.18.0-rc1+ #1\nNombre del hardware: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.12.0-59-gc9ba5276e321-prebuilt.qemu.org 04/01/2014\nRIP: 0010:nv3_arb drivers/video/fbdev/riva/riva_hw.c:439 [inline]\nRIP: 0010:nv3_get_param+0x3ab/0x13b0 drivers/video/fbdev/riva/riva_hw.c:546\nTraza de llamada:\n  nv3CalcArbitration.constprop.0+0x255/0x460 drivers/video/fbdev/riva/riva_hw.c:603\n  nv3UpdateArbitrationSettings drivers/video/fbdev/riva/riva_hw.c:637 [inline]\n  CalcStateExt+0x447/0x1b90 drivers/video/fbdev/riva/riva_hw.c:1246\n  riva_load_video_mode+0x8a9/0xea0 drivers/video/fbdev/riva/fbdev.c:779\n  rivafb_set_par+0xc0/0x5f0 drivers/video/fbdev/riva/fbdev.c:1196\n  fb_set_var+0x604/0xeb0 drivers/video/fbdev/core/fbmem.c:1033\n  do_fb_ioctl+0x234/0x670 drivers/video/fbdev/core/fbmem.c:1109\n  fb_ioctl+0xdd/0x130 drivers/video/fbdev/core/fbmem.c:1188\n  __x64_sys_ioctl+0x122/0x190 fs/ioctl.c:856"}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","baseScore":5.5,"baseSeverity":"MEDIUM","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":1.8,"impactScore":3.6}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-369"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"2.6.12.1","versionEndExcluding":"5.10.251","matchCriteriaId":"CABFF5E9-C52A-4642-9228-1D6E483DA497"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"5.11","versionEndExcluding":"5.15.201","matchCriteriaId":"600A89ED-86F2-48D8-BB7C-5EE7A8832FC5"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"5.16","versionEndExcluding":"6.1.164","matchCriteriaId":"6892F74B-3F14-4500-9652-24A2ECB04144"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.2","versionEndExcluding":"6.6.127","matchCriteriaId":"4A9F36A3-A685-48A0-84B4-6217052BD058"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.7","versionEndExcluding":"6.12.74","matchCriteriaId":"C2968F55-D03F-42BE-A694-F0A37BC8CBE3"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.13","versionEndExcluding":"6.18.13","matchCriteriaId":"6BDEF9FB-423E-49F6-991B-9277CC3AF400"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.19","versionEndExcluding":"6.19.3","matchCriteriaId":"7853A337-FB2A-4E19-AB47-4E38343532AA"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:2.6.12:-:*:*:*:*:*:*","matchCriteriaId":"6F62EECE-8FB1-4D57-85D8-CB9E23CF313C"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:2.6.12:rc2:*:*:*:*:*:*","matchCriteriaId":"4F76C298-81DC-43E4-8FC9-DC005A2116EF"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:2.6.12:rc3:*:*:*:*:*:*","matchCriteriaId":"0AB349B2-3F78-4197-882B-90ADB3BF645A"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:2.6.12:rc4:*:*:*:*:*:*","matchCriteriaId":"6AC88830-A9BC-4607-B572-A4B502FC9FD0"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:2.6.12:rc5:*:*:*:*:*:*","matchCriteriaId":"476CB3A5-D022-4F13-AAEF-CB6A5785516A"}]}]}],"references":[{"url":"https://git.kernel.org/stable/c/0209e21e3c372fa2da04c39214bec0b64e4eb5f4","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/3e4cbd1d46c246dfa684c8e9d8c20ae0b960c50a","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/526460a96c5443e2fc0fd231edd1f9c49d2de26b","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/52916878db2b8e3769743a94484729f0844352df","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/73f0391e92d404da68f7484e57c106c5e673dc7e","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/78daf5984d96edec3b920c72a93bd6821b8710b7","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/9efa0dc46270a8723c158c64afbcf1dead72b28c","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/ec5a58f4fd581875593ea92a65485e1906a53c0f","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]}]}},{"cve":{"id":"CVE-2026-23267","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-03-18T18:16:25.573","lastModified":"2026-05-29T18:41:58.070","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nf2fs: fix IS_CHECKPOINTED flag inconsistency issue caused by concurrent atomic commit and checkpoint writes\n\nDuring SPO tests, when mounting F2FS, an -EINVAL error was returned from\nf2fs_recover_inode_page. The issue occurred under the following scenario\n\nThread A                                     Thread B\nf2fs_ioc_commit_atomic_write\n - f2fs_do_sync_file // atomic = true\n  - f2fs_fsync_node_pages\n    : last_folio = inode folio\n    : schedule before folio_lock(last_folio) f2fs_write_checkpoint\n                                              - block_operations// writeback last_folio\n                                              - schedule before f2fs_flush_nat_entries\n    : set_fsync_mark(last_folio, 1)\n    : set_dentry_mark(last_folio, 1)\n    : folio_mark_dirty(last_folio)\n    - __write_node_folio(last_folio)\n      : f2fs_down_read(&sbi->node_write)//block\n                                              - f2fs_flush_nat_entries\n                                                : {struct nat_entry}->flag |= BIT(IS_CHECKPOINTED)\n                                              - unblock_operations\n                                                : f2fs_up_write(&sbi->node_write)\n                                             f2fs_write_checkpoint//return\n      : f2fs_do_write_node_page()\nf2fs_ioc_commit_atomic_write//return\n                                             SPO\n\nThread A calls f2fs_need_dentry_mark(sbi, ino), and the last_folio has\nalready been written once. However, the {struct nat_entry}->flag did not\nhave the IS_CHECKPOINTED set, causing set_dentry_mark(last_folio, 1) and\nwrite last_folio again after Thread B finishes f2fs_write_checkpoint.\n\nAfter SPO and reboot, it was detected that {struct node_info}->blk_addr\nwas not NULL_ADDR because Thread B successfully write the checkpoint.\n\nThis issue only occurs in atomic write scenarios. For regular file\nfsync operations, the folio must be dirty. If\nblock_operations->f2fs_sync_node_pages successfully submit the folio\nwrite, this path will not be executed. Otherwise, the\nf2fs_write_checkpoint will need to wait for the folio write submission\nto complete, as sbi->nr_pages[F2FS_DIRTY_NODES] > 0. Therefore, the\nsituation where f2fs_need_dentry_mark checks that the {struct\nnat_entry}->flag /wo the IS_CHECKPOINTED flag, but the folio write has\nalready been submitted, will not occur.\n\nTherefore, for atomic file fsync, sbi->node_write should be acquired\nthrough __write_node_folio to ensure that the IS_CHECKPOINTED flag\ncorrectly indicates that the checkpoint write has been completed."},{"lang":"es","value":"En el kernel de Linux, la siguiente vulnerabilidad ha sido resuelta:\n\nf2fs: corrige el problema de inconsistencia del flag IS_CHECKPOINTED causado por escrituras concurrentes de commit atómico y checkpoint\n\nDurante las pruebas SPO, al montar F2FS, se devolvió un error -EINVAL desde\nf2fs_recover_inode_page. El problema ocurrió bajo el siguiente escenario\n\nHilo A                                     Hilo B\nf2fs_ioc_commit_atomic_write\n - f2fs_do_sync_file // atómico = true\n  - f2fs_fsync_node_pages\n    : last_folio = inode folio\n    : schedule before folio_lock(last_folio) f2fs_write_checkpoint\n                                              - block_operations// writeback last_folio\n                                              - schedule before f2fs_flush_nat_entries\n    : set_fsync_mark(last_folio, 1)\n    : set_dentry_mark(last_folio, 1)\n    : folio_mark_dirty(last_folio)\n    - __write_node_folio(last_folio)\n      : f2fs_down_read(&amp;sbi-&gt;node_write)//bloquea\n                                              - f2fs_flush_nat_entries\n                                                : {struct nat_entry}-&gt;flag |= BIT(IS_CHECKPOINTED)\n                                              - unblock_operations\n                                                : f2fs_up_write(&amp;sbi-&gt;node_write)\n                                             f2fs_write_checkpoint//retorna\n      : f2fs_do_write_node_page()\nf2fs_ioc_commit_atomic_write//retorna\n                                             SPO\n\nEl Hilo A llama a f2fs_need_dentry_mark(sbi, ino), y el last_folio ya ha\nsido escrito una vez. Sin embargo, el {struct nat_entry}-&gt;flag no tenía\nel IS_CHECKPOINTED establecido, causando que set_dentry_mark(last_folio, 1) y\nse escriba last_folio de nuevo después de que el Hilo B termine f2fs_write_checkpoint.\n\nDespués de SPO y el reinicio, se detectó que {struct node_info}-&gt;blk_addr\nno era NULL_ADDR porque el Hilo B escribió exitosamente el checkpoint.\n\nEste problema solo ocurre en escenarios de escritura atómica. Para operaciones\nfsync de archivos regulares, el folio debe estar sucio. Si\nblock_operations-&gt;f2fs_sync_node_pages envía exitosamente la escritura del folio,\nesta ruta no se ejecutará. De lo contrario, f2fs_write_checkpoint deberá esperar\na que se complete el envío de la escritura del folio, ya que\nsbi-&gt;nr_pages[F2FS_DIRTY_NODES] &gt; 0. Por lo tanto, la situación en la que\nf2fs_need_dentry_mark verifica que el {struct nat_entry}-&gt;flag sin el flag\nIS_CHECKPOINTED, pero la escritura del folio ya ha sido enviada, no ocurrirá.\n\nPor lo tanto, para fsync de archivos atómicos, sbi-&gt;node_write debe adquirirse\na través de __write_node_folio para asegurar que el flag IS_CHECKPOINTED\nindique correctamente que la escritura del checkpoint ha sido completada."}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","baseScore":5.5,"baseSeverity":"MEDIUM","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":1.8,"impactScore":3.6}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"NVD-CWE-noinfo"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.7","versionEndExcluding":"6.1.164","matchCriteriaId":"BE35EE84-2282-476E-BE47-D8C91A42BD5C"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.2","versionEndExcluding":"6.6.127","matchCriteriaId":"4A9F36A3-A685-48A0-84B4-6217052BD058"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.7","versionEndExcluding":"6.12.74","matchCriteriaId":"C2968F55-D03F-42BE-A694-F0A37BC8CBE3"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.13","versionEndExcluding":"6.18.13","matchCriteriaId":"6BDEF9FB-423E-49F6-991B-9277CC3AF400"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.19","versionEndExcluding":"6.19.3","matchCriteriaId":"7853A337-FB2A-4E19-AB47-4E38343532AA"}]}]}],"references":[{"url":"https://git.kernel.org/stable/c/32bc3c9fe18881d50dd51fd5f26d19fe1190dc0d","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/75e19da068adf0dc5dd269dd157392434b9117d4","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/7633a7387eb4d0259d6bea945e1d3469cd135bbc","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/962c167b0f262b9962207fbeaa531721d55ea00e","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/bd66b4c487d5091d2a65d6089e0de36f0c26a4c7","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/ed81bc5885460905f9160e7b463e5708fd056324","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]}]}},{"cve":{"id":"CVE-2026-23268","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-03-18T18:16:25.753","lastModified":"2026-05-29T18:41:10.513","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\napparmor: fix unprivileged local user can do privileged policy management\n\nAn unprivileged local user can load, replace, and remove profiles by\nopening the apparmorfs interfaces, via a confused deputy attack, by\npassing the opened fd to a privileged process, and getting the\nprivileged process to write to the interface.\n\nThis does require a privileged target that can be manipulated to do\nthe write for the unprivileged process, but once such access is\nachieved full policy management is possible and all the possible\nimplications that implies: removing confinement, DoS of system or\ntarget applications by denying all execution, by-passing the\nunprivileged user namespace restriction, to exploiting kernel bugs for\na local privilege escalation.\n\nThe policy management interface can not have its permissions simply\nchanged from 0666 to 0600 because non-root processes need to be able\nto load policy to different policy namespaces.\n\nInstead ensure the task writing the interface has privileges that\nare a subset of the task that opened the interface. This is already\ndone via policy for confined processes, but unconfined can delegate\naccess to the opened fd, by-passing the usual policy check."},{"lang":"es","value":"En el kernel de Linux, la siguiente vulnerabilidad ha sido resuelta:\n\napparmor: corrección de que un usuario local sin privilegios puede realizar gestión de políticas privilegiada\n\nUn usuario local sin privilegios puede cargar, reemplazar y eliminar perfiles abriendo las interfaces de apparmorfs, a través de un ataque de adjunto confundido, pasando el descriptor de archivo (fd) abierto a un proceso privilegiado y haciendo que el proceso privilegiado escriba en la interfaz.\n\nEsto requiere un objetivo privilegiado que pueda ser manipulado para realizar la escritura en nombre del proceso sin privilegios, pero una vez que se logra dicho acceso, es posible una gestión completa de políticas y todas las posibles implicaciones que esto conlleva: eliminación del confinamiento, DoS del sistema o de las aplicaciones objetivo denegando toda ejecución, eludiendo la restricción del espacio de nombres de usuario sin privilegios, hasta la explotación de errores del kernel para una escalada de privilegios local.\n\nLa interfaz de gestión de políticas no puede tener sus permisos simplemente cambiados de 0666 a 0600 porque los procesos que no son root necesitan poder cargar políticas en diferentes espacios de nombres de políticas.\n\nEn su lugar, asegúrese de que la tarea que escribe en la interfaz tenga privilegios que sean un subconjunto de la tarea que abrió la interfaz. Esto ya se hace a través de políticas para procesos confinados, pero los no confinados pueden delegar acceso al descriptor de archivo (fd) abierto, eludiendo la verificación de política habitual."}],"metrics":{"cvssMetricV31":[{"source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","baseScore":7.8,"baseSeverity":"HIGH","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.8,"impactScore":5.9}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"NVD-CWE-noinfo"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.11","versionEndExcluding":"5.10.253","matchCriteriaId":"0F72276A-F3E2-4130-8677-3AA5521A3C83"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"5.11","versionEndExcluding":"5.15.203","matchCriteriaId":"20DDB3E9-AABF-4107-ADB0-5362AA067045"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"5.16","versionEndExcluding":"6.1.169","matchCriteriaId":"DBEC0E5D-641C-4E98-A6D9-5799B10CE451"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.2","versionEndExcluding":"6.6.130","matchCriteriaId":"C57BB918-DF28-46B3-94F7-144176841267"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.7","versionEndExcluding":"6.12.77","matchCriteriaId":"B3D12E00-E42D-4056-B354-BAD4903C03A5"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.13","versionEndExcluding":"6.18.18","matchCriteriaId":"346AD1FB-0CE8-4D9D-8E56-5EB1A4D06199"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.19","versionEndExcluding":"6.19.8","matchCriteriaId":"C65A7D85-C7C6-485E-AC35-66A374C73FAC"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:7.0:rc1:*:*:*:*:*:*","matchCriteriaId":"F253B622-8837-4245-BCE5-A7BF8FC76A16"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:7.0:rc2:*:*:*:*:*:*","matchCriteriaId":"4AE85AD8-4641-4E7C-A2F4-305E2CD9EE64"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:7.0:rc3:*:*:*:*:*:*","matchCriteriaId":"F666C8D8-6538-46D4-B318-87610DE64C34"}]}]}],"references":[{"url":"https://git.kernel.org/stable/c/0fc63dd9170643d15c25681fca792539e23f4640","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/17debf5586020790b5717f96e5e6a3ca5bb961ab","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/33ee909702e047c94aaf41d4eea35626d509802c","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/4cafce4d6d0a66ec27e3af5637c11901d60189fa","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/6601e13e82841879406bf9f369032656f441a425","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/a407a078cd41b5261b99d822af784bd9f136eb4d","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/b60b3f7a35c46b2e0ca934f9c988b8fca06d76c6","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/b6a94eeca9c6c8f7c55ad44c62c98324f51ec596","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://www.qualys.com/2026/03/10/crack-armor.txt","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Third Party Advisory"]}]}},{"cve":{"id":"CVE-2026-23269","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-03-18T18:16:25.907","lastModified":"2026-05-29T18:23:49.943","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\napparmor: validate DFA start states are in bounds in unpack_pdb\n\nStart states are read from untrusted data and used as indexes into the\nDFA state tables. The aa_dfa_next() function call in unpack_pdb() will\naccess dfa->tables[YYTD_ID_BASE][start], and if the start state exceeds\nthe number of states in the DFA, this results in an out-of-bound read.\n\n==================================================================\n BUG: KASAN: slab-out-of-bounds in aa_dfa_next+0x2a1/0x360\n Read of size 4 at addr ffff88811956fb90 by task su/1097\n ...\n\nReject policies with out-of-bounds start states during unpacking\nto prevent the issue."},{"lang":"es","value":"En el kernel de Linux, la siguiente vulnerabilidad ha sido resuelta:\n\napparmor: validar que los estados iniciales de DFA están dentro de los límites en unpack_pdb\n\nLos estados iniciales se leen de datos no confiables y se usan como índices en las tablas de estados de DFA. La llamada a la función aa_dfa_next() en unpack_pdb() accederá a dfa-&gt;tables[YYTD_ID_BASE][start], y si el estado inicial excede el número de estados en el DFA, esto resulta en una lectura fuera de límites.\n\n==================================================================\nERROR: KASAN: slab-out-of-bounds en aa_dfa_next+0x2a1/0x360\nLectura de tamaño 4 en la dirección ffff88811956fb90 por la tarea su/1097\n...\n\nRechazar políticas con estados iniciales fuera de límites durante el desempaquetado para prevenir el problema."}],"metrics":{"cvssMetricV31":[{"source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H","baseScore":7.1,"baseSeverity":"HIGH","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":1.8,"impactScore":5.2}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-125"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"3.4","versionEndExcluding":"5.10.253","matchCriteriaId":"03AA2AFE-AC99-404E-AC4B-A0491F298002"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"5.11","versionEndExcluding":"5.15.203","matchCriteriaId":"20DDB3E9-AABF-4107-ADB0-5362AA067045"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"5.16","versionEndExcluding":"6.1.169","matchCriteriaId":"DBEC0E5D-641C-4E98-A6D9-5799B10CE451"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.2","versionEndExcluding":"6.6.130","matchCriteriaId":"C57BB918-DF28-46B3-94F7-144176841267"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.7","versionEndExcluding":"6.12.77","matchCriteriaId":"B3D12E00-E42D-4056-B354-BAD4903C03A5"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.13","versionEndExcluding":"6.18.18","matchCriteriaId":"346AD1FB-0CE8-4D9D-8E56-5EB1A4D06199"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.19","versionEndExcluding":"6.19.8","matchCriteriaId":"C65A7D85-C7C6-485E-AC35-66A374C73FAC"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:7.0:rc1:*:*:*:*:*:*","matchCriteriaId":"F253B622-8837-4245-BCE5-A7BF8FC76A16"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:7.0:rc2:*:*:*:*:*:*","matchCriteriaId":"4AE85AD8-4641-4E7C-A2F4-305E2CD9EE64"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:7.0:rc3:*:*:*:*:*:*","matchCriteriaId":"F666C8D8-6538-46D4-B318-87610DE64C34"}]}]}],"references":[{"url":"https://git.kernel.org/stable/c/07cf6320f40ea2ccfad63728cff34ecb309d03da","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/0baadb0eece2c4d939db10d3c323b4652ac79a58","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/15c3eb8916e7db01cb246d04a1fe6f0fdc065b0c","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/3bb7db43e32190c973d4019037cedb7895920184","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/5443c027ec16afa55b1b8a3e7a1ab2ea3c77767a","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/5487871b2b56c19d26936ed6fdc62652b30941df","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/9063d7e2615f4a7ab321de6b520e23d370e58816","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/f43eea8ae0102ea198da211ef7f5ce83725ecf19","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://www.qualys.com/2026/03/10/crack-armor.txt","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Third Party Advisory"]}]}},{"cve":{"id":"CVE-2026-23286","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-03-25T11:16:23.393","lastModified":"2026-05-29T16:33:45.610","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\natm: lec: fix null-ptr-deref in lec_arp_clear_vccs\n\nsyzkaller reported a null-ptr-deref in lec_arp_clear_vccs().\nThis issue can be easily reproduced using the syzkaller reproducer.\n\nIn the ATM LANE (LAN Emulation) module, the same atm_vcc can be shared by\nmultiple lec_arp_table entries (e.g., via entry->vcc or entry->recv_vcc).\nWhen the underlying VCC is closed, lec_vcc_close() iterates over all\nARP entries and calls lec_arp_clear_vccs() for each matched entry.\n\nFor example, when lec_vcc_close() iterates through the hlists in\npriv->lec_arp_empty_ones or other ARP tables:\n\n1. In the first iteration, for the first matched ARP entry sharing the VCC,\nlec_arp_clear_vccs() frees the associated vpriv (which is vcc->user_back)\nand sets vcc->user_back to NULL.\n2. In the second iteration, for the next matched ARP entry sharing the same\nVCC, lec_arp_clear_vccs() is called again. It obtains a NULL vpriv from\nvcc->user_back (via LEC_VCC_PRIV(vcc)) and then attempts to dereference it\nvia `vcc->pop = vpriv->old_pop`, leading to a null-ptr-deref crash.\n\nFix this by adding a null check for vpriv before dereferencing\nit. If vpriv is already NULL, it means the VCC has been cleared\nby a previous call, so we can safely skip the cleanup and just\nclear the entry's vcc/recv_vcc pointers.\n\nThe entire cleanup block (including vcc_release_async()) is placed inside\nthe vpriv guard because a NULL vpriv indicates the VCC has already been\nfully released by a prior iteration — repeating the teardown would\nredundantly set flags and trigger callbacks on an already-closing socket.\n\nThe Fixes tag points to the initial commit because the entry->vcc path has\nbeen vulnerable since the original code. The entry->recv_vcc path was later\nadded by commit 8d9f73c0ad2f (\"atm: fix a memory leak of vcc->user_back\")\nwith the same pattern, and both paths are fixed here."},{"lang":"es","value":"En el kernel de Linux, la siguiente vulnerabilidad ha sido resuelta:\n\natm: lec: corrige desreferencia de puntero nulo en lec_arp_clear_vccs\n\nsyzkaller reportó una desreferencia de puntero nulo en lec_arp_clear_vccs().\nEste problema puede ser fácilmente reproducido usando el reproductor de syzkaller.\n\nEn el módulo ATM LANE (Emulación de LAN), el mismo atm_vcc puede ser compartido por múltiples entradas de lec_arp_table (por ejemplo, a través de entry-&gt;vcc o entry-&gt;recv_vcc).\nCuando el VCC subyacente se cierra, lec_vcc_close() itera sobre todas las entradas ARP y llama a lec_arp_clear_vccs() para cada entrada coincidente.\n\nPor ejemplo, cuando lec_vcc_close() itera a través de las hlists en priv-&gt;lec_arp_empty_ones u otras tablas ARP:\n\n1. En la primera iteración, para la primera entrada ARP coincidente que comparte el VCC, lec_arp_clear_vccs() libera el vpriv asociado (que es vcc-&gt;user_back) y establece vcc-&gt;user_back en NULL.\n2. En la segunda iteración, para la siguiente entrada ARP coincidente que comparte el mismo VCC, lec_arp_clear_vccs() es llamada de nuevo. Obtiene un vpriv NULL de vcc-&gt;user_back (a través de LEC_VCC_PRIV(vcc)) y luego intenta desreferenciarlo a través de 'vcc-&gt;pop = vpriv-&gt;old_pop', lo que lleva a un fallo por desreferencia de puntero nulo.\n\nSoluciona esto añadiendo una comprobación de nulos para vpriv antes de desreferenciarlo. Si vpriv ya es NULL, significa que el VCC ha sido limpiado por una llamada anterior, por lo que podemos omitir de forma segura la limpieza y simplemente limpiar los punteros vcc/recv_vcc de la entrada.\n\nEl bloque de limpieza completo (incluyendo vcc_release_async()) se coloca dentro de la guarda de vpriv porque un vpriv NULL indica que el VCC ya ha sido completamente liberado por una iteración anterior — repetir el desmontaje establecería banderas de forma redundante y activaría retrollamadas en un socket que ya se está cerrando.\n\nLa etiqueta Fixes apunta al commit inicial porque la ruta entry-&gt;vcc ha sido vulnerable desde el código original. La ruta entry-&gt;recv_vcc fue añadida posteriormente por el commit 8d9f73c0ad2f ('atm: fix a memory leak of vcc-&gt;user_back') con el mismo patrón, y ambas rutas se corrigen aquí."}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","baseScore":5.5,"baseSeverity":"MEDIUM","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":1.8,"impactScore":3.6}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-476"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"2.6.12.1","versionEndExcluding":"5.10.253","matchCriteriaId":"5F0E43E1-33E5-4828-9B4A-F710AF2E7217"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"5.11","versionEndExcluding":"5.15.203","matchCriteriaId":"20DDB3E9-AABF-4107-ADB0-5362AA067045"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"5.16","versionEndExcluding":"6.1.167","matchCriteriaId":"2EDC6BAF-B710-4E26-B6AA-D68922EE7B43"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.2","versionEndExcluding":"6.6.130","matchCriteriaId":"C57BB918-DF28-46B3-94F7-144176841267"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.7","versionEndExcluding":"6.12.77","matchCriteriaId":"B3D12E00-E42D-4056-B354-BAD4903C03A5"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.13","versionEndExcluding":"6.18.17","matchCriteriaId":"A5E006E4-59C7-43C1-9231-62A72219F2BA"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.19","versionEndExcluding":"6.19.7","matchCriteriaId":"69245D10-0B71-485E-80C3-A64F077004D3"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:2.6.12:-:*:*:*:*:*:*","matchCriteriaId":"6F62EECE-8FB1-4D57-85D8-CB9E23CF313C"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:2.6.12:rc2:*:*:*:*:*:*","matchCriteriaId":"4F76C298-81DC-43E4-8FC9-DC005A2116EF"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:2.6.12:rc3:*:*:*:*:*:*","matchCriteriaId":"0AB349B2-3F78-4197-882B-90ADB3BF645A"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:2.6.12:rc4:*:*:*:*:*:*","matchCriteriaId":"6AC88830-A9BC-4607-B572-A4B502FC9FD0"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:2.6.12:rc5:*:*:*:*:*:*","matchCriteriaId":"476CB3A5-D022-4F13-AAEF-CB6A5785516A"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:7.0:rc1:*:*:*:*:*:*","matchCriteriaId":"F253B622-8837-4245-BCE5-A7BF8FC76A16"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:7.0:rc2:*:*:*:*:*:*","matchCriteriaId":"4AE85AD8-4641-4E7C-A2F4-305E2CD9EE64"}]}]}],"references":[{"url":"https://git.kernel.org/stable/c/101bacb303e89dc2e0640ae6a5e0fb97c4eb45bb","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/2d9f57ea29a1f1772373b98a509b44d49fda609e","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/30c9744a989feb22cfbb84170eb0e038a7a2c1da","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/5f1cfea7921f5c126a441d973690eeba52677b64","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/622062f24644b4536d3f437e0cf7a8c4bb421665","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/7ea92ab075d809ec8a96669a5ecf00f752057875","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/8aff65a82b6389ec674d46e5b3d3ae6f07db5e3e","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/e9665986eb127290ceb535bd5d04d7a84265d94f","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]}]}},{"cve":{"id":"CVE-2026-23287","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-03-25T11:16:23.583","lastModified":"2026-05-29T16:32:22.553","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nirqchip/sifive-plic: Fix frozen interrupt due to affinity setting\n\nPLIC ignores interrupt completion message for disabled interrupt, explained\nby the specification:\n\n    The PLIC signals it has completed executing an interrupt handler by\n    writing the interrupt ID it received from the claim to the\n    claim/complete register. The PLIC does not check whether the completion\n    ID is the same as the last claim ID for that target. If the completion\n    ID does not match an interrupt source that is currently enabled for\n    the target, the completion is silently ignored.\n\nThis caused problems in the past, because an interrupt can be disabled\nwhile still being handled and plic_irq_eoi() had no effect. That was fixed\nby checking if the interrupt is disabled, and if so enable it, before\nsending the completion message. That check is done with irqd_irq_disabled().\n\nHowever, that is not sufficient because the enable bit for the handling\nhart can be zero despite irqd_irq_disabled(d) being false. This can happen\nwhen affinity setting is changed while a hart is still handling the\ninterrupt.\n\nThis problem is easily reproducible by dumping a large file to uart (which\ngenerates lots of interrupts) and at the same time keep changing the uart\ninterrupt's affinity setting. The uart port becomes frozen almost\ninstantaneously.\n\nFix this by checking PLIC's enable bit instead of irqd_irq_disabled()."},{"lang":"es","value":"En el kernel de Linux, la siguiente vulnerabilidad ha sido resuelta:\n\nirqchip/sifive-plic: Solución para la interrupción congelada debido a la configuración de afinidad\n\nPLIC ignora el mensaje de finalización de interrupción para interrupciones deshabilitadas, explicado por la especificación:\n\n    El PLIC señala que ha completado la ejecución de un gestor de interrupciones escribiendo el ID de interrupción que recibió de la solicitud en el registro de solicitud/finalización. El PLIC no verifica si el ID de finalización es el mismo que el último ID de solicitud para ese objetivo. Si el ID de finalización no coincide con una fuente de interrupción que está actualmente habilitada para el objetivo, la finalización es ignorada silenciosamente.\n\nEsto causó problemas en el pasado, porque una interrupción puede ser deshabilitada mientras aún está siendo gestionada y plic_irq_eoi() no tenía efecto. Eso se solucionó verificando si la interrupción está deshabilitada, y si es así, habilitarla, antes de enviar el mensaje de finalización. Esa verificación se realiza con irqd_irq_disabled().\n\nSin embargo, eso no es suficiente porque el bit de habilitación para el hart de gestión puede ser cero a pesar de que irqd_irq_disabled(d) sea falso. Esto puede ocurrir cuando la configuración de afinidad se cambia mientras un hart todavía está gestionando la interrupción.\n\nEste problema es fácilmente reproducible volcando un archivo grande a la uart (lo que genera muchas interrupciones) y al mismo tiempo seguir cambiando la configuración de afinidad de la interrupción de la uart. El puerto de la uart se congela casi instantáneamente.\n\nSolucione esto verificando el bit de habilitación del PLIC en lugar de irqd_irq_disabled()."}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","baseScore":5.5,"baseSeverity":"MEDIUM","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":1.8,"impactScore":3.6}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"NVD-CWE-noinfo"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"5.1","versionEndExcluding":"6.1.167","matchCriteriaId":"B8989396-B32B-4636-9FF2-C63528E4206B"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.2","versionEndExcluding":"6.6.130","matchCriteriaId":"C57BB918-DF28-46B3-94F7-144176841267"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.7","versionEndExcluding":"6.12.77","matchCriteriaId":"B3D12E00-E42D-4056-B354-BAD4903C03A5"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.13","versionEndExcluding":"6.18.17","matchCriteriaId":"A5E006E4-59C7-43C1-9231-62A72219F2BA"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.19","versionEndExcluding":"6.19.7","matchCriteriaId":"69245D10-0B71-485E-80C3-A64F077004D3"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:7.0:rc1:*:*:*:*:*:*","matchCriteriaId":"F253B622-8837-4245-BCE5-A7BF8FC76A16"}]}]}],"references":[{"url":"https://git.kernel.org/stable/c/1072020685f4b81f6efad3b412cdae0bd62bb043","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/1883332bf21feb8871af09daf604fc4836a76925","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/2edbd173309165d103be6c73bd83e459dc45ae7b","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/686eb378a4a51aa967e08337dd59daade16aec0f","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/8942fb1a5bc2dcbd88f7e656d109d42f778f298f","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/f611791a927141d05d7030607dea6372311c1413","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]}]}},{"cve":{"id":"CVE-2026-23288","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-03-25T11:16:23.767","lastModified":"2026-05-29T15:29:32.660","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\naccel/amdxdna: Fix out-of-bounds memset in command slot handling\n\nThe remaining space in a command slot may be smaller than the size of\nthe command header. Clearing the command header with memset() before\nverifying the available slot space can result in an out-of-bounds write\nand memory corruption.\n\nFix this by moving the memset() call after the size validation."},{"lang":"es","value":"En el kernel de Linux, se ha resuelto la siguiente vulnerabilidad:\n\naccel/amdxdna: Corrección de memset fuera de límites en el manejo de ranuras de comando\n\nEl espacio restante en una ranura de comando puede ser menor que el tamaño del encabezado de comando. Borrar el encabezado de comando con memset() antes de verificar el espacio de ranura disponible puede resultar en una escritura fuera de límites y corrupción de memoria.\n\nEsto se corrige moviendo la llamada a memset() después de la validación del tamaño."}],"metrics":{"cvssMetricV31":[{"source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","baseScore":7.8,"baseSeverity":"HIGH","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.8,"impactScore":5.9}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-125"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.19.4","versionEndExcluding":"6.19.7","matchCriteriaId":"EABFC675-2A5E-4569-92F7-1E8942DA0683"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:7.0:rc1:*:*:*:*:*:*","matchCriteriaId":"F253B622-8837-4245-BCE5-A7BF8FC76A16"}]}]}],"references":[{"url":"https://git.kernel.org/stable/c/1110a949675ebd56b3f0286e664ea543f745801c","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/cca770d710d5e03bc814af585cd6975eb6d74074","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]}]}},{"cve":{"id":"CVE-2026-23289","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-03-25T11:16:23.887","lastModified":"2026-05-29T15:22:35.297","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nIB/mthca: Add missed mthca_unmap_user_db() for mthca_create_srq()\n\nFix a user triggerable leak on the system call failure path."},{"lang":"es","value":"En el kernel de Linux, la siguiente vulnerabilidad ha sido resuelta:\n\nIB/mthca: Añadir mthca_unmap_user_db() que se había omitido para mthca_create_srq()\n\nCorregir una fuga activable por el usuario en la ruta de fallo de la llamada al sistema."}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","baseScore":5.5,"baseSeverity":"MEDIUM","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":1.8,"impactScore":3.6}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"NVD-CWE-noinfo"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"2.6.14","versionEndExcluding":"5.10.253","matchCriteriaId":"DE13CD56-EF71-4FB6-8909-29C447FC8FE7"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"5.11","versionEndExcluding":"5.15.203","matchCriteriaId":"20DDB3E9-AABF-4107-ADB0-5362AA067045"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"5.16","versionEndExcluding":"6.1.167","matchCriteriaId":"2EDC6BAF-B710-4E26-B6AA-D68922EE7B43"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.2","versionEndExcluding":"6.6.130","matchCriteriaId":"C57BB918-DF28-46B3-94F7-144176841267"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.7","versionEndExcluding":"6.12.77","matchCriteriaId":"B3D12E00-E42D-4056-B354-BAD4903C03A5"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.13","versionEndExcluding":"6.18.17","matchCriteriaId":"A5E006E4-59C7-43C1-9231-62A72219F2BA"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.19","versionEndExcluding":"6.19.7","matchCriteriaId":"69245D10-0B71-485E-80C3-A64F077004D3"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:7.0:rc1:*:*:*:*:*:*","matchCriteriaId":"F253B622-8837-4245-BCE5-A7BF8FC76A16"}]}]}],"references":[{"url":"https://git.kernel.org/stable/c/117942ca43e2e3c3d121faae530989931b7f67e1","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/11ac61f4e9b7c48b0dd44661765e5ace3c441aa3","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/72fcfd4df46f2ee684c4776664d0cfc6c1746c9a","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/972b72d7e2d8fe1400f1c7a8304c282c539b7e02","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/d0148965dbca8cc8efa7e3d6e99940487bf661c0","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/da8eaa73bc37d004350ba68eb18b6ade8e49db52","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/deee46b37ebd8cc5ff810127883fca90f2412a7b","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/f67f1ad4029e9fa183141546de31987b254c9292","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]}]}},{"cve":{"id":"CVE-2026-23290","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-03-25T11:16:24.043","lastModified":"2026-05-29T15:10:41.520","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nnet: usb: pegasus: validate USB endpoints\n\nThe pegasus driver should validate that the device it is probing has the\nproper number and types of USB endpoints it is expecting before it binds\nto it.  If a malicious device were to not have the same urbs the driver\nwill crash later on when it blindly accesses these endpoints."},{"lang":"es","value":"En el kernel de Linux, la siguiente vulnerabilidad ha sido resuelta:\n\nnet: usb: pegasus: validar puntos finales USB\n\nEl controlador pegasus debería validar que el dispositivo que está sondeando tiene el número y tipos adecuados de puntos finales USB que espera antes de que se vincule a él. Si un dispositivo malicioso no tuviera los mismos urbs, el controlador fallará más tarde cuando acceda ciegamente a estos puntos finales."}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","baseScore":5.5,"baseSeverity":"MEDIUM","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":1.8,"impactScore":3.6}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"NVD-CWE-noinfo"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"2.6.12.1","versionEndExcluding":"5.10.253","matchCriteriaId":"5F0E43E1-33E5-4828-9B4A-F710AF2E7217"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"5.11","versionEndExcluding":"5.15.203","matchCriteriaId":"20DDB3E9-AABF-4107-ADB0-5362AA067045"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"5.16","versionEndExcluding":"6.1.167","matchCriteriaId":"2EDC6BAF-B710-4E26-B6AA-D68922EE7B43"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.2","versionEndExcluding":"6.6.130","matchCriteriaId":"C57BB918-DF28-46B3-94F7-144176841267"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.7","versionEndExcluding":"6.12.77","matchCriteriaId":"B3D12E00-E42D-4056-B354-BAD4903C03A5"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.13","versionEndExcluding":"6.18.17","matchCriteriaId":"A5E006E4-59C7-43C1-9231-62A72219F2BA"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.19","versionEndExcluding":"6.19.7","matchCriteriaId":"69245D10-0B71-485E-80C3-A64F077004D3"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:2.6.12:-:*:*:*:*:*:*","matchCriteriaId":"6F62EECE-8FB1-4D57-85D8-CB9E23CF313C"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:2.6.12:rc2:*:*:*:*:*:*","matchCriteriaId":"4F76C298-81DC-43E4-8FC9-DC005A2116EF"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:2.6.12:rc3:*:*:*:*:*:*","matchCriteriaId":"0AB349B2-3F78-4197-882B-90ADB3BF645A"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:2.6.12:rc4:*:*:*:*:*:*","matchCriteriaId":"6AC88830-A9BC-4607-B572-A4B502FC9FD0"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:2.6.12:rc5:*:*:*:*:*:*","matchCriteriaId":"476CB3A5-D022-4F13-AAEF-CB6A5785516A"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:7.0:rc1:*:*:*:*:*:*","matchCriteriaId":"F253B622-8837-4245-BCE5-A7BF8FC76A16"}]}]}],"references":[{"url":"https://git.kernel.org/stable/c/11de1d3ae5565ed22ef1f89d73d8f2d00322c699","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/43d7c4114b1ec14f41f09306525d3b9382286fc1","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/7f8505c7ce3f186ef9d2495f3c0bd6ad6fce999f","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/95556b4e879711693c9865ba0938c148f62d5ea4","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/af7369ae572f53cb701731a4289ec3b3889bc501","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/c3f1672eaea68c5cb6e1ec081cdb92045453218f","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/d5d9086211877361f1bda44a0aec538ddb04042a","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/ee31ec8cf1eafeefa85ef934ba688d27f88bf0e2","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]}]}},{"cve":{"id":"CVE-2026-23291","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-03-25T11:16:24.197","lastModified":"2026-05-29T15:07:47.390","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nnfc: pn533: properly drop the usb interface reference on disconnect\n\nWhen the device is disconnected from the driver, there is a \"dangling\"\nreference count on the usb interface that was grabbed in the probe\ncallback.  Fix this up by properly dropping the reference after we are\ndone with it."},{"lang":"es","value":"En el kernel de Linux, la siguiente vulnerabilidad ha sido resuelta:\n\nnfc: pn533: soltar correctamente la referencia de la interfaz USB al desconectarse\n\nCuando el dispositivo se desconecta del controlador, hay un contador de referencias 'colgante' en la interfaz USB que fue obtenida en la función de devolución de llamada de sondeo. Solucionar esto soltando correctamente la referencia después de que hayamos terminado con ella."}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","baseScore":5.5,"baseSeverity":"MEDIUM","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":1.8,"impactScore":3.6}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"NVD-CWE-Other"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"3.1","versionEndExcluding":"5.10.253","matchCriteriaId":"347BDDE9-6DB3-4F21-865D-FEC08136F2CD"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"5.11","versionEndExcluding":"5.15.203","matchCriteriaId":"20DDB3E9-AABF-4107-ADB0-5362AA067045"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"5.16","versionEndExcluding":"6.1.167","matchCriteriaId":"2EDC6BAF-B710-4E26-B6AA-D68922EE7B43"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.2","versionEndExcluding":"6.6.130","matchCriteriaId":"C57BB918-DF28-46B3-94F7-144176841267"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.7","versionEndExcluding":"6.12.77","matchCriteriaId":"B3D12E00-E42D-4056-B354-BAD4903C03A5"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.13","versionEndExcluding":"6.18.17","matchCriteriaId":"A5E006E4-59C7-43C1-9231-62A72219F2BA"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.19","versionEndExcluding":"6.19.7","matchCriteriaId":"69245D10-0B71-485E-80C3-A64F077004D3"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:7.0:rc1:*:*:*:*:*:*","matchCriteriaId":"F253B622-8837-4245-BCE5-A7BF8FC76A16"}]}]}],"references":[{"url":"https://git.kernel.org/stable/c/00477cab053dc4816b99141d8fcca7a479cfebeb","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/12133a483dfa832241fbbf09321109a0ea8a520e","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/4551d6cea00224ab65a0ef35e4e6da0e9c0a2d74","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/5be8aa2bcfb53158436182db8dee9d0b8e5901e6","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/6645b030b0c1fc5bf338bffb0044238f24b2f770","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/7398d6570501edc55a50ece820f369ab3c1df2e7","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/7ff14eb070f0efecb2606f8d7aa01b77d188e886","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/d1f6d20b3c2642ec85ce6ea5da7155746c31c6d0","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]}]}},{"cve":{"id":"CVE-2026-23293","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-03-25T11:16:24.520","lastModified":"2026-05-29T15:04:45.067","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nnet: vxlan: fix nd_tbl NULL dereference when IPv6 is disabled\n\nWhen booting with the 'ipv6.disable=1' parameter, the nd_tbl is never\ninitialized because inet6_init() exits before ndisc_init() is called\nwhich initializes it. If an IPv6 packet is injected into the interface,\nroute_shortcircuit() is called and a NULL pointer dereference happens on\nneigh_lookup().\n\n BUG: kernel NULL pointer dereference, address: 0000000000000380\n Oops: Oops: 0000 [#1] SMP NOPTI\n [...]\n RIP: 0010:neigh_lookup+0x20/0x270\n [...]\n Call Trace:\n  <TASK>\n  vxlan_xmit+0x638/0x1ef0 [vxlan]\n  dev_hard_start_xmit+0x9e/0x2e0\n  __dev_queue_xmit+0xbee/0x14e0\n  packet_sendmsg+0x116f/0x1930\n  __sys_sendto+0x1f5/0x200\n  __x64_sys_sendto+0x24/0x30\n  do_syscall_64+0x12f/0x1590\n  entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\nFix this by adding an early check on route_shortcircuit() when protocol\nis ETH_P_IPV6. Note that ipv6_mod_enabled() cannot be used here because\nVXLAN can be built-in even when IPv6 is built as a module."},{"lang":"es","value":"En el kernel de Linux, la siguiente vulnerabilidad ha sido resuelta:\n\nnet: vxlan: corrige la desreferencia de puntero NULL de nd_tbl cuando IPv6 está deshabilitado\n\nAl arrancar con el parámetro 'ipv6.disable=1', nd_tbl nunca se inicializa porque inet6_init() sale antes de que se llame a ndisc_init(), que es la función que lo inicializa. Si se inyecta un paquete IPv6 en la interfaz, se llama a route_shortcircuit() y ocurre una desreferencia de puntero NULL en neigh_lookup().\n\nBUG: desreferencia de puntero NULL del kernel, dirección: 0000000000000380\nOops: Oops: 0000 [#1] SMP NOPTI\n[...]\nRIP: 0010:neigh_lookup+0x20/0x270\n[...]\nTraza de Llamadas:\n \n vxlan_xmit+0x638/0x1ef0 [vxlan]\n dev_hard_start_xmit+0x9e/0x2e0\n __dev_queue_xmit+0xbee/0x14e0\n packet_sendmsg+0x116f/0x1930\n __sys_sendto+0x1f5/0x200\n __x64_sys_sendto+0x24/0x30\n do_syscall_64+0x12f/0x1590\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\nEsto se corrige añadiendo una verificación temprana en route_shortcircuit() cuando el protocolo es ETH_P_IPV6. Tenga en cuenta que ipv6_mod_enabled() no se puede usar aquí porque VXLAN puede estar integrado incluso cuando IPv6 se compila como un módulo."}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","baseScore":5.5,"baseSeverity":"MEDIUM","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":1.8,"impactScore":3.6}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-476"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"3.12","versionEndExcluding":"5.10.253","matchCriteriaId":"0ECA9FA3-7D5A-47DF-96CD-50ED0F72C020"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"5.11","versionEndExcluding":"5.15.203","matchCriteriaId":"20DDB3E9-AABF-4107-ADB0-5362AA067045"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"5.16","versionEndExcluding":"6.1.167","matchCriteriaId":"2EDC6BAF-B710-4E26-B6AA-D68922EE7B43"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.2","versionEndExcluding":"6.6.130","matchCriteriaId":"C57BB918-DF28-46B3-94F7-144176841267"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.7","versionEndExcluding":"6.12.77","matchCriteriaId":"B3D12E00-E42D-4056-B354-BAD4903C03A5"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.13","versionEndExcluding":"6.18.17","matchCriteriaId":"A5E006E4-59C7-43C1-9231-62A72219F2BA"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.19","versionEndExcluding":"6.19.7","matchCriteriaId":"69245D10-0B71-485E-80C3-A64F077004D3"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:7.0:rc1:*:*:*:*:*:*","matchCriteriaId":"F253B622-8837-4245-BCE5-A7BF8FC76A16"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:7.0:rc2:*:*:*:*:*:*","matchCriteriaId":"4AE85AD8-4641-4E7C-A2F4-305E2CD9EE64"}]}]}],"references":[{"url":"https://git.kernel.org/stable/c/168ff39e4758897d2eee4756977d036d52884c7e","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/5f93e6b4d12bd3a4517a6d447ea675f448f21434","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/649e2bb74da54c96cf20729001e283626a2fefa0","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/abcd48ecdeb2e12eccb8339a35534c757782afcd","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/b5190fcd75a1f1785c766a8d1e44d3938e168f45","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/dc3e62cf3bbf66280a907ec379f373d0c3b8b2bc","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/f0373e9317bc904e7bdb123d3106fe4f3cea2fb7","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/fbbd2118982c55fb9b0a753ae0cf7194e77149fb","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]}]}},{"cve":{"id":"CVE-2026-23294","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-03-25T11:16:24.697","lastModified":"2026-05-29T14:43:26.227","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Fix race in devmap on PREEMPT_RT\n\nOn PREEMPT_RT kernels, the per-CPU xdp_dev_bulk_queue (bq) can be\naccessed concurrently by multiple preemptible tasks on the same CPU.\n\nThe original code assumes bq_enqueue() and __dev_flush() run atomically\nwith respect to each other on the same CPU, relying on\nlocal_bh_disable() to prevent preemption. However, on PREEMPT_RT,\nlocal_bh_disable() only calls migrate_disable() (when\nPREEMPT_RT_NEEDS_BH_LOCK is not set) and does not disable\npreemption, which allows CFS scheduling to preempt a task during\nbq_xmit_all(), enabling another task on the same CPU to enter\nbq_enqueue() and operate on the same per-CPU bq concurrently.\n\nThis leads to several races:\n\n1. Double-free / use-after-free on bq->q[]: bq_xmit_all() snapshots\n   cnt = bq->count, then iterates bq->q[0..cnt-1] to transmit frames.\n   If preempted after the snapshot, a second task can call bq_enqueue()\n   -> bq_xmit_all() on the same bq, transmitting (and freeing) the\n   same frames. When the first task resumes, it operates on stale\n   pointers in bq->q[], causing use-after-free.\n\n2. bq->count and bq->q[] corruption: concurrent bq_enqueue() modifying\n   bq->count and bq->q[] while bq_xmit_all() is reading them.\n\n3. dev_rx/xdp_prog teardown race: __dev_flush() clears bq->dev_rx and\n   bq->xdp_prog after bq_xmit_all(). If preempted between\n   bq_xmit_all() return and bq->dev_rx = NULL, a preempting\n   bq_enqueue() sees dev_rx still set (non-NULL), skips adding bq to\n   the flush_list, and enqueues a frame. When __dev_flush() resumes,\n   it clears dev_rx and removes bq from the flush_list, orphaning the\n   newly enqueued frame.\n\n4. __list_del_clearprev() on flush_node: similar to the cpumap race,\n   both tasks can call __list_del_clearprev() on the same flush_node,\n   the second dereferences the prev pointer already set to NULL.\n\nThe race between task A (__dev_flush -> bq_xmit_all) and task B\n(bq_enqueue -> bq_xmit_all) on the same CPU:\n\n  Task A (xdp_do_flush)          Task B (ndo_xdp_xmit redirect)\n  ----------------------         --------------------------------\n  __dev_flush(flush_list)\n    bq_xmit_all(bq)\n      cnt = bq->count  /* e.g. 16 */\n      /* start iterating bq->q[] */\n    <-- CFS preempts Task A -->\n                                   bq_enqueue(dev, xdpf)\n                                     bq->count == DEV_MAP_BULK_SIZE\n                                     bq_xmit_all(bq, 0)\n                                       cnt = bq->count  /* same 16! */\n                                       ndo_xdp_xmit(bq->q[])\n                                       /* frames freed by driver */\n                                       bq->count = 0\n    <-- Task A resumes -->\n      ndo_xdp_xmit(bq->q[])\n      /* use-after-free: frames already freed! */\n\nFix this by adding a local_lock_t to xdp_dev_bulk_queue and acquiring\nit in bq_enqueue() and __dev_flush(). These paths already run under\nlocal_bh_disable(), so use local_lock_nested_bh() which on non-RT is\na pure annotation with no overhead, and on PREEMPT_RT provides a\nper-CPU sleeping lock that serializes access to the bq."},{"lang":"es","value":"En el kernel de Linux, la siguiente vulnerabilidad ha sido resuelta:\n\nbpf: Corrige condición de carrera en devmap en PREEMPT_RT\n\nEn kernels PREEMPT_RT, la xdp_dev_bulk_queue (bq) por CPU puede ser accedida concurrentemente por múltiples tareas preemptivas en la misma CPU.\n\nEl código original asume que bq_enqueue() y __dev_flush() se ejecutan atómicamente con respecto la una a la otra en la misma CPU, confiando en local_bh_disable() para prevenir la expropiación. Sin embargo, en PREEMPT_RT, local_bh_disable() solo llama a migrate_disable() (cuando PREEMPT_RT_NEEDS_BH_LOCK no está configurado) y no deshabilita la expropiación, lo que permite que la planificación CFS expropie una tarea durante bq_xmit_all(), permitiendo que otra tarea en la misma CPU entre en bq_enqueue() y opere en la misma bq por CPU concurrentemente.\n\nEsto lleva a varias condiciones de carrera:\n\n1. Doble liberación / uso después de liberación en bq-&gt;q[]: bq_xmit_all() toma una instantánea de cnt = bq-&gt;count, luego itera bq-&gt;q[0..cnt-1] para transmitir tramas. Si es expropiada después de la instantánea, una segunda tarea puede llamar a bq_enqueue() -&gt; bq_xmit_all() en la misma bq, transmitiendo (y liberando) las mismas tramas. Cuando la primera tarea se reanuda, opera con punteros obsoletos en bq-&gt;q[], causando uso después de liberación.\n\n2. Corrupción de bq-&gt;count y bq-&gt;q[]: bq_enqueue() concurrente modificando bq-&gt;count y bq-&gt;q[] mientras bq_xmit_all() los está leyendo.\n\n3. Condición de carrera de desmontaje de dev_rx/xdp_prog: __dev_flush() borra bq-&gt;dev_rx y bq-&gt;xdp_prog después de bq_xmit_all(). Si es expropiada entre el retorno de bq_xmit_all() y bq-&gt;dev_rx = NULL, una bq_enqueue() expropiadora ve dev_rx aún configurado (no-NULL), omite añadir bq a la flush_list, y encola una trama. Cuando __dev_flush() se reanuda, borra dev_rx y elimina bq de la flush_list, dejando huérfana la trama recién encolada.\n\n4. __list_del_clearprev() en flush_node: similar a la condición de carrera de cpumap, ambas tareas pueden llamar a __list_del_clearprev() en el mismo flush_node, la segunda desreferencia el puntero prev ya establecido en NULL.\n\nLa condición de carrera entre la tarea A (__dev_flush -&gt; bq_xmit_all) y la tarea B (bq_enqueue -&gt; bq_xmit_all) en la misma CPU:\n\n  Tarea A (xdp_do_flush)          Tarea B (redirección ndo_xdp_xmit)\n  ----------------------         --------------------------------\n  __dev_flush(flush_list)\n    bq_xmit_all(bq)\n      cnt = bq-&gt;count  /* ej. 16 */\n      /* comienza a iterar bq-&gt;q[] */\n    &lt;-- CFS expropia la Tarea A --&gt;\n                                   bq_enqueue(dev, xdpf)\n                                     bq-&gt;count == DEV_MAP_BULK_SIZE\n                                     bq_xmit_all(bq, 0)\n                                       cnt = bq-&gt;count  /* ¡los mismos 16! */\n                                       ndo_xdp_xmit(bq-&gt;q[])\n                                       /* tramas liberadas por el controlador */\n                                       bq-&gt;count = 0\n    &lt;-- La Tarea A se reanuda --&gt;\n      ndo_xdp_xmit(bq-&gt;q[])\n      /* uso después de liberación: ¡tramas ya liberadas! */\n\nSolucione esto añadiendo un local_lock_t a xdp_dev_bulk_queue y adquiriéndolo en bq_enqueue() y __dev_flush(). Estas rutas ya se ejecutan bajo local_bh_disable(), así que use local_lock_nested_bh() que en no-RT es una anotación pura sin sobrecarga, y en PREEMPT_RT proporciona un bloqueo de suspensión por CPU que serializa el acceso a la bq."}],"metrics":{"cvssMetricV31":[{"source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H","baseScore":7.0,"baseSeverity":"HIGH","attackVector":"LOCAL","attackComplexity":"HIGH","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.0,"impactScore":5.9}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-362"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.18","versionEndExcluding":"6.18.17","matchCriteriaId":"91D34097-62D4-400A-8894-1A45A5B44EEA"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.19","versionEndExcluding":"6.19.7","matchCriteriaId":"69245D10-0B71-485E-80C3-A64F077004D3"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:7.0:rc1:*:*:*:*:*:*","matchCriteriaId":"F253B622-8837-4245-BCE5-A7BF8FC76A16"}]}]}],"references":[{"url":"https://git.kernel.org/stable/c/1872e75375c40add4a35990de3be77b5741c252c","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/6c10b019785dc282c5f45d21e4a3f468b8fd6476","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/ab1a56c9d99189aa5c6e03940d06e40ba6a28240","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]}]}},{"cve":{"id":"CVE-2026-23295","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-03-25T11:16:24.853","lastModified":"2026-05-29T14:42:08.903","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\naccel/amdxdna: Fix dead lock for suspend and resume\n\nWhen an application issues a query IOCTL while auto suspend is running,\na deadlock can occur. The query path holds dev_lock and then calls\npm_runtime_resume_and_get(), which waits for the ongoing suspend to\ncomplete. Meanwhile, the suspend callback attempts to acquire dev_lock\nand blocks, resulting in a deadlock.\n\nFix this by releasing dev_lock before calling pm_runtime_resume_and_get()\nand reacquiring it after the call completes. Also acquire dev_lock in the\nresume callback to keep the locking consistent."},{"lang":"es","value":"En el kernel de Linux, la siguiente vulnerabilidad ha sido resuelta:\n\naccel/amdxdna: Solución para el interbloqueo en suspensión y reanudación\n\nCuando una aplicación emite una consulta IOCTL mientras la suspensión automática está en ejecución, puede producirse un interbloqueo. La ruta de consulta mantiene dev_lock y luego llama a pm_runtime_resume_and_get(), que espera a que la suspensión en curso finalice. Mientras tanto, la devolución de llamada de suspensión intenta adquirir dev_lock y se bloquea, lo que resulta en un interbloqueo.\n\nEsto se soluciona liberando dev_lock antes de llamar a pm_runtime_resume_and_get() y volviéndolo a adquirir después de que la llamada finalice. También se adquiere dev_lock en la devolución de llamada de reanudación para mantener la consistencia del bloqueo."}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","baseScore":5.5,"baseSeverity":"MEDIUM","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":1.8,"impactScore":3.6}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-667"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.19","versionEndExcluding":"6.19.7","matchCriteriaId":"69245D10-0B71-485E-80C3-A64F077004D3"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:7.0:rc1:*:*:*:*:*:*","matchCriteriaId":"F253B622-8837-4245-BCE5-A7BF8FC76A16"}]}]}],"references":[{"url":"https://git.kernel.org/stable/c/1aa82181a3c285c7351523d587f7981ae4c015c8","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/ac24537478dd8eb2fd3984b4652bb19461e5e74c","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]}]}},{"cve":{"id":"CVE-2026-23297","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-03-25T11:16:25.167","lastModified":"2026-05-29T14:29:14.010","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nnfsd: Fix cred ref leak in nfsd_nl_threads_set_doit().\n\nsyzbot reported memory leak of struct cred. [0]\n\nnfsd_nl_threads_set_doit() passes get_current_cred() to\nnfsd_svc(), but put_cred() is not called after that.\n\nThe cred is finally passed down to _svc_xprt_create(),\nwhich calls get_cred() with the cred for struct svc_xprt.\n\nThe ownership of the refcount by get_current_cred() is not\ntransferred to anywhere and is just leaked.\n\nnfsd_svc() is also called from write_threads(), but it does\nnot bump file->f_cred there.\n\nnfsd_nl_threads_set_doit() is called from sendmsg() and\ncurrent->cred does not go away.\n\nLet's use current_cred() in nfsd_nl_threads_set_doit().\n\n[0]:\nBUG: memory leak\nunreferenced object 0xffff888108b89480 (size 184):\n  comm \"syz-executor\", pid 5994, jiffies 4294943386\n  hex dump (first 32 bytes):\n    01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................\n    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................\n  backtrace (crc 369454a7):\n    kmemleak_alloc_recursive include/linux/kmemleak.h:44 [inline]\n    slab_post_alloc_hook mm/slub.c:4958 [inline]\n    slab_alloc_node mm/slub.c:5263 [inline]\n    kmem_cache_alloc_noprof+0x412/0x580 mm/slub.c:5270\n    prepare_creds+0x22/0x600 kernel/cred.c:185\n    copy_creds+0x44/0x290 kernel/cred.c:286\n    copy_process+0x7a7/0x2870 kernel/fork.c:2086\n    kernel_clone+0xac/0x6e0 kernel/fork.c:2651\n    __do_sys_clone+0x7f/0xb0 kernel/fork.c:2792\n    do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]\n    do_syscall_64+0xa4/0xf80 arch/x86/entry/syscall_64.c:94\n    entry_SYSCALL_64_after_hwframe+0x77/0x7f"},{"lang":"es","value":"En el kernel de Linux, la siguiente vulnerabilidad ha sido resuelta:\n\nnfsd: Corrige la fuga de referencia de cred en nfsd_nl_threads_set_doit().\n\nsyzbot informó una fuga de memoria de la estructura cred. [0]\n\nnfsd_nl_threads_set_doit() pasa get_current_cred() a nfsd_svc(), pero put_cred() no es llamada después de eso.\n\nEl cred es finalmente pasado a _svc_xprt_create(), que llama a get_cred() con el cred para la estructura svc_xprt.\n\nLa propiedad del contador de referencias por get_current_cred() no es transferida a ningún lugar y simplemente se fuga.\n\nnfsd_svc() también es llamada desde write_threads(), pero no incrementa file-&gt;f_cred allí.\n\nnfsd_nl_threads_set_doit() es llamada desde sendmsg() y current-&gt;cred no desaparece.\n\nUsemos current_cred() en nfsd_nl_threads_set_doit().\n\n[0]:\nERROR: fuga de memoria\nobjeto sin referencia 0xffff888108b89480 (tamaño 184):\n  comm 'syz-executor', pid 5994, jiffies 4294943386\n  volcado hexadecimal (primeros 32 bytes):\n    01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................\n    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................\n  backtrace (crc 369454a7):\n    kmemleak_alloc_recursive include/linux/kmemleak.h:44 [inline]\n    slab_post_alloc_hook mm/slub.c:4958 [inline]\n    slab_alloc_node mm/slub.c:5263 [inline]\n    kmem_cache_alloc_noprof+0x412/0x580 mm/slub.c:5270\n    prepare_creds+0x22/0x600 kernel/cred.c:185\n    copy_creds+0x44/0x290 kernel/cred.c:286\n    copy_process+0x7a7/0x2870 kernel/fork.c:2086\n    kernel_clone+0xac/0x6e0 kernel/fork.c:2651\n    __do_sys_clone+0x7f/0xb0 kernel/fork.c:2792\n    do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]\n    do_syscall_64+0xa4/0xf80 arch/x86/entry/syscall_64.c:94\n    entry_SYSCALL_64_after_hwframe+0x77/0x7f"}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","baseScore":5.5,"baseSeverity":"MEDIUM","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":1.8,"impactScore":3.6}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-401"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.10","versionEndExcluding":"6.12.77","matchCriteriaId":"5A646065-5446-461B-BB8D-D72F3DD27B7B"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.13","versionEndExcluding":"6.18.17","matchCriteriaId":"A5E006E4-59C7-43C1-9231-62A72219F2BA"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.19","versionEndExcluding":"6.19.7","matchCriteriaId":"69245D10-0B71-485E-80C3-A64F077004D3"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:7.0:rc1:*:*:*:*:*:*","matchCriteriaId":"F253B622-8837-4245-BCE5-A7BF8FC76A16"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:7.0:rc2:*:*:*:*:*:*","matchCriteriaId":"4AE85AD8-4641-4E7C-A2F4-305E2CD9EE64"}]}]}],"references":[{"url":"https://git.kernel.org/stable/c/1cb968a2013ffa8112d52ebe605009ea1c6a582c","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/27c13c5bb0948e3b5c64e59f8a903231896fab9b","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/41170716421c25cd20b39e83f0e0762e212b377b","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/a3f88e3e18b51a7f654189189c762ebcdeaa7e29","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]}]}},{"cve":{"id":"CVE-2026-23298","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-03-25T11:16:25.320","lastModified":"2026-05-29T14:27:13.180","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\ncan: ucan: Fix infinite loop from zero-length messages\n\nIf a broken ucan device gets a message with the message length field set\nto 0, then the driver will loop for forever in\nucan_read_bulk_callback(), hanging the system.  If the length is 0, just\nskip the message and go on to the next one.\n\nThis has been fixed in the kvaser_usb driver in the past in commit\n0c73772cd2b8 (\"can: kvaser_usb: leaf: Fix potential infinite loop in\ncommand parsers\"), so there must be some broken devices out there like\nthis somewhere."},{"lang":"es","value":"En el kernel de Linux, la siguiente vulnerabilidad ha sido resuelta:\n\ncan: ucan: Corrección de bucle infinito por mensajes de longitud cero\n\nSi un dispositivo ucan defectuoso recibe un mensaje con el campo de longitud del mensaje establecido en 0, entonces el controlador entrará en un bucle infinito en ucan_read_bulk_callback(), colgando el sistema. Si la longitud es 0, simplemente omita el mensaje y pase al siguiente.\n\nEsto ha sido corregido en el controlador kvaser_usb en el pasado en el commit 0c73772cd2b8 ('can: kvaser_usb: leaf: Corrección de posible bucle infinito en los analizadores de comandos'), así que debe haber algunos dispositivos defectuosos por ahí como este en algún lugar."}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","baseScore":5.5,"baseSeverity":"MEDIUM","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":1.8,"impactScore":3.6}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-835"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.19","versionEndExcluding":"5.10.253","matchCriteriaId":"A8DA957C-C958-43FF-BB9F-975A326709F9"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"5.11","versionEndExcluding":"5.15.203","matchCriteriaId":"20DDB3E9-AABF-4107-ADB0-5362AA067045"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"5.16","versionEndExcluding":"6.1.167","matchCriteriaId":"2EDC6BAF-B710-4E26-B6AA-D68922EE7B43"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.2","versionEndExcluding":"6.6.130","matchCriteriaId":"C57BB918-DF28-46B3-94F7-144176841267"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.7","versionEndExcluding":"6.12.77","matchCriteriaId":"B3D12E00-E42D-4056-B354-BAD4903C03A5"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.13","versionEndExcluding":"6.18.17","matchCriteriaId":"A5E006E4-59C7-43C1-9231-62A72219F2BA"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.19","versionEndExcluding":"6.19.7","matchCriteriaId":"69245D10-0B71-485E-80C3-A64F077004D3"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:7.0:rc1:*:*:*:*:*:*","matchCriteriaId":"F253B622-8837-4245-BCE5-A7BF8FC76A16"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:7.0:rc2:*:*:*:*:*:*","matchCriteriaId":"4AE85AD8-4641-4E7C-A2F4-305E2CD9EE64"}]}]}],"references":[{"url":"https://git.kernel.org/stable/c/13b646eec3ba1131180803f5aaf1fee23540ad8f","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/1e446fd0582ad8be9f6dafb115fc2e7245f9bea7","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/aa9e0a7fe5efc2f74327fd37d828e9a51d9ff588","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/ab6f075492d37368b4c7b0df7f7fdc2b666887fc","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/bd85f21a6219aeae4389d700c54f1799f4b814e0","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/c7bc62be6c1a60bb21301692009590b1ffda91d9","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/ca07d3c6eef14d34e6fdeefe55058db045be29dc","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/e7bb6e0606b5f233531aaaad9542d69fbb792115","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]}]}},{"cve":{"id":"CVE-2026-23299","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-03-25T11:16:25.487","lastModified":"2026-05-29T14:25:27.723","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: purge error queues in socket destructors\n\nWhen TX timestamping is enabled via SO_TIMESTAMPING, SKBs may be queued\ninto sk_error_queue and will stay there until consumed. If userspace never\ngets to read the timestamps, or if the controller is removed unexpectedly,\nthese SKBs will leak.\n\nFix by adding skb_queue_purge() calls for sk_error_queue in affected\nbluetooth destructors. RFCOMM does not currently use sk_error_queue."},{"lang":"es","value":"En el kernel de Linux, la siguiente vulnerabilidad ha sido resuelta:\n\nBluetooth: purgar colas de error en destructores de sockets\n\nCuando la marca de tiempo TX está habilitada a través de SO_TIMESTAMPING, los SKB pueden ser encolados en sk_error_queue y permanecerán allí hasta ser consumidos. Si el espacio de usuario nunca llega a leer las marcas de tiempo, o si el controlador es eliminado inesperadamente, estos SKB se filtrarán.\n\nSolución añadiendo llamadas a skb_queue_purge() para sk_error_queue en los destructores de bluetooth afectados. RFCOMM no utiliza actualmente sk_error_queue."}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","baseScore":5.5,"baseSeverity":"MEDIUM","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":1.8,"impactScore":3.6}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-772"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.15","versionEndExcluding":"6.18.17","matchCriteriaId":"7B6E9607-896D-4A84-B5CB-3311EB1230BD"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.19","versionEndExcluding":"6.19.7","matchCriteriaId":"69245D10-0B71-485E-80C3-A64F077004D3"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:7.0:rc1:*:*:*:*:*:*","matchCriteriaId":"F253B622-8837-4245-BCE5-A7BF8FC76A16"}]}]}],"references":[{"url":"https://git.kernel.org/stable/c/21e4271e65094172aadd5beb8caea95dd0fbf6d7","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/2b6c942a526635f5c61d2f000258e620da32d3a7","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/3de7c10a950b36affc692d8bd2ac713852580e56","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]}]}},{"cve":{"id":"CVE-2026-35020","sourceIdentifier":"disclosure@vulncheck.com","published":"2026-04-06T20:16:24.863","lastModified":"2026-05-29T18:16:31.540","vulnStatus":"Rejected","cveTags":[],"descriptions":[{"lang":"en","value":"Rejected reason: This CVE ID has been rejected by the its CVE Numbering Authority (CNA). It was determined that the attack requires an attacker to already control arbitrary environment variables, a level of access they consider functionally equivalent to code execution and outside the threat model of CLI tools."}],"metrics":{},"references":[]}},{"cve":{"id":"CVE-2026-35021","sourceIdentifier":"disclosure@vulncheck.com","published":"2026-04-06T20:16:25.067","lastModified":"2026-05-29T18:16:44.543","vulnStatus":"Rejected","cveTags":[],"descriptions":[{"lang":"en","value":"Rejected reason: This CVE ID has been rejected by its CVE Numbering Authority (CNA). It was determined that the affected code path cannot be triggered through normal usage of Claude Code."}],"metrics":{},"references":[]}},{"cve":{"id":"CVE-2026-35022","sourceIdentifier":"disclosure@vulncheck.com","published":"2026-04-06T20:16:25.260","lastModified":"2026-05-29T18:16:55.833","vulnStatus":"Rejected","cveTags":[],"descriptions":[{"lang":"en","value":"Rejected reason: This CVE ID has been rejected by its CVE Numbering Authority (CNA). It was determined that the -p flag behavior is documented in Anthropic's claude -h output with an explicit warning that non-interactive mode should only be used in trusted directories, making this intended and described behavior rather than a vulnerability."}],"metrics":{},"references":[]}},{"cve":{"id":"CVE-2021-47960","sourceIdentifier":"security@synology.com","published":"2026-04-10T10:16:02.853","lastModified":"2026-05-29T19:06:23.427","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"A files or directories accessible to external parties vulnerability in Synology SSL VPN Client before 1.4.5-0684 allows remote attackers to access files within the installation directory via a local HTTP server bound to the loopback interface. By leveraging user interaction with a crafted web page, attackers may retrieve sensitive files such as configuration files, certificates, and logs, leading to information disclosure."}],"metrics":{"cvssMetricV31":[{"source":"security@synology.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":3.6}]},"weaknesses":[{"source":"security@synology.com","type":"Primary","description":[{"lang":"en","value":"CWE-552"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:synology:ssl_vpn_client:*:*:*:*:*:*:*:*","versionEndExcluding":"1.4.5-0684","matchCriteriaId":"3B17E85E-878A-4B10-A4B2-4359305FFC08"}]}]}],"references":[{"url":"https://www.synology.com/en-global/security/advisory/Synology_SA_26_05","source":"security@synology.com","tags":["Vendor Advisory"]}]}},{"cve":{"id":"CVE-2021-47961","sourceIdentifier":"security@synology.com","published":"2026-04-10T10:16:03.913","lastModified":"2026-05-29T19:05:55.840","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"A plaintext storage of a password vulnerability in Synology SSL VPN Client before 1.4.5-0684 allows remote attackers to access or influence the user's PIN code due to insecure storage. This may lead to unauthorized VPN configuration and potential interception of subsequent VPN traffic when combined with user interaction."}],"metrics":{"cvssMetricV31":[{"source":"security@synology.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N","baseScore":8.1,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":5.2}]},"weaknesses":[{"source":"security@synology.com","type":"Primary","description":[{"lang":"en","value":"CWE-256"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:synology:ssl_vpn_client:*:*:*:*:*:*:*:*","versionEndExcluding":"1.4.5-0684","matchCriteriaId":"3B17E85E-878A-4B10-A4B2-4359305FFC08"}]}]}],"references":[{"url":"https://www.synology.com/en-global/security/advisory/Synology_SA_26_05","source":"security@synology.com","tags":["Vendor Advisory"]}]}},{"cve":{"id":"CVE-2026-40190","sourceIdentifier":"security-advisories@github.com","published":"2026-04-10T20:16:24.043","lastModified":"2026-05-29T16:14:40.537","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"LangSmith Client SDKs provide SDK's for interacting with the LangSmith platform. Prior to 0.5.18, the LangSmith JavaScript/TypeScript SDK (langsmith) contains an incomplete prototype pollution fix in its internally vendored lodash set() utility. The baseAssignValue() function only guards against the __proto__ key, but fails to prevent traversal via constructor.prototype. This allows an attacker who controls keys in data processed by the createAnonymizer() API to pollute Object.prototype, affecting all objects in the Node.js process. This vulnerability is fixed in 0.5.18."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L","baseScore":5.6,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"LOW"},"exploitabilityScore":2.2,"impactScore":3.4}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-1321"}]}],"references":[{"url":"https://github.com/langchain-ai/langsmith-sdk/security/advisories/GHSA-fw9q-39r9-c252","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2026-41182","sourceIdentifier":"security-advisories@github.com","published":"2026-04-23T02:16:16.123","lastModified":"2026-05-29T16:14:18.860","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"LangSmith Client SDKs provide SDK's for interacting with the LangSmith platform. Prior to version 0.5.19 of the JavaScript SDK and version 0.7.31 of the Python SDK, the LangSmith SDK's output redaction controls (hideOutputs in JS, hide_outputs in Python) do not apply to streaming token events. When an LLM run produces streaming output, each chunk is recorded as a new_token event containing the raw token value. These events bypass the redaction pipeline entirely — prepareRunCreateOrUpdateInputs (JS) and _hide_run_outputs (Python) only process the inputs and outputs fields on a run, never the events array. As a result, applications relying on output redaction to prevent sensitive LLM output from being stored in LangSmith will still leak the full streamed content via run events. Version 0.5.19 of the JavaScript SDK and version 0.7.31 of the Python SDK fix the issue."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N","baseScore":5.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":1.4}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-200"},{"lang":"en","value":"CWE-359"},{"lang":"en","value":"CWE-532"}]}],"references":[{"url":"https://github.com/langchain-ai/langsmith-sdk/security/advisories/GHSA-rr7j-v2q5-chgv","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2025-58074","sourceIdentifier":"security@nortonlifelock.com","published":"2026-05-04T14:16:28.480","lastModified":"2026-05-29T14:16:24.667","vulnStatus":"Awaiting Analysis","cveTags":[{"sourceIdentifier":"security@nortonlifelock.com","tags":["unsupported-when-assigned"]}],"descriptions":[{"lang":"en","value":"A privilege escalation vulnerability exists during the installation of Norton Secure VPN via the Microsoft Store. A low-privilege user can replace files during the installation process, which may result in deletion of arbitrary files that can lead to elevation of privileges."}],"metrics":{"cvssMetricV31":[{"source":"security@nortonlifelock.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.0,"impactScore":6.0}]},"weaknesses":[{"source":"security@nortonlifelock.com","type":"Secondary","description":[{"lang":"en","value":"CWE-1386"}]}],"references":[{"url":"https://support.norton.com/sp/en/me/home/current/solutions/v20250301180004520","source":"security@nortonlifelock.com"},{"url":"https://www.gendigital.com/us/en/contact-us/security-advisories/","source":"security@nortonlifelock.com"},{"url":"https://www.talosintelligence.com/vulnerability_reports/TALOS-2025-2276","source":"af854a3a-2127-422b-91ae-364da2661108"}]}},{"cve":{"id":"CVE-2026-43616","sourceIdentifier":"disclosure@vulncheck.com","published":"2026-05-04T18:16:32.830","lastModified":"2026-05-29T14:01:06.720","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Detect-It-Easy prior to 3.21 contains a path traversal vulnerability that allows attackers to write arbitrary files to the filesystem by crafting malicious archive entries with relative traversal sequences or absolute paths. Attackers can exploit insufficient path normalization during archive extraction to write files outside the intended extraction directory and achieve persistent code execution by overwriting user startup scripts."}],"metrics":{"cvssMetricV40":[{"source":"disclosure@vulncheck.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":6.8,"baseSeverity":"MEDIUM","attackVector":"LOCAL","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"ACTIVE","vulnConfidentialityImpact":"NONE","vulnIntegrityImpact":"HIGH","vulnAvailabilityImpact":"HIGH","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"disclosure@vulncheck.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:H","baseScore":7.1,"baseSeverity":"HIGH","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.8,"impactScore":5.2},{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","baseScore":7.8,"baseSeverity":"HIGH","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.8,"impactScore":5.9}]},"weaknesses":[{"source":"disclosure@vulncheck.com","type":"Primary","description":[{"lang":"en","value":"CWE-23"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:horsicq:detect-it-easy:*:*:*:*:*:*:*:*","versionEndExcluding":"3.21","matchCriteriaId":"BE38B942-D8BE-48F9-918B-E667376ADDB0"}]}]}],"references":[{"url":"https://github.com/horsicq/DIE-engine/commit/7fd300b926daf19707b2a36f0abe8b60a51308ee","source":"disclosure@vulncheck.com","tags":["Patch"]},{"url":"https://github.com/horsicq/DIE-engine/commit/cbbe1688e58ffd430d284bf65f336973f083db69","source":"disclosure@vulncheck.com","tags":["Patch"]},{"url":"https://github.com/horsicq/DIE-engine/releases/tag/3.21","source":"disclosure@vulncheck.com","tags":["Release Notes"]},{"url":"https://github.com/horsicq/Detect-It-Easy","source":"disclosure@vulncheck.com","tags":["Product"]},{"url":"https://github.com/horsicq/Formats/commit/56cdf50ee3c72c56284e2819b23e98332842d259","source":"disclosure@vulncheck.com","tags":["Patch"]},{"url":"https://github.com/horsicq/XArchive/commit/6a2aa84c2fd120b704f76bb5c5ee3e9b5a7a0fcc","source":"disclosure@vulncheck.com","tags":["Patch"]},{"url":"https://www.vulncheck.com/advisories/detect-it-easy-path-traversal-arbitrary-file-write","source":"disclosure@vulncheck.com","tags":["Third Party Advisory"]}]}},{"cve":{"id":"CVE-2026-38751","sourceIdentifier":"cve@mitre.org","published":"2026-05-04T19:16:03.613","lastModified":"2026-05-29T14:41:34.623","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"OpenSTAManager version 2.10 and earlier contains an arbitrary file upload vulnerability in the module update functionality (modules/aggiornamenti/upload_modules.php)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H","baseScore":7.2,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"HIGH","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.2,"impactScore":5.9}]},"weaknesses":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-434"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:devcode:openstamanager:*:*:*:*:*:*:*:*","versionEndIncluding":"2.10","matchCriteriaId":"61B52C15-FE15-45A5-8BE6-A5C47ACBE850"}]}]}],"references":[{"url":"https://github.com/devcode-it/openstamanager","source":"cve@mitre.org","tags":["Product"]},{"url":"https://github.com/fuutianyii/poc","source":"cve@mitre.org","tags":["Broken Link"]}]}},{"cve":{"id":"CVE-2026-7768","sourceIdentifier":"ce714d77-add3-4f53-aff5-83d477b104bb","published":"2026-05-04T20:16:21.107","lastModified":"2026-05-29T14:43:17.467","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"@fastify/accepts-serializer cached serializer-selection results keyed by the request Accept header without a size limit or eviction policy. A remote unauthenticated client could send many distinct but matching Accept header variants to make the cache grow unbounded, eventually exhausting the Node.js heap and crashing the process. Versions <= 6.0.3 are affected. Update to 6.0.4 or later, which bounds the cache via an LRU with a default size of 100 entries, configurable through the new cacheSize plugin option."}],"metrics":{"cvssMetricV31":[{"source":"ce714d77-add3-4f53-aff5-83d477b104bb","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":3.6}]},"weaknesses":[{"source":"ce714d77-add3-4f53-aff5-83d477b104bb","type":"Secondary","description":[{"lang":"en","value":"CWE-770"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:fastify:fastify\\/accepts-serializer:*:*:*:*:*:node.js:*:*","versionEndExcluding":"6.0.4","matchCriteriaId":"47020EDF-6583-4271-AE38-04FE4EE8F199"}]}]}],"references":[{"url":"https://cna.openjsf.org/security-advisories.html","source":"ce714d77-add3-4f53-aff5-83d477b104bb","tags":["Vendor Advisory"]},{"url":"https://github.com/fastify/fastify-accepts-serializer/security/advisories/GHSA-qxhc-wx3p-2wmg","source":"ce714d77-add3-4f53-aff5-83d477b104bb","tags":["Vendor Advisory"]}]}},{"cve":{"id":"CVE-2026-39103","sourceIdentifier":"cve@mitre.org","published":"2026-05-05T16:16:12.993","lastModified":"2026-05-29T14:44:41.747","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Buffer Overflow vulnerability in GPAC before commit v391dc7f4d234988ea0bc3cc294eb725eddf8f702 allows an attacker to cause a denial of service via the src/scenegraph/svg_attributes.c, svg_parse_strings(), gf_svg_parse_attribute()"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H","baseScore":5.5,"baseSeverity":"MEDIUM","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":1.8,"impactScore":3.6}]},"weaknesses":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-122"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:gpac:gpac:*:*:*:*:*:*:*:*","versionEndExcluding":"2026-04-01","matchCriteriaId":"DF3A6E0C-CE62-44A2-8507-35193465BD8E"}]}]}],"references":[{"url":"https://github.com/gpac/gpac/commit/391dc7f4d234988ea0bc3cc294eb725eddf8f702","source":"cve@mitre.org","tags":["Patch"]},{"url":"https://github.com/gpac/gpac/issues/3506","source":"cve@mitre.org","tags":["Issue Tracking","Patch","Vendor Advisory"]},{"url":"https://github.com/gpac/gpac/issues/3506","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","tags":["Issue Tracking","Patch","Vendor Advisory"]}]}},{"cve":{"id":"CVE-2026-43061","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-05T16:16:15.210","lastModified":"2026-05-29T18:24:52.370","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nserial: 8250: Fix TX deadlock when using DMA\n\n`dmaengine_terminate_async` does not guarantee that the\n`__dma_tx_complete` callback will run. The callback is currently the\nonly place where `dma->tx_running` gets cleared. If the transaction is\ncanceled and the callback never runs, then `dma->tx_running` will never\nget cleared and we will never schedule new TX DMA transactions again.\n\nThis change makes it so we clear `dma->tx_running` after we terminate\nthe DMA transaction. This is \"safe\" because `serial8250_tx_dma_flush`\nis holding the UART port lock. The first thing the callback does is also\ngrab the UART port lock, so access to `dma->tx_running` is serialized."}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","baseScore":5.5,"baseSeverity":"MEDIUM","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":1.8,"impactScore":3.6}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-667"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"5.4.291","versionEndExcluding":"5.5","matchCriteriaId":"2082E874-B9D3-4B60-9D27-1F3B8A838CD0"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"5.10.235","versionEndExcluding":"5.10.253","matchCriteriaId":"F53D37DD-08CD-45E7-AC64-89E784643461"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"5.15.179","versionEndExcluding":"5.15.203","matchCriteriaId":"1758EB5F-A1C9-49BD-9D44-664C553093C0"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.1.129","versionEndExcluding":"6.1.167","matchCriteriaId":"AE7F8BC2-4A4D-4682-B175-709BD87448F7"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.6.79","versionEndExcluding":"6.6.130","matchCriteriaId":"1AA2DD10-BE5C-4C34-9E74-B73AA999FFFB"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.12.16","versionEndExcluding":"6.12.78","matchCriteriaId":"7733838E-2319-4A21-8D00-83A7B7B008BF"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.13.4","versionEndExcluding":"6.14","matchCriteriaId":"D76AB7DD-087E-411C-AD59-C015F85930A7"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.14.1","versionEndExcluding":"6.18.20","matchCriteriaId":"BD54E28E-E5DD-4B1B-9B3C-D90CA91313C7"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.19","versionEndExcluding":"6.19.10","matchCriteriaId":"96D34333-38BE-4414-9E79-6EB764329581"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:6.14:-:*:*:*:*:*:*","matchCriteriaId":"7DE421BA-0600-4401-A175-73CAB6A6FB4E"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:6.14:rc3:*:*:*:*:*:*","matchCriteriaId":"66619FB8-0AAF-4166-B2CF-67B24143261D"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:6.14:rc4:*:*:*:*:*:*","matchCriteriaId":"D3D6550E-6679-4560-902D-AF52DCFE905B"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:6.14:rc5:*:*:*:*:*:*","matchCriteriaId":"45B90F6B-BEC7-4D4E-883A-9DBADE021750"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:6.14:rc6:*:*:*:*:*:*","matchCriteriaId":"1759FFB7-531C-41B1-9AE1-FD3D80E0D920"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:6.14:rc7:*:*:*:*:*:*","matchCriteriaId":"AD948719-8628-4421-A340-1066314BBD4A"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:7.0:rc1:*:*:*:*:*:*","matchCriteriaId":"F253B622-8837-4245-BCE5-A7BF8FC76A16"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:7.0:rc2:*:*:*:*:*:*","matchCriteriaId":"4AE85AD8-4641-4E7C-A2F4-305E2CD9EE64"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:7.0:rc3:*:*:*:*:*:*","matchCriteriaId":"F666C8D8-6538-46D4-B318-87610DE64C34"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:7.0:rc4:*:*:*:*:*:*","matchCriteriaId":"02259FDA-961B-47BC-AE7F-93D7EC6E90C2"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:7.0:rc5:*:*:*:*:*:*","matchCriteriaId":"58A9FEFF-C040-420D-8F0A-BFDAAA1DF258"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:7.0:rc6:*:*:*:*:*:*","matchCriteriaId":"1D2315C0-D46F-4F85-9754-F9E5E11374A6"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:7.0:rc7:*:*:*:*:*:*","matchCriteriaId":"512EE3A8-A590-4501-9A94-5D4B268D6138"}]}]}],"references":[{"url":"https://git.kernel.org/stable/c/2a72403b985aea6b4aac3171830492f9a387f9e1","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/5f6b17562f03fc65c7d3474ef8f1959b19d1ca41","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/79a19bd936bb35f56ef0ccab1b3b59ebce8c762d","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/8190f9ab6ad90cb97652adbebd238b874a4ef70d","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/a424a34b8faddf97b5af41689087e7a230f79ba7","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/b5ad887339503103d0fbe9827b16ad287597c275","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/d2719a0a9c3439abf67843a5504b7afccd9ded93","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/f76d91271bcacbd759a2e4ee3ea61faa6a727ccf","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]}]}},{"cve":{"id":"CVE-2026-43062","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-05T16:16:15.340","lastModified":"2026-05-29T18:23:08.033","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: L2CAP: Fix type confusion in l2cap_ecred_reconf_rsp()\n\nl2cap_ecred_reconf_rsp() casts the incoming data to struct\nl2cap_ecred_conn_rsp (the ECRED *connection* response, 8 bytes with\nresult at offset 6) instead of struct l2cap_ecred_reconf_rsp (2 bytes\nwith result at offset 0).\n\nThis causes two problems:\n\n - The sizeof(*rsp) length check requires 8 bytes instead of the\n   correct 2, so valid L2CAP_ECRED_RECONF_RSP packets are rejected\n   with -EPROTO.\n\n - rsp->result reads from offset 6 instead of offset 0, returning\n   wrong data when the packet is large enough to pass the check.\n\nFix by using the correct type.  Also pass the already byte-swapped\nresult variable to BT_DBG instead of the raw __le16 field."}],"metrics":{"cvssMetricV31":[{"source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:L","baseScore":7.1,"baseSeverity":"HIGH","attackVector":"ADJACENT_NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"HIGH","availabilityImpact":"LOW"},"exploitabilityScore":2.8,"impactScore":4.2}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"NVD-CWE-noinfo"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"5.7","versionEndExcluding":"5.10.253","matchCriteriaId":"0B1A046E-0C62-426C-8D6D-9BCC6EB56D6E"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"5.11","versionEndExcluding":"5.15.203","matchCriteriaId":"20DDB3E9-AABF-4107-ADB0-5362AA067045"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"5.16","versionEndExcluding":"6.1.167","matchCriteriaId":"2EDC6BAF-B710-4E26-B6AA-D68922EE7B43"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.2","versionEndExcluding":"6.6.130","matchCriteriaId":"C57BB918-DF28-46B3-94F7-144176841267"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.7","versionEndExcluding":"6.12.78","matchCriteriaId":"28D591F5-B196-4CC9-905C-DC80F116E7A8"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.13","versionEndExcluding":"6.18.20","matchCriteriaId":"E5571059-6552-48E7-9BEF-3E358C387171"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.19","versionEndExcluding":"6.19.10","matchCriteriaId":"96D34333-38BE-4414-9E79-6EB764329581"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:7.0:rc1:*:*:*:*:*:*","matchCriteriaId":"F253B622-8837-4245-BCE5-A7BF8FC76A16"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:7.0:rc2:*:*:*:*:*:*","matchCriteriaId":"4AE85AD8-4641-4E7C-A2F4-305E2CD9EE64"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:7.0:rc3:*:*:*:*:*:*","matchCriteriaId":"F666C8D8-6538-46D4-B318-87610DE64C34"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:7.0:rc4:*:*:*:*:*:*","matchCriteriaId":"02259FDA-961B-47BC-AE7F-93D7EC6E90C2"}]}]}],"references":[{"url":"https://git.kernel.org/stable/c/111f74547eee8cfedfb854284e80f35c8a491186","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/15145675690cab2de1056e7ed68e59cbd0452529","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/21d3ba696918d6373233aac0b9d51fcabdedddc0","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/3b94e62caa1dc1198d0d55d97bd710da1dee15d7","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/5a1ea296f8589ce8f1e3141b2b123b34ad010e19","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/d90150c72d2e6a8a3079e88755dafcfbe91c746d","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/dd3b221e21079ade8263fbb7176f3d55ad75d3b6","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/f110b8f58b254bf997cec1bd60701b7798e9bb82","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]}]}},{"cve":{"id":"CVE-2026-43063","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-05T16:16:15.467","lastModified":"2026-05-29T18:22:30.867","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nxfs: don't irele after failing to iget in xfs_attri_recover_work\n\nxlog_recovery_iget* never set @ip to a valid pointer if they return\nan error, so this irele will walk off a dangling pointer.  Fix that."}],"metrics":{"cvssMetricV31":[{"source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","baseScore":7.8,"baseSeverity":"HIGH","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.8,"impactScore":5.9}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"NVD-CWE-noinfo"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.10","versionEndExcluding":"6.12.80","matchCriteriaId":"F453D4BE-C3D9-4385-BD03-DDA5B0033CA8"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.13","versionEndExcluding":"6.18.21","matchCriteriaId":"ED39847A-3B46-4729-B7CA-B2C30B9FA8FE"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.19","versionEndExcluding":"6.19.11","matchCriteriaId":"4CA2E747-A9EC-4518-9AA2-B4247FC748B7"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:7.0:rc1:*:*:*:*:*:*","matchCriteriaId":"F253B622-8837-4245-BCE5-A7BF8FC76A16"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:7.0:rc2:*:*:*:*:*:*","matchCriteriaId":"4AE85AD8-4641-4E7C-A2F4-305E2CD9EE64"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:7.0:rc3:*:*:*:*:*:*","matchCriteriaId":"F666C8D8-6538-46D4-B318-87610DE64C34"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:7.0:rc4:*:*:*:*:*:*","matchCriteriaId":"02259FDA-961B-47BC-AE7F-93D7EC6E90C2"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:7.0:rc5:*:*:*:*:*:*","matchCriteriaId":"58A9FEFF-C040-420D-8F0A-BFDAAA1DF258"}]}]}],"references":[{"url":"https://git.kernel.org/stable/c/40082d08b638485cbaa543dc8087a3d1844d6f08","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/70685c291ef82269180758130394ecdc4496b52c","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/a1a5df1038f0b3c560d204270373621a4e622808","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/b5c5a50c2f513d4a13a6763564a07b470e69cc5a","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]}]}},{"cve":{"id":"CVE-2026-43064","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-05T16:16:15.567","lastModified":"2026-05-29T18:21:36.590","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\ndmaengine: idxd: Fix not releasing workqueue on .release()\n\nThe workqueue associated with an DSA/IAA device is not released when\nthe object is freed."}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","baseScore":5.5,"baseSeverity":"MEDIUM","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":1.8,"impactScore":3.6}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"NVD-CWE-noinfo"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"5.11.22","versionEndExcluding":"5.12","matchCriteriaId":"4BA7BC58-B6BD-469F-B348-D71C30EF4397"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"5.12.5","versionEndExcluding":"5.13","matchCriteriaId":"2CA34CAF-7251-4EB2-8208-AC54EF7AD9C9"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"5.13","versionEndExcluding":"6.1.168","matchCriteriaId":"04D24E88-753A-4536-B478-6EEE3223E44B"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.2","versionEndExcluding":"6.6.131","matchCriteriaId":"CE6ED4D4-0046-4573-BFA9-D64143B6A89F"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.7","versionEndExcluding":"6.12.80","matchCriteriaId":"97EB19EC-A11E-49C6-9D2F-6F6EC6CB98B6"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.13","versionEndExcluding":"6.18.21","matchCriteriaId":"ED39847A-3B46-4729-B7CA-B2C30B9FA8FE"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.19","versionEndExcluding":"6.19.11","matchCriteriaId":"4CA2E747-A9EC-4518-9AA2-B4247FC748B7"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:7.0:rc1:*:*:*:*:*:*","matchCriteriaId":"F253B622-8837-4245-BCE5-A7BF8FC76A16"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:7.0:rc2:*:*:*:*:*:*","matchCriteriaId":"4AE85AD8-4641-4E7C-A2F4-305E2CD9EE64"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:7.0:rc3:*:*:*:*:*:*","matchCriteriaId":"F666C8D8-6538-46D4-B318-87610DE64C34"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:7.0:rc4:*:*:*:*:*:*","matchCriteriaId":"02259FDA-961B-47BC-AE7F-93D7EC6E90C2"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:7.0:rc5:*:*:*:*:*:*","matchCriteriaId":"58A9FEFF-C040-420D-8F0A-BFDAAA1DF258"}]}]}],"references":[{"url":"https://git.kernel.org/stable/c/2bb9e9e93adff9cc8a138ae9a3a8d59b3452272e","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/3d33de353b1ff9023d5ec73b9becf80ea87af695","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/958e96533ddbd1edd127feb7624a7eed0cc379dc","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/d02c24af126dee45247dc7890409c86d1831859d","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/fc34f199eb576b3a73089452fdf0056cc9a9301d","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/fd4cb61bbd0fc3a749a8da6145cbb56d8f6dba35","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]}]}},{"cve":{"id":"CVE-2026-43065","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-05T16:16:15.683","lastModified":"2026-05-29T18:20:50.683","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\next4: always drain queued discard work in ext4_mb_release()\n\nWhile reviewing recent ext4 patch[1], Sashiko raised the following\nconcern[2]:\n\n> If the filesystem is initially mounted with the discard option,\n> deleting files will populate sbi->s_discard_list and queue\n> s_discard_work. If it is then remounted with nodiscard, the\n> EXT4_MOUNT_DISCARD flag is cleared, but the pending s_discard_work is\n> neither cancelled nor flushed.\n\n[1] https://lore.kernel.org/r/20260319094545.19291-1-qiang.zhang@linux.dev/\n[2] https://sashiko.dev/#/patchset/20260319094545.19291-1-qiang.zhang%40linux.dev\n\nThe concern was valid, but it had nothing to do with the patch[1].\nOne of the problems with Sashiko in its current (early) form is that\nit will detect pre-existing issues and report it as a problem with the\npatch that it is reviewing.\n\nIn practice, it would be hard to hit deliberately (unless you are a\nmalicious syzkaller fuzzer), since it would involve mounting the file\nsystem with -o discard, and then deleting a large number of files,\nremounting the file system with -o nodiscard, and then immediately\nunmounting the file system before the queued discard work has a change\nto drain on its own.\n\nFix it because it's a real bug, and to avoid Sashiko from raising this\nconcern when analyzing future patches to mballoc.c."}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","baseScore":5.5,"baseSeverity":"MEDIUM","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":1.8,"impactScore":3.6}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"NVD-CWE-noinfo"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"5.15","versionEndExcluding":"5.15.203","matchCriteriaId":"85C0DA29-FD98-4182-B0A1-624E28976709"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"5.16","versionEndExcluding":"6.1.168","matchCriteriaId":"E2DDDCA1-6DAB-4018-B920-8F045DDD8D3B"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.2","versionEndExcluding":"6.6.131","matchCriteriaId":"CE6ED4D4-0046-4573-BFA9-D64143B6A89F"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.7","versionEndExcluding":"6.12.80","matchCriteriaId":"97EB19EC-A11E-49C6-9D2F-6F6EC6CB98B6"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.13","versionEndExcluding":"6.18.21","matchCriteriaId":"ED39847A-3B46-4729-B7CA-B2C30B9FA8FE"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.19","versionEndExcluding":"6.19.11","matchCriteriaId":"4CA2E747-A9EC-4518-9AA2-B4247FC748B7"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:7.0:rc1:*:*:*:*:*:*","matchCriteriaId":"F253B622-8837-4245-BCE5-A7BF8FC76A16"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:7.0:rc2:*:*:*:*:*:*","matchCriteriaId":"4AE85AD8-4641-4E7C-A2F4-305E2CD9EE64"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:7.0:rc3:*:*:*:*:*:*","matchCriteriaId":"F666C8D8-6538-46D4-B318-87610DE64C34"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:7.0:rc4:*:*:*:*:*:*","matchCriteriaId":"02259FDA-961B-47BC-AE7F-93D7EC6E90C2"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:7.0:rc5:*:*:*:*:*:*","matchCriteriaId":"58A9FEFF-C040-420D-8F0A-BFDAAA1DF258"}]}]}],"references":[{"url":"https://git.kernel.org/stable/c/1c82f863f090ab899085bdfade073313384b514b","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/812b6a7cd3e7f3a3e8a24db85bc6313c26cb1098","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/9b4d9dda6a71ad3425c8109d27c4c6bfb9da97b8","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/9ee29d20aab228adfb02ca93f87fb53c56c2f3af","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/b4737e26d4688b8aea88ad6ea4dbfeb6e78b0327","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/c360e9d0def4f4ae03254a67c683103908555b75","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/e96c2354b170aaa53300c8e8fd59e41b133160f7","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]}]}},{"cve":{"id":"CVE-2026-43066","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-05T16:16:15.810","lastModified":"2026-05-29T17:53:12.393","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\next4: fix iloc.bh leak in ext4_fc_replay_inode() error paths\n\nDuring code review, Joseph found that ext4_fc_replay_inode() calls\next4_get_fc_inode_loc() to get the inode location, which holds a\nreference to iloc.bh that must be released via brelse().\n\nHowever, several error paths jump to the 'out' label without\nreleasing iloc.bh:\n\n - ext4_handle_dirty_metadata() failure\n - sync_dirty_buffer() failure\n - ext4_mark_inode_used() failure\n - ext4_iget() failure\n\nFix this by introducing an 'out_brelse' label placed just before\nthe existing 'out' label to ensure iloc.bh is always released.\n\nAdditionally, make ext4_fc_replay_inode() propagate errors\nproperly instead of always returning 0."}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","baseScore":5.5,"baseSeverity":"MEDIUM","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":1.8,"impactScore":3.6}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-401"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"5.10","versionEndExcluding":"5.10.253","matchCriteriaId":"3A9919A7-65FC-46B6-B195-F4325BB94AFD"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"5.11","versionEndExcluding":"5.15.203","matchCriteriaId":"20DDB3E9-AABF-4107-ADB0-5362AA067045"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"5.16","versionEndExcluding":"6.1.168","matchCriteriaId":"E2DDDCA1-6DAB-4018-B920-8F045DDD8D3B"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.2","versionEndExcluding":"6.6.131","matchCriteriaId":"CE6ED4D4-0046-4573-BFA9-D64143B6A89F"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.7","versionEndExcluding":"6.12.80","matchCriteriaId":"97EB19EC-A11E-49C6-9D2F-6F6EC6CB98B6"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.13","versionEndExcluding":"6.18.21","matchCriteriaId":"ED39847A-3B46-4729-B7CA-B2C30B9FA8FE"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.19","versionEndExcluding":"6.19.11","matchCriteriaId":"4CA2E747-A9EC-4518-9AA2-B4247FC748B7"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:7.0:rc1:*:*:*:*:*:*","matchCriteriaId":"F253B622-8837-4245-BCE5-A7BF8FC76A16"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:7.0:rc2:*:*:*:*:*:*","matchCriteriaId":"4AE85AD8-4641-4E7C-A2F4-305E2CD9EE64"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:7.0:rc3:*:*:*:*:*:*","matchCriteriaId":"F666C8D8-6538-46D4-B318-87610DE64C34"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:7.0:rc4:*:*:*:*:*:*","matchCriteriaId":"02259FDA-961B-47BC-AE7F-93D7EC6E90C2"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:7.0:rc5:*:*:*:*:*:*","matchCriteriaId":"58A9FEFF-C040-420D-8F0A-BFDAAA1DF258"}]}]}],"references":[{"url":"https://git.kernel.org/stable/c/0892f12cd49fde5d5db68137923db107f894f3a3","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/19782b4c793b49a6aa4abbb307ddff3610009d21","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/5a63033696e60b5d70816f1d119645ac5b0b0a03","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/9c90449a9ac2cd1ba540ad2561b8b70c1bfb0a25","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/c426231e3d51916e83b6d1ab7ed8a65e83bca5b4","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/ca99cbcc316cdfd2040cc2b13d1426ccb3b3b50b","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/ec0a7500d8eace5b4f305fa0c594dd148f0e8d29","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/f7817ad399d604e8639005d87d148b5ec626ad26","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]}]}},{"cve":{"id":"CVE-2026-43069","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-05T16:16:16.197","lastModified":"2026-05-29T17:53:53.400","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: hci_ll: Fix firmware leak on error path\n\nSmatch reports:\n\ndrivers/bluetooth/hci_ll.c:587 download_firmware() warn:\n'fw' from request_firmware() not released on lines: 544.\n\nIn download_firmware(), if request_firmware() succeeds but the returned\nfirmware content is invalid (no data or zero size), the function returns\nwithout releasing the firmware, resulting in a resource leak.\n\nFix this by calling release_firmware() before returning when\nrequest_firmware() succeeded but the firmware content is invalid."}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","baseScore":5.5,"baseSeverity":"MEDIUM","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":1.8,"impactScore":3.6}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-401"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.12","versionEndExcluding":"5.10.253","matchCriteriaId":"C7307BD3-C434-4557-91D2-ADE06A1D3C6F"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"5.11","versionEndExcluding":"5.15.203","matchCriteriaId":"20DDB3E9-AABF-4107-ADB0-5362AA067045"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"5.16","versionEndExcluding":"6.1.168","matchCriteriaId":"E2DDDCA1-6DAB-4018-B920-8F045DDD8D3B"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.2","versionEndExcluding":"6.6.131","matchCriteriaId":"CE6ED4D4-0046-4573-BFA9-D64143B6A89F"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.7","versionEndExcluding":"6.12.80","matchCriteriaId":"97EB19EC-A11E-49C6-9D2F-6F6EC6CB98B6"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.13","versionEndExcluding":"6.18.21","matchCriteriaId":"ED39847A-3B46-4729-B7CA-B2C30B9FA8FE"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.19","versionEndExcluding":"6.19.11","matchCriteriaId":"4CA2E747-A9EC-4518-9AA2-B4247FC748B7"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:7.0:rc1:*:*:*:*:*:*","matchCriteriaId":"F253B622-8837-4245-BCE5-A7BF8FC76A16"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:7.0:rc2:*:*:*:*:*:*","matchCriteriaId":"4AE85AD8-4641-4E7C-A2F4-305E2CD9EE64"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:7.0:rc3:*:*:*:*:*:*","matchCriteriaId":"F666C8D8-6538-46D4-B318-87610DE64C34"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:7.0:rc4:*:*:*:*:*:*","matchCriteriaId":"02259FDA-961B-47BC-AE7F-93D7EC6E90C2"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:7.0:rc5:*:*:*:*:*:*","matchCriteriaId":"58A9FEFF-C040-420D-8F0A-BFDAAA1DF258"}]}]}],"references":[{"url":"https://git.kernel.org/stable/c/28904375d54b436a757641fb0331537778c0de5a","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/31148a7be723aa9f2e8fbd62424825ab8d577973","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/5213ef54528dd1ac79b846e30d8f72ce092794aa","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/95e8601af227b2b4390eecf8db6abdb9f6a91f17","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/9ecbfd93cd6de6c78cb7fd51fe079e36c7ff074b","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/a7803df606a7d22e896b030f619e1d9d20ae0c6b","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/b2dfbf1b5ff192cefd49574b951a4af9ddd32213","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/e6d95488c8c964d1df0d3e1db44c958706311e86","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]}]}},{"cve":{"id":"CVE-2026-43070","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-05T16:16:16.320","lastModified":"2026-05-29T17:55:03.500","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Reset register ID for BPF_END value tracking\n\nWhen a register undergoes a BPF_END (byte swap) operation, its scalar\nvalue is mutated in-place. If this register previously shared a scalar ID\nwith another register (e.g., after an `r1 = r0` assignment), this tie must\nbe broken.\n\nCurrently, the verifier misses resetting `dst_reg->id` to 0 for BPF_END.\nConsequently, if a conditional jump checks the swapped register, the\nverifier incorrectly propagates the learned bounds to the linked register,\nleading to false confidence in the linked register's value and potentially\nallowing out-of-bounds memory accesses.\n\nFix this by explicitly resetting `dst_reg->id` to 0 in the BPF_END case\nto break the scalar tie, similar to how BPF_NEG handles it via\n`__mark_reg_known`."}],"metrics":{"cvssMetricV31":[{"source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","baseScore":7.8,"baseSeverity":"HIGH","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.8,"impactScore":5.9}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-125"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.18.17","versionEndExcluding":"6.18.21","matchCriteriaId":"3EF23CE5-8E2E-47D1-9B2C-449AA5BB1870"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.19.7","versionEndExcluding":"6.19.11","matchCriteriaId":"0F154E5F-DF7A-4EB9-BAFA-13EC093D679A"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:7.0:rc1:*:*:*:*:*:*","matchCriteriaId":"F253B622-8837-4245-BCE5-A7BF8FC76A16"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:7.0:rc2:*:*:*:*:*:*","matchCriteriaId":"4AE85AD8-4641-4E7C-A2F4-305E2CD9EE64"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:7.0:rc3:*:*:*:*:*:*","matchCriteriaId":"F666C8D8-6538-46D4-B318-87610DE64C34"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:7.0:rc4:*:*:*:*:*:*","matchCriteriaId":"02259FDA-961B-47BC-AE7F-93D7EC6E90C2"}]}]}],"references":[{"url":"https://git.kernel.org/stable/c/0d15c3611a2cc5d08993545d4032055ae10ae2c1","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/a17443af874229408ce6b78e2c8a2b5adeb4b7d8","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/a3125bc01884431d30d731461634c8295b6f0529","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]}]}},{"cve":{"id":"CVE-2026-43071","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-05T16:16:16.420","lastModified":"2026-05-29T17:57:44.603","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\ndcache: Limit the minimal number of bucket to two\n\nThere is an OOB read problem on dentry_hashtable when user sets\n'dhash_entries=1':\n  BUG: unable to handle page fault for address: ffff888b30b774b0\n  #PF: supervisor read access in kernel mode\n  #PF: error_code(0x0000) - not-present page\n  Oops: Oops: 0000 [#1] SMP PTI\n  RIP: 0010:__d_lookup+0x56/0x120\n   Call Trace:\n    d_lookup.cold+0x16/0x5d\n    lookup_dcache+0x27/0xf0\n    lookup_one_qstr_excl+0x2a/0x180\n    start_dirop+0x55/0xa0\n    simple_start_creating+0x8d/0xa0\n    debugfs_start_creating+0x8c/0x180\n    debugfs_create_dir+0x1d/0x1c0\n    pinctrl_init+0x6d/0x140\n    do_one_initcall+0x6d/0x3d0\n    kernel_init_freeable+0x39f/0x460\n    kernel_init+0x2a/0x260\n\nThere will be only one bucket in dentry_hashtable when dhash_entries is\nset as one, and d_hash_shift is calculated as 32 by dcache_init(). Then,\nfollowing process will access more than one buckets(which memory region\nis not allocated) in dentry_hashtable:\n d_lookup\n  b = d_hash(hash)\n    dentry_hashtable + ((u32)hashlen >> d_hash_shift)\n    // The C standard defines the behavior of right shift amounts\n    // exceeding the bit width of the operand as undefined. The\n    // result of '(u32)hashlen >> d_hash_shift' becomes 'hashlen',\n    // so 'b' will point to an unallocated memory region.\n  hlist_bl_for_each_entry_rcu(b)\n   hlist_bl_first_rcu(head)\n    h->first  // read OOB!\n\nFix it by limiting the minimal number of dentry_hashtable bucket to two,\nso that 'd_hash_shift' won't exceeds the bit width of type u32."}],"metrics":{"cvssMetricV31":[{"source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H","baseScore":9.1,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":5.2}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-125"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"3.10.55","versionEndExcluding":"3.11","matchCriteriaId":"5A516330-2A83-4603-8C0E-BBDFEECC27E9"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"3.12.29","versionEndExcluding":"3.13","matchCriteriaId":"25875AFE-CAEF-4D99-9B64-23F2B24C08D0"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"3.14.19","versionEndExcluding":"3.15","matchCriteriaId":"5D53296D-7B6A-4B74-A72C-45082E6C8531"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"3.16.3","versionEndExcluding":"3.17","matchCriteriaId":"F14E1ED6-C14D-476A-BC5C-ED4B577D6D9D"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"3.17.1","versionEndExcluding":"6.6.136","matchCriteriaId":"B950BE15-DD19-43CB-8C82-340F4AE1C2F0"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.7","versionEndExcluding":"6.12.83","matchCriteriaId":"7F0AE5B5-23AC-4DCC-B37A-51CA1DAE7BA8"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.13","versionEndExcluding":"6.18.24","matchCriteriaId":"8126B8B8-6D0B-4443-86C1-672AEE893555"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.19","versionEndExcluding":"6.19.14","matchCriteriaId":"D6A8A074-BBF4-4803-ABED-519A839435BB"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"7.0","versionEndExcluding":"7.0.1","matchCriteriaId":"9B5888AB-7403-4335-89E4-21CC0B48366A"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:3.17:-:*:*:*:*:*:*","matchCriteriaId":"3A351B03-87A0-405B-8A9B-488E173E1E3B"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:3.17:rc5:*:*:*:*:*:*","matchCriteriaId":"4223286C-F679-4FEC-B144-1C3B942BD506"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:3.17:rc6:*:*:*:*:*:*","matchCriteriaId":"C889AAA8-186E-433F-A31D-FF09221E1EBC"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:3.17:rc7:*:*:*:*:*:*","matchCriteriaId":"80BC78EE-50D8-4561-A6A6-A370E72F215B"}]}]}],"references":[{"url":"https://git.kernel.org/stable/c/277cedabb0ab86baae83fa58218be13c6d3e5526","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/426ef05e82ee52c8d0e95fc0808b7383d8352d73","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/5718df131ab78897a9dd1f2e71c3ba732d4392af","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/755b40903eff563768d4d96fd4ef51ec48adde3b","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/ddd57ebce245f9c7e2f6902a6c087d6186d2385d","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/f08fe8891c3eeb63b73f9f1f6d97aa629c821579","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]}]}},{"cve":{"id":"CVE-2026-43072","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-05T16:16:16.540","lastModified":"2026-05-29T17:58:49.973","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/vc4: platform_get_irq_byname() returns an int\n\nplatform_get_irq_byname() will return a negative value if an error\nhappens, so it should be checked and not just passed directly into\ndevm_request_threaded_irq() hoping all will be ok."}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","baseScore":5.5,"baseSeverity":"MEDIUM","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":1.8,"impactScore":3.6}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"NVD-CWE-noinfo"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"5.15","versionEndExcluding":"6.6.136","matchCriteriaId":"B1ABA9F0-A5C4-4CBE-92EC-33CA7D4F7634"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.7","versionEndExcluding":"6.12.83","matchCriteriaId":"7F0AE5B5-23AC-4DCC-B37A-51CA1DAE7BA8"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.13","versionEndExcluding":"6.18.24","matchCriteriaId":"8126B8B8-6D0B-4443-86C1-672AEE893555"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.19","versionEndExcluding":"6.19.14","matchCriteriaId":"D6A8A074-BBF4-4803-ABED-519A839435BB"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"7.0","versionEndExcluding":"7.0.1","matchCriteriaId":"9B5888AB-7403-4335-89E4-21CC0B48366A"}]}]}],"references":[{"url":"https://git.kernel.org/stable/c/0185e0494a561edfc482507f9de89c2ad798b33d","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/0c1b117f7ba46fb8f6ebc5e0bfe5b58568c301ba","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/63c11b19cdc154fa848a6c3b535bfb1dc7b60378","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/9c10b83a004442c93d7a484c3d221a06a45821e1","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/e597a809a2b97e927060ba182f58eb3e6101bc70","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]},{"url":"https://git.kernel.org/stable/c/ef2ee9db13b68c5e332b77c0a7108a2d4d56e114","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":["Patch"]}]}},{"cve":{"id":"CVE-2026-7875","sourceIdentifier":"disclosure@vulncheck.com","published":"2026-05-06T17:16:24.250","lastModified":"2026-05-29T15:24:59.267","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"NanoClaw version 1.2.0 and prior contains a host/container filesystem boundary vulnerability in outbound attachment handling and outbox cleanup that allows a compromised or prompt-injected container to read files outside the intended outbox directory by supplying crafted messages_out.id and content.files values or creating symlinked outbox files. Attackers can exploit this vulnerability to trigger host-side reads of arbitrary files and in some cases achieve recursive deletion of paths outside the intended cleanup target."}],"metrics":{"cvssMetricV40":[{"source":"disclosure@vulncheck.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":9.3,"baseSeverity":"CRITICAL","attackVector":"LOCAL","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"LOW","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"HIGH","vulnAvailabilityImpact":"HIGH","subConfidentialityImpact":"HIGH","subIntegrityImpact":"HIGH","subAvailabilityImpact":"HIGH","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"disclosure@vulncheck.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.0,"impactScore":6.0}]},"weaknesses":[{"source":"disclosure@vulncheck.com","type":"Secondary","description":[{"lang":"en","value":"CWE-22"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:nanoco:nanoclaw:*:*:*:*:*:*:*:*","versionEndIncluding":"1.2.0","matchCriteriaId":"A32902C7-7FB4-475F-BEC6-55F87DF2B3D8"}]}]}],"references":[{"url":"https://github.com/qwibitai/nanoclaw/commit/7814e45570edf0024a1a5c2ba9fbc9cb3a49f7f7","source":"disclosure@vulncheck.com","tags":["Patch"]},{"url":"https://github.com/qwibitai/nanoclaw/pull/2001","source":"disclosure@vulncheck.com","tags":["Issue Tracking","Patch"]},{"url":"https://github.com/qwibitai/nanoclaw/releases/tag/v1.2.0","source":"disclosure@vulncheck.com","tags":["Product","Release Notes"]},{"url":"https://github.com/qwibitai/nanoclaw/pull/2001","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","tags":["Issue Tracking","Patch"]}]}},{"cve":{"id":"CVE-2026-41589","sourceIdentifier":"security-advisories@github.com","published":"2026-05-07T14:16:02.853","lastModified":"2026-05-29T15:23:29.347","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Wish is an SSH server with defaults and a collection of middlewares. From version 2.0.0 to before version 2.0.1, the SCP middleware in charm.land/wish/v2 is vulnerable to path traversal attacks. A malicious SCP client can read arbitrary files from the server, write arbitrary files to the server, and create directories outside the configured root directory by sending crafted filenames containing ../ sequences over the SCP protocol. This issue has been patched in version 2.0.1."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:N","baseScore":9.6,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"NONE"},"exploitabilityScore":3.1,"impactScore":5.8}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Secondary","description":[{"lang":"en","value":"CWE-22"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:charm:wish:2.0.0:*:*:*:*:*:*:*","matchCriteriaId":"68764D40-A084-40D8-84FA-F5EEFCD72FF2"}]}]}],"references":[{"url":"https://github.com/charmbracelet/wish/releases/tag/v2.0.1","source":"security-advisories@github.com","tags":["Release Notes"]},{"url":"https://github.com/charmbracelet/wish/security/advisories/GHSA-xjvp-7243-rg9h","source":"security-advisories@github.com","tags":["Exploit","Mitigation","Vendor Advisory"]},{"url":"https://github.com/charmbracelet/wish/security/advisories/GHSA-xjvp-7243-rg9h","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","tags":["Exploit","Mitigation","Vendor Advisory"]}]}},{"cve":{"id":"CVE-2026-41691","sourceIdentifier":"security-advisories@github.com","published":"2026-05-07T21:16:29.560","lastModified":"2026-05-29T15:18:26.503","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Copilot said: i18nextify is a JavaScript library that adds\ni18nextify is a JavaScript library that adds website internationalization via a script tag, without source code changes. Versions prior to 3.0.5 interpolate the lng and ns values directly into the configured loadPath / addPath URL template without any encoding, validation, or path sanitisation. When an application exposes the language-code selection to user-controlled input (the default — i18next-browser-languagedetector reads ?lng= query params, cookies, localStorage, and request headers), an attacker can inject characters that change the structure of the outgoing request URL. This is a single URL-injection vulnerability. The attacker-controlled value is neutralised before it is used as part of an output URL string; the attack shape covers both path traversal and broader URL-structure injection — both are closed by the one interpolateUrl sanitisation fix. This issue has been fixed in version 3.0.5. If users cannot upgrade immediately, they can work around the issue by sanitising lng / ns before they reach i18next (strip .., /, \\, ?, #, %, whitespace, and control characters; cap the length)."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":2.5},{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N","baseScore":9.1,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":5.2}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-22"},{"lang":"en","value":"CWE-74"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:i18next:i18next-http-backend:*:*:*:*:*:node.js:*:*","versionEndExcluding":"3.0.5","matchCriteriaId":"AF30D3E4-BC7C-4059-98B4-CB275ED97573"}]}]}],"references":[{"url":"https://github.com/i18next/i18next-http-backend/commit/4cee84f229c637b9c182366d3156f726d407a621","source":"security-advisories@github.com","tags":["Patch"]},{"url":"https://github.com/i18next/i18next-http-backend/security/advisories/GHSA-q89c-q3h5-w34g","source":"security-advisories@github.com","tags":["Mitigation","Vendor Advisory"]}]}},{"cve":{"id":"CVE-2026-41692","sourceIdentifier":"security-advisories@github.com","published":"2026-05-07T21:16:29.717","lastModified":"2026-05-29T15:08:21.560","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"i18nextify is a JavaScript library that adds website internationalization via a script tag, without source code changes. Versions prior to 4.0.8 substitute {{key}} interpolation tokens inside src and href attribute values with the raw string returned by i18next.t(). The substitution logic in src/localize.js (the replaceInside handler) only guards against a duplicated http:// origin prefix — it does not validate the URL scheme of the substituted value. A translated value such as javascript:alert(1) or data:text/html,<script>...</script> is applied unchanged to the live DOM attribute when an attacker can influence the content of a translation file or the translation-backend response — for example, via a compromised translation CDN, user-contributed locales, a MITM on a plain-HTTP backend, or write access to the translation JSON. This issue was patched in version 4.0.8."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:L/A:N","baseScore":4.7,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":1.6,"impactScore":2.7},{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:L/A:N","baseScore":4.7,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":1.6,"impactScore":2.7}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-79"},{"lang":"en","value":"CWE-94"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:i18next:i18nextify:*:*:*:*:*:*:*:*","versionEndExcluding":"4.0.8","matchCriteriaId":"75BE4A58-77DC-4A0B-B94D-B7AFACC8A8B9"}]}]}],"references":[{"url":"https://github.com/i18next/i18nextify/commit/16f23dbcdcf893673587f7a03355bf7ce0a0e49e","source":"security-advisories@github.com","tags":["Patch"]},{"url":"https://github.com/i18next/i18nextify/security/advisories/GHSA-6457-mxpq-4fqq","source":"security-advisories@github.com","tags":["Vendor Advisory"]}]}},{"cve":{"id":"CVE-2026-8112","sourceIdentifier":"cna@vuldb.com","published":"2026-05-07T22:16:37.507","lastModified":"2026-05-29T14:58:48.490","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"A vulnerability was found in 8421bit MiniClaw up to 223c16a1088e138838dcbd18cd65a37c35ac5a84. Affected is the function executeCognitivePulse of the file src/kernel.ts. Performing a manipulation results in os command injection. It is possible to initiate the attack remotely. The exploit has been made public and could be used. This product is using a rolling release to provide continious delivery. Therefore, no version details for affected nor updated releases are available. The patch is named 028f62216dee9f64833d0f1cfda7c217067ceba8. To fix this issue, it is recommended to deploy a patch."}],"metrics":{"cvssMetricV40":[{"source":"cna@vuldb.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":2.1,"baseSeverity":"LOW","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"LOW","userInteraction":"NONE","vulnConfidentialityImpact":"LOW","vulnIntegrityImpact":"LOW","vulnAvailabilityImpact":"LOW","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"PROOF_OF_CONCEPT","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"cna@vuldb.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L","baseScore":6.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"LOW"},"exploitabilityScore":2.8,"impactScore":3.4},{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":5.9}],"cvssMetricV2":[{"source":"cna@vuldb.com","type":"Secondary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:S/C:P/I:P/A:P","baseScore":6.5,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"SINGLE","confidentialityImpact":"PARTIAL","integrityImpact":"PARTIAL","availabilityImpact":"PARTIAL"},"baseSeverity":"MEDIUM","exploitabilityScore":8.0,"impactScore":6.4,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"cna@vuldb.com","type":"Primary","description":[{"lang":"en","value":"CWE-77"},{"lang":"en","value":"CWE-78"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:8421bit:miniclaw:*:*:*:*:*:*:*:*","versionEndIncluding":"2026-04-29","matchCriteriaId":"8CF812EE-8A35-4FFC-9909-16A7605CC0B7"}]}]}],"references":[{"url":"https://github.com/8421bit/MiniClaw/","source":"cna@vuldb.com","tags":["Product"]},{"url":"https://github.com/8421bit/MiniClaw/commit/028f62216dee9f64833d0f1cfda7c217067ceba8","source":"cna@vuldb.com","tags":["Patch"]},{"url":"https://github.com/8421bit/MiniClaw/issues/4","source":"cna@vuldb.com","tags":["Exploit","Issue Tracking","Third Party Advisory"]},{"url":"https://github.com/8421bit/MiniClaw/pull/7","source":"cna@vuldb.com","tags":["Patch"]},{"url":"https://vuldb.com/submit/808166","source":"cna@vuldb.com","tags":["Third Party Advisory","VDB Entry"]},{"url":"https://vuldb.com/vuln/361900","source":"cna@vuldb.com","tags":["Third Party Advisory","VDB Entry"]},{"url":"https://vuldb.com/vuln/361900/cti","source":"cna@vuldb.com","tags":["Permissions Required","VDB Entry"]}]}},{"cve":{"id":"CVE-2026-41900","sourceIdentifier":"security-advisories@github.com","published":"2026-05-08T04:16:18.710","lastModified":"2026-05-29T14:54:23.353","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"OpenLearnX is an open-source, decentralized learning and assessment platform. Prior to version 2.0.3, a remote code execution (RCE) vulnerability was identified in the OpenLearnX code execution environment, allowing sandbox escape and arbitrary command execution. This issue has been patched in version 2.0.3."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":5.9},{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H","baseScore":10.0,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":6.0}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-78"},{"lang":"en","value":"CWE-94"},{"lang":"en","value":"CWE-250"},{"lang":"en","value":"CWE-284"},{"lang":"en","value":"CWE-693"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:th30d4y:openlearnx:2.0.1:*:*:*:*:node.js:*:*","matchCriteriaId":"A26C86B8-ADA9-4301-ABC6-3294050ABD71"}]}]}],"references":[{"url":"https://github.com/th30d4y/OpenLearnX/commit/14765d7d1856d564747c55c5412e2f38feab079e","source":"security-advisories@github.com","tags":["Patch"]},{"url":"https://github.com/th30d4y/OpenLearnX/releases/tag/v2.0.3-security-fix","source":"security-advisories@github.com","tags":["Release Notes"]},{"url":"https://github.com/th30d4y/OpenLearnX/security/advisories/GHSA-8h25-q488-4hxw","source":"security-advisories@github.com","tags":["Vendor Advisory"]}]}},{"cve":{"id":"CVE-2026-45321","sourceIdentifier":"security-advisories@github.com","published":"2026-05-12T01:16:46.820","lastModified":"2026-05-29T19:41:37.437","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"On 2026-05-11, between approximately 19:20 and 19:26 UTC, 84 malicious versions across 42 @tanstack/* packages were published to the npm registry. The publishes were authenticated via the legitimate GitHub Actions OIDC trusted-publisher binding for TanStack/router, but the publish workflow itself was not modified. The attacker chained three known vulnerability classes — a pull_request_target \"Pwn Request\" misconfiguration, GitHub Actions cache poisoning across the fork↔base trust boundary, and runtime memory extraction of the OIDC token from the Actions runner process — to publish credential-stealing malware under a trusted identity. Each affected package received exactly two malicious versions, published a few minutes apart."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H","baseScore":9.6,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":6.0}]},"cisaExploitAdd":"2026-05-27","cisaActionDue":"2026-06-10","cisaRequiredAction":"Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.","cisaVulnerabilityName":"TanStack Unspecified Vulnerability","weaknesses":[{"source":"security-advisories@github.com","type":"Secondary","description":[{"lang":"en","value":"CWE-506"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:tanstack:tanstack\\/arktype-adapter:1.166.12:*:*:*:*:node.js:*:*","matchCriteriaId":"D089266B-67D9-4E01-A12A-9EF7359D189F"},{"vulnerable":true,"criteria":"cpe:2.3:a:tanstack:tanstack\\/arktype-adapter:1.166.15:*:*:*:*:node.js:*:*","matchCriteriaId":"8EDD7BAC-C8F6-4DB7-B547-B4565EE04D29"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:tanstack:tanstack\\/eslint-plugin-router:1.161.9:*:*:*:*:node.js:*:*","matchCriteriaId":"6F878839-DE9A-4883-8EC0-DBF087FE744D"},{"vulnerable":true,"criteria":"cpe:2.3:a:tanstack:tanstack\\/eslint-plugin-router:1.161.12:*:*:*:*:node.js:*:*","matchCriteriaId":"1DC99745-A9D2-4F33-A42A-F6A5457A2042"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:tanstack:tanstack\\/eslint-plugin-start:0.0.4:*:*:*:*:node.js:*:*","matchCriteriaId":"BB756F48-FB90-43EC-BC50-4CC10DCDC5DA"},{"vulnerable":true,"criteria":"cpe:2.3:a:tanstack:tanstack\\/eslint-plugin-start:0.0.7:*:*:*:*:node.js:*:*","matchCriteriaId":"F12FC2B9-F858-4218-AF3A-437A7D056EE8"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:tanstack:tanstack\\/history:1.161.9:*:*:*:*:node.js:*:*","matchCriteriaId":"42A626A8-DF50-42A9-B582-B44C2F63B97F"},{"vulnerable":true,"criteria":"cpe:2.3:a:tanstack:tanstack\\/history:1.161.12:*:*:*:*:node.js:*:*","matchCriteriaId":"5C95EB8A-77B4-4C14-8798-40457E2BB6D4"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:tanstack:tanstack\\/nitro-v2-vite-plugin:1.154.12:*:*:*:*:node.js:*:*","matchCriteriaId":"5D503DF9-36BA-463F-AB1E-1DBABE46BA82"},{"vulnerable":true,"criteria":"cpe:2.3:a:tanstack:tanstack\\/nitro-v2-vite-plugin:1.154.15:*:*:*:*:node.js:*:*","matchCriteriaId":"69617BE5-65E2-4F4E-9E52-1103732C0C00"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:tanstack:tanstack\\/react-router:1.169.5:*:*:*:*:node.js:*:*","matchCriteriaId":"4E162DAD-4554-4269-A17C-3E9FE548E61A"},{"vulnerable":true,"criteria":"cpe:2.3:a:tanstack:tanstack\\/react-router:1.169.8:*:*:*:*:node.js:*:*","matchCriteriaId":"313F5FBD-6EE2-4A5C-AE9D-55FE9BC6175E"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:tanstack:tanstack\\/react-router-devtools:1.166.16:*:*:*:*:node.js:*:*","matchCriteriaId":"B0516DDF-507E-4370-8C2D-9FE45ADFA44B"},{"vulnerable":true,"criteria":"cpe:2.3:a:tanstack:tanstack\\/react-router-devtools:1.166.19:*:*:*:*:node.js:*:*","matchCriteriaId":"F5DAFBB2-E865-4CE2-8928-49C362EFB907"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:tanstack:tanstack\\/react-router-ssr-query:1.166.15:*:*:*:*:node.js:*:*","matchCriteriaId":"9269D422-A56D-4329-AE76-7655AA1DE4B8"},{"vulnerable":true,"criteria":"cpe:2.3:a:tanstack:tanstack\\/react-router-ssr-query:1.166.18:*:*:*:*:node.js:*:*","matchCriteriaId":"8ED80DA2-95B0-43B6-8151-606BDC9E8BE2"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:tanstack:tanstack\\/react-start:1.167.68:*:*:*:*:node.js:*:*","matchCriteriaId":"7235EE5D-9F47-4A1C-B71C-EDC7DA4A0074"},{"vulnerable":true,"criteria":"cpe:2.3:a:tanstack:tanstack\\/react-start:1.167.71:*:*:*:*:node.js:*:*","matchCriteriaId":"81CE53FF-DE73-4CC3-A5A6-8FC47A2BF065"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:tanstack:tanstack\\/react-start-client:1.166.51:*:*:*:*:node.js:*:*","matchCriteriaId":"DE9FA7FF-222D-4194-B0D7-14C5BE3D3835"},{"vulnerable":true,"criteria":"cpe:2.3:a:tanstack:tanstack\\/react-start-client:1.166.54:*:*:*:*:node.js:*:*","matchCriteriaId":"271AA5DB-D274-4280-B31C-BB649AB005CF"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:tanstack:tanstack\\/react-start-rsc:0.0.47:*:*:*:*:node.js:*:*","matchCriteriaId":"CB10EA60-CFED-4336-B02F-D90ADA489F4C"},{"vulnerable":true,"criteria":"cpe:2.3:a:tanstack:tanstack\\/react-start-rsc:0.0.50:*:*:*:*:node.js:*:*","matchCriteriaId":"7D0A0948-0EC9-482E-B2B0-DCDE83E39B64"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:tanstack:tanstack\\/react-start-server:1.166.55:*:*:*:*:node.js:*:*","matchCriteriaId":"7CBA3D9C-0326-485A-9AC6-34765CD16EFA"},{"vulnerable":true,"criteria":"cpe:2.3:a:tanstack:tanstack\\/react-start-server:1.166.58:*:*:*:*:node.js:*:*","matchCriteriaId":"31989B27-3C14-434F-9C58-A88C151C4DC4"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:tanstack:tanstack\\/router-cli:1.166.46:*:*:*:*:node.js:*:*","matchCriteriaId":"81242435-7AFF-4A27-939C-FE186A9C7707"},{"vulnerable":true,"criteria":"cpe:2.3:a:tanstack:tanstack\\/router-cli:1.166.49:*:*:*:*:node.js:*:*","matchCriteriaId":"84564FFE-3352-4E74-95B2-459AA74B2699"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:tanstack:tanstack\\/router-core:1.169.5:*:*:*:*:node.js:*:*","matchCriteriaId":"0E5D56A3-AC95-440C-A46D-0533CCB38836"},{"vulnerable":true,"criteria":"cpe:2.3:a:tanstack:tanstack\\/router-core:1.169.8:*:*:*:*:node.js:*:*","matchCriteriaId":"CD696314-55DA-4D5B-8C18-346F31CBC53A"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:tanstack:tanstack\\/router-devtools:1.166.16:*:*:*:*:node.js:*:*","matchCriteriaId":"57FD0EC0-F9EE-439F-B4FE-0B9EF9280D65"},{"vulnerable":true,"criteria":"cpe:2.3:a:tanstack:tanstack\\/router-devtools:1.166.19:*:*:*:*:node.js:*:*","matchCriteriaId":"DFF0A342-C2FA-4581-9EDE-66AF815C2A5B"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:tanstack:tanstack\\/router-devtools-core:1.167.6:*:*:*:*:node.js:*:*","matchCriteriaId":"BF3992BB-94C7-49F9-9CDF-E0E393E22948"},{"vulnerable":true,"criteria":"cpe:2.3:a:tanstack:tanstack\\/router-devtools-core:1.167.9:*:*:*:*:node.js:*:*","matchCriteriaId":"2729CE47-9087-4FB4-B20C-80D231B6D951"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:tanstack:tanstack\\/router-generator:1.166.45:*:*:*:*:node.js:*:*","matchCriteriaId":"B0054316-AA0C-448C-BED8-83E18E0D45BF"},{"vulnerable":true,"criteria":"cpe:2.3:a:tanstack:tanstack\\/router-generator:1.166.48:*:*:*:*:node.js:*:*","matchCriteriaId":"22F9BDB1-1418-4288-ACC3-271886D75621"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:tanstack:tanstack\\/router-plugin:1.167.38:*:*:*:*:node.js:*:*","matchCriteriaId":"9955D82B-821D-4CB3-9940-95D43A33FD71"},{"vulnerable":true,"criteria":"cpe:2.3:a:tanstack:tanstack\\/router-plugin:1.167.41:*:*:*:*:node.js:*:*","matchCriteriaId":"01D9DCD5-D9DC-40BB-AB81-1CBCDA3F8E12"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:tanstack:tanstack\\/router-ssr-query-core:1.168.3:*:*:*:*:node.js:*:*","matchCriteriaId":"39E3139D-9057-4872-880A-643B9ADFD0D0"},{"vulnerable":true,"criteria":"cpe:2.3:a:tanstack:tanstack\\/router-ssr-query-core:1.168.6:*:*:*:*:node.js:*:*","matchCriteriaId":"2E091068-FA7D-43A9-8595-5DC313109F4E"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:tanstack:tanstack\\/router-utils:1.161.11:*:*:*:*:node.js:*:*","matchCriteriaId":"D5485276-183A-482D-BBAA-DC6DE06EA0FE"},{"vulnerable":true,"criteria":"cpe:2.3:a:tanstack:tanstack\\/router-utils:1.161.14:*:*:*:*:node.js:*:*","matchCriteriaId":"2AB11C2E-5631-4EFE-A8D9-714A854779A4"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:tanstack:tanstack\\/router-vite-plugin:1.166.53:*:*:*:*:node.js:*:*","matchCriteriaId":"C612A5A5-1CC2-49A9-9AC9-A89C9B9A294F"},{"vulnerable":true,"criteria":"cpe:2.3:a:tanstack:tanstack\\/router-vite-plugin:1.166.56:*:*:*:*:node.js:*:*","matchCriteriaId":"B68FD101-F4EF-4121-AABD-436C2DF3230A"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:tanstack:tanstack\\/solid-router:1.169.5:*:*:*:*:node.js:*:*","matchCriteriaId":"A2864318-AFD0-4D05-AEC6-D43D7708E2F9"},{"vulnerable":true,"criteria":"cpe:2.3:a:tanstack:tanstack\\/solid-router:1.169.8:*:*:*:*:node.js:*:*","matchCriteriaId":"C14986F6-EF60-4D35-AEF1-3F08584E1CE2"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:tanstack:tanstack\\/solid-router-devtools:1.166.16:*:*:*:*:node.js:*:*","matchCriteriaId":"33DE352F-C451-4EFC-87E4-41207D615074"},{"vulnerable":true,"criteria":"cpe:2.3:a:tanstack:tanstack\\/solid-router-devtools:1.166.19:*:*:*:*:node.js:*:*","matchCriteriaId":"272C6F6E-F762-45F7-B482-B89E5401C471"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:tanstack:tanstack\\/solid-router-ssr-query:1.166.15:*:*:*:*:node.js:*:*","matchCriteriaId":"498032DA-0F2A-4FF5-AA7D-F0F6625A0B57"},{"vulnerable":true,"criteria":"cpe:2.3:a:tanstack:tanstack\\/solid-router-ssr-query:1.166.18:*:*:*:*:node.js:*:*","matchCriteriaId":"C71BF529-030F-49F7-A04B-D6A3FDF4811E"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:tanstack:tanstack\\/solid-start:1.167.65:*:*:*:*:node.js:*:*","matchCriteriaId":"E9C9E346-8F25-46ED-A7B1-D7857A2F8D39"},{"vulnerable":true,"criteria":"cpe:2.3:a:tanstack:tanstack\\/solid-start:1.167.68:*:*:*:*:node.js:*:*","matchCriteriaId":"14259BF0-ACEB-43FA-A724-1808910F8D3D"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:tanstack:tanstack\\/solid-start-client:1.166.50:*:*:*:*:node.js:*:*","matchCriteriaId":"00D4D48E-4F76-45DE-9B18-1452405252AE"},{"vulnerable":true,"criteria":"cpe:2.3:a:tanstack:tanstack\\/solid-start-client:1.166.53:*:*:*:*:node.js:*:*","matchCriteriaId":"A166B3E8-49CC-4A43-A947-3F29AE51A584"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:tanstack:tanstack\\/solid-start-server:1.166.54:*:*:*:*:node.js:*:*","matchCriteriaId":"BD086B5E-7AF2-4098-B54B-44501FB8EAFD"},{"vulnerable":true,"criteria":"cpe:2.3:a:tanstack:tanstack\\/solid-start-server:1.166.57:*:*:*:*:node.js:*:*","matchCriteriaId":"C8946A17-7F2E-43F5-B322-4200BF5F11D9"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:tanstack:tanstack\\/start-client-core:1.168.5:*:*:*:*:node.js:*:*","matchCriteriaId":"F7C475D3-2093-4173-AF84-2613F2A6ED7D"},{"vulnerable":true,"criteria":"cpe:2.3:a:tanstack:tanstack\\/start-client-core:1.168.8:*:*:*:*:node.js:*:*","matchCriteriaId":"1270E9DB-E6B0-46AA-92D4-C4D4EA9A9FD0"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:tanstack:tanstack\\/start-fn-stubs:1.161.9:*:*:*:*:node.js:*:*","matchCriteriaId":"F8CBCC6C-5E15-456E-8B36-7CA56786422B"},{"vulnerable":true,"criteria":"cpe:2.3:a:tanstack:tanstack\\/start-fn-stubs:1.161.12:*:*:*:*:node.js:*:*","matchCriteriaId":"6F37DB35-297B-413B-A47E-50CF172B40F6"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:tanstack:tanstack\\/start-plugin-core:1.169.23:*:*:*:*:node.js:*:*","matchCriteriaId":"F5C850D5-08BF-4D52-912B-C2943C301E70"},{"vulnerable":true,"criteria":"cpe:2.3:a:tanstack:tanstack\\/start-plugin-core:1.169.26:*:*:*:*:node.js:*:*","matchCriteriaId":"2CC73054-C269-48BF-90BC-62927447F6E9"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:tanstack:tanstack\\/start-server-core:1.167.33:*:*:*:*:node.js:*:*","matchCriteriaId":"EA69076A-7094-4DE7-85DF-D9C95C8BEA89"},{"vulnerable":true,"criteria":"cpe:2.3:a:tanstack:tanstack\\/start-server-core:1.167.36:*:*:*:*:node.js:*:*","matchCriteriaId":"0691D345-799E-4FCE-8C56-910587E88A1B"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:tanstack:tanstack\\/start-static-server-functions:1.166.44:*:*:*:*:node.js:*:*","matchCriteriaId":"300B8DF6-0632-4668-9A8C-F5213E353CFB"},{"vulnerable":true,"criteria":"cpe:2.3:a:tanstack:tanstack\\/start-static-server-functions:1.166.47:*:*:*:*:node.js:*:*","matchCriteriaId":"228B7783-CF16-4C45-BE2A-43A205EEC5CD"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:tanstack:tanstack\\/start-storage-context:1.166.38:*:*:*:*:node.js:*:*","matchCriteriaId":"97706E1B-0025-4B1D-9D52-96F0AF2CB74A"},{"vulnerable":true,"criteria":"cpe:2.3:a:tanstack:tanstack\\/start-storage-context:1.166.41:*:*:*:*:node.js:*:*","matchCriteriaId":"CB24E218-CA98-4859-BCB9-97D712A51665"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:tanstack:tanstack\\/valibot-adapter:1.166.12:*:*:*:*:node.js:*:*","matchCriteriaId":"0582C685-BA60-4E98-B21F-9B3624EA45A8"},{"vulnerable":true,"criteria":"cpe:2.3:a:tanstack:tanstack\\/valibot-adapter:1.166.15:*:*:*:*:node.js:*:*","matchCriteriaId":"05FBBB63-36D9-461B-9467-E5D442E37339"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:tanstack:tanstack\\/virtual-file-routes:1.161.10:*:*:*:*:node.js:*:*","matchCriteriaId":"76675CD4-24DF-4081-80AE-891E9A7E3508"},{"vulnerable":true,"criteria":"cpe:2.3:a:tanstack:tanstack\\/virtual-file-routes:1.161.13:*:*:*:*:node.js:*:*","matchCriteriaId":"2B2F909A-1481-4288-8B20-5070C11EF31A"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:tanstack:tanstack\\/vue-router:1.169.5:*:*:*:*:node.js:*:*","matchCriteriaId":"3673A5CD-037C-4365-8FA2-ACDF1C52DCC1"},{"vulnerable":true,"criteria":"cpe:2.3:a:tanstack:tanstack\\/vue-router:1.169.8:*:*:*:*:node.js:*:*","matchCriteriaId":"C690C863-9789-459F-9D43-A3885AE52AF7"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:tanstack:tanstack\\/vue-router-devtools:1.166.16:*:*:*:*:node.js:*:*","matchCriteriaId":"1EA8D53F-8DFC-4703-B8FC-0BBAA36ECA48"},{"vulnerable":true,"criteria":"cpe:2.3:a:tanstack:tanstack\\/vue-router-devtools:1.166.19:*:*:*:*:node.js:*:*","matchCriteriaId":"AECC0C92-5582-412E-9ADD-446FAEA00FD2"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:tanstack:tanstack\\/vue-router-ssr-query:1.166.15:*:*:*:*:node.js:*:*","matchCriteriaId":"8A0505A4-AD80-49D6-BF00-397A06C05E4A"},{"vulnerable":true,"criteria":"cpe:2.3:a:tanstack:tanstack\\/vue-router-ssr-query:1.166.18:*:*:*:*:node.js:*:*","matchCriteriaId":"D70EFBB9-4E5B-4598-BAA4-D0D0B118AB92"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:tanstack:tanstack\\/vue-start:1.167.61:*:*:*:*:node.js:*:*","matchCriteriaId":"9EF1676C-7CB6-456C-8CC3-773126DE7221"},{"vulnerable":true,"criteria":"cpe:2.3:a:tanstack:tanstack\\/vue-start:1.167.64:*:*:*:*:node.js:*:*","matchCriteriaId":"D8A9C993-4A15-48DF-9C2E-8DF4307FA819"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:tanstack:tanstack\\/vue-start-client:1.166.46:*:*:*:*:node.js:*:*","matchCriteriaId":"F9A2FEBC-38C7-4102-989A-E2394D611EFA"},{"vulnerable":true,"criteria":"cpe:2.3:a:tanstack:tanstack\\/vue-start-client:1.166.49:*:*:*:*:node.js:*:*","matchCriteriaId":"C52E88B9-E004-4EAA-9C4E-A42A79000BDE"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:tanstack:tanstack\\/vue-start-server:1.166.50:*:*:*:*:node.js:*:*","matchCriteriaId":"0AC47592-B517-42B3-8799-4A3158E8D026"},{"vulnerable":true,"criteria":"cpe:2.3:a:tanstack:tanstack\\/vue-start-server:1.166.53:*:*:*:*:node.js:*:*","matchCriteriaId":"08057602-9BCB-436E-A4A4-A4BF2252D45D"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:tanstack:tanstack\\/zod-adapter:1.166.12:*:*:*:*:node.js:*:*","matchCriteriaId":"C4961153-A963-41DC-92DC-D8C29E8F58A9"},{"vulnerable":true,"criteria":"cpe:2.3:a:tanstack:tanstack\\/zod-adapter:1.166.15:*:*:*:*:node.js:*:*","matchCriteriaId":"E2A77E8B-C2F4-4281-A71B-A5F58757CE0A"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:mistral:mistralai:2.4.6:*:*:*:*:python:*:*","matchCriteriaId":"EEE40803-66E1-4249-A875-53BDBFCA0E55"},{"vulnerable":true,"criteria":"cpe:2.3:a:mistral:mistralai\\/mistralai:2.2.3:*:*:*:*:node.js:*:*","matchCriteriaId":"D08B3EA0-C21A-44EA-A0C6-D579BE3B18A8"},{"vulnerable":true,"criteria":"cpe:2.3:a:mistral:mistralai\\/mistralai:2.2.4:*:*:*:*:node.js:*:*","matchCriteriaId":"7134526B-FBAC-4FBB-AF4C-14089AC6F64C"},{"vulnerable":true,"criteria":"cpe:2.3:a:mistral:mistralai\\/mistralai-azure:1.7.2:*:*:*:*:node.js:*:*","matchCriteriaId":"33D83A35-FA3D-4100-A9BA-3768B766823D"},{"vulnerable":true,"criteria":"cpe:2.3:a:mistral:mistralai\\/mistralai-azure:1.7.3:*:*:*:*:node.js:*:*","matchCriteriaId":"48A7394A-0AED-4C9A-BADF-B1CAD2C62715"},{"vulnerable":true,"criteria":"cpe:2.3:a:mistral:mistralai\\/mistralai-gcp:1.7.2:*:*:*:*:node.js:*:*","matchCriteriaId":"6A6D4F9C-6BF1-461C-8854-9835784588F6"},{"vulnerable":true,"criteria":"cpe:2.3:a:mistral:mistralai\\/mistralai-gcp:1.7.3:*:*:*:*:node.js:*:*","matchCriteriaId":"155E454F-DCC6-4AB9-AEA4-B70BADBE412E"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:antoinebcx:ml-toolkit-ts:1.0.4:*:*:*:*:node.js:*:*","matchCriteriaId":"594947B3-4A09-40A8-A2A2-BC69544470C5"},{"vulnerable":true,"criteria":"cpe:2.3:a:antoinebcx:ml-toolkit-ts:1.0.5:*:*:*:*:node.js:*:*","matchCriteriaId":"931991C0-A052-44E7-AD9B-98AFD30D18EF"},{"vulnerable":true,"criteria":"cpe:2.3:a:antoinebcx:ml-toolkit-ts\\/preprocessing:1.0.2:*:*:*:*:node.js:*:*","matchCriteriaId":"B6D9D79E-701A-443C-816F-6B42635D6D8B"},{"vulnerable":true,"criteria":"cpe:2.3:a:antoinebcx:ml-toolkit-ts\\/preprocessing:1.0.3:*:*:*:*:node.js:*:*","matchCriteriaId":"69AE0B1A-82A9-4D2A-8517-390D1FCAB7D7"},{"vulnerable":true,"criteria":"cpe:2.3:a:antoinebcx:ml-toolkit-ts\\/xgboost:1.0.3:*:*:*:*:node.js:*:*","matchCriteriaId":"85EDC7A6-1BF3-4877-96EC-33C0761C14FC"},{"vulnerable":true,"criteria":"cpe:2.3:a:antoinebcx:ml-toolkit-ts\\/xgboost:1.0.4:*:*:*:*:node.js:*:*","matchCriteriaId":"F499C9A2-36CF-476F-959A-68AAC34AEC22"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:beproduct:beproduct\\/nestjs-auth:0.1.2:*:*:*:*:node.js:*:*","matchCriteriaId":"4C978FD0-DFC9-4A4B-8753-1D315D09F9CC"},{"vulnerable":true,"criteria":"cpe:2.3:a:beproduct:beproduct\\/nestjs-auth:0.1.3:*:*:*:*:node.js:*:*","matchCriteriaId":"65E678EC-60A7-456D-868E-26F7034B1804"},{"vulnerable":true,"criteria":"cpe:2.3:a:beproduct:beproduct\\/nestjs-auth:0.1.4:*:*:*:*:node.js:*:*","matchCriteriaId":"D1EB0B5E-C060-413A-AFF8-4A9B1744F94D"},{"vulnerable":true,"criteria":"cpe:2.3:a:beproduct:beproduct\\/nestjs-auth:0.1.5:*:*:*:*:node.js:*:*","matchCriteriaId":"F9FCF17E-610F-42BE-8A8A-566151A9E963"},{"vulnerable":true,"criteria":"cpe:2.3:a:beproduct:beproduct\\/nestjs-auth:0.1.6:*:*:*:*:node.js:*:*","matchCriteriaId":"94E44634-2B32-4D41-8A1F-A2B2691B7355"},{"vulnerable":true,"criteria":"cpe:2.3:a:beproduct:beproduct\\/nestjs-auth:0.1.7:*:*:*:*:node.js:*:*","matchCriteriaId":"3EC944EA-A895-44B7-9A5D-64C9BFCC2533"},{"vulnerable":true,"criteria":"cpe:2.3:a:beproduct:beproduct\\/nestjs-auth:0.1.8:*:*:*:*:node.js:*:*","matchCriteriaId":"D01FF9FA-FB5D-44EB-BD60-44B4DBB463BD"},{"vulnerable":true,"criteria":"cpe:2.3:a:beproduct:beproduct\\/nestjs-auth:0.1.9:*:*:*:*:node.js:*:*","matchCriteriaId":"5E6235B3-798B-49E9-A235-EB87DF420F31"},{"vulnerable":true,"criteria":"cpe:2.3:a:beproduct:beproduct\\/nestjs-auth:0.1.10:*:*:*:*:node.js:*:*","matchCriteriaId":"59EB02AC-72F4-4B95-88C3-EA6B7811F727"},{"vulnerable":true,"criteria":"cpe:2.3:a:beproduct:beproduct\\/nestjs-auth:0.1.11:*:*:*:*:node.js:*:*","matchCriteriaId":"56ECF965-6BDA-42FE-88A7-B1C226ADA354"},{"vulnerable":true,"criteria":"cpe:2.3:a:beproduct:beproduct\\/nestjs-auth:0.1.12:*:*:*:*:node.js:*:*","matchCriteriaId":"4027C6F2-F20E-4433-82BC-A1D80F653553"},{"vulnerable":true,"criteria":"cpe:2.3:a:beproduct:beproduct\\/nestjs-auth:0.1.13:*:*:*:*:node.js:*:*","matchCriteriaId":"8C890E59-835B-4145-914A-6ED49EF6F3B1"},{"vulnerable":true,"criteria":"cpe:2.3:a:beproduct:beproduct\\/nestjs-auth:0.1.14:*:*:*:*:node.js:*:*","matchCriteriaId":"F27B739E-B26E-4519-8D58-021D501E29EA"},{"vulnerable":true,"criteria":"cpe:2.3:a:beproduct:beproduct\\/nestjs-auth:0.1.15:*:*:*:*:node.js:*:*","matchCriteriaId":"F9896B5C-AD72-46D3-8DB3-98EB988A9070"},{"vulnerable":true,"criteria":"cpe:2.3:a:beproduct:beproduct\\/nestjs-auth:0.1.16:*:*:*:*:node.js:*:*","matchCriteriaId":"8D256D9A-728C-472D-A30D-C1FF12315919"},{"vulnerable":true,"criteria":"cpe:2.3:a:beproduct:beproduct\\/nestjs-auth:0.1.17:*:*:*:*:node.js:*:*","matchCriteriaId":"EDB52271-6C39-4598-8174-7952F17248D1"},{"vulnerable":true,"criteria":"cpe:2.3:a:beproduct:beproduct\\/nestjs-auth:0.1.19:*:*:*:*:node.js:*:*","matchCriteriaId":"8A248224-7043-4F5A-9E4E-2130A90DFE98"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:christianalares:git-git-git:1.0.8:*:*:*:*:node.js:*:*","matchCriteriaId":"ABBB1031-5C11-4B1E-B96C-73B677283236"},{"vulnerable":true,"criteria":"cpe:2.3:a:christianalares:git-git-git:1.0.9:*:*:*:*:node.js:*:*","matchCriteriaId":"D4FDC30F-5D13-4B2D-9661-B3737CA37853"},{"vulnerable":true,"criteria":"cpe:2.3:a:christianalares:git-git-git:1.0.10:*:*:*:*:node.js:*:*","matchCriteriaId":"F19C4E9F-6020-4BB4-8795-3249FE543DA5"},{"vulnerable":true,"criteria":"cpe:2.3:a:christianalares:git-git-git:1.0.12:*:*:*:*:node.js:*:*","matchCriteriaId":"3E3E2AA7-36BE-4D7D-BD79-2BAB9D094D73"},{"vulnerable":true,"criteria":"cpe:2.3:a:christianalares:git_branch_selector:1.3.3:*:*:*:*:node.js:*:*","matchCriteriaId":"BDDFD49C-27FE-47C0-BB49-1FCB26A6705D"},{"vulnerable":true,"criteria":"cpe:2.3:a:christianalares:git_branch_selector:1.3.4:*:*:*:*:node.js:*:*","matchCriteriaId":"A4336CB9-DA1A-4615-9925-B68E9DEC8E85"},{"vulnerable":true,"criteria":"cpe:2.3:a:christianalares:git_branch_selector:1.3.5:*:*:*:*:node.js:*:*","matchCriteriaId":"1175C7AE-C552-47C2-9EA3-D4B4F8B9EAB2"},{"vulnerable":true,"criteria":"cpe:2.3:a:christianalares:git_branch_selector:1.3.7:*:*:*:*:node.js:*:*","matchCriteriaId":"1C987350-268D-4E5E-BE7E-7F6941E8588F"},{"vulnerable":true,"criteria":"cpe:2.3:a:christianalares:nextmove-mcp:0.1.3:*:*:*:*:node.js:*:*","matchCriteriaId":"040A40A4-05A6-4FE4-9631-B8C211E54416"},{"vulnerable":true,"criteria":"cpe:2.3:a:christianalares:nextmove-mcp:0.1.4:*:*:*:*:node.js:*:*","matchCriteriaId":"65EE28AF-929E-4BBE-B6FA-D46F692C95DB"},{"vulnerable":true,"criteria":"cpe:2.3:a:christianalares:nextmove-mcp:0.1.5:*:*:*:*:node.js:*:*","matchCriteriaId":"DA129E74-5DDC-4792-8D72-DBD583A35DB3"},{"vulnerable":true,"criteria":"cpe:2.3:a:christianalares:nextmove-mcp:0.1.7:*:*:*:*:node.js:*:*","matchCriteriaId":"A6728EEF-620A-45EA-B69C-51415177A734"},{"vulnerable":true,"criteria":"cpe:2.3:a:christianalares:tolka\\/cli:1.0.2:*:*:*:*:node.js:*:*","matchCriteriaId":"F153B46F-9825-4A0C-9CDC-262EEBC5DC5A"},{"vulnerable":true,"criteria":"cpe:2.3:a:christianalares:tolka\\/cli:1.0.3:*:*:*:*:node.js:*:*","matchCriteriaId":"B1B0435C-6043-40B8-B6F7-C7CA7BF5EB76"},{"vulnerable":true,"criteria":"cpe:2.3:a:christianalares:tolka\\/cli:1.0.4:*:*:*:*:node.js:*:*","matchCriteriaId":"4DC8ECE9-1BD3-47AC-A81C-57C7FCA42123"},{"vulnerable":true,"criteria":"cpe:2.3:a:christianalares:tolka\\/cli:1.0.6:*:*:*:*:node.js:*:*","matchCriteriaId":"518392A7-84C2-4D26-AE55-963CC446CA30"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:multiagentcognition:cmux-agent-mcp:0.1.3:*:*:*:*:node.js:*:*","matchCriteriaId":"44246EE1-AB3A-47F6-A0DB-4BC51798E0E0"},{"vulnerable":true,"criteria":"cpe:2.3:a:multiagentcognition:cmux-agent-mcp:0.1.4:*:*:*:*:node.js:*:*","matchCriteriaId":"4033F94F-1D38-472F-B34A-0C176CE5A81D"},{"vulnerable":true,"criteria":"cpe:2.3:a:multiagentcognition:cmux-agent-mcp:0.1.5:*:*:*:*:node.js:*:*","matchCriteriaId":"BE95C335-CC20-493B-82B8-82C85C81888C"},{"vulnerable":true,"criteria":"cpe:2.3:a:multiagentcognition:cmux-agent-mcp:0.1.6:*:*:*:*:node.js:*:*","matchCriteriaId":"37CE8050-ECD0-4A39-BD28-59AA8652B9BD"},{"vulnerable":true,"criteria":"cpe:2.3:a:multiagentcognition:cmux-agent-mcp:0.1.7:*:*:*:*:node.js:*:*","matchCriteriaId":"AF157C55-23F2-4CE1-9A36-01D6E8C4FF13"},{"vulnerable":true,"criteria":"cpe:2.3:a:multiagentcognition:cmux-agent-mcp:0.1.8:*:*:*:*:node.js:*:*","matchCriteriaId":"155E3E5C-7B3F-47E3-A114-52233BF39E23"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:abhishake1:supersurkhet\\/cli:0.0.2:*:*:*:*:node.js:*:*","matchCriteriaId":"D0104804-2054-4450-869C-AF381036ABC1"},{"vulnerable":true,"criteria":"cpe:2.3:a:abhishake1:supersurkhet\\/cli:0.0.3:*:*:*:*:node.js:*:*","matchCriteriaId":"D3C90532-6F0F-4486-856F-A4323D45A39F"},{"vulnerable":true,"criteria":"cpe:2.3:a:abhishake1:supersurkhet\\/cli:0.0.4:*:*:*:*:node.js:*:*","matchCriteriaId":"DF8644A1-C9B4-4E21-B441-CCBCA12177E4"},{"vulnerable":true,"criteria":"cpe:2.3:a:abhishake1:supersurkhet\\/cli:0.0.5:*:*:*:*:node.js:*:*","matchCriteriaId":"9746354A-2FA4-4F69-A750-09ADACE0BAB5"},{"vulnerable":true,"criteria":"cpe:2.3:a:abhishake1:supersurkhet\\/cli:0.0.6:*:*:*:*:node.js:*:*","matchCriteriaId":"DED6C476-23BF-4918-82F1-34A7AD1FFA51"},{"vulnerable":true,"criteria":"cpe:2.3:a:abhishake1:supersurkhet\\/cli:0.0.7:*:*:*:*:node.js:*:*","matchCriteriaId":"B70D857C-474B-47EE-B6A0-A6F1FBA90DB2"},{"vulnerable":true,"criteria":"cpe:2.3:a:abhishake1:supersurkhet\\/sdk:0.0.2:*:*:*:*:node.js:*:*","matchCriteriaId":"DA184AEA-5048-4F95-AD91-9E7F17F12911"},{"vulnerable":true,"criteria":"cpe:2.3:a:abhishake1:supersurkhet\\/sdk:0.0.3:*:*:*:*:node.js:*:*","matchCriteriaId":"00622066-6FC6-4B62-A8A0-0D3033934952"},{"vulnerable":true,"criteria":"cpe:2.3:a:abhishake1:supersurkhet\\/sdk:0.0.4:*:*:*:*:node.js:*:*","matchCriteriaId":"FA7FE0E8-B8B2-4DA6-B2FD-62142BE29F6D"},{"vulnerable":true,"criteria":"cpe:2.3:a:abhishake1:supersurkhet\\/sdk:0.0.5:*:*:*:*:node.js:*:*","matchCriteriaId":"DC983260-DEF3-4716-8017-8B2209B6688A"},{"vulnerable":true,"criteria":"cpe:2.3:a:abhishake1:supersurkhet\\/sdk:0.0.6:*:*:*:*:node.js:*:*","matchCriteriaId":"C6B36863-0C82-4F8D-BB7B-1BD08904ACAB"},{"vulnerable":true,"criteria":"cpe:2.3:a:abhishake1:supersurkhet\\/sdk:0.0.7:*:*:*:*:node.js:*:*","matchCriteriaId":"26A3B163-4875-4A34-A434-32E290D135C8"},{"vulnerable":true,"criteria":"cpe:2.3:a:abhishake1:taskflow-corp\\/cli:0.1.24:*:*:*:*:node.js:*:*","matchCriteriaId":"BDFCB2DF-5DFD-4C5D-B949-67C51B52A6D9"},{"vulnerable":true,"criteria":"cpe:2.3:a:abhishake1:taskflow-corp\\/cli:0.1.25:*:*:*:*:node.js:*:*","matchCriteriaId":"5D927FDE-0460-4880-B09D-60CD31D755E0"},{"vulnerable":true,"criteria":"cpe:2.3:a:abhishake1:taskflow-corp\\/cli:0.1.26:*:*:*:*:node.js:*:*","matchCriteriaId":"04F131A4-3503-4CB9-9724-A490330553CC"},{"vulnerable":true,"criteria":"cpe:2.3:a:abhishake1:taskflow-corp\\/cli:0.1.27:*:*:*:*:node.js:*:*","matchCriteriaId":"920E6AEB-D53C-4776-81BB-8F1FB2593D88"},{"vulnerable":true,"criteria":"cpe:2.3:a:abhishake1:taskflow-corp\\/cli:0.1.28:*:*:*:*:node.js:*:*","matchCriteriaId":"7F40F7C2-CCBD-4645-96D2-1B819D63DA71"},{"vulnerable":true,"criteria":"cpe:2.3:a:abhishake1:taskflow-corp\\/cli:0.1.29:*:*:*:*:node.js:*:*","matchCriteriaId":"96015B85-43B7-4454-B572-37CE3B6E1A9F"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:kilbot:tallyui\\/components:1.0.1:*:*:*:*:node.js:*:*","matchCriteriaId":"CE827412-39D0-4AF2-BD75-7B8E7AC7F4F8"},{"vulnerable":true,"criteria":"cpe:2.3:a:kilbot:tallyui\\/components:1.0.2:*:*:*:*:node.js:*:*","matchCriteriaId":"4B9419A2-0575-414F-8E2D-FCA13C0406A3"},{"vulnerable":true,"criteria":"cpe:2.3:a:kilbot:tallyui\\/components:1.0.3:*:*:*:*:node.js:*:*","matchCriteriaId":"A88FAB68-11D1-4FFA-AB97-5785D642A2B9"},{"vulnerable":true,"criteria":"cpe:2.3:a:kilbot:tallyui\\/connector-medusa:1.0.1:*:*:*:*:node.js:*:*","matchCriteriaId":"57B75FE7-19D6-41A4-9875-A1CC71C3C25F"},{"vulnerable":true,"criteria":"cpe:2.3:a:kilbot:tallyui\\/connector-medusa:1.0.2:*:*:*:*:node.js:*:*","matchCriteriaId":"D113DDD0-F908-4DBD-83D2-0EB68881ABAB"},{"vulnerable":true,"criteria":"cpe:2.3:a:kilbot:tallyui\\/connector-medusa:1.0.3:*:*:*:*:node.js:*:*","matchCriteriaId":"6E99B9F7-AB8F-455C-BBC8-EDA62D559443"},{"vulnerable":true,"criteria":"cpe:2.3:a:kilbot:tallyui\\/connector-shopify:1.0.1:*:*:*:*:node.js:*:*","matchCriteriaId":"4FE5A302-641D-46C3-975F-49922848A75B"},{"vulnerable":true,"criteria":"cpe:2.3:a:kilbot:tallyui\\/connector-shopify:1.0.2:*:*:*:*:node.js:*:*","matchCriteriaId":"2F3ABDB1-08F4-43E6-BC3C-BC8C8E935E4E"},{"vulnerable":true,"criteria":"cpe:2.3:a:kilbot:tallyui\\/connector-shopify:1.0.3:*:*:*:*:node.js:*:*","matchCriteriaId":"EC6E37B6-901C-4AAD-95A5-FCB5E638B5AD"},{"vulnerable":true,"criteria":"cpe:2.3:a:kilbot:tallyui\\/connector-vendure:1.0.1:*:*:*:*:node.js:*:*","matchCriteriaId":"BEA48B7A-B29B-48C6-88BE-A3FB52A39BF9"},{"vulnerable":true,"criteria":"cpe:2.3:a:kilbot:tallyui\\/connector-vendure:1.0.2:*:*:*:*:node.js:*:*","matchCriteriaId":"14BF33BE-EDCC-4F5C-A113-8705A4E4C047"},{"vulnerable":true,"criteria":"cpe:2.3:a:kilbot:tallyui\\/connector-vendure:1.0.3:*:*:*:*:node.js:*:*","matchCriteriaId":"630A6547-C1DC-41CF-8C32-5EF0603EFA15"},{"vulnerable":true,"criteria":"cpe:2.3:a:kilbot:tallyui\\/connector-woocommerce:1.0.1:*:*:*:*:node.js:*:*","matchCriteriaId":"BC0B119F-12C1-44CE-91EE-0A566C53838C"},{"vulnerable":true,"criteria":"cpe:2.3:a:kilbot:tallyui\\/connector-woocommerce:1.0.2:*:*:*:*:node.js:*:*","matchCriteriaId":"820400F0-A9E5-4BA3-AFA7-A14AEE215A0D"},{"vulnerable":true,"criteria":"cpe:2.3:a:kilbot:tallyui\\/connector-woocommerce:1.0.3:*:*:*:*:node.js:*:*","matchCriteriaId":"46E1D5AC-1BDF-412C-B43C-DB23E4A587FF"},{"vulnerable":true,"criteria":"cpe:2.3:a:kilbot:tallyui\\/core:0.2.1:*:*:*:*:node.js:*:*","matchCriteriaId":"738AEB5F-4E49-46E9-9C4D-ACE0F8844461"},{"vulnerable":true,"criteria":"cpe:2.3:a:kilbot:tallyui\\/core:0.2.2:*:*:*:*:node.js:*:*","matchCriteriaId":"005DD345-7AF9-4073-A6E6-8E3640C0FD06"},{"vulnerable":true,"criteria":"cpe:2.3:a:kilbot:tallyui\\/core:0.2.3:*:*:*:*:node.js:*:*","matchCriteriaId":"AE20EF92-0051-4C5A-B80B-8C3D3688034C"},{"vulnerable":true,"criteria":"cpe:2.3:a:kilbot:tallyui\\/database:1.0.1:*:*:*:*:node.js:*:*","matchCriteriaId":"CA34ACDF-CB7C-4621-B106-A91562A83F0A"},{"vulnerable":true,"criteria":"cpe:2.3:a:kilbot:tallyui\\/database:1.0.2:*:*:*:*:node.js:*:*","matchCriteriaId":"8C0A5EB4-BC10-495C-A034-5EB3BBBB2196"},{"vulnerable":true,"criteria":"cpe:2.3:a:kilbot:tallyui\\/database:1.0.3:*:*:*:*:node.js:*:*","matchCriteriaId":"7E0E7098-FCC0-4C1D-A023-4C50B805F91A"},{"vulnerable":true,"criteria":"cpe:2.3:a:kilbot:tallyui\\/pos:0.1.1:*:*:*:*:node.js:*:*","matchCriteriaId":"03E7AC5E-29C2-476A-999F-F42A1776F72B"},{"vulnerable":true,"criteria":"cpe:2.3:a:kilbot:tallyui\\/pos:0.1.2:*:*:*:*:node.js:*:*","matchCriteriaId":"522CAFDE-82BE-4088-B7FC-736EC148D6A3"},{"vulnerable":true,"criteria":"cpe:2.3:a:kilbot:tallyui\\/pos:0.1.3:*:*:*:*:node.js:*:*","matchCriteriaId":"B39844AA-BD90-488E-98A2-296F5ED4FC2F"},{"vulnerable":true,"criteria":"cpe:2.3:a:kilbot:tallyui\\/storage-sqlite:0.2.1:*:*:*:*:node.js:*:*","matchCriteriaId":"E0A99EA0-7241-4C44-9782-AD2FB069DDC7"},{"vulnerable":true,"criteria":"cpe:2.3:a:kilbot:tallyui\\/storage-sqlite:0.2.2:*:*:*:*:node.js:*:*","matchCriteriaId":"6A149819-1C5E-4567-AEAE-BCBE9E550C57"},{"vulnerable":true,"criteria":"cpe:2.3:a:kilbot:tallyui\\/storage-sqlite:0.2.3:*:*:*:*:node.js:*:*","matchCriteriaId":"3254173E-D9B5-4C04-A283-4FF75AAA612A"},{"vulnerable":true,"criteria":"cpe:2.3:a:kilbot:tallyui\\/theme:0.2.1:*:*:*:*:node.js:*:*","matchCriteriaId":"17A9A31F-73CB-4BAB-8E0E-148173FE56A6"},{"vulnerable":true,"criteria":"cpe:2.3:a:kilbot:tallyui\\/theme:0.2.2:*:*:*:*:node.js:*:*","matchCriteriaId":"23951E73-0F83-48FB-8FAB-F1814B701F0E"},{"vulnerable":true,"criteria":"cpe:2.3:a:kilbot:tallyui\\/theme:0.2.3:*:*:*:*:node.js:*:*","matchCriteriaId":"E7630C77-0C16-4FDD-8AB6-BCED6A560C43"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:matheuspergoli:draftauth\\/client:0.2.1:*:*:*:*:node.js:*:*","matchCriteriaId":"2F5FEB55-E63C-453D-A287-CB780FCC7856"},{"vulnerable":true,"criteria":"cpe:2.3:a:matheuspergoli:draftauth\\/client:0.2.2:*:*:*:*:node.js:*:*","matchCriteriaId":"CF7278CC-15F1-4F62-8930-4DDF4BC007A1"},{"vulnerable":true,"criteria":"cpe:2.3:a:matheuspergoli:draftauth\\/core:0.13.1:*:*:*:*:node.js:*:*","matchCriteriaId":"0053E117-B175-472A-91F9-6E58D84F944B"},{"vulnerable":true,"criteria":"cpe:2.3:a:matheuspergoli:draftauth\\/core:0.13.2:*:*:*:*:node.js:*:*","matchCriteriaId":"14BA9233-BED6-44CD-9193-A58F542D1A62"},{"vulnerable":true,"criteria":"cpe:2.3:a:matheuspergoli:draftlab\\/auth:0.24.1:*:*:*:*:node.js:*:*","matchCriteriaId":"6744D18D-1AD6-413A-81D2-5D2BD746E5EE"},{"vulnerable":true,"criteria":"cpe:2.3:a:matheuspergoli:draftlab\\/auth:0.24.2:*:*:*:*:node.js:*:*","matchCriteriaId":"1A858314-8278-4554-93D1-296BECD94ABA"},{"vulnerable":true,"criteria":"cpe:2.3:a:matheuspergoli:draftlab\\/auth-router:0.5.1:*:*:*:*:node.js:*:*","matchCriteriaId":"C0EA93F3-491E-48D2-9D80-68B6DD3C5C01"},{"vulnerable":true,"criteria":"cpe:2.3:a:matheuspergoli:draftlab\\/auth-router:0.5.2:*:*:*:*:node.js:*:*","matchCriteriaId":"B48EF42E-AC8E-448A-AD76-C6EC27FAC0A2"},{"vulnerable":true,"criteria":"cpe:2.3:a:matheuspergoli:draftlab\\/db:0.16.1:*:*:*:*:node.js:*:*","matchCriteriaId":"92872833-E8E7-4B6B-9AEE-AE2DFCC5DF7B"},{"vulnerable":true,"criteria":"cpe:2.3:a:matheuspergoli:draftlab\\/db:0.16.2:*:*:*:*:node.js:*:*","matchCriteriaId":"EADC1394-2369-4ABA-BFC1-FE976CFF8D9E"},{"vulnerable":true,"criteria":"cpe:2.3:a:matheuspergoli:simple_type-safe_actions:0.8.3:*:*:*:*:node.js:*:*","matchCriteriaId":"3F3E2F23-8C50-4F63-8E72-2E508582F098"},{"vulnerable":true,"criteria":"cpe:2.3:a:matheuspergoli:simple_type-safe_actions:0.8.4:*:*:*:*:node.js:*:*","matchCriteriaId":"D57DBFDF-EAA6-4277-827E-DE83D9D76D2D"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:neilcochran:cross-stitch:1.1.3:*:*:*:*:node.js:*:*","matchCriteriaId":"3B70C984-DEB7-4441-B4A2-AE4879E270A8"},{"vulnerable":true,"criteria":"cpe:2.3:a:neilcochran:cross-stitch:1.1.4:*:*:*:*:node.js:*:*","matchCriteriaId":"343A6F38-606D-4A57-9686-00CAA5BD0B34"},{"vulnerable":true,"criteria":"cpe:2.3:a:neilcochran:cross-stitch:1.1.6:*:*:*:*:node.js:*:*","matchCriteriaId":"950A267F-B517-443D-9B20-E9DD97808330"},{"vulnerable":true,"criteria":"cpe:2.3:a:neilcochran:squawk\\/airports:0.6.2:*:*:*:*:node.js:*:*","matchCriteriaId":"2627235B-CE74-409B-BE83-2EAE489F38FE"},{"vulnerable":true,"criteria":"cpe:2.3:a:neilcochran:squawk\\/airports:0.6.3:*:*:*:*:node.js:*:*","matchCriteriaId":"B2DB7370-369E-45DC-BA2F-6A7369557EEC"},{"vulnerable":true,"criteria":"cpe:2.3:a:neilcochran:squawk\\/airports:0.6.5:*:*:*:*:node.js:*:*","matchCriteriaId":"AEA9F18A-675B-427B-B44D-76EB10B51A9A"},{"vulnerable":true,"criteria":"cpe:2.3:a:neilcochran:squawk\\/airspace:0.8.1:*:*:*:*:node.js:*:*","matchCriteriaId":"3EBDA6B1-6196-4C71-A31F-7CDF7775E980"},{"vulnerable":true,"criteria":"cpe:2.3:a:neilcochran:squawk\\/airspace:0.8.2:*:*:*:*:node.js:*:*","matchCriteriaId":"8983D06D-6FA6-42FB-84B9-BB47DC686635"},{"vulnerable":true,"criteria":"cpe:2.3:a:neilcochran:squawk\\/airspace:0.8.4:*:*:*:*:node.js:*:*","matchCriteriaId":"82DEF18E-ECB2-42E7-A6DD-69FD758FDE6E"},{"vulnerable":true,"criteria":"cpe:2.3:a:neilcochran:squawk\\/airspace-data:0.5.3:*:*:*:*:node.js:*:*","matchCriteriaId":"A4A3CFF6-7CA9-4727-B98D-F510747FD59A"},{"vulnerable":true,"criteria":"cpe:2.3:a:neilcochran:squawk\\/airspace-data:0.5.4:*:*:*:*:node.js:*:*","matchCriteriaId":"7382BD5F-4538-4911-AEDD-AB60EFDC4A70"},{"vulnerable":true,"criteria":"cpe:2.3:a:neilcochran:squawk\\/airspace-data:0.5.6:*:*:*:*:node.js:*:*","matchCriteriaId":"4B672420-4F93-48BF-80A5-3D54AC4D1F2C"},{"vulnerable":true,"criteria":"cpe:2.3:a:neilcochran:squawk\\/airway-data:0.5.4:*:*:*:*:node.js:*:*","matchCriteriaId":"A03F20F4-74BE-4CD0-B8BD-48E72F64DE11"},{"vulnerable":true,"criteria":"cpe:2.3:a:neilcochran:squawk\\/airway-data:0.5.5:*:*:*:*:node.js:*:*","matchCriteriaId":"DDC5A4B7-7769-4998-B57C-80A8B3B736FE"},{"vulnerable":true,"criteria":"cpe:2.3:a:neilcochran:squawk\\/airway-data:0.5.7:*:*:*:*:node.js:*:*","matchCriteriaId":"A1426B88-C75A-44B6-A30D-0C97E54F4867"},{"vulnerable":true,"criteria":"cpe:2.3:a:neilcochran:squawk\\/airways:0.4.2:*:*:*:*:node.js:*:*","matchCriteriaId":"F3DD7963-DE5B-4751-B900-1157633E3DE2"},{"vulnerable":true,"criteria":"cpe:2.3:a:neilcochran:squawk\\/airways:0.4.3:*:*:*:*:node.js:*:*","matchCriteriaId":"91F32BC6-F5A1-441D-A2D3-370B30B5BB3A"},{"vulnerable":true,"criteria":"cpe:2.3:a:neilcochran:squawk\\/airways:0.4.5:*:*:*:*:node.js:*:*","matchCriteriaId":"652C6BB1-4333-4DAF-9625-D374DF03A7CE"},{"vulnerable":true,"criteria":"cpe:2.3:a:neilcochran:squawk\\/fix-data:0.6.4:*:*:*:*:node.js:*:*","matchCriteriaId":"978C1E2C-1A0F-47FC-93A3-2A0259F8B7A4"},{"vulnerable":true,"criteria":"cpe:2.3:a:neilcochran:squawk\\/fix-data:0.6.5:*:*:*:*:node.js:*:*","matchCriteriaId":"90DC91A7-8D51-46E7-8A47-9310A3C6B210"},{"vulnerable":true,"criteria":"cpe:2.3:a:neilcochran:squawk\\/fix-data:0.6.7:*:*:*:*:node.js:*:*","matchCriteriaId":"4CC005F3-2199-40D8-9291-0DF37AE4317C"},{"vulnerable":true,"criteria":"cpe:2.3:a:neilcochran:squawk\\/fixes:0.3.2:*:*:*:*:node.js:*:*","matchCriteriaId":"7F391873-65A0-498A-A3DA-738DD980E757"},{"vulnerable":true,"criteria":"cpe:2.3:a:neilcochran:squawk\\/fixes:0.3.3:*:*:*:*:node.js:*:*","matchCriteriaId":"0128DE66-C98F-40C2-9964-D9FC75AF86A2"},{"vulnerable":true,"criteria":"cpe:2.3:a:neilcochran:squawk\\/fixes:0.3.5:*:*:*:*:node.js:*:*","matchCriteriaId":"7B513E54-BF88-4B06-B089-EDBE3CF84684"},{"vulnerable":true,"criteria":"cpe:2.3:a:neilcochran:squawk\\/flight-math:0.5.4:*:*:*:*:node.js:*:*","matchCriteriaId":"E407DEE4-A9E2-401B-A33E-C5F4C4784AB7"},{"vulnerable":true,"criteria":"cpe:2.3:a:neilcochran:squawk\\/flight-math:0.5.5:*:*:*:*:node.js:*:*","matchCriteriaId":"18154696-C3F5-46FF-A299-CA077AAB558D"},{"vulnerable":true,"criteria":"cpe:2.3:a:neilcochran:squawk\\/flight-math:0.5.7:*:*:*:*:node.js:*:*","matchCriteriaId":"C2C983F7-0DEE-40FE-A88A-1ED84FC64ED5"},{"vulnerable":true,"criteria":"cpe:2.3:a:neilcochran:squawk\\/flightplan:0.5.2:*:*:*:*:node.js:*:*","matchCriteriaId":"57FCB736-B2B3-414F-A4F3-761F66A39D49"},{"vulnerable":true,"criteria":"cpe:2.3:a:neilcochran:squawk\\/flightplan:0.5.3:*:*:*:*:node.js:*:*","matchCriteriaId":"FEEA3621-29DE-4454-875D-362FBBD527B7"},{"vulnerable":true,"criteria":"cpe:2.3:a:neilcochran:squawk\\/flightplan:0.5.5:*:*:*:*:node.js:*:*","matchCriteriaId":"08B5B66F-8863-4B0C-9B90-B8F2063504D5"},{"vulnerable":true,"criteria":"cpe:2.3:a:neilcochran:squawk\\/geo:0.4.4:*:*:*:*:node.js:*:*","matchCriteriaId":"320F346B-0647-4A50-945C-9FCCDC467D1C"},{"vulnerable":true,"criteria":"cpe:2.3:a:neilcochran:squawk\\/geo:0.4.5:*:*:*:*:node.js:*:*","matchCriteriaId":"97E0466D-C6B7-47CB-9B65-CB391385C2E1"},{"vulnerable":true,"criteria":"cpe:2.3:a:neilcochran:squawk\\/geo:0.4.7:*:*:*:*:node.js:*:*","matchCriteriaId":"0F5E3A6A-9A18-486D-97EE-6E6E4241DD6B"},{"vulnerable":true,"criteria":"cpe:2.3:a:neilcochran:squawk\\/icao-registry:0.5.2:*:*:*:*:node.js:*:*","matchCriteriaId":"3C6563D3-935E-4F6D-81CF-653113AAF840"},{"vulnerable":true,"criteria":"cpe:2.3:a:neilcochran:squawk\\/icao-registry:0.5.3:*:*:*:*:node.js:*:*","matchCriteriaId":"4C522B51-B6B1-4DA4-8015-B80509D15E7E"},{"vulnerable":true,"criteria":"cpe:2.3:a:neilcochran:squawk\\/icao-registry:0.5.5:*:*:*:*:node.js:*:*","matchCriteriaId":"509EE5CB-DD9E-4D3F-B176-ED28C7FFB546"},{"vulnerable":true,"criteria":"cpe:2.3:a:neilcochran:squawk\\/icao-registry-data:0.8.4:*:*:*:*:node.js:*:*","matchCriteriaId":"DDCF154D-42A9-454D-86C0-3D34BA00192F"},{"vulnerable":true,"criteria":"cpe:2.3:a:neilcochran:squawk\\/icao-registry-data:0.8.5:*:*:*:*:node.js:*:*","matchCriteriaId":"219CE93B-2F43-472B-8454-AD6A83CB3471"},{"vulnerable":true,"criteria":"cpe:2.3:a:neilcochran:squawk\\/icao-registry-data:0.8.7:*:*:*:*:node.js:*:*","matchCriteriaId":"9484F728-F6FB-44B8-B8C7-296DE148B0A1"},{"vulnerable":true,"criteria":"cpe:2.3:a:neilcochran:squawk\\/mcp:0.9.1:*:*:*:*:node.js:*:*","matchCriteriaId":"C7B15D38-C694-4A22-B042-A582F7D17FFF"},{"vulnerable":true,"criteria":"cpe:2.3:a:neilcochran:squawk\\/mcp:0.9.2:*:*:*:*:node.js:*:*","matchCriteriaId":"CC1559A2-930B-4D5A-A2BE-287697BA95B6"},{"vulnerable":true,"criteria":"cpe:2.3:a:neilcochran:squawk\\/mcp:0.9.4:*:*:*:*:node.js:*:*","matchCriteriaId":"D16AAE72-1C01-46CF-BA60-E4949D156C51"},{"vulnerable":true,"criteria":"cpe:2.3:a:neilcochran:squawk\\/navaid-data:0.6.4:*:*:*:*:node.js:*:*","matchCriteriaId":"2FBA31C0-9B8D-4496-B4CA-1BE116E9273A"},{"vulnerable":true,"criteria":"cpe:2.3:a:neilcochran:squawk\\/navaid-data:0.6.5:*:*:*:*:node.js:*:*","matchCriteriaId":"ABB39E2E-56B5-43A5-BB46-527C4B949D7B"},{"vulnerable":true,"criteria":"cpe:2.3:a:neilcochran:squawk\\/navaid-data:0.6.7:*:*:*:*:node.js:*:*","matchCriteriaId":"9ED34F82-5314-4F28-9C01-C11FAD9A80A1"},{"vulnerable":true,"criteria":"cpe:2.3:a:neilcochran:squawk\\/navaids:0.4.2:*:*:*:*:node.js:*:*","matchCriteriaId":"14A3BAB0-8D33-4B2C-9694-E6D45B73C757"},{"vulnerable":true,"criteria":"cpe:2.3:a:neilcochran:squawk\\/navaids:0.4.3:*:*:*:*:node.js:*:*","matchCriteriaId":"BA0B74F2-AD5D-45AC-9B59-C49B66F4267D"},{"vulnerable":true,"criteria":"cpe:2.3:a:neilcochran:squawk\\/navaids:0.4.5:*:*:*:*:node.js:*:*","matchCriteriaId":"15194C2E-3396-434D-A528-62BC2CD7D594"},{"vulnerable":true,"criteria":"cpe:2.3:a:neilcochran:squawk\\/notams:0.3.6:*:*:*:*:node.js:*:*","matchCriteriaId":"FD615E09-62BB-4E42-A43C-3B71F9677299"},{"vulnerable":true,"criteria":"cpe:2.3:a:neilcochran:squawk\\/notams:0.3.7:*:*:*:*:node.js:*:*","matchCriteriaId":"DEE5F79C-49ED-4FFF-BD45-43BA5E5DA981"},{"vulnerable":true,"criteria":"cpe:2.3:a:neilcochran:squawk\\/notams:0.3.9:*:*:*:*:node.js:*:*","matchCriteriaId":"53F047F2-7B66-48AC-880D-AF364C676504"},{"vulnerable":true,"criteria":"cpe:2.3:a:neilcochran:squawk\\/procedure-data:0.7.3:*:*:*:*:node.js:*:*","matchCriteriaId":"58FCCDBF-F9C5-4975-B137-62CD116D2692"},{"vulnerable":true,"criteria":"cpe:2.3:a:neilcochran:squawk\\/procedure-data:0.7.4:*:*:*:*:node.js:*:*","matchCriteriaId":"E76214B8-F078-4163-BE05-1379ECD507EE"},{"vulnerable":true,"criteria":"cpe:2.3:a:neilcochran:squawk\\/procedure-data:0.7.6:*:*:*:*:node.js:*:*","matchCriteriaId":"553BE787-C195-4394-89AF-ACB8AD145D76"},{"vulnerable":true,"criteria":"cpe:2.3:a:neilcochran:squawk\\/procedures:0.5.2:*:*:*:*:node.js:*:*","matchCriteriaId":"05411A98-A743-4F81-8F32-285FA6374781"},{"vulnerable":true,"criteria":"cpe:2.3:a:neilcochran:squawk\\/procedures:0.5.3:*:*:*:*:node.js:*:*","matchCriteriaId":"CEA2C89A-5DD4-4837-8E5E-6C87980143FB"},{"vulnerable":true,"criteria":"cpe:2.3:a:neilcochran:squawk\\/procedures:0.5.5:*:*:*:*:node.js:*:*","matchCriteriaId":"2CFB1E09-E1F1-4CB5-9225-EDACBC4DDFCD"},{"vulnerable":true,"criteria":"cpe:2.3:a:neilcochran:squawk\\/types:0.8.1:*:*:*:*:node.js:*:*","matchCriteriaId":"F987A1C3-D968-4CBC-BF94-A27AC423978F"},{"vulnerable":true,"criteria":"cpe:2.3:a:neilcochran:squawk\\/types:0.8.2:*:*:*:*:node.js:*:*","matchCriteriaId":"FCD198F1-AB0E-4452-8206-7841D2EDE15E"},{"vulnerable":true,"criteria":"cpe:2.3:a:neilcochran:squawk\\/types:0.8.4:*:*:*:*:node.js:*:*","matchCriteriaId":"7320FAEC-374A-4394-B255-D110B2F0B235"},{"vulnerable":true,"criteria":"cpe:2.3:a:neilcochran:squawk\\/units:0.4.3:*:*:*:*:node.js:*:*","matchCriteriaId":"1EFE1CEA-CE41-4570-B7A3-46C07CF3168B"},{"vulnerable":true,"criteria":"cpe:2.3:a:neilcochran:squawk\\/units:0.4.4:*:*:*:*:node.js:*:*","matchCriteriaId":"34A0876F-3E63-47B6-8B02-7C52DEF556BF"},{"vulnerable":true,"criteria":"cpe:2.3:a:neilcochran:squawk\\/units:0.4.6:*:*:*:*:node.js:*:*","matchCriteriaId":"479386B7-BA7B-4E94-8C1F-3038A68E6F8B"},{"vulnerable":true,"criteria":"cpe:2.3:a:neilcochran:squawk\\/weather:0.5.6:*:*:*:*:node.js:*:*","matchCriteriaId":"75CD77F2-84B6-4F09-9947-AB5CDC44348D"},{"vulnerable":true,"criteria":"cpe:2.3:a:neilcochran:squawk\\/weather:0.5.7:*:*:*:*:node.js:*:*","matchCriteriaId":"38073AF8-2DC7-495F-811A-3B3D6BA535BA"},{"vulnerable":true,"criteria":"cpe:2.3:a:neilcochran:squawk\\/weather:0.5.9:*:*:*:*:node.js:*:*","matchCriteriaId":"943880B7-9E09-4E62-AACF-3DF5B58983D6"},{"vulnerable":true,"criteria":"cpe:2.3:a:neilcochran:ts-dna:3.0.1:*:*:*:*:node.js:*:*","matchCriteriaId":"0B42EF24-28A8-4750-8DA2-1DD03342746D"},{"vulnerable":true,"criteria":"cpe:2.3:a:neilcochran:ts-dna:3.0.2:*:*:*:*:node.js:*:*","matchCriteriaId":"FA7C2E27-5BEA-4916-A68C-F3E4B2031034"},{"vulnerable":true,"criteria":"cpe:2.3:a:neilcochran:ts-dna:3.0.4:*:*:*:*:node.js:*:*","matchCriteriaId":"80E58141-DF3C-40B8-95BF-5DDC1A8F6804"},{"vulnerable":true,"criteria":"cpe:2.3:a:neilcochran:wot-api:0.8.1:*:*:*:*:node.js:*:*","matchCriteriaId":"05F3CC2D-DCE0-4040-A080-58DD2417404B"},{"vulnerable":true,"criteria":"cpe:2.3:a:neilcochran:wot-api:0.8.2:*:*:*:*:node.js:*:*","matchCriteriaId":"4D673484-06C3-4C14-9480-CEFD20B97602"},{"vulnerable":true,"criteria":"cpe:2.3:a:neilcochran:wot-api:0.8.4:*:*:*:*:node.js:*:*","matchCriteriaId":"374B7044-DBE7-41F3-9C20-FD63B70E983B"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:agentworkhq:agentwork-cli:0.1.4:*:*:*:*:node.js:*:*","matchCriteriaId":"66E9671A-4AE0-4428-AFBE-DCB418DE7779"},{"vulnerable":true,"criteria":"cpe:2.3:a:agentworkhq:agentwork-cli:0.1.5:*:*:*:*:node.js:*:*","matchCriteriaId":"60520157-E730-4812-A90E-A6520A517744"},{"vulnerable":true,"criteria":"cpe:2.3:a:dirigible:dirigible-ai\\/sdk:0.6.2:*:*:*:*:node.js:*:*","matchCriteriaId":"2AF16231-9C02-4533-B571-6790F9B2667F"},{"vulnerable":true,"criteria":"cpe:2.3:a:dirigible:dirigible-ai\\/sdk:0.6.3:*:*:*:*:node.js:*:*","matchCriteriaId":"CA3A6539-B22C-40ED-8F5B-C0267CBA233B"},{"vulnerable":true,"criteria":"cpe:2.3:a:guardrailsai:guardrails_ai:0.10.1:*:*:*:*:python:*:*","matchCriteriaId":"B8011BB6-C398-4C41-87CA-E62DD63CF980"},{"vulnerable":true,"criteria":"cpe:2.3:a:linuxfoundation:opensearch:3.6.2:*:*:*:*:node.js:*:*","matchCriteriaId":"53E11EE7-1BAE-4FF1-B150-6BC95096FCF4"},{"vulnerable":true,"criteria":"cpe:2.3:a:mesa:mesadev\\/rest:0.28.3:*:*:*:*:node.js:*:*","matchCriteriaId":"5EB7A5DF-0F1E-4C52-A477-72F21649B1B7"},{"vulnerable":true,"criteria":"cpe:2.3:a:mesa:mesadev\\/saguaro:0.4.22:*:*:*:*:node.js:*:*","matchCriteriaId":"24978D95-DBE3-4E4D-A7BB-64966D007ECE"},{"vulnerable":true,"criteria":"cpe:2.3:a:mesa:mesadev\\/sdk:0.28.3:*:*:*:*:node.js:*:*","matchCriteriaId":"172E2DDB-3714-41E0-8B9A-7457C0F89EF2"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:uipath:uipath\\/access-policy-sdk:0.3.1:*:*:*:*:node.js:*:*","matchCriteriaId":"8D4C66E8-214A-4C2B-B0CD-63F3DC17A0AC"},{"vulnerable":true,"criteria":"cpe:2.3:a:uipath:uipath\\/access-policy-tool:0.3.1:*:*:*:*:node.js:*:*","matchCriteriaId":"878C0627-B4A9-42F4-8070-7FC9C92B9D67"},{"vulnerable":true,"criteria":"cpe:2.3:a:uipath:uipath\\/admin-tool:0.1.1:*:*:*:*:node.js:*:*","matchCriteriaId":"95A1F9B6-F74A-469D-ADB9-A262DCB60D81"},{"vulnerable":true,"criteria":"cpe:2.3:a:uipath:uipath\\/agent-sdk:1.0.2:*:*:*:*:node.js:*:*","matchCriteriaId":"67D554BC-C4EE-4CB2-9056-8987B03551C2"},{"vulnerable":true,"criteria":"cpe:2.3:a:uipath:uipath\\/agent-tool:1.0.1:*:*:*:*:node.js:*:*","matchCriteriaId":"04E8F9AC-1905-4922-A6B6-2724AF8972D6"},{"vulnerable":true,"criteria":"cpe:2.3:a:uipath:uipath\\/agent.sdk:0.0.18:*:*:*:*:node.js:*:*","matchCriteriaId":"F0829305-2E33-4F8B-87D7-867A59B9DEDC"},{"vulnerable":true,"criteria":"cpe:2.3:a:uipath:uipath\\/aops-policy-tool:0.3.1:*:*:*:*:node.js:*:*","matchCriteriaId":"32F2784C-CF1A-4519-B292-C3789779ABA9"},{"vulnerable":true,"criteria":"cpe:2.3:a:uipath:uipath\\/ap-chat:1.5.7:*:*:*:*:node.js:*:*","matchCriteriaId":"0C307073-9DEE-4088-AC60-3D16AFC6A9FB"},{"vulnerable":true,"criteria":"cpe:2.3:a:uipath:uipath\\/api-workflow-tool:1.0.1:*:*:*:*:node.js:*:*","matchCriteriaId":"46969AC8-1C4D-4D18-A54D-CE9853602261"},{"vulnerable":true,"criteria":"cpe:2.3:a:uipath:uipath\\/apollo-core:5.9.2:*:*:*:*:node.js:*:*","matchCriteriaId":"D28DB3FB-D116-4FEE-AE4F-D752B467D4E7"},{"vulnerable":true,"criteria":"cpe:2.3:a:uipath:uipath\\/apollo-react:4.24.5:*:*:*:*:node.js:*:*","matchCriteriaId":"86C303E2-A9F4-4B58-A3B1-F4EFCACF3E8A"},{"vulnerable":true,"criteria":"cpe:2.3:a:uipath:uipath\\/apollo-wind:2.16.2:*:*:*:*:node.js:*:*","matchCriteriaId":"3BAC8C91-873A-4F47-A8E7-E6CAB18168CE"},{"vulnerable":true,"criteria":"cpe:2.3:a:uipath:uipath\\/auth:1.0.1:*:*:*:*:node.js:*:*","matchCriteriaId":"809706C8-56C9-49BA-9604-9994BBF240A7"},{"vulnerable":true,"criteria":"cpe:2.3:a:uipath:uipath\\/case-tool:1.0.1:*:*:*:*:node.js:*:*","matchCriteriaId":"EA2BD019-EE88-448E-A385-DD01076C126A"},{"vulnerable":true,"criteria":"cpe:2.3:a:uipath:uipath\\/cli:1.0.1:*:*:*:*:node.js:*:*","matchCriteriaId":"FCD3A9C5-9DF3-4AFB-9F85-09284C5B1A2D"},{"vulnerable":true,"criteria":"cpe:2.3:a:uipath:uipath\\/codedagent-tool:1.0.1:*:*:*:*:node.js:*:*","matchCriteriaId":"C1998F52-0004-48E6-8D5B-8EACBA2AC676"},{"vulnerable":true,"criteria":"cpe:2.3:a:uipath:uipath\\/codedagents-tool:0.1.12:*:*:*:*:node.js:*:*","matchCriteriaId":"BA431691-DCF1-4D55-B39C-E00E0BCAD281"},{"vulnerable":true,"criteria":"cpe:2.3:a:uipath:uipath\\/codedapp-tool:1.0.1:*:*:*:*:node.js:*:*","matchCriteriaId":"BF0D17E0-1F45-4B2E-96E0-B8BB60E94880"},{"vulnerable":true,"criteria":"cpe:2.3:a:uipath:uipath\\/common:1.0.1:*:*:*:*:node.js:*:*","matchCriteriaId":"290D7E08-D42A-4764-BD54-C22FCB404952"},{"vulnerable":true,"criteria":"cpe:2.3:a:uipath:uipath\\/context-grounding-tool:0.1.1:*:*:*:*:node.js:*:*","matchCriteriaId":"E3446890-2B24-48C6-A6FD-CD1D78D65C5A"},{"vulnerable":true,"criteria":"cpe:2.3:a:uipath:uipath\\/data-fabric-tool:1.0.2:*:*:*:*:node.js:*:*","matchCriteriaId":"9E32B50A-18AE-48FC-B255-ED2B325CE26D"},{"vulnerable":true,"criteria":"cpe:2.3:a:uipath:uipath\\/docsai-tool:1.0.1:*:*:*:*:node.js:*:*","matchCriteriaId":"05FCCE46-D6E5-40BF-987D-6BB977368143"},{"vulnerable":true,"criteria":"cpe:2.3:a:uipath:uipath\\/filesystem:1.0.1:*:*:*:*:node.js:*:*","matchCriteriaId":"45FBCCCE-4BE0-4685-B6D0-0126A75664B6"},{"vulnerable":true,"criteria":"cpe:2.3:a:uipath:uipath\\/flow-tool:1.0.2:*:*:*:*:node.js:*:*","matchCriteriaId":"E9790126-C34D-4275-94FF-B5A167DAC166"},{"vulnerable":true,"criteria":"cpe:2.3:a:uipath:uipath\\/functions-tool:1.0.1:*:*:*:*:node.js:*:*","matchCriteriaId":"FA0F7894-E3C5-46B7-9699-EE372B128066"},{"vulnerable":true,"criteria":"cpe:2.3:a:uipath:uipath\\/gov-tool:0.3.1:*:*:*:*:node.js:*:*","matchCriteriaId":"6FD9E3A1-3B79-4B0A-B0B1-165BD5478E08"},{"vulnerable":true,"criteria":"cpe:2.3:a:uipath:uipath\\/identity-tool:0.1.1:*:*:*:*:node.js:*:*","matchCriteriaId":"1AB4F5D9-5821-483E-B6FD-54CA1908974B"},{"vulnerable":true,"criteria":"cpe:2.3:a:uipath:uipath\\/insights-sdk:1.0.1:*:*:*:*:node.js:*:*","matchCriteriaId":"F7D70BEB-7E37-4A3F-8352-2A6CA8CE5E73"},{"vulnerable":true,"criteria":"cpe:2.3:a:uipath:uipath\\/insights-tool:1.0.1:*:*:*:*:node.js:*:*","matchCriteriaId":"45DEA1EE-E742-4FD9-94E1-D95AC07C8EEF"},{"vulnerable":true,"criteria":"cpe:2.3:a:uipath:uipath\\/integrationservice-sdk:1.0.2:*:*:*:*:node.js:*:*","matchCriteriaId":"0860C3AF-2B78-4022-82D7-9179CB84E9CD"},{"vulnerable":true,"criteria":"cpe:2.3:a:uipath:uipath\\/integrationservice-tool:1.0.2:*:*:*:*:node.js:*:*","matchCriteriaId":"489583BF-4E7D-448D-9AF7-0191291624BF"},{"vulnerable":true,"criteria":"cpe:2.3:a:uipath:uipath\\/llmgw-tool:1.0.1:*:*:*:*:node.js:*:*","matchCriteriaId":"79399577-D285-463E-B9E5-77C22908F71D"},{"vulnerable":true,"criteria":"cpe:2.3:a:uipath:uipath\\/maestro-sdk:1.0.1:*:*:*:*:node.js:*:*","matchCriteriaId":"3CDB5C6E-B504-468A-BE57-650705C0209A"},{"vulnerable":true,"criteria":"cpe:2.3:a:uipath:uipath\\/maestro-tool:1.0.1:*:*:*:*:node.js:*:*","matchCriteriaId":"89C788F6-AB58-44CF-B5E0-667C9858C2DA"},{"vulnerable":true,"criteria":"cpe:2.3:a:uipath:uipath\\/orchestrator-tool:1.0.1:*:*:*:*:node.js:*:*","matchCriteriaId":"5845D663-330D-4470-8924-CF1975B29395"},{"vulnerable":true,"criteria":"cpe:2.3:a:uipath:uipath\\/packager-tool-apiworkflow:0.0.19:*:*:*:*:node.js:*:*","matchCriteriaId":"12716D88-765B-428F-9187-C21230AD2850"},{"vulnerable":true,"criteria":"cpe:2.3:a:uipath:uipath\\/packager-tool-bpmn:0.0.9:*:*:*:*:node.js:*:*","matchCriteriaId":"15545903-4A55-4AA3-B217-E66FB0DBB51F"},{"vulnerable":true,"criteria":"cpe:2.3:a:uipath:uipath\\/packager-tool-case:0.0.9:*:*:*:*:node.js:*:*","matchCriteriaId":"A21CC2DC-F45F-44DD-AFE9-3AF47C8D37C6"},{"vulnerable":true,"criteria":"cpe:2.3:a:uipath:uipath\\/packager-tool-connector:0.0.19:*:*:*:*:node.js:*:*","matchCriteriaId":"25DD817A-6A25-4C20-A9DE-1DDD754BB2DD"},{"vulnerable":true,"criteria":"cpe:2.3:a:uipath:uipath\\/packager-tool-flow:0.0.19:*:*:*:*:node.js:*:*","matchCriteriaId":"53838A6E-587D-4779-9048-5FDE27C3F547"},{"vulnerable":true,"criteria":"cpe:2.3:a:uipath:uipath\\/packager-tool-functions:0.1.1:*:*:*:*:node.js:*:*","matchCriteriaId":"B658A243-FA74-4A9C-B390-726E3AFB7E5A"},{"vulnerable":true,"criteria":"cpe:2.3:a:uipath:uipath\\/packager-tool-webapp:1.0.6:*:*:*:*:node.js:*:*","matchCriteriaId":"DBA07565-D311-4AA8-AD6F-F2966B37DF82"},{"vulnerable":true,"criteria":"cpe:2.3:a:uipath:uipath\\/packager-tool-workflowcompiler:0.0.16:*:*:*:*:node.js:*:*","matchCriteriaId":"C894F0F1-4830-4D96-A386-E562823C4604"},{"vulnerable":true,"criteria":"cpe:2.3:a:uipath:uipath\\/packager-tool-workflowcompiler-browser:0.0.34:*:*:*:*:node.js:*:*","matchCriteriaId":"71D8D27B-9E02-44DC-9CC3-C8ABFD55731D"},{"vulnerable":true,"criteria":"cpe:2.3:a:uipath:uipath\\/platform-tool:1.0.1:*:*:*:*:node.js:*:*","matchCriteriaId":"FF923FDD-9A30-4884-89E8-27CE61067534"},{"vulnerable":true,"criteria":"cpe:2.3:a:uipath:uipath\\/project-packager:1.1.16:*:*:*:*:node.js:*:*","matchCriteriaId":"348704DA-C295-402A-B600-81BE0691DCED"},{"vulnerable":true,"criteria":"cpe:2.3:a:uipath:uipath\\/resource-tool:1.0.1:*:*:*:*:node.js:*:*","matchCriteriaId":"C57830F5-5C13-41D4-A2C2-5F29C4D54FB2"},{"vulnerable":true,"criteria":"cpe:2.3:a:uipath:uipath\\/resourcecatalog-tool:0.1.1:*:*:*:*:node.js:*:*","matchCriteriaId":"0B05807C-7F7A-480B-8F86-8002FC983162"},{"vulnerable":true,"criteria":"cpe:2.3:a:uipath:uipath\\/resources-tool:0.1.11:*:*:*:*:node.js:*:*","matchCriteriaId":"451120A3-2B2A-4AEB-B512-7E7F88D537E0"},{"vulnerable":true,"criteria":"cpe:2.3:a:uipath:uipath\\/robot:1.3.4:*:*:*:*:node.js:*:*","matchCriteriaId":"9DCB3EB2-F034-4E4A-94F8-A169CE2A77BB"},{"vulnerable":true,"criteria":"cpe:2.3:a:uipath:uipath\\/rpa-legacy-tool:1.0.1:*:*:*:*:node.js:*:*","matchCriteriaId":"29CFB410-E57D-4BEA-B893-09CDCC22B6DE"},{"vulnerable":true,"criteria":"cpe:2.3:a:uipath:uipath\\/rpa-tool:0.9.5:*:*:*:*:node.js:*:*","matchCriteriaId":"2F18D5DF-9C2A-466C-9EFA-4239FD993718"},{"vulnerable":true,"criteria":"cpe:2.3:a:uipath:uipath\\/solution-packager:0.0.35:*:*:*:*:node.js:*:*","matchCriteriaId":"4D01CA83-2095-4E7E-929D-DC8C4CBAD555"},{"vulnerable":true,"criteria":"cpe:2.3:a:uipath:uipath\\/solution-tool:1.0.1:*:*:*:*:node.js:*:*","matchCriteriaId":"7F2F6BFE-0572-4D78-8E51-761116010C0C"},{"vulnerable":true,"criteria":"cpe:2.3:a:uipath:uipath\\/solutionpackager-sdk:1.0.11:*:*:*:*:node.js:*:*","matchCriteriaId":"D1572196-9927-4EA5-B71C-2D2911C632BE"},{"vulnerable":true,"criteria":"cpe:2.3:a:uipath:uipath\\/solutionpackager-tool-core:0.0.34:*:*:*:*:node.js:*:*","matchCriteriaId":"D52BC382-12D5-4600-B7D3-4CDCE9B72FCC"},{"vulnerable":true,"criteria":"cpe:2.3:a:uipath:uipath\\/tasks-tool:1.0.1:*:*:*:*:node.js:*:*","matchCriteriaId":"30ED9E08-7198-4487-81A5-9939D4E95326"},{"vulnerable":true,"criteria":"cpe:2.3:a:uipath:uipath\\/telemetry:0.0.7:*:*:*:*:node.js:*:*","matchCriteriaId":"86BFF6B4-9066-42EE-9CC9-69B0424A6C75"},{"vulnerable":true,"criteria":"cpe:2.3:a:uipath:uipath\\/test-manager-tool:1.0.2:*:*:*:*:node.js:*:*","matchCriteriaId":"F3DEFEC9-8606-4081-8765-2B7A294CBA7F"},{"vulnerable":true,"criteria":"cpe:2.3:a:uipath:uipath\\/tool-workflowcompiler:0.0.12:*:*:*:*:node.js:*:*","matchCriteriaId":"B41C9553-6006-42E9-84A7-82E1952369FC"},{"vulnerable":true,"criteria":"cpe:2.3:a:uipath:uipath\\/traces-tool:1.0.1:*:*:*:*:node.js:*:*","matchCriteriaId":"1A9DB03C-CBC4-4E9C-9D74-69847D1C1919"},{"vulnerable":true,"criteria":"cpe:2.3:a:uipath:uipath\\/ui-widgets-multi-file-upload:1.0.1:*:*:*:*:node.js:*:*","matchCriteriaId":"30EBDDF5-7797-4DF8-972C-CB1EAF121900"},{"vulnerable":true,"criteria":"cpe:2.3:a:uipath:uipath\\/uipath-python-bridge:1.0.1:*:*:*:*:node.js:*:*","matchCriteriaId":"AF388453-27DD-4070-82EC-0F7FCB621098"},{"vulnerable":true,"criteria":"cpe:2.3:a:uipath:uipath\\/vertical-solutions-tool:1.0.1:*:*:*:*:node.js:*:*","matchCriteriaId":"8FA1EEA9-0E5B-4B8F-B818-180C2F49BB0F"},{"vulnerable":true,"criteria":"cpe:2.3:a:uipath:uipath\\/vss:0.1.6:*:*:*:*:node.js:*:*","matchCriteriaId":"B4DE1759-112F-4CA3-8A5B-EE1888D6AE1F"},{"vulnerable":true,"criteria":"cpe:2.3:a:uipath:uipath\\/widget.sdk:1.2.3:*:*:*:*:node.js:*:*","matchCriteriaId":"4F580178-8740-4FE5-AD3A-B029E916733C"}]}]}],"references":[{"url":"https://github.com/TanStack/router/issues/7383","source":"security-advisories@github.com","tags":["Issue Tracking"]},{"url":"https://github.com/TanStack/router/security/advisories/GHSA-g7cv-rxg3-hmpx","source":"security-advisories@github.com","tags":["Mitigation","Vendor Advisory"]},{"url":"https://tanstack.com/blog/npm-supply-chain-compromise-postmortem","source":"security-advisories@github.com","tags":["Exploit","Vendor Advisory"]},{"url":"https://www.stepsecurity.io/blog/mini-shai-hulud-is-back-a-self-spreading-supply-chain-attack-hits-the-npm-ecosystem","source":"security-advisories@github.com","tags":["Exploit","Third Party Advisory"]},{"url":"https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2026-45321","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","tags":["US Government Resource"]}]}},{"cve":{"id":"CVE-2025-40946","sourceIdentifier":"productcert@siemens.com","published":"2026-05-12T10:16:42.860","lastModified":"2026-05-29T14:16:23.570","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"A vulnerability has been identified in blueplanet 100 NX3 M8 (All versions), blueplanet 100 TL3 GEN2 (All versions < V6.1.4.9), blueplanet 105 TL3 (All versions), blueplanet 105 TL3 GEN2 (All versions < V6.1.4.9), blueplanet 110 TL3 (All versions), blueplanet 125 NX3 M10 (All versions), blueplanet 125 TL3 (All versions), blueplanet 125 TL3 GEN2 (All versions < V6.1.4.9), blueplanet 137 TL3 (All versions), blueplanet 150 TL3 (All versions), blueplanet 150 TL3 GEN2 (All versions < V6.1.4.9), blueplanet 155 TL3 (All versions), blueplanet 155 TL3 GEN2 (All versions < V6.1.4.9), blueplanet 165 TL3 (All versions), blueplanet 165 TL3 GEN2 (All versions < V6.1.4.9), blueplanet 25.0 NX3-33.0 NX3 (All versions), blueplanet 3.0 NX3-20.0 NX3 (All versions), blueplanet 3.0 TL3-60.0 TL3 (All versions), blueplanet 3.0-5.0 NX1 (All versions), blueplanet 360 NX3 M6 (All versions), blueplanet 50.0 NX3-60.0 NX3 (All versions), blueplanet 87.0 TL3 (All versions), blueplanet 87.0 TL3 GEN2 (All versions < V6.1.4.9), blueplanet 92.0 TL3 (All versions), blueplanet 92.0 TL3 GEN2 (All versions < V6.1.4.9), blueplanet gridsave 110 TL3-S (All versions < V3.91), blueplanet gridsave 137 TL3-S (All versions < V3.91), blueplanet gridsave 92.0 TL3-S (All versions < V3.91), blueplanet hybrid 10.0 TL3 (All versions), blueplanet hybrid 6.0 NH3-12.0 NH3 (All versions). A CRC16-based algorithm for generating Technical Service credentials could allow an attacker to derive the credentials from the devices serial number and misuse them to gain unauthorized access."}],"metrics":{"cvssMetricV40":[{"source":"productcert@siemens.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:L/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":7.2,"baseSeverity":"HIGH","attackVector":"ADJACENT","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"LOW","vulnIntegrityImpact":"HIGH","vulnAvailabilityImpact":"HIGH","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"productcert@siemens.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:H","baseScore":8.3,"baseSeverity":"HIGH","attackVector":"ADJACENT_NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":5.5}]},"weaknesses":[{"source":"productcert@siemens.com","type":"Secondary","description":[{"lang":"en","value":"CWE-321"}]}],"references":[{"url":"https://cert-portal.siemens.com/productcert/html/ssa-545643.html","source":"productcert@siemens.com"}]}},{"cve":{"id":"CVE-2026-41125","sourceIdentifier":"productcert@siemens.com","published":"2026-05-12T10:16:46.057","lastModified":"2026-05-29T14:16:26.890","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"A vulnerability has been identified in blueplanet 100 NX3 M8 (All versions), blueplanet 100 TL3 GEN2 (All versions), blueplanet 105 TL3 (All versions), blueplanet 105 TL3 GEN2 (All versions), blueplanet 110 TL3 (All versions), blueplanet 125 NX3 M10 (All versions), blueplanet 125 TL3 (All versions), blueplanet 125 TL3 GEN2 (All versions), blueplanet 137 TL3 (All versions), blueplanet 150 TL3 (All versions), blueplanet 150 TL3 GEN2 (All versions), blueplanet 155 TL3 (All versions), blueplanet 155 TL3 GEN2 (All versions), blueplanet 165 TL3 (All versions), blueplanet 165 TL3 GEN2 (All versions), blueplanet 25.0 NX3-33.0 NX3 (All versions), blueplanet 3.0 NX3-20.0 NX3 (All versions), blueplanet 3.0-5.0 NX1 (All versions), blueplanet 360 NX3 M6 (All versions), blueplanet 50.0 NX3-60.0 NX3 (All versions), blueplanet 87.0 TL3 (All versions), blueplanet 87.0 TL3 GEN2 (All versions), blueplanet 92.0 TL3 (All versions), blueplanet 92.0 TL3 GEN2 (All versions), blueplanet gridsave 110 TL3-S (All versions), blueplanet gridsave 137 TL3-S (All versions), blueplanet gridsave 92.0 TL3-S (All versions), blueplanet hybrid 10.0 TL3 (All versions), blueplanet hybrid 6.0 NH3-12.0 NH3 (All versions). Improper neutralization of special elements used in an sql command ('sql injection') in KACO Meteor server allows an authorized attacker to elevate privileges over a local network."}],"metrics":{"cvssMetricV40":[{"source":"productcert@siemens.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:A/AC:H/AT:N/PR:H/UI:N/VC:L/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":5.9,"baseSeverity":"MEDIUM","attackVector":"ADJACENT","attackComplexity":"HIGH","attackRequirements":"NONE","privilegesRequired":"HIGH","userInteraction":"NONE","vulnConfidentialityImpact":"LOW","vulnIntegrityImpact":"HIGH","vulnAvailabilityImpact":"HIGH","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"productcert@siemens.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:A/AC:H/PR:H/UI:N/S:U/C:L/I:H/A:H","baseScore":6.0,"baseSeverity":"MEDIUM","attackVector":"ADJACENT_NETWORK","attackComplexity":"HIGH","privilegesRequired":"HIGH","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":0.5,"impactScore":5.5}]},"weaknesses":[{"source":"productcert@siemens.com","type":"Secondary","description":[{"lang":"en","value":"CWE-89"}]}],"references":[{"url":"https://cert-portal.siemens.com/productcert/html/ssa-545643.html","source":"productcert@siemens.com"}]}},{"cve":{"id":"CVE-2026-0257","sourceIdentifier":"psirt@paloaltonetworks.com","published":"2026-05-13T19:17:01.040","lastModified":"2026-05-29T20:16:21.803","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Authentication bypass vulnerabilities in the GlobalProtect portal and gateway of Palo Alto Networks PAN-OS® software allows the attacker to bypass security restrictions and establish an unauthorized VPN connection.\n\nPanorama and Cloud NGFW are not impacted by these issues."}],"metrics":{"cvssMetricV40":[{"source":"psirt@paloaltonetworks.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:H/SI:H/SA:N/E:A/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:N/R:A/V:D/RE:M/U:Red","baseScore":7.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"LOW","vulnIntegrityImpact":"NONE","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"HIGH","subIntegrityImpact":"HIGH","subAvailabilityImpact":"NONE","exploitMaturity":"ATTACKED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NO","Recovery":"AUTOMATIC","valueDensity":"DIFFUSE","vulnerabilityResponseEffort":"MODERATE","providerUrgency":"RED"}}],"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N","baseScore":9.1,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":5.2}]},"cisaExploitAdd":"2026-05-29","cisaActionDue":"2026-06-01","cisaRequiredAction":"Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.","cisaVulnerabilityName":"Palo Alto Networks PAN-OS Authentication Bypass Vulnerability","weaknesses":[{"source":"psirt@paloaltonetworks.com","type":"Secondary","description":[{"lang":"en","value":"CWE-565"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:*:*:*:*:*:*:*:*","versionEndExcluding":"10.2.7","matchCriteriaId":"57F7F91D-1366-42D9-B106-B200D38D8A38"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:-:*:*:*:*:*:*","matchCriteriaId":"A8C42D98-CF8F-456B-9D57-80BBDC2C8E74"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h1:*:*:*:*:*:*","matchCriteriaId":"B3AAD4BA-22DD-43D3-91F1-8A6F5FBBF029"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h12:*:*:*:*:*:*","matchCriteriaId":"AA4994CB-6591-4B44-A5D7-3CDF540B97DE"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h16:*:*:*:*:*:*","matchCriteriaId":"A6AB7874-FE24-42AC-8E3A-822A70722126"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h18:*:*:*:*:*:*","matchCriteriaId":"34B083B9-CC1B-43CD-9A16-C018F7FA2DDB"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h19:*:*:*:*:*:*","matchCriteriaId":"0D88CC33-7E32-4E82-8A94-70759E910510"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h21:*:*:*:*:*:*","matchCriteriaId":"FA91A4E9-CE1E-4CB8-B717-4B0E314C0171"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h24:*:*:*:*:*:*","matchCriteriaId":"28994519-3519-4E94-8D8B-7C4251A82B8B"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h3:*:*:*:*:*:*","matchCriteriaId":"776E06EC-2FDA-4664-AB43-9F6BE9B897CA"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h32:*:*:*:*:*:*","matchCriteriaId":"53981EA8-847F-4FBC-BA55-8EDF591E0FF8"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h6:*:*:*:*:*:*","matchCriteriaId":"CBE09375-A863-42FF-813F-C20679D7C45C"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h8:*:*:*:*:*:*","matchCriteriaId":"1311961A-0EF6-488E-B0C2-EDBD508587C9"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:10.2.8:*:*:*:*:*:*:*","matchCriteriaId":"78EAA309-2755-4ED2-9AFC-F4D9DF8F90D3"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:10.2.9:*:*:*:*:*:*:*","matchCriteriaId":"5D6D42C2-1CEC-47D2-82B2-1EFE71A8C8A3"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:-:*:*:*:*:*:*","matchCriteriaId":"03C5ABF2-8C53-4376-8A64-6CB34E18E77C"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h10:*:*:*:*:*:*","matchCriteriaId":"FF7FCD8B-80DF-4004-A9D2-4EE884F089A6"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h12:*:*:*:*:*:*","matchCriteriaId":"83C9637A-B615-4CC2-84AA-BDCFE611484C"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h14:*:*:*:*:*:*","matchCriteriaId":"224270A7-767D-433B-AD51-C031506747C1"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h17:*:*:*:*:*:*","matchCriteriaId":"A532EFC6-A883-4279-8C05-9CD600B3F963"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h18:*:*:*:*:*:*","matchCriteriaId":"F4F20C02-DF90-4609-9254-B765481C83E0"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h2:*:*:*:*:*:*","matchCriteriaId":"872BC747-512A-4872-AC86-E7F1DC589F47"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h21:*:*:*:*:*:*","matchCriteriaId":"E5E36C87-E01D-49DC-AB73-10E5EE27F596"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h27:*:*:*:*:*:*","matchCriteriaId":"39437442-B24D-492F-B637-2203492327FC"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h3:*:*:*:*:*:*","matchCriteriaId":"67F527D0-F85B-4B83-AEA5-BA636FC89210"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h30:*:*:*:*:*:*","matchCriteriaId":"984BE1FB-ADB7-4831-AEDD-39DBAED078B0"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h31:*:*:*:*:*:*","matchCriteriaId":"AF2C954D-9763-41E3-A132-F83C82E79BC0"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h4:*:*:*:*:*:*","matchCriteriaId":"6CF8F985-7E51-49E6-857A-FAAF027F5611"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h5:*:*:*:*:*:*","matchCriteriaId":"B437DCEA-ABA3-41CA-B320-97EC430F1122"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h7:*:*:*:*:*:*","matchCriteriaId":"593AFE7A-CB37-4156-A2B8-646A317F3176"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h9:*:*:*:*:*:*","matchCriteriaId":"A9F032C2-3202-479B-8C70-277F6871A4A4"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:10.2.11:*:*:*:*:*:*:*","matchCriteriaId":"3079F29C-688B-4FFB-BBC0-5FCD7B5B6905"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:10.2.12:*:*:*:*:*:*:*","matchCriteriaId":"674C85C5-162E-42DE-ACD1-D18943040E1C"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:10.2.13:-:*:*:*:*:*:*","matchCriteriaId":"C2B871A6-0636-42A0-9573-6F693D7753AD"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:10.2.13:h1:*:*:*:*:*:*","matchCriteriaId":"F1FC63B8-B8D9-4EC1-85CA-2E12B38ACD3E"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:10.2.13:h10:*:*:*:*:*:*","matchCriteriaId":"F3F8462A-71C0-4F81-9882-C73BC90697CA"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:10.2.13:h16:*:*:*:*:*:*","matchCriteriaId":"C1B72E68-2D01-483F-BEC5-59C49E96B976"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:10.2.13:h18:*:*:*:*:*:*","matchCriteriaId":"E49419C4-9AFE-4B7F-90EF-DB50EBB608D3"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:10.2.13:h2:*:*:*:*:*:*","matchCriteriaId":"60CE628F-C4CB-4342-8D71-DE61A089B612"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:10.2.13:h3:*:*:*:*:*:*","matchCriteriaId":"2447D2B1-A145-4036-B9F2-17648B193465"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:10.2.13:h4:*:*:*:*:*:*","matchCriteriaId":"C24353AF-DC81-49B9-9132-9EEC8E6009BB"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:10.2.13:h5:*:*:*:*:*:*","matchCriteriaId":"B4420489-AE0F-4A48-B2CE-C165BEBFA6A2"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:10.2.13:h7:*:*:*:*:*:*","matchCriteriaId":"C45D8DF1-9483-4B24-AB94-B1FF4A5F2606"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:10.2.14:*:*:*:*:*:*:*","matchCriteriaId":"941CB947-862C-4C17-A039-8CD46D21B3BA"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:10.2.15:*:*:*:*:*:*:*","matchCriteriaId":"146BFB2E-5802-495E-B20D-9783B41357A2"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:10.2.16:-:*:*:*:*:*:*","matchCriteriaId":"BC38A9CD-CDB6-423A-BE8D-2E0E45A3B239"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:10.2.16:h1:*:*:*:*:*:*","matchCriteriaId":"41B48ECA-FD05-4EA2-B1C9-771624EAAFF4"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:10.2.16:h4:*:*:*:*:*:*","matchCriteriaId":"4D65D1F0-323E-41AF-962E-1F9741748A76"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:10.2.16:h6:*:*:*:*:*:*","matchCriteriaId":"D5D41E00-D517-4B81-A7FC-C8E101884807"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:10.2.17:*:*:*:*:*:*:*","matchCriteriaId":"8A30968E-901A-49AE-94B0-C44A5257AADB"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:10.2.18:-:*:*:*:*:*:*","matchCriteriaId":"19604659-570D-4766-B8B5-8B9920E2607F"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:10.2.18:h1:*:*:*:*:*:*","matchCriteriaId":"745A3A2A-73CF-4DC2-968B-ACFC66389E11"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:10.2.18:h5:*:*:*:*:*:*","matchCriteriaId":"3A1E533E-DE4A-4F2F-A71A-FFF56E757087"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:11.1.0:*:*:*:*:*:*:*","matchCriteriaId":"CB628D07-9AB0-4C19-8DA3-DBE5689A3F40"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:11.1.1:*:*:*:*:*:*:*","matchCriteriaId":"3A94EA8A-EADF-416D-AE54-3CF56214714C"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:11.1.2:*:*:*:*:*:*:*","matchCriteriaId":"BC05CBD3-7679-4640-9BE4-FD5418D9F756"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:11.1.3:*:*:*:*:*:*:*","matchCriteriaId":"7F383C3D-0C7A-4B5E-9798-D1CE9632687B"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:11.1.4:-:*:*:*:*:*:*","matchCriteriaId":"DF83EAA1-49E1-4AD0-A049-F1B3065950BC"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:11.1.4:h1:*:*:*:*:*:*","matchCriteriaId":"BE3F7369-9F35-409A-9F47-45A959592DFA"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:11.1.4:h13:*:*:*:*:*:*","matchCriteriaId":"FD701663-4C57-4115-BD59-9DFFB504E2AF"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:11.1.4:h15:*:*:*:*:*:*","matchCriteriaId":"82816C09-6A9D-4AB2-AA55-62CC714CCA82"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:11.1.4:h16:*:*:*:*:*:*","matchCriteriaId":"9AA9F77D-BC9C-4A2C-8988-6DEE65CD9C8E"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:11.1.4:h17:*:*:*:*:*:*","matchCriteriaId":"A5A3CEBF-9F8A-47F9-A302-7C395F2A8146"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:11.1.4:h18:*:*:*:*:*:*","matchCriteriaId":"A79B51D2-74E8-4BA3-AE33-829A9C1776E9"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:11.1.4:h25:*:*:*:*:*:*","matchCriteriaId":"E08297B1-95E9-4730-B59D-252B958C4199"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:11.1.4:h27:*:*:*:*:*:*","matchCriteriaId":"B56B153E-8693-4257-9E33-38904A949ED8"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:11.1.4:h32:*:*:*:*:*:*","matchCriteriaId":"A220ED95-5E1A-45AA-85BD-8A58CFC6C697"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:11.1.4:h4:*:*:*:*:*:*","matchCriteriaId":"E9DB4DA9-2262-4E9E-B3A1-49D261D01295"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:11.1.4:h7:*:*:*:*:*:*","matchCriteriaId":"4852E738-990C-4DD2-8252-D4625D843A99"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:11.1.4:h9:*:*:*:*:*:*","matchCriteriaId":"CB2C59F8-2583-4510-90F8-500F8329AFFD"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:11.1.5:*:*:*:*:*:*:*","matchCriteriaId":"7C31ACD7-46AB-4092-89F3-7B4C9B642199"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:-:*:*:*:*:*:*","matchCriteriaId":"52C50A07-F4D8-4F1F-BA61-3429BB1721BE"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h1:*:*:*:*:*:*","matchCriteriaId":"9D12FF27-C186-467C-8627-1284EBC67243"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h10:*:*:*:*:*:*","matchCriteriaId":"AF4AA997-35BC-4BC1-9EF2-644503B2D806"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h14:*:*:*:*:*:*","matchCriteriaId":"12EF4DDF-9773-4B02-8FF4-F94A1D49E6AA"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h17:*:*:*:*:*:*","matchCriteriaId":"8FAE17BB-7938-41D0-8D62-46F829C647BC"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h19:*:*:*:*:*:*","matchCriteriaId":"6DA5A0AD-C4FB-4210-8651-F94F2875A0EA"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h2:*:*:*:*:*:*","matchCriteriaId":"45D633D7-A4B5-4D68-9BAB-D9BA25877F36"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h20:*:*:*:*:*:*","matchCriteriaId":"B79DB477-A907-4300-A651-16F93880B049"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h21:*:*:*:*:*:*","matchCriteriaId":"AF74D8FA-677F-484D-9338-A1761614FFD6"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h22:*:*:*:*:*:*","matchCriteriaId":"F9FC5118-4056-4E22-A1F0-D6FFA2B88472"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h23:*:*:*:*:*:*","matchCriteriaId":"5E7A808F-F52F-4786-950C-591CCADB2EE4"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h25:*:*:*:*:*:*","matchCriteriaId":"0CA82012-AA59-44C1-BB9D-0B28764D507E"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h29:*:*:*:*:*:*","matchCriteriaId":"27233F80-A620-42D3-927D-4FCDE6345456"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h3:*:*:*:*:*:*","matchCriteriaId":"63729FA6-ED2A-4593-9436-232F282A0A78"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h4:*:*:*:*:*:*","matchCriteriaId":"F39792EF-61B5-4874-9FD0-7544F8C5C0D4"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h5:*:*:*:*:*:*","matchCriteriaId":"CCC24BCD-E508-4553-9BAC-468A1078C9A2"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h6:*:*:*:*:*:*","matchCriteriaId":"4A06B6F4-DCAE-4115-93D4-25D0A37AAB9F"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h7:*:*:*:*:*:*","matchCriteriaId":"91529C45-FA55-4844-A153-682F729F440D"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:11.1.7:-:*:*:*:*:*:*","matchCriteriaId":"64B56778-2698-493D-80AD-B4AE81F48124"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:11.1.7:h1:*:*:*:*:*:*","matchCriteriaId":"0A9D3E2E-BA37-4F2A-BD43-97DD93E43D08"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:11.1.7:h2:*:*:*:*:*:*","matchCriteriaId":"9DCE8F6C-541E-4C61-ABC8-4A618B0DD58D"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:11.1.7:h4:*:*:*:*:*:*","matchCriteriaId":"1E5EF79B-1A25-4AAB-AF2E-D151359E7FFE"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:11.1.8:*:*:*:*:*:*:*","matchCriteriaId":"7193CCDA-D5D4-41D2-A808-87EDC19F2F49"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:11.1.9:*:*:*:*:*:*:*","matchCriteriaId":"D58FF578-775A-4BC0-9975-2C8B8E51B1E1"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:11.1.10:-:*:*:*:*:*:*","matchCriteriaId":"A92886DF-C989-47AD-8F68-8F468BBC6E57"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:11.1.10:h1:*:*:*:*:*:*","matchCriteriaId":"9893920B-A00E-4890-A897-EE1CF0751BA0"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:11.1.10:h10:*:*:*:*:*:*","matchCriteriaId":"D1289923-12D8-4FDD-B18B-C52516F14922"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:11.1.10:h12:*:*:*:*:*:*","matchCriteriaId":"AFC923D7-672D-4556-8344-BBD285324067"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:11.1.10:h21:*:*:*:*:*:*","matchCriteriaId":"E1510DE9-04A3-4E08-872D-C0F6041BCFCD"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:11.1.10:h4:*:*:*:*:*:*","matchCriteriaId":"31CD3B15-2CE0-404A-9542-9C39B8E71027"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:11.1.10:h5:*:*:*:*:*:*","matchCriteriaId":"0194DA0B-041A-4810-8BFB-2308290517B3"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:11.1.10:h7:*:*:*:*:*:*","matchCriteriaId":"69E64D86-034F-4BC7-9A4E-2703D834EBC1"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:11.1.10:h9:*:*:*:*:*:*","matchCriteriaId":"B992628F-1114-4FC8-9364-800ACE997044"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:11.1.11:*:*:*:*:*:*:*","matchCriteriaId":"73CF31A0-82EC-45DF-87DD-81C458AAF94C"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:11.1.12:*:*:*:*:*:*:*","matchCriteriaId":"77024A63-A28F-4467-8D4C-3CFD41724777"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:11.1.13:-:*:*:*:*:*:*","matchCriteriaId":"9223B0D4-6194-4684-8EF4-84A0EF511D8F"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:11.1.13:h1:*:*:*:*:*:*","matchCriteriaId":"CB16C018-2B70-4F4D-9025-69FF82CD40F0"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:11.1.13:h2:*:*:*:*:*:*","matchCriteriaId":"1259B519-130D-4584-86AA-E4EA1E89ACB2"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:11.1.13:h3:*:*:*:*:*:*","matchCriteriaId":"0DCA6D54-E623-4985-B35F-AC98299828EF"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:11.1.14:-:*:*:*:*:*:*","matchCriteriaId":"20A38461-BC7E-4D75-A168-FA493955A54C"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:11.2.0:*:*:*:*:*:*:*","matchCriteriaId":"AF9D96B4-E4D2-4F35-A4AF-D79BB9F3A41B"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:11.2.1:*:*:*:*:*:*:*","matchCriteriaId":"DAF8163D-1EE5-4955-A317-1BC95581C87D"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:11.2.2:*:*:*:*:*:*:*","matchCriteriaId":"AEEE3CF8-1B67-44D3-8FF1-9EC6C5197835"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:11.2.3:*:*:*:*:*:*:*","matchCriteriaId":"A6DFD05F-0A72-45E0-8D20-E1C28642C973"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:-:*:*:*:*:*:*","matchCriteriaId":"C01AD190-F3C2-4349-A063-8C5C78B725B9"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:h1:*:*:*:*:*:*","matchCriteriaId":"30F4CD1C-6862-4279-8D2D-40B4D164222F"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:h10:*:*:*:*:*:*","matchCriteriaId":"8137F3AF-BA32-41BC-AD2E-A668FFA33892"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:h11:*:*:*:*:*:*","matchCriteriaId":"8C977AF0-D2B0-401A-A7C5-A1C71AC3C072"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:h12:*:*:*:*:*:*","matchCriteriaId":"B9C0A53F-2AFE-4B0D-AEC1-464E6001E02F"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:h14:*:*:*:*:*:*","matchCriteriaId":"D720448D-F40B-4C92-9101-A48AC36C9CBF"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:h15:*:*:*:*:*:*","matchCriteriaId":"5F12F7AC-D5B3-499E-87DA-27427D8BFFC5"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:h2:*:*:*:*:*:*","matchCriteriaId":"A52B7A7A-483A-4075-B1E9-5C14B66F7FC3"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:h4:*:*:*:*:*:*","matchCriteriaId":"76949F0F-2ADC-492F-83F0-0A1B0E861F97"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:h5:*:*:*:*:*:*","matchCriteriaId":"C1DD83BC-4E8E-4C1D-80C7-A6209B4E70CE"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:h6:*:*:*:*:*:*","matchCriteriaId":"73888909-64C5-41BC-BAE0-BD9BDEEAF723"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:h7:*:*:*:*:*:*","matchCriteriaId":"E7861D82-815D-4894-9E11-1B6B1E66CDEC"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:h8:*:*:*:*:*:*","matchCriteriaId":"D269E33D-9A79-40CC-B79A-C9A398AB7AFE"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:h9:*:*:*:*:*:*","matchCriteriaId":"9762E441-856F-466F-812C-798CA2EEF965"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:11.2.5:*:*:*:*:*:*:*","matchCriteriaId":"0EF09924-12F7-4F76-9FD0-08AF707AA289"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:11.2.6:*:*:*:*:*:*:*","matchCriteriaId":"C62D458B-2BC0-4E0C-8E95-894674DBD791"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:-:*:*:*:*:*:*","matchCriteriaId":"0A25C9D9-BC83-49AE-BEE7-EF05F8336B01"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h1:*:*:*:*:*:*","matchCriteriaId":"A93C2B58-EC78-4C3D-89FF-35D9C489E39F"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h10:*:*:*:*:*:*","matchCriteriaId":"A32E35C0-913E-4348-8AD4-E1F169C40C92"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h11:*:*:*:*:*:*","matchCriteriaId":"39112398-2A93-4E26-A7DF-0E3FA81C5130"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h12:*:*:*:*:*:*","matchCriteriaId":"C88442D1-599F-411D-B7A2-E17AA839F177"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h13:*:*:*:*:*:*","matchCriteriaId":"B3B538CC-6EA0-4555-B828-18A55997F454"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h2:*:*:*:*:*:*","matchCriteriaId":"D12C3EB6-842E-4378-896C-FDBB2BC75D10"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h3:*:*:*:*:*:*","matchCriteriaId":"86B41903-FF08-454D-B626-184CB73B122E"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h4:*:*:*:*:*:*","matchCriteriaId":"396DC378-7716-40F6-88A4-99299A16CAF1"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h7:*:*:*:*:*:*","matchCriteriaId":"5E5C6E3A-262C-4212-B21C-00E8079AA8CF"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h8:*:*:*:*:*:*","matchCriteriaId":"4C855108-D3C9-4DE3-B9F4-9735A0A439AF"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:11.2.8:*:*:*:*:*:*:*","matchCriteriaId":"5B887380-062F-45B2-9F25-861227E86377"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:11.2.9:*:*:*:*:*:*:*","matchCriteriaId":"02713C77-26D8-4C84-A8B2-86B6BA5BE600"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:11.2.10:-:*:*:*:*:*:*","matchCriteriaId":"051673AB-50BF-4DD0-8679-F5825520241A"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:11.2.10:h1:*:*:*:*:*:*","matchCriteriaId":"BAC15D8A-83CA-413F-BA2B-17EC2B169F6E"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:11.2.10:h2:*:*:*:*:*:*","matchCriteriaId":"70B3EB0C-87F1-46C2-B95C-C5808E473BD2"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:11.2.10:h3:*:*:*:*:*:*","matchCriteriaId":"073BF631-451B-4DFC-B23C-F0F68C2450F0"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:11.2.10:h4:*:*:*:*:*:*","matchCriteriaId":"13AA1BEF-F2F6-4534-89F3-DF4E79217978"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:11.2.10:h5:*:*:*:*:*:*","matchCriteriaId":"CBFDE611-4981-4D92-ABAF-858DF132535F"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:11.2.10:h6:*:*:*:*:*:*","matchCriteriaId":"AAEA66F4-81AC-49C3-81B1-65EF5F16951A"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:11.2.11:-:*:*:*:*:*:*","matchCriteriaId":"CE68AC6C-61B6-4245-96AE-3D1F96D44721"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:12.1.2:*:*:*:*:*:*:*","matchCriteriaId":"7A116B32-5798-47EC-A22D-D3E960B29C07"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:12.1.3:*:*:*:*:*:*:*","matchCriteriaId":"F1725F67-BF14-48B4-A405-1CCA507CD553"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:12.1.4:-:*:*:*:*:*:*","matchCriteriaId":"8C1ADE94-3F05-48EE-94E0-FD6EB682705C"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:12.1.4:h2:*:*:*:*:*:*","matchCriteriaId":"F727C18E-1C8D-448A-954C-073294FBC65C"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:12.1.4:h3:*:*:*:*:*:*","matchCriteriaId":"7E492BE6-EB2E-4616-85EA-3B389741301B"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:12.1.4:h5:*:*:*:*:*:*","matchCriteriaId":"E5F85240-989D-4E2D-B2D0-F0F35E0590A4"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:12.1.5:*:*:*:*:*:*:*","matchCriteriaId":"FB597850-D759-4062-974D-C33B1BA62BE3"},{"vulnerable":true,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:12.1.6:*:*:*:*:*:*:*","matchCriteriaId":"1507AE7A-A685-464F-BB0F-1868244A36C8"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:paloaltonetworks:prisma_access:-:*:*:*:*:*:*:*","matchCriteriaId":"FFB6FBC7-DEEB-4571-BCF9-92345A4B614A"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:*:*:*:*:*:*:*:*","versionStartIncluding":"10.2.0","versionEndExcluding":"10.2.10","matchCriteriaId":"ECC53672-829D-4995-A75A-CE8D3C38A3A3"},{"vulnerable":false,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:*:*:*:*:*:*:*:*","versionStartIncluding":"11.2.0","versionEndExcluding":"11.2.7","matchCriteriaId":"A589C841-0E91-4A4E-9A90-8000C4AAB8EE"},{"vulnerable":false,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:-:*:*:*:*:*:*","matchCriteriaId":"03C5ABF2-8C53-4376-8A64-6CB34E18E77C"},{"vulnerable":false,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h10:*:*:*:*:*:*","matchCriteriaId":"FF7FCD8B-80DF-4004-A9D2-4EE884F089A6"},{"vulnerable":false,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h12:*:*:*:*:*:*","matchCriteriaId":"83C9637A-B615-4CC2-84AA-BDCFE611484C"},{"vulnerable":false,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h14:*:*:*:*:*:*","matchCriteriaId":"224270A7-767D-433B-AD51-C031506747C1"},{"vulnerable":false,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h17:*:*:*:*:*:*","matchCriteriaId":"A532EFC6-A883-4279-8C05-9CD600B3F963"},{"vulnerable":false,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h18:*:*:*:*:*:*","matchCriteriaId":"F4F20C02-DF90-4609-9254-B765481C83E0"},{"vulnerable":false,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h2:*:*:*:*:*:*","matchCriteriaId":"872BC747-512A-4872-AC86-E7F1DC589F47"},{"vulnerable":false,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h21:*:*:*:*:*:*","matchCriteriaId":"E5E36C87-E01D-49DC-AB73-10E5EE27F596"},{"vulnerable":false,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h27:*:*:*:*:*:*","matchCriteriaId":"39437442-B24D-492F-B637-2203492327FC"},{"vulnerable":false,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h3:*:*:*:*:*:*","matchCriteriaId":"67F527D0-F85B-4B83-AEA5-BA636FC89210"},{"vulnerable":false,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h30:*:*:*:*:*:*","matchCriteriaId":"984BE1FB-ADB7-4831-AEDD-39DBAED078B0"},{"vulnerable":false,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h31:*:*:*:*:*:*","matchCriteriaId":"AF2C954D-9763-41E3-A132-F83C82E79BC0"},{"vulnerable":false,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h4:*:*:*:*:*:*","matchCriteriaId":"6CF8F985-7E51-49E6-857A-FAAF027F5611"},{"vulnerable":false,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h5:*:*:*:*:*:*","matchCriteriaId":"B437DCEA-ABA3-41CA-B320-97EC430F1122"},{"vulnerable":false,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h7:*:*:*:*:*:*","matchCriteriaId":"593AFE7A-CB37-4156-A2B8-646A317F3176"},{"vulnerable":false,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h9:*:*:*:*:*:*","matchCriteriaId":"A9F032C2-3202-479B-8C70-277F6871A4A4"},{"vulnerable":false,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:-:*:*:*:*:*:*","matchCriteriaId":"0A25C9D9-BC83-49AE-BEE7-EF05F8336B01"},{"vulnerable":false,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h1:*:*:*:*:*:*","matchCriteriaId":"A93C2B58-EC78-4C3D-89FF-35D9C489E39F"},{"vulnerable":false,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h10:*:*:*:*:*:*","matchCriteriaId":"A32E35C0-913E-4348-8AD4-E1F169C40C92"},{"vulnerable":false,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h11:*:*:*:*:*:*","matchCriteriaId":"39112398-2A93-4E26-A7DF-0E3FA81C5130"},{"vulnerable":false,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h12:*:*:*:*:*:*","matchCriteriaId":"C88442D1-599F-411D-B7A2-E17AA839F177"},{"vulnerable":false,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h2:*:*:*:*:*:*","matchCriteriaId":"D12C3EB6-842E-4378-896C-FDBB2BC75D10"},{"vulnerable":false,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h3:*:*:*:*:*:*","matchCriteriaId":"86B41903-FF08-454D-B626-184CB73B122E"},{"vulnerable":false,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h4:*:*:*:*:*:*","matchCriteriaId":"396DC378-7716-40F6-88A4-99299A16CAF1"},{"vulnerable":false,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h7:*:*:*:*:*:*","matchCriteriaId":"5E5C6E3A-262C-4212-B21C-00E8079AA8CF"},{"vulnerable":false,"criteria":"cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h8:*:*:*:*:*:*","matchCriteriaId":"4C855108-D3C9-4DE3-B9F4-9735A0A439AF"}]}]}],"references":[{"url":"https://security.paloaltonetworks.com/CVE-2026-0257","source":"psirt@paloaltonetworks.com","tags":["Vendor Advisory"]},{"url":"https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2026-0257","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0"}]}},{"cve":{"id":"CVE-2026-6334","sourceIdentifier":"responsibledisclosure@mattermost.com","published":"2026-05-18T08:16:14.313","lastModified":"2026-05-29T19:11:30.433","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Mattermost versions 11.5.x <= 11.5.1, 10.11.x <= 10.11.13 fail to enforce client identity binding during the OAuth authorization code redemption flow which allows an authenticated OAuth client to redeem authorization codes issued to a different client via a crafted token exchange request.. Mattermost Advisory ID: MMSA-2026-00570"}],"metrics":{"cvssMetricV31":[{"source":"responsibledisclosure@mattermost.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:H/UI:R/S:U/C:L/I:L/A:N","baseScore":3.1,"baseSeverity":"LOW","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"HIGH","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":0.5,"impactScore":2.5},{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:N","baseScore":3.8,"baseSeverity":"LOW","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"HIGH","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":1.2,"impactScore":2.5}]},"weaknesses":[{"source":"responsibledisclosure@mattermost.com","type":"Secondary","description":[{"lang":"en","value":"CWE-305"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:mattermost:mattermost_server:*:*:*:*:*:*:*:*","versionStartIncluding":"10.11.0","versionEndExcluding":"10.11.14","matchCriteriaId":"413D9405-79C3-4299-B0DC-40D9EE5CC717"},{"vulnerable":true,"criteria":"cpe:2.3:a:mattermost:mattermost_server:*:*:*:*:*:*:*:*","versionStartIncluding":"11.5.0","versionEndExcluding":"11.5.2","matchCriteriaId":"726AD6AD-6C01-45BB-9115-B8209717A6D4"}]}]}],"references":[{"url":"https://mattermost.com/security-updates","source":"responsibledisclosure@mattermost.com","tags":["Vendor Advisory"]}]}},{"cve":{"id":"CVE-2026-6341","sourceIdentifier":"responsibledisclosure@mattermost.com","published":"2026-05-18T08:16:14.580","lastModified":"2026-05-29T19:11:51.313","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Mattermost Plugins versions <=11.5 11.1.5 10.13.11 11.3.4.0 fail to have API-level checks on which groups the user can create issues or attach comments to which allows a user that is member of multiple groups to create issues to a locked group via direct API requests. Mattermost Advisory ID: MMSA-2026-00602"}],"metrics":{"cvssMetricV31":[{"source":"responsibledisclosure@mattermost.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N","baseScore":4.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":1.4}]},"weaknesses":[{"source":"responsibledisclosure@mattermost.com","type":"Secondary","description":[{"lang":"en","value":"CWE-863"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:mattermost:mattermost_server:*:*:*:*:*:*:*:*","versionStartIncluding":"10.13.0","versionEndIncluding":"10.13.11","matchCriteriaId":"52CD7965-391A-44E7-84ED-CDC9FDA780C9"},{"vulnerable":true,"criteria":"cpe:2.3:a:mattermost:mattermost_server:*:*:*:*:*:*:*:*","versionStartIncluding":"11.1.0","versionEndIncluding":"11.1.5","matchCriteriaId":"3A2CB08F-7EC8-496F-8D14-2A608997B56E"},{"vulnerable":true,"criteria":"cpe:2.3:a:mattermost:mattermost_server:*:*:*:*:*:*:*:*","versionStartIncluding":"11.3.0","versionEndIncluding":"11.3.4","matchCriteriaId":"BEC14053-BEB6-4E0D-BB6D-B2C114023519"}]}]}],"references":[{"url":"https://mattermost.com/security-updates","source":"responsibledisclosure@mattermost.com","tags":["Vendor Advisory"]}]}},{"cve":{"id":"CVE-2026-6342","sourceIdentifier":"responsibledisclosure@mattermost.com","published":"2026-05-18T08:16:14.717","lastModified":"2026-05-29T19:11:57.923","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Mattermost Plugins versions <=11.5 11.1.5 10.13.11 11.3.4.0 fail to appropriately check for valid namespaces which allows plugin users to create subscriptions to groups that were not whitelisted via creating groups that share the same prefix as a whitelisted group. Mattermost Advisory ID: MMSA-2026-00601"}],"metrics":{"cvssMetricV31":[{"source":"responsibledisclosure@mattermost.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N","baseScore":4.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":1.4}]},"weaknesses":[{"source":"responsibledisclosure@mattermost.com","type":"Secondary","description":[{"lang":"en","value":"CWE-863"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:mattermost:mattermost_server:*:*:*:*:*:*:*:*","versionStartIncluding":"10.13.0","versionEndIncluding":"10.13.11","matchCriteriaId":"52CD7965-391A-44E7-84ED-CDC9FDA780C9"},{"vulnerable":true,"criteria":"cpe:2.3:a:mattermost:mattermost_server:*:*:*:*:*:*:*:*","versionStartIncluding":"11.1.0","versionEndIncluding":"11.1.5","matchCriteriaId":"3A2CB08F-7EC8-496F-8D14-2A608997B56E"},{"vulnerable":true,"criteria":"cpe:2.3:a:mattermost:mattermost_server:*:*:*:*:*:*:*:*","versionStartIncluding":"11.3.0","versionEndIncluding":"11.3.4","matchCriteriaId":"BEC14053-BEB6-4E0D-BB6D-B2C114023519"}]}]}],"references":[{"url":"https://mattermost.com/security-updates","source":"responsibledisclosure@mattermost.com","tags":["Vendor Advisory"]}]}},{"cve":{"id":"CVE-2026-3117","sourceIdentifier":"responsibledisclosure@mattermost.com","published":"2026-05-18T09:16:22.707","lastModified":"2026-05-29T19:12:05.587","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Mattermost Plugins versions <=11.5 11.1.5 10.13.11 11.3.4.0 fail to properly check for permissions when processing commands in the Gitlab plugin which allows normal users to uninstall instances or setup webhook connections via the {{gitlab instance {option}}} or the {{/gitlab webhook {option}}} commands. Mattermost Advisory ID: MMSA-2026-00600"}],"metrics":{"cvssMetricV31":[{"source":"responsibledisclosure@mattermost.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":3.6}]},"weaknesses":[{"source":"responsibledisclosure@mattermost.com","type":"Secondary","description":[{"lang":"en","value":"CWE-862"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:mattermost:mattermost_server:*:*:*:*:*:*:*:*","versionStartIncluding":"10.13.0","versionEndIncluding":"10.13.11","matchCriteriaId":"52CD7965-391A-44E7-84ED-CDC9FDA780C9"},{"vulnerable":true,"criteria":"cpe:2.3:a:mattermost:mattermost_server:*:*:*:*:*:*:*:*","versionStartIncluding":"11.1.0","versionEndIncluding":"11.1.5","matchCriteriaId":"3A2CB08F-7EC8-496F-8D14-2A608997B56E"},{"vulnerable":true,"criteria":"cpe:2.3:a:mattermost:mattermost_server:*:*:*:*:*:*:*:*","versionStartIncluding":"11.3.0","versionEndIncluding":"11.3.4","matchCriteriaId":"BEC14053-BEB6-4E0D-BB6D-B2C114023519"}]}]}],"references":[{"url":"https://mattermost.com/security-updates","source":"responsibledisclosure@mattermost.com","tags":["Vendor Advisory"]}]}},{"cve":{"id":"CVE-2026-22554","sourceIdentifier":"talos-cna@cisco.com","published":"2026-05-20T14:16:38.763","lastModified":"2026-05-29T19:42:23.793","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"MediaArea MediaInfoLib Channel Splitting heap-based buffer overflow vulnerability"}],"metrics":{"cvssMetricV31":[{"source":"talos-cna@cisco.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","baseScore":7.8,"baseSeverity":"HIGH","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.8,"impactScore":5.9}]},"weaknesses":[{"source":"talos-cna@cisco.com","type":"Secondary","description":[{"lang":"en","value":"CWE-122"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:mediaarea:mediainfolib:26.01:*:*:*:*:*:*:*","matchCriteriaId":"73B19F59-866C-489E-A46D-B84E8D64D75E"}]}]}],"references":[{"url":"https://talosintelligence.com/vulnerability_reports/TALOS-2026-2374","source":"talos-cna@cisco.com","tags":["Third Party Advisory"]},{"url":"https://www.talosintelligence.com/vulnerability_reports/TALOS-2026-2374","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]}]}},{"cve":{"id":"CVE-2022-34363","sourceIdentifier":"security_alert@emc.com","published":"2026-05-22T16:16:19.353","lastModified":"2026-05-29T15:53:54.907","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Dell Unisphere for PowerMax vApp version prior to 10.0.0.2, contains an authorization bypass vulnerability in the  Unisphere for VMAX application running in vApp"}],"metrics":{"cvssMetricV31":[{"source":"security_alert@emc.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"HIGH","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":3.6},{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"HIGH","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":3.6}]},"weaknesses":[{"source":"security_alert@emc.com","type":"Primary","description":[{"lang":"en","value":"CWE-285"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:dell:unisphere_for_powermax_virtual_appliance:*:*:*:*:*:*:*:*","versionEndExcluding":"10.0.0.2","matchCriteriaId":"4D043EF2-D6C9-43CA-B442-DB9D81912870"}]}]}],"references":[{"url":"https://dellservices.lightning.force.com/lightning/r/Lightning_Knowledge__kav/ka06P000000xAiKQAU/view","source":"security_alert@emc.com","tags":["Permissions Required"]}]}},{"cve":{"id":"CVE-2026-25680","sourceIdentifier":"security@golang.org","published":"2026-05-22T16:16:19.753","lastModified":"2026-05-29T15:47:57.593","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Parsing arbitrary HTML can consume excessive CPU time, possibly leading to denial of service."}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":3.6}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-400"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:golang:net:*:*:*:*:*:go:*:*","versionEndExcluding":"0.55.0","matchCriteriaId":"38C86E7B-A1CA-4670-B113-FC9585261F6F"}]}]}],"references":[{"url":"https://go.dev/cl/781702","source":"security@golang.org","tags":["Issue Tracking"]},{"url":"https://go.dev/issue/79573","source":"security@golang.org","tags":["Issue Tracking"]},{"url":"https://groups.google.com/g/golang-announce/c/iI-mYSI0lu8","source":"security@golang.org","tags":["Mailing List"]},{"url":"https://pkg.go.dev/vuln/GO-2026-5028","source":"security@golang.org","tags":["Vendor Advisory"]}]}},{"cve":{"id":"CVE-2026-25681","sourceIdentifier":"security@golang.org","published":"2026-05-22T16:16:19.863","lastModified":"2026-05-29T15:30:15.417","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Parsing arbitrary HTML which is then rendered using Render can result in an unexpected HTML tree. This can be leveraged to execute XSS attacks in applications that attempt to sanitize input HTML before rendering."}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N","baseScore":6.1,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":2.7}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-1021"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:golang:net:*:*:*:*:*:go:*:*","versionEndExcluding":"0.55.0","matchCriteriaId":"38C86E7B-A1CA-4670-B113-FC9585261F6F"}]}]}],"references":[{"url":"https://go.dev/cl/781703","source":"security@golang.org","tags":["Issue Tracking"]},{"url":"https://go.dev/issue/79574","source":"security@golang.org","tags":["Issue Tracking"]},{"url":"https://groups.google.com/g/golang-announce/c/iI-mYSI0lu8","source":"security@golang.org","tags":["Mailing List"]},{"url":"https://pkg.go.dev/vuln/GO-2026-5029","source":"security@golang.org","tags":["Vendor Advisory"]}]}},{"cve":{"id":"CVE-2026-27136","sourceIdentifier":"security@golang.org","published":"2026-05-22T16:16:20.087","lastModified":"2026-05-29T15:27:46.920","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Parsing arbitrary HTML which is then rendered using Render can result in an unexpected HTML tree. This can be leveraged to execute XSS attacks in applications that attempt to sanitize input HTML before rendering."}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N","baseScore":6.1,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":2.7}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-1021"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:golang:net:*:*:*:*:*:go:*:*","versionEndExcluding":"0.55.0","matchCriteriaId":"38C86E7B-A1CA-4670-B113-FC9585261F6F"}]}]}],"references":[{"url":"https://go.dev/cl/781685","source":"security@golang.org","tags":["Issue Tracking"]},{"url":"https://go.dev/issue/79575","source":"security@golang.org","tags":["Issue Tracking"]},{"url":"https://groups.google.com/g/golang-announce/c/iI-mYSI0lu8","source":"security@golang.org","tags":["Mailing List"]},{"url":"https://pkg.go.dev/vuln/GO-2026-5030","source":"security@golang.org","tags":["Vendor Advisory"]}]}},{"cve":{"id":"CVE-2026-39821","sourceIdentifier":"security@golang.org","published":"2026-05-22T16:16:20.410","lastModified":"2026-05-29T15:26:37.163","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"The ToASCII and ToUnicode functions incorrectly accept Punycode-encoded labels that decode to an ASCII-only label. For example, ToUnicode(\"xn--example-.com\") incorrectly returns the name \"example.com\" rather than an error. This behavior can lead to privilege escalation in programs using the idna package. For example, a program which performs privilege checks on the ASCII hostname may reject \"example.com\" but permit \"xn--example-.com\". If that program subsequently converts the ASCII hostname to Unicode, it will inadvertently permits access to the Unicode name \"example.com\"."}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:N","baseScore":9.6,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"NONE"},"exploitabilityScore":3.1,"impactScore":5.8}]},"weaknesses":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-1289"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:golang:net:*:*:*:*:*:go:*:*","versionEndExcluding":"0.55.0","matchCriteriaId":"38C86E7B-A1CA-4670-B113-FC9585261F6F"}]}]}],"references":[{"url":"https://go.dev/cl/767220","source":"security@golang.org","tags":["Issue Tracking"]},{"url":"https://go.dev/issue/78760","source":"security@golang.org","tags":["Issue Tracking"]},{"url":"https://groups.google.com/g/golang-announce/c/iI-mYSI0lu8","source":"security@golang.org","tags":["Mailing List"]},{"url":"https://pkg.go.dev/vuln/GO-2026-5026","source":"security@golang.org","tags":["Vendor Advisory"]}]}},{"cve":{"id":"CVE-2026-42502","sourceIdentifier":"security@golang.org","published":"2026-05-22T16:16:20.587","lastModified":"2026-05-29T19:09:48.043","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Parsing arbitrary HTML which is then rendered using Render can result in an unexpected HTML tree. This can be leveraged to execute XSS attacks in applications that attempt to sanitize input HTML before rendering."}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N","baseScore":6.1,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":2.7}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-1021"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:golang:net:*:*:*:*:*:go:*:*","versionEndExcluding":"0.55.0","matchCriteriaId":"38C86E7B-A1CA-4670-B113-FC9585261F6F"}]}]}],"references":[{"url":"https://go.dev/cl/781701","source":"security@golang.org","tags":["Issue Tracking"]},{"url":"https://go.dev/issue/79572","source":"security@golang.org","tags":["Issue Tracking"]},{"url":"https://groups.google.com/g/golang-announce/c/iI-mYSI0lu8","source":"security@golang.org","tags":["Mailing List"]},{"url":"https://pkg.go.dev/vuln/GO-2026-5027","source":"security@golang.org","tags":["Vendor Advisory"]}]}},{"cve":{"id":"CVE-2026-42506","sourceIdentifier":"security@golang.org","published":"2026-05-22T16:16:20.803","lastModified":"2026-05-29T19:06:20.453","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Parsing arbitrary HTML which is then rendered using Render can result in an unexpected HTML tree. This can be leveraged to execute XSS attacks in applications that attempt to sanitize input HTML before rendering."}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N","baseScore":6.1,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":2.7}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-79"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:golang:net:*:*:*:*:*:go:*:*","versionEndExcluding":"0.55.0","matchCriteriaId":"38C86E7B-A1CA-4670-B113-FC9585261F6F"}]}]}],"references":[{"url":"https://go.dev/cl/781700","source":"security@golang.org","tags":["Issue Tracking"]},{"url":"https://go.dev/issue/79571","source":"security@golang.org","tags":["Issue Tracking"]},{"url":"https://groups.google.com/g/golang-announce/c/iI-mYSI0lu8","source":"security@golang.org","tags":["Mailing List"]},{"url":"https://pkg.go.dev/vuln/GO-2026-5025","source":"security@golang.org","tags":["Vendor Advisory"]}]}},{"cve":{"id":"CVE-2026-6406","sourceIdentifier":"security@docker.com","published":"2026-05-22T19:17:04.827","lastModified":"2026-05-29T19:02:40.347","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"The Docker CLI --use-api-socket flag bypasses Enhanced Container Isolation (ECI) restrictions in Docker Desktop. When ECI is enabled, Docker socket mounts from containers are denied unless explicitly allowed via the admin-settings configuration. However, the --use-api-socket flag adds the Docker socket mount via the HostConfig.Mounts field rather than the HostConfig.Binds field. The ECI enforcement in the Docker Desktop API proxy only inspected Binds, allowing the mount to pass unchecked. This grants a container full access to the Docker Engine socket and, if the host user has logged in to container registries, their authentication credentials.\n\nA local attacker with the ability to run Docker CLI commands can exploit this to escape ECI restrictions, access the Docker Engine, and potentially escalate privileges."}],"metrics":{"cvssMetricV40":[{"source":"security@docker.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"LOCAL","attackComplexity":"LOW","attackRequirements":"PRESENT","privilegesRequired":"LOW","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"HIGH","vulnAvailabilityImpact":"HIGH","subConfidentialityImpact":"HIGH","subIntegrityImpact":"HIGH","subAvailabilityImpact":"HIGH","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"security@docker.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.0,"impactScore":6.0}]},"weaknesses":[{"source":"security@docker.com","type":"Secondary","description":[{"lang":"en","value":"CWE-863"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:docker:docker_desktop:*:*:*:*:*:*:*:*","versionStartIncluding":"4.41.0","versionEndExcluding":"4.59.0","matchCriteriaId":"D1189874-3682-44BE-9779-36992F4D8BC8"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*","matchCriteriaId":"387021A0-AF36-463C-A605-32EA7DAC172E"},{"vulnerable":false,"criteria":"cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*","matchCriteriaId":"703AF700-7A70-47E2-BC3A-7FD03B3CA9C1"},{"vulnerable":false,"criteria":"cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*","matchCriteriaId":"A2572D17-1DE6-457B-99CC-64AFD54487EA"}]}]}],"references":[{"url":"https://docs.docker.com/desktop/release-notes/#4590","source":"security@docker.com","tags":["Release Notes"]},{"url":"https://www.zerodayinitiative.com/advisories/ZDI-26-299/","source":"security@docker.com","tags":["Third Party Advisory"]}]}},{"cve":{"id":"CVE-2026-40295","sourceIdentifier":"security-advisories@github.com","published":"2026-05-22T20:16:34.013","lastModified":"2026-05-29T18:55:53.957","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Devise is an authentication solution for Rails based on Warden. In versions 5.0.3 and below, when the Timeoutable module is enabled in Devise, the FailureApp#redirect_url method returns request.referrer — the HTTP Referer header, which is attacker-controllable — without validation for any non-GET request that results in a session timeout. An attacker who hosts a page with an auto-submitting cross-origin form can cause a victim with an expired Devise session to be redirected to an arbitrary external URL. This contrasts with the GET timeout path (which uses server-side attempted_path) and Devise's own store_location_for mechanism (which strips external hosts via extract_path_from_location), both of which are protected; only the non-GET timeout redirect path is unprotected. Expired-session users can be silently redirected from the trusted app domain to attacker-controlled URLs, enabling phishing and malware delivery while bypassing browser warnings. Note: Rails' built-in open-redirect protection does not mitigate this issue. Devise::FailureApp is an ActionController::Metal app with its own isolated copy of the relevant redirect configuration, so config.action_controller.action_on_open_redirect = :raise (and the older raise_on_open_redirects setting) do not reach it. This issue has been fixed in version 5.0.4."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N","baseScore":6.1,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":2.7}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-601"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:heartcombo:devise:*:*:*:*:*:ruby:*:*","versionEndExcluding":"5.0.4","matchCriteriaId":"105ECF82-E1F4-4316-A43F-E6AD3A377191"}]}]}],"references":[{"url":"https://github.com/heartcombo/devise/commit/025fe2124f9928766fc46520e999633b598d0360","source":"security-advisories@github.com","tags":["Patch"]},{"url":"https://github.com/heartcombo/devise/security/advisories/GHSA-jp94-3292-c3xv","source":"security-advisories@github.com","tags":["Mitigation","Vendor Advisory"]}]}},{"cve":{"id":"CVE-2026-40610","sourceIdentifier":"security-advisories@github.com","published":"2026-05-22T20:16:34.760","lastModified":"2026-05-29T18:53:06.187","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"BentoML is a Python library for building online serving systems optimized for AI apps and model inference. In versions 1.4.38 and prior, the build packaging workflow follows attacker-controlled symlinks inside the build context and copies the referenced file contents into the generated Bento artifact. If a victim builds an untrusted repository or other attacker-supplied build context, the attacker can place a symlink such as loot.txt -> /tmp/outside-marker.txt or a link to a more sensitive local file. When bentoml build runs, BentoML dereferences the symlink and packages the target file contents into the Bento. The leaked file can then propagate further through export, push, or containerization workflows. An attacker can exfiltrate local files from the build host into the Bento artifact, exposing secrets such as cloud credentials, SSH keys, API tokens, environment files, or other sensitive local configurations. Because Bento artifacts are commonly exported, uploaded, stored, or containerized after build, the leaked file contents can spread beyond the original build machine. This issue has been fixed in version 1.4.39."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N","baseScore":5.5,"baseSeverity":"MEDIUM","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":1.8,"impactScore":3.6}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Secondary","description":[{"lang":"en","value":"CWE-59"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:bentoml:bentoml:*:*:*:*:*:*:*:*","versionEndExcluding":"1.4.39","matchCriteriaId":"66912E76-A5F0-4E8D-88E4-F76E8BEDEFA5"}]}]}],"references":[{"url":"https://github.com/bentoml/BentoML/commit/5fb7cd41f92e2a56b45391284cf15b9ac9963a1f","source":"security-advisories@github.com","tags":["Patch"]},{"url":"https://github.com/bentoml/BentoML/releases/tag/v1.4.39","source":"security-advisories@github.com","tags":["Product","Release Notes"]},{"url":"https://github.com/bentoml/BentoML/security/advisories/GHSA-mcfx-4vc6-qgxv","source":"security-advisories@github.com","tags":["Exploit","Vendor Advisory"]},{"url":"https://github.com/bentoml/BentoML/security/advisories/GHSA-mcfx-4vc6-qgxv","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","tags":["Exploit","Vendor Advisory"]}]}},{"cve":{"id":"CVE-2026-41104","sourceIdentifier":"secure@microsoft.com","published":"2026-05-22T23:16:53.263","lastModified":"2026-05-29T19:46:59.147","vulnStatus":"Analyzed","cveTags":[{"sourceIdentifier":"secure@microsoft.com","tags":["exclusively-hosted-service"]}],"descriptions":[{"lang":"en","value":"Deserialization of untrusted data in Microsoft Planetary Computer Pro allows an unauthorized attacker to disclose information over a network."}],"metrics":{"cvssMetricV31":[{"source":"secure@microsoft.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H","baseScore":10.0,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":6.0},{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":3.6}]},"weaknesses":[{"source":"secure@microsoft.com","type":"Primary","description":[{"lang":"en","value":"CWE-502"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:planetary_computer:-:*:*:*:pro:*:*:*","matchCriteriaId":"B167C2DC-E687-48BA-8175-E79F103DD9CD"}]}]}],"references":[{"url":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-41104","source":"secure@microsoft.com","tags":["Vendor Advisory"]}]}},{"cve":{"id":"CVE-2026-9416","sourceIdentifier":"cna@vuldb.com","published":"2026-05-25T02:16:57.623","lastModified":"2026-05-29T15:16:25.153","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"A security vulnerability has been detected in code-projects Employee Management System 1.0. This impacts an unknown function of the file /myprofile.php. Such manipulation of the argument ID leads to cross site scripting. The attack can be executed remotely. The exploit has been disclosed publicly and may be used."}],"metrics":{"cvssMetricV40":[{"source":"cna@vuldb.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":2.1,"baseSeverity":"LOW","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"PASSIVE","vulnConfidentialityImpact":"NONE","vulnIntegrityImpact":"LOW","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"PROOF_OF_CONCEPT","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"cna@vuldb.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N","baseScore":4.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":1.4}],"cvssMetricV2":[{"source":"cna@vuldb.com","type":"Secondary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:N/I:P/A:N","baseScore":5.0,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"NONE","integrityImpact":"PARTIAL","availabilityImpact":"NONE"},"baseSeverity":"MEDIUM","exploitabilityScore":10.0,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"cna@vuldb.com","type":"Secondary","description":[{"lang":"en","value":"CWE-79"},{"lang":"en","value":"CWE-94"}]}],"references":[{"url":"https://code-projects.org/","source":"cna@vuldb.com"},{"url":"https://github.com/zzzxc643/CVE1/blob/main/EMPLOYEE_MANAGEMENT_SYSTEM/vul13.md","source":"cna@vuldb.com"},{"url":"https://vuldb.com/submit/813698","source":"cna@vuldb.com"},{"url":"https://vuldb.com/vuln/365397","source":"cna@vuldb.com"},{"url":"https://vuldb.com/vuln/365397/cti","source":"cna@vuldb.com"},{"url":"https://vuldb.com/submit/813698","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0"}]}},{"cve":{"id":"CVE-2026-9422","sourceIdentifier":"cna@vuldb.com","published":"2026-05-25T05:16:15.633","lastModified":"2026-05-29T16:16:32.993","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"A vulnerability was identified in KLiK SocialMediaWebsite 1.0. This issue affects some unknown processing of the component HTTP POST Request Parameter Handler. Such manipulation leads to injection. The attack can be launched remotely. The exploit is publicly available and might be used."}],"metrics":{"cvssMetricV40":[{"source":"cna@vuldb.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":5.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"LOW","vulnIntegrityImpact":"LOW","vulnAvailabilityImpact":"LOW","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"PROOF_OF_CONCEPT","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"cna@vuldb.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L","baseScore":7.3,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"LOW"},"exploitabilityScore":3.9,"impactScore":3.4}],"cvssMetricV2":[{"source":"cna@vuldb.com","type":"Secondary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:P/I:P/A:P","baseScore":7.5,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"PARTIAL","availabilityImpact":"PARTIAL"},"baseSeverity":"HIGH","exploitabilityScore":10.0,"impactScore":6.4,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"cna@vuldb.com","type":"Secondary","description":[{"lang":"en","value":"CWE-74"},{"lang":"en","value":"CWE-707"}]}],"references":[{"url":"https://vuldb.com/submit/813734","source":"cna@vuldb.com"},{"url":"https://vuldb.com/submit/813736","source":"cna@vuldb.com"},{"url":"https://vuldb.com/vuln/365403","source":"cna@vuldb.com"},{"url":"https://vuldb.com/vuln/365403/cti","source":"cna@vuldb.com"},{"url":"https://vuldb.com/submit/813734","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0"},{"url":"https://vuldb.com/submit/813736","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0"}]}},{"cve":{"id":"CVE-2026-3660","sourceIdentifier":"psirt@us.ibm.com","published":"2026-05-26T19:16:27.707","lastModified":"2026-05-29T19:31:59.120","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"IBM Engineering Lifecycle Management 7.0.3, 7.1.0, and 7.2.0 could allow an unauthenticated remote attacker to update server property files that would allow them to gain unauthorized access to the application."}],"metrics":{"cvssMetricV31":[{"source":"psirt@us.ibm.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":9.8,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":5.9}]},"weaknesses":[{"source":"psirt@us.ibm.com","type":"Secondary","description":[{"lang":"en","value":"CWE-863"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:engineering_lifecycle_management:7.0.3:-:*:*:*:*:*:*","matchCriteriaId":"BA0582EF-251B-4694-8B17-EC0F70F10801"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:engineering_lifecycle_management:7.0.3:ifix002:*:*:*:*:*:*","matchCriteriaId":"209A6B2B-A3CE-4F5F-B1D0-36228625005D"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:engineering_lifecycle_management:7.0.3:ifix003:*:*:*:*:*:*","matchCriteriaId":"8449CFAE-05C3-4212-AE0F-7B82E588D8A2"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:engineering_lifecycle_management:7.0.3:ifix004:*:*:*:*:*:*","matchCriteriaId":"1C68C005-C09B-427B-9206-F1CA70F72EE5"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:engineering_lifecycle_management:7.0.3:ifix005:*:*:*:*:*:*","matchCriteriaId":"D712BB02-8954-4F1A-9940-7E547342410B"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:engineering_lifecycle_management:7.0.3:ifix006:*:*:*:*:*:*","matchCriteriaId":"32B14BF7-43A6-4979-A3AD-369034486EFB"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:engineering_lifecycle_management:7.0.3:ifix007:*:*:*:*:*:*","matchCriteriaId":"7DD02B82-C06B-4D2A-B8B8-633C8AE208EB"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:engineering_lifecycle_management:7.0.3:ifix008:*:*:*:*:*:*","matchCriteriaId":"62D0DE8D-0986-4B04-972E-71053995C1CC"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:engineering_lifecycle_management:7.0.3:ifix009:*:*:*:*:*:*","matchCriteriaId":"7F83533F-043F-4073-A883-27A2834D6130"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:engineering_lifecycle_management:7.0.3:ifix010:*:*:*:*:*:*","matchCriteriaId":"34427171-70E0-474E-80DD-BDF46135CE4A"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:engineering_lifecycle_management:7.0.3:ifix011:*:*:*:*:*:*","matchCriteriaId":"30B2FA43-5684-4A6B-9A5D-879E42C1A8B7"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:engineering_lifecycle_management:7.0.3:ifix012:*:*:*:*:*:*","matchCriteriaId":"EA376C3C-8509-4342-A54B-A21F031BF6C1"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:engineering_lifecycle_management:7.0.3:ifix013:*:*:*:*:*:*","matchCriteriaId":"4C7B4708-5BB9-4BB9-BEB4-8574F2872DA5"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:engineering_lifecycle_management:7.0.3:ifix014:*:*:*:*:*:*","matchCriteriaId":"5B839BEE-17AB-4776-B5F5-443E07CC6A18"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:engineering_lifecycle_management:7.0.3:ifix015:*:*:*:*:*:*","matchCriteriaId":"42093B36-DC7E-41D8-B846-A943DD576FDD"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:engineering_lifecycle_management:7.0.3:ifix016:*:*:*:*:*:*","matchCriteriaId":"2795CBD8-0F0B-4347-8499-33062AC0ED80"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:engineering_lifecycle_management:7.0.3:ifix017:*:*:*:*:*:*","matchCriteriaId":"39161861-4C6F-4F6C-961F-5FD142999AA8"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:engineering_lifecycle_management:7.0.3:ifix018:*:*:*:*:*:*","matchCriteriaId":"82039467-E458-4F12-96EA-0AC014831851"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:engineering_lifecycle_management:7.0.3:ifix019:*:*:*:*:*:*","matchCriteriaId":"A389A247-0816-44A7-B4AE-EF218BCE9BC1"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:engineering_lifecycle_management:7.0.3:ifix020:*:*:*:*:*:*","matchCriteriaId":"5DE20864-F382-46DD-B21D-50907BA18A87"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:engineering_lifecycle_management:7.0.3:ifix021:*:*:*:*:*:*","matchCriteriaId":"D9EDBD1C-AE4E-40C7-93D3-D2C48B558F19"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:engineering_lifecycle_management:7.1.0:-:*:*:*:*:*:*","matchCriteriaId":"EA9D4742-2C27-4515-86D8-69A2C8EF2910"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:engineering_lifecycle_management:7.1.0:ifix001:*:*:*:*:*:*","matchCriteriaId":"6BE1B8B4-40CB-4B72-B71B-D321B0CD4CAA"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:engineering_lifecycle_management:7.1.0:ifix002:*:*:*:*:*:*","matchCriteriaId":"05AE7D18-38B4-4326-9A48-7B1BB4C72EC7"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:engineering_lifecycle_management:7.1.0:ifix003:*:*:*:*:*:*","matchCriteriaId":"15181084-D833-4777-836C-8E0CCE53342F"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:engineering_lifecycle_management:7.1.0:ifix004:*:*:*:*:*:*","matchCriteriaId":"FDBAD00C-2DD4-4A13-B89E-55940B1598CB"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:engineering_lifecycle_management:7.1.0:ifix005:*:*:*:*:*:*","matchCriteriaId":"24EAD89C-B98C-41A4-B6AF-FB9550392395"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:engineering_lifecycle_management:7.1.0:ifix006:*:*:*:*:*:*","matchCriteriaId":"3AADA4BD-ADB2-4500-9AE6-AB6C0DF7DC84"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:engineering_lifecycle_management:7.1.0:ifix007:*:*:*:*:*:*","matchCriteriaId":"EE8F634A-2DA7-4772-AB14-472AE31C9ECD"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:engineering_lifecycle_management:7.1.0:ifix008:*:*:*:*:*:*","matchCriteriaId":"63A75D7F-6124-4AA5-8057-B6DBB2BFE7B8"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:engineering_lifecycle_management:7.1.0:ifix009:*:*:*:*:*:*","matchCriteriaId":"1AEB66B1-1C3E-4510-A019-0DB791AEC72C"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:engineering_lifecycle_management:7.2.0:-:*:*:*:*:*:*","matchCriteriaId":"B08E3BAA-0C9E-487E-954C-7561D1E4E482"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:engineering_lifecycle_management:7.2.0:ifix001:*:*:*:*:*:*","matchCriteriaId":"AACF7171-A3EA-43E8-97AA-09269AB083CB"}]}]}],"references":[{"url":"https://www.ibm.com/support/pages/node/7274079","source":"psirt@us.ibm.com","tags":["Vendor Advisory"]}]}},{"cve":{"id":"CVE-2026-44209","sourceIdentifier":"security-advisories@github.com","published":"2026-05-26T21:16:37.620","lastModified":"2026-05-29T15:29:42.387","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Banks generates meaningful LLM prompts using a template language that makes sense. Prior to 2.4.2, banks uses jinja2.Environment() (unsandboxed) to render prompt templates. Applications that pass user-supplied strings as the template argument to Prompt() are vulnerable to Server-Side Template Injection (SSTI), which can lead to Remote Code Execution (RCE) on the host system. This vulnerability is fixed in 2.4.2."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.6,"impactScore":5.9}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Secondary","description":[{"lang":"en","value":"CWE-1336"}]}],"references":[{"url":"https://github.com/masci/banks/pull/74","source":"security-advisories@github.com"},{"url":"https://github.com/masci/banks/security/advisories/GHSA-gphh-9q3h-jgpp","source":"security-advisories@github.com"},{"url":"https://github.com/masci/banks/security/advisories/GHSA-gphh-9q3h-jgpp","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0"}]}},{"cve":{"id":"CVE-2026-44843","sourceIdentifier":"security-advisories@github.com","published":"2026-05-26T21:16:39.003","lastModified":"2026-05-29T19:48:48.150","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"LangChain is a framework for building agents and LLM-powered applications. Prior to 0.3.85 and 1.3.3, LangChain contains older runtime code paths that deserialize run inputs, run outputs, or other application-controlled payloads using overly broad object allowlists. These paths may call load() with allowed_objects=\"all\". This does not enable arbitrary Python object deserialization, but it does allow any trusted LangChain-serializable object to be revived, which is broader than these runtime paths require. As a result, attacker-supplied LangChain serialized constructor dictionaries may cause trusted runtime paths to instantiate classes with untrusted constructor arguments. This vulnerability is fixed in 0.3.85 and 1.3.3."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N","baseScore":8.2,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":4.2}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-502"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:langchain:langchain:*:*:*:*:*:*:*:*","versionEndExcluding":"0.3.85","matchCriteriaId":"F51597F7-5582-4105-8A1A-957ED4394741"},{"vulnerable":true,"criteria":"cpe:2.3:a:langchain:langchain:*:*:*:*:*:*:*:*","versionStartIncluding":"1.0.0","versionEndExcluding":"1.3.3","matchCriteriaId":"ADE91EFB-2D03-4922-8089-5B34BD1DC348"}]}]}],"references":[{"url":"https://github.com/langchain-ai/langchain/security/advisories/GHSA-pjwx-r37v-7724","source":"security-advisories@github.com","tags":["Mitigation","Vendor Advisory"]}]}},{"cve":{"id":"CVE-2026-9642","sourceIdentifier":"vulnreport@tenable.com","published":"2026-05-26T21:16:45.827","lastModified":"2026-05-29T19:53:02.797","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"There is a mitigation bypass / (incomplete fix) for CVE-2025-62582 (Unauthenticated Remote Database Access) \n\nAn unauthenticated remote attacker can access configured databases in a DIAView project."}],"metrics":{"cvssMetricV31":[{"source":"vulnreport@tenable.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":9.8,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":5.9}]},"weaknesses":[{"source":"vulnreport@tenable.com","type":"Secondary","description":[{"lang":"en","value":"CWE-321"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:deltaww:diaview:*:*:*:*:*:*:*:*","versionEndIncluding":"4.4.0","matchCriteriaId":"F469E9F9-109B-4915-9F3B-ED7A5FDEAB8B"}]}]}],"references":[{"url":"https://www.tenable.com/security/research/tra-2026-44","source":"vulnreport@tenable.com","tags":["Third Party Advisory"]}]}},{"cve":{"id":"CVE-2026-44213","sourceIdentifier":"security-advisories@github.com","published":"2026-05-26T22:16:42.443","lastModified":"2026-05-29T15:42:56.873","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"The OpenTelemetry.Exporter.Instana exports telemetry to Instana backend. Prior to 1.1.0, the OpenTelemetry.Exporter.Instana NuGet package does not validate HTTPS/TLS certificates are valid when sending telemetry to a configured Instana back-end when a proxy is configured using the INSTANA_ENDPOINT_PROXY environment variable. If a network attacker can Man-in-the-Middle (MitM) the proxy connection, all OpenTelemetry telemetry data and the Instana API key are exposed to the attacker. This vulnerability is fixed in 1.1.0."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"HIGH","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"NONE"},"exploitabilityScore":1.2,"impactScore":5.2}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Secondary","description":[{"lang":"en","value":"CWE-295"}]}],"references":[{"url":"https://github.com/open-telemetry/opentelemetry-dotnet-contrib/security/advisories/GHSA-wfr5-454p-mjc2","source":"security-advisories@github.com"},{"url":"https://github.com/open-telemetry/opentelemetry-dotnet-contrib/security/advisories/GHSA-wfr5-454p-mjc2","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0"}]}},{"cve":{"id":"CVE-2026-44788","sourceIdentifier":"security-advisories@github.com","published":"2026-05-26T22:16:42.587","lastModified":"2026-05-29T16:25:57.843","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"SharpCompress is a fully managed C# library to deal with many compression types and formats. In 0.47.4 and earlier, a path traversal vulnerability in IArchive.WriteToDirectory() allows a malicious archive to create directories outside the intended extraction root. For TAR archives, this can be escalated to arbitrary file writes by chaining with a symlink entry, giving a full write primitive on the target filesystem subject to the permissions of the running process."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:H/A:L","baseScore":5.9,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"HIGH","availabilityImpact":"LOW"},"exploitabilityScore":1.6,"impactScore":4.2}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Secondary","description":[{"lang":"en","value":"CWE-22"}]}],"references":[{"url":"https://github.com/adamhathcock/sharpcompress/security/advisories/GHSA-6c8g-7p36-r338","source":"security-advisories@github.com"},{"url":"https://github.com/adamhathcock/sharpcompress/security/advisories/GHSA-6c8g-7p36-r338","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0"}]}},{"cve":{"id":"CVE-2026-44903","sourceIdentifier":"security-advisories@github.com","published":"2026-05-26T22:16:43.010","lastModified":"2026-05-29T16:19:35.753","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Prometheus is an open-source monitoring system and time series database. From 2.49.0 to before 3.5.3 and 3.11.3, in the Prometheus server's legacy web UI (enabled via the command-line flag --enable-feature=old-ui), the histogram heatmap chart view does not escape le label values when inserting them into the HTML for use as axis tick mark labels. An attacker who can inject crafted metrics can execute JavaScript in the browser of any Prometheus user who views the metric in the heatmap chart UI. This vulnerability is fixed in 3.5.3 and 3.11.3."}],"metrics":{"cvssMetricV40":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":5.1,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"LOW","userInteraction":"PASSIVE","vulnConfidentialityImpact":"NONE","vulnIntegrityImpact":"NONE","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"LOW","subIntegrityImpact":"LOW","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-79"}]}],"references":[{"url":"https://github.com/prometheus/prometheus/commit/38f23b9075ced1de2b82d2dad8b2bebb1ecd5b7d","source":"security-advisories@github.com"},{"url":"https://github.com/prometheus/prometheus/security/advisories/GHSA-fw8g-cg8f-9j28","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2026-44985","sourceIdentifier":"security-advisories@github.com","published":"2026-05-26T22:16:43.587","lastModified":"2026-05-29T19:30:05.600","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Dozzle is a realtime log viewer for docker containers. Prior to 10.5.2, he WebSocket upgrader for the /exec and /attach endpoints uses CheckOrigin: func(r *http.Request) bool { return true }, accepting upgrade requests from any origin. Combined with the JWT cookie using SameSite: Lax, this enables Cross-Site WebSocket Hijacking (CSWSH). An attacker hosting a page on a same-site origin (e.g., a sibling subdomain, or another service on localhost) can initiate a WebSocket connection to the exec endpoint that carries the victim's valid JWT cookie, gaining interactive shell access in any container the victim is authorized to access. This vulnerability is fixed in 10.5.2."}],"metrics":{"cvssMetricV40":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":8.7,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"NONE","vulnIntegrityImpact":"HIGH","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H","baseScore":9.6,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":6.0}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Secondary","description":[{"lang":"en","value":"CWE-346"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:amirraminfar:dozzle:*:*:*:*:*:docker:*:*","versionEndExcluding":"10.5.2","matchCriteriaId":"4E864904-5D1C-4286-91D8-D1F411144146"}]}]}],"references":[{"url":"https://github.com/amir20/dozzle/releases/tag/v10.5.2","source":"security-advisories@github.com","tags":["Product","Release Notes"]},{"url":"https://github.com/amir20/dozzle/security/advisories/GHSA-j643-x8pv-8m67","source":"security-advisories@github.com","tags":["Exploit","Mitigation","Vendor Advisory"]},{"url":"https://github.com/amir20/dozzle/security/advisories/GHSA-j643-x8pv-8m67","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","tags":["Exploit","Mitigation","Vendor Advisory"]}]}},{"cve":{"id":"CVE-2026-45298","sourceIdentifier":"security-advisories@github.com","published":"2026-05-26T22:16:43.733","lastModified":"2026-05-29T19:23:33.280","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Dozzle is a realtime log viewer for docker containers. Prior to 10.5.2, in a default dozzle deploy (the documented quickstart, no DOZZLE_AUTH_PROVIDER set), POST /api/notifications/test-webhook is reachable without authentication and forwards an attacker-controlled URL into a WebhookDispatcher that sends an HTTP POST to the supplied URL with attacker-controlled request headers, and returns the response status code AND up to 1MB of the response body to the caller, when the target replies non-2xx. This vulnerability is fixed in 10.5.2."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N","baseScore":8.6,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":4.0},{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N","baseScore":8.6,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":4.0}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Secondary","description":[{"lang":"en","value":"CWE-918"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:amirraminfar:dozzle:*:*:*:*:*:docker:*:*","versionEndExcluding":"10.5.2","matchCriteriaId":"4E864904-5D1C-4286-91D8-D1F411144146"}]}]}],"references":[{"url":"https://github.com/amir20/dozzle/releases/tag/v10.5.2","source":"security-advisories@github.com","tags":["Product","Release Notes"]},{"url":"https://github.com/amir20/dozzle/security/advisories/GHSA-3v9w-6365-9w54","source":"security-advisories@github.com","tags":["Exploit","Mitigation","Vendor Advisory"]},{"url":"https://github.com/amir20/dozzle/security/advisories/GHSA-3v9w-6365-9w54","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","tags":["Exploit","Mitigation","Vendor Advisory"]}]}},{"cve":{"id":"CVE-2026-48710","sourceIdentifier":"security-advisories@github.com","published":"2026-05-26T22:16:44.020","lastModified":"2026-05-29T16:19:35.753","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Starlette is a lightweight ASGI framework/toolkit. Prior to version 1.0.1, the HTTP `Host` request header was not validated before being used to reconstruct `request.url`. Because the routing algorithm relies on the raw HTTP path while `request.url` is rebuilt from the `Host` header, a malformed header could make `request.url.path` differ from the path that was actually requested. Middleware and endpoints that apply security restrictions based on `request.url` (rather than the raw `scope` path) could therefore be bypassed. Users should upgrade to a version greater than or equal to version 1.0.1, which validates the `Host` header against the grammar of RFC 9112 §3.2 / RFC 3986 §3.2.2 when constructing `request.url` and falls back to `scope[\"server\"]` for malformed values."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":2.5}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-444"}]}],"references":[{"url":"https://badhost.org","source":"security-advisories@github.com"},{"url":"https://github.com/Kludex/starlette/commit/764dab0dcfb9033d75442d7a359645c9f94648c6","source":"security-advisories@github.com"},{"url":"https://github.com/Kludex/starlette/security/advisories/GHSA-86qp-5c8j-p5mr","source":"security-advisories@github.com"},{"url":"https://github.com/pypa/advisory-database/tree/main/vulns/starlette/PYSEC-2026-161.yaml","source":"security-advisories@github.com"},{"url":"https://ostif.org/disclosing-the-badhost-vulnerability-in-starlette","source":"security-advisories@github.com"},{"url":"https://www.secwest.net/starlette","source":"security-advisories@github.com"},{"url":"https://www.x41-dsec.de/lab/advisories/x41-2026-002-starlette","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2026-8606","sourceIdentifier":"product-cna@github.com","published":"2026-05-27T00:16:37.900","lastModified":"2026-05-29T16:19:35.753","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"A Server-Side Request Forgery (SSRF) vulnerability was identified in GitHub Enterprise Server that allowed an attacker to cause the server to issue HTTP requests to internal services via the security advisories package lookup feature. By directing requests to an internal management service and measuring response timing, an attacker could infer the values of sensitive environment variables, including signing secrets and private keys. Exploitation required GitHub Packages to be enabled; on instances not running in private mode the vulnerability was exploitable without authentication, otherwise any authenticated user could exploit it. This vulnerability affected all versions of GitHub Enterprise Server prior to 3.21.1 and was fixed in versions 3.20.3, 3.19.7, 3.18.10, 3.17.16, and 3.16.19. This vulnerability was reported via the GitHub Bug Bounty program."}],"metrics":{"cvssMetricV40":[{"source":"product-cna@github.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:L/VI:N/VA:N/SC:H/SI:H/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":7.0,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"HIGH","attackRequirements":"PRESENT","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"LOW","vulnIntegrityImpact":"NONE","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"HIGH","subIntegrityImpact":"HIGH","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}]},"weaknesses":[{"source":"product-cna@github.com","type":"Secondary","description":[{"lang":"en","value":"CWE-918"}]}],"references":[{"url":"https://docs.github.com/en/enterprise-server@3.16/admin/release-notes#3.16.19","source":"product-cna@github.com"},{"url":"https://docs.github.com/en/enterprise-server@3.17/admin/release-notes#3.17.16","source":"product-cna@github.com"},{"url":"https://docs.github.com/en/enterprise-server@3.18/admin/release-notes#3.18.10","source":"product-cna@github.com"},{"url":"https://docs.github.com/en/enterprise-server@3.19/admin/release-notes#3.19.7","source":"product-cna@github.com"},{"url":"https://docs.github.com/en/enterprise-server@3.20/admin/release-notes#3.20.3","source":"product-cna@github.com"},{"url":"https://docs.github.com/en/enterprise-server@3.21/admin/release-notes#3.21.1","source":"product-cna@github.com"}]}},{"cve":{"id":"CVE-2026-9312","sourceIdentifier":"product-cna@github.com","published":"2026-05-27T00:16:39.020","lastModified":"2026-05-29T16:19:35.753","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"A server-side request forgery (SSRF) vulnerability was identified in GitHub Enterprise Server that allowed an unauthenticated attacker to send crafted requests to internal services by exploiting insufficient input validation in an upload endpoint. By injecting path traversal content into request parameters, an attacker could bypass the intended request flow and redirect internal API calls, potentially accessing internal services and exposing sensitive credentials. This vulnerability affected all versions of GitHub Enterprise Server prior to 3.22 and was fixed in versions 3.16.20, 3.17.17, 3.18.11, 3.19.8, 3.20.4, and 3.21.1. This vulnerability was reported via the GitHub Bug Bounty program."}],"metrics":{"cvssMetricV40":[{"source":"product-cna@github.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":9.2,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"HIGH","attackRequirements":"PRESENT","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"HIGH","vulnAvailabilityImpact":"HIGH","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}]},"weaknesses":[{"source":"product-cna@github.com","type":"Secondary","description":[{"lang":"en","value":"CWE-918"}]}],"references":[{"url":"https://docs.github.com/en/enterprise-server@3.16/admin/release-notes#3.16.20","source":"product-cna@github.com"},{"url":"https://docs.github.com/en/enterprise-server@3.17/admin/release-notes#3.17.17","source":"product-cna@github.com"},{"url":"https://docs.github.com/en/enterprise-server@3.18/admin/release-notes#3.18.11","source":"product-cna@github.com"},{"url":"https://docs.github.com/en/enterprise-server@3.19/admin/release-notes#3.19.8","source":"product-cna@github.com"},{"url":"https://docs.github.com/en/enterprise-server@3.20/admin/release-notes#3.20.4","source":"product-cna@github.com"},{"url":"https://docs.github.com/en/enterprise-server@3.21/admin/release-notes#3.21.1","source":"product-cna@github.com"}]}},{"cve":{"id":"CVE-2026-49014","sourceIdentifier":"cve@mitre.org","published":"2026-05-27T02:16:34.180","lastModified":"2026-05-29T16:19:35.753","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In GDAL 3.1.0 through 3.13.0, scanForGeometryContainers in the netCDF driver allows code execution via a stack-based buffer overflow. It reads a geometry attribute into a fixed-size stack buffer without validating the attribute length. The attacker embeds the exploit as an oversized geometry attribute in a crafted NetCDF file. This achieves arbitrary code execution on the server running GDAL. This is in frmts/netcdf/netcdfsg.cpp."}],"metrics":{"cvssMetricV31":[{"source":"cve@mitre.org","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":7.4,"baseSeverity":"HIGH","attackVector":"LOCAL","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.4,"impactScore":5.9}]},"weaknesses":[{"source":"cve@mitre.org","type":"Secondary","description":[{"lang":"en","value":"CWE-121"}]}],"references":[{"url":"https://github.com/OSGeo/gdal/issues/14594","source":"cve@mitre.org"},{"url":"https://github.com/OSGeo/gdal/issues/14594","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0"}]}},{"cve":{"id":"CVE-2026-49017","sourceIdentifier":"cve@mitre.org","published":"2026-05-27T02:16:34.327","lastModified":"2026-05-29T16:19:35.753","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In OpenStack Swift before 2.36.2 and 2.37.2, s3api middleware enters an infinite loop when processing a truncated aws-chunked PUT request body. The StreamingInput class repeatedly appends an empty buffer and re-reads, causing the proxy-server worker handling the request to become permanently unresponsive with increasing CPU and memory consumption. An authenticated attacker can systematically exhaust all proxy-server workers, resulting in denial of service. The defect was introduced in Swift 2.36.0."}],"metrics":{"cvssMetricV40":[{"source":"cve@mitre.org","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:L/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":7.1,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"LOW","userInteraction":"NONE","vulnConfidentialityImpact":"NONE","vulnIntegrityImpact":"NONE","vulnAvailabilityImpact":"HIGH","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"LOW","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}]},"weaknesses":[{"source":"cve@mitre.org","type":"Secondary","description":[{"lang":"en","value":"CWE-835"}]}],"references":[{"url":"https://bugs.launchpad.net/bugs/2152205","source":"cve@mitre.org"},{"url":"https://review.opendev.org/c/openstack/swift/+/987957","source":"cve@mitre.org"},{"url":"https://review.opendev.org/c/openstack/swift/+/988093","source":"cve@mitre.org"},{"url":"http://www.openwall.com/lists/oss-security/2026/05/27/9","source":"af854a3a-2127-422b-91ae-364da2661108"}]}},{"cve":{"id":"CVE-2026-9156","sourceIdentifier":"3938794e-25f5-4123-a1ba-5cbd7f104512","published":"2026-05-27T02:16:35.003","lastModified":"2026-05-29T19:16:18.533","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Tanium addressed a denial of service vulnerability in Tanium Server."}],"metrics":{"cvssMetricV31":[{"source":"3938794e-25f5-4123-a1ba-5cbd7f104512","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":3.6},{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":3.6}]},"weaknesses":[{"source":"3938794e-25f5-4123-a1ba-5cbd7f104512","type":"Secondary","description":[{"lang":"en","value":"CWE-772"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:tanium:server:*:*:*:*:*:*:*:*","versionStartIncluding":"7.6.4.0","versionEndExcluding":"7.6.4.2190","matchCriteriaId":"1B1353A9-B83C-4FC6-AF95-CB3DF455405E"},{"vulnerable":true,"criteria":"cpe:2.3:a:tanium:server:*:*:*:*:*:*:*:*","versionStartIncluding":"7.7.3.0","versionEndExcluding":"7.7.3.8274","matchCriteriaId":"44C67EDB-B43D-4F92-A701-61E46D46C7F0"},{"vulnerable":true,"criteria":"cpe:2.3:a:tanium:server:*:*:*:*:*:*:*:*","versionStartIncluding":"7.8.2.0","versionEndExcluding":"7.8.2.1176","matchCriteriaId":"8FAB89DE-F2CA-4CEE-AB92-3387B6D23931"}]}]}],"references":[{"url":"https://security.tanium.com/TAN-2026-013","source":"3938794e-25f5-4123-a1ba-5cbd7f104512","tags":["Vendor Advisory"]}]}},{"cve":{"id":"CVE-2025-15649","sourceIdentifier":"9b29abf9-4ab0-4765-b253-1875cd9b441e","published":"2026-05-27T04:16:23.873","lastModified":"2026-05-29T16:16:21.990","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"IO::Uncompress::Unzip versions before 2.215 for Perl propagate uncaught exception when parsing zip header with malformed DOS date.\n\n_dosToUnixTime() decodes the local-file-header last-modification date field and calls Time::Local::timelocal() without an eval guard. A header whose date field decodes to an out-of-range month, day, or hour causes timelocal() to die.\n\nThe exception propagates out of IO::Uncompress::Unzip->new($file) where callers expect undef plus $UnzipError."}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","baseScore":5.5,"baseSeverity":"MEDIUM","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":1.8,"impactScore":3.6}]},"weaknesses":[{"source":"9b29abf9-4ab0-4765-b253-1875cd9b441e","type":"Secondary","description":[{"lang":"en","value":"CWE-248"}]}],"references":[{"url":"https://github.com/pmqs/IO-Compress/commit/fd28c1d2374eee9811f6d0c5bddc0957abdf1da8.patch","source":"9b29abf9-4ab0-4765-b253-1875cd9b441e"},{"url":"https://github.com/pmqs/IO-Compress/issues/65","source":"9b29abf9-4ab0-4765-b253-1875cd9b441e"},{"url":"https://metacpan.org/release/PMQS/IO-Compress-2.215/changes","source":"9b29abf9-4ab0-4765-b253-1875cd9b441e"},{"url":"http://www.openwall.com/lists/oss-security/2026/05/27/1","source":"af854a3a-2127-422b-91ae-364da2661108"}]}},{"cve":{"id":"CVE-2026-48959","sourceIdentifier":"9b29abf9-4ab0-4765-b253-1875cd9b441e","published":"2026-05-27T04:16:31.093","lastModified":"2026-05-29T16:16:31.687","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"IO::Uncompress::Unzip versions before 2.220 for Perl allow CPU exhaustion via per-byte read loop in fastForward.\n\nfastForward() compares length $offset (the digit count of the offset, 1 to 19) against the chunk size $c instead of $offset itself, so $c shrinks from 16 KiB to 1-19 bytes per iteration.\n\nExtracting a named entry from an attacker supplied zip via IO::Uncompress::Unzip->new($zip, Name => $target) drives a per-byte read loop scaling with the entry's compressed size, up to the non-Zip64 4 GiB cap."}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":3.6}]},"weaknesses":[{"source":"9b29abf9-4ab0-4765-b253-1875cd9b441e","type":"Secondary","description":[{"lang":"en","value":"CWE-407"}]}],"references":[{"url":"https://github.com/pmqs/IO-Compress/commit/68db44076f4c1a86a2ffe53a958eac6cabaf72e2.patch","source":"9b29abf9-4ab0-4765-b253-1875cd9b441e"},{"url":"https://metacpan.org/release/PMQS/IO-Compress-2.220/changes","source":"9b29abf9-4ab0-4765-b253-1875cd9b441e"},{"url":"http://www.openwall.com/lists/oss-security/2026/05/27/2","source":"af854a3a-2127-422b-91ae-364da2661108"}]}},{"cve":{"id":"CVE-2026-48961","sourceIdentifier":"9b29abf9-4ab0-4765-b253-1875cd9b441e","published":"2026-05-27T04:16:31.210","lastModified":"2026-05-29T16:16:31.820","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"IO::Compress versions from 2.207 before 2.220 for Perl ship a zipdetails CLI tool that crashes with undefined subroutine on Info-ZIP Unix Extra Field with 8-byte UID or GID.\n\nWhen decode_ux() in bin/zipdetails handles an Info-ZIP Unix Extra Field (tag 0x7875) with UID Size or GID Size set to 8, causing zipdetails to decode an 8-byte UID or GID value, it dispatches through decodeLitteEndian(), which calls a misnamed helper unpackValueQ. The actual function defined in the same file is unpackValue_Q (with underscore); the call raises 'Undefined subroutine &main::unpackValueQ' and the script exits with status 255.\n\nLibrary callers of IO::Compress and IO::Uncompress are not affected; the defect is in the bundled CLI tool."}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L","baseScore":7.3,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"LOW"},"exploitabilityScore":3.9,"impactScore":3.4}]},"weaknesses":[{"source":"9b29abf9-4ab0-4765-b253-1875cd9b441e","type":"Secondary","description":[{"lang":"en","value":"CWE-755"}]}],"references":[{"url":"https://github.com/pmqs/IO-Compress/commit/33c89d03d6e746ed2ead4f2f6570d47864c61bc7.patch","source":"9b29abf9-4ab0-4765-b253-1875cd9b441e"},{"url":"https://metacpan.org/release/PMQS/IO-Compress-2.220/changes","source":"9b29abf9-4ab0-4765-b253-1875cd9b441e"},{"url":"http://www.openwall.com/lists/oss-security/2026/05/27/3","source":"af854a3a-2127-422b-91ae-364da2661108"}]}},{"cve":{"id":"CVE-2023-52945","sourceIdentifier":"security@synology.com","published":"2026-05-27T09:16:24.777","lastModified":"2026-05-29T19:13:52.230","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Uncontrolled search path element vulnerability in OpenSSL DLL component in Synology BeeDrive for desktop before 1.3.2-13814 allows local users to execute arbitrary code via unspecified vectors."}],"metrics":{"cvssMetricV31":[{"source":"security@synology.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","baseScore":7.8,"baseSeverity":"HIGH","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.8,"impactScore":5.9}]},"weaknesses":[{"source":"security@synology.com","type":"Primary","description":[{"lang":"en","value":"CWE-427"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:synology:beedrive:*:*:*:*:desktop:-:*:*","versionEndExcluding":"1.3.2-13814","matchCriteriaId":"7500DE23-D32F-4A40-B83A-896536740759"}]}]}],"references":[{"url":"https://www.synology.com/en-global/security/advisory/Synology_SA_24_26","source":"security@synology.com","tags":["Vendor Advisory"]}]}},{"cve":{"id":"CVE-2026-48906","sourceIdentifier":"security@joomla.org","published":"2026-05-27T11:16:24.713","lastModified":"2026-05-29T15:42:56.873","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"The vulnerability in the Tassos Framework Plugin allows users to delete arbitrary files on the affected sites."}],"metrics":{"cvssMetricV40":[{"source":"security@joomla.org","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:H/SC:N/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:Y/R:X/V:X/RE:X/U:X","baseScore":9.3,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"NONE","vulnIntegrityImpact":"HIGH","vulnAvailabilityImpact":"HIGH","subConfidentialityImpact":"NONE","subIntegrityImpact":"HIGH","subAvailabilityImpact":"HIGH","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"YES","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}]},"weaknesses":[{"source":"security@joomla.org","type":"Primary","description":[{"lang":"en","value":"CWE-284"}]}],"references":[{"url":"https://tassos.gr","source":"security@joomla.org"}]}},{"cve":{"id":"CVE-2026-36044","sourceIdentifier":"cve@mitre.org","published":"2026-05-27T14:16:45.143","lastModified":"2026-05-29T16:16:26.500","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"@pensar/apex <= 0.0.58 is vulnerable to OS command injection via the smart_enumerate tool. The createSmartEnumerateTool() function in src/core/agent/tools.ts constructs a shell command by concatenating unsanitized values from the extensions array and url parameter into a string passed to Node.js child_process.exec(). Because exec() spawns a shell, shell metacharacters in those values are interpreted by the host shell, resulting in arbitrary OS command execution with the privileges of the running process."}],"metrics":{"cvssMetricV31":[{"source":"cve@mitre.org","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":5.9}]},"weaknesses":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-78"}]}],"references":[{"url":"https://gist.github.com/NucleiAv/47e87da08b90ef464fd9b35affe578fb","source":"cve@mitre.org"},{"url":"https://www.npmjs.com/package/@pensar/apex","source":"cve@mitre.org"}]}},{"cve":{"id":"CVE-2026-7876","sourceIdentifier":"psirt@us.ibm.com","published":"2026-05-27T14:17:35.727","lastModified":"2026-05-29T21:25:29.967","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"IBM Aspera HSTS for CP4I 1.5.1 through 1.5.19"}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N","baseScore":9.1,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":5.2},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N","baseScore":9.1,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":5.2}]},"weaknesses":[{"source":"psirt@us.ibm.com","type":"Secondary","description":[{"lang":"en","value":"CWE-287"}]},{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"NVD-CWE-noinfo"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:aspera_high-speed_transfer_server_for_cloud_pak_for_integration:*:*:*:*:*:*:*:*","versionStartIncluding":"1.5.1","versionEndExcluding":"1.5.20","matchCriteriaId":"AA132BA2-35FB-4791-9F4F-97090025751F"}]}]}],"references":[{"url":"https://www.ibm.com/support/pages/node/7274127","source":"psirt@us.ibm.com","tags":["Patch","Vendor Advisory"]}]}},{"cve":{"id":"CVE-2026-42184","sourceIdentifier":"security-advisories@github.com","published":"2026-05-27T15:16:27.560","lastModified":"2026-05-29T16:19:35.753","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Tauri is a framework for building binaries for all major desktop platforms. From 2.0 to 2.11.0, a flaw in Tauri's is_local_url() function causes it to incorrectly classify remote URLs as trusted local origins on Windows and Android. On these systems, Tauri maps custom URI scheme protocols to http://<scheme>.localhost/ because those platforms' WebView implementations cannot serve custom URI schemes directly. The issue is that Tauri's check to see if the origin is local, only checks the first subdomain of the URL. An attacker can abuse this by hosting a page on a domain whose subdomain matches the custom scheme of the application. This vulnerability is fixed in 2.10.3."}],"metrics":{"cvssMetricV40":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:P/VC:L/VI:H/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":6.1,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"HIGH","attackRequirements":"PRESENT","privilegesRequired":"NONE","userInteraction":"PASSIVE","vulnConfidentialityImpact":"LOW","vulnIntegrityImpact":"HIGH","vulnAvailabilityImpact":"LOW","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Secondary","description":[{"lang":"en","value":"CWE-918"}]}],"references":[{"url":"https://github.com/tauri-apps/tauri/security/advisories/GHSA-7gmj-67g7-phm9","source":"security-advisories@github.com"},{"url":"https://github.com/tauri-apps/tauri/security/advisories/GHSA-7gmj-67g7-phm9","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0"}]}},{"cve":{"id":"CVE-2026-42280","sourceIdentifier":"security-advisories@github.com","published":"2026-05-27T15:16:27.753","lastModified":"2026-05-29T15:42:56.873","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Auth0.js is a client-side JavaScript library for Auth0. From 8.11.0 to 9.32.0, under specific preconditions, the Auth0.js SDK may improperly return user profile information using a valid access token when a specifically crafted invalid ID token is provided. This vulnerability is fixed in 10.0.0."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:N","baseScore":7.1,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":4.2}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-863"}]}],"references":[{"url":"https://github.com/auth0/auth0.js/security/advisories/GHSA-8qjv-jj2q-x832","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2026-44838","sourceIdentifier":"security-advisories@github.com","published":"2026-05-27T15:16:28.743","lastModified":"2026-05-29T15:06:44.207","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"RabbitMQ is a messaging and streaming broker. From 4.2.0 to before 4.2.4, RabbitMQ's MQTT plugin allows for topic-level authorization using regular expressions with variable substitution. Administrators can create patterns such as ^{client_id}-sensors$ to restrict user access to topics that include their client ID. However, the client_id is provided by the user in the MQTT CONNECT packet and is inserted into the regex pattern without escaping special regex characters. This flaw enables an authenticated MQTT user to inject regex operators to bypass authorization. This vulnerability is fixed in 4.2.4 and 4.3.0."}],"metrics":{"cvssMetricV40":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:L/VI:L/VA:L/SC:H/SI:H/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":5.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"PRESENT","privilegesRequired":"LOW","userInteraction":"NONE","vulnConfidentialityImpact":"LOW","vulnIntegrityImpact":"LOW","vulnAvailabilityImpact":"LOW","subConfidentialityImpact":"HIGH","subIntegrityImpact":"HIGH","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-863"}]}],"references":[{"url":"https://github.com/rabbitmq/rabbitmq-server/security/advisories/GHSA-x866-xp2g-cx8v","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2026-44839","sourceIdentifier":"security-advisories@github.com","published":"2026-05-27T15:16:29.073","lastModified":"2026-05-29T15:06:44.207","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"RabbitMQ is a messaging and streaming broker. From 3.7.0 to before 4.1.2 and 4.0.13,  This vulnerability is fixed in 4.1.2 and 4.0.13."}],"metrics":{"cvssMetricV40":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:H/AT:N/PR:H/UI:A/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":5.6,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"HIGH","attackRequirements":"NONE","privilegesRequired":"HIGH","userInteraction":"ACTIVE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"NONE","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-80"}]}],"references":[{"url":"https://github.com/rabbitmq/rabbitmq-server/commit/7f54319279d1ece161ae0b4cdc6f0e58a4045eb5","source":"security-advisories@github.com"},{"url":"https://github.com/rabbitmq/rabbitmq-server/security/advisories/GHSA-fh5r-jpm3-fjwp","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2026-44902","sourceIdentifier":"security-advisories@github.com","published":"2026-05-27T15:16:29.313","lastModified":"2026-05-29T15:42:56.873","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"opentelemetry-js is the OpenTelemetry JavaScript Client. Prior to 0.217.0, a single malformed HTTP request crashes any Node.js process running the OpenTelemetry JS Prometheus exporter. The metrics endpoint (default 0.0.0.0:9464) has no error handling around URL parsing, so a request with an invalid URI causes an uncaught TypeError that terminates the process. This vulnerability is fixed in 0.217.0."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":3.6}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Secondary","description":[{"lang":"en","value":"CWE-755"}]}],"references":[{"url":"https://github.com/open-telemetry/opentelemetry-js/security/advisories/GHSA-q7rr-3cgh-j5r3","source":"security-advisories@github.com"},{"url":"https://github.com/open-telemetry/opentelemetry-js/security/advisories/GHSA-q7rr-3cgh-j5r3","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0"}]}},{"cve":{"id":"CVE-2026-44972","sourceIdentifier":"security-advisories@github.com","published":"2026-05-27T15:16:29.690","lastModified":"2026-05-29T15:39:34.620","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"GuardDog is a CLI tool to identify malicious PyPI packages. From 2.6.0 to 2.9.0, GuardDog includes attacker-controlled filenames, file locations, messages, and code snippets in its default human-readable output without escaping terminal control characters. A malicious package can therefore inject ANSI or OSC escape sequences into analyst terminals or CI logs."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N","baseScore":5.0,"baseSeverity":"MEDIUM","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":1.8,"impactScore":2.7}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-116"}]}],"references":[{"url":"https://github.com/DataDog/guarddog/security/advisories/GHSA-m5p4-gvpx-4mvr","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2026-44988","sourceIdentifier":"security-advisories@github.com","published":"2026-05-27T15:16:29.830","lastModified":"2026-05-29T16:16:27.680","vulnStatus":"Received","cveTags":[],"descriptions":[{"lang":"en","value":"LibVNCClient is a library for easy implementation of a VNC client. In 0.9.15 and earlier, LibVNCClient's Tight encoding decoder uses fixed-size 2048-pixel scratch buffers for the Gradient filter, but it does not reject Tight rectangles whose width is larger than 2048 pixels. A malicious VNC server can send a crafted FramebufferUpdate rectangle using Tight encoding with NoZlib | ExplicitFilter and the Gradient filter. When a LibVNCClient-based client connects, the client processes the server-controlled rectangle width and writes beyond fixed-size Gradient buffers. This vulnerability is fixed with commit 5b270544b85233668b98161323297d418a8f5fd1."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":5.9}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Secondary","description":[{"lang":"en","value":"CWE-787"}]}],"references":[{"url":"https://github.com/LibVNC/libvncserver/commit/5b270544b85233668b98161323297d418a8f5fd1","source":"security-advisories@github.com"},{"url":"https://github.com/LibVNC/libvncserver/security/advisories/GHSA-jcc5-8wj4-7c58","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2026-45022","sourceIdentifier":"security-advisories@github.com","published":"2026-05-27T15:16:29.980","lastModified":"2026-05-29T15:42:56.873","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"go-git is an extensible git implementation library written in pure Go. Prior to 5.19.0 and 6.0.0-alpha.3, go-git may parse malformed Git objects in a way that differs from upstream Git. When commit or tag objects contain ambiguous or malformed headers, go-git’s decoded representation may expose values differently from how Git itself would interpret or reject the same object. Additionally, go-git’s commit signing and verification logic operates over commit data reconstructed from go-git’s parsed representation rather than the original raw object bytes. As a result, go-git may sign or verify a commit payload that is not byte-for-byte equivalent to the object stored in the repository. This can cause a signature to appear valid for a commit whose displayed or effective metadata differs from the object that was intended to be signed. This vulnerability is fixed in 5.19.0 and 6.0.0-alpha.3."}],"metrics":{"cvssMetricV40":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:H/AT:N/PR:L/UI:N/VC:N/VI:H/VA:N/SC:N/SI:H/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":7.0,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"HIGH","attackRequirements":"NONE","privilegesRequired":"LOW","userInteraction":"NONE","vulnConfidentialityImpact":"NONE","vulnIntegrityImpact":"HIGH","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"HIGH","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-180"},{"lang":"en","value":"CWE-345"}]}],"references":[{"url":"https://github.com/go-git/go-git/security/advisories/GHSA-389r-gv7p-r3rp","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2026-45570","sourceIdentifier":"security-advisories@github.com","published":"2026-05-27T15:16:30.240","lastModified":"2026-05-29T15:42:56.873","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"go-git is an extensible git implementation library written in pure Go. Prior to 5.19.1 and 6.0.0-alpha.4, go-git's SSH transport constructs the remote exec command by wrapping the repository path in single quotes without escaping single quotes embedded inside the path. A repository path containing a single quote can therefore break out of the quoted region in the exec command and be appended as additional shell tokens. This vulnerability is fixed in 5.19.1 and 6.0.0-alpha.4."}],"metrics":{"cvssMetricV40":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:L/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":2.3,"baseSeverity":"LOW","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"PRESENT","privilegesRequired":"NONE","userInteraction":"PASSIVE","vulnConfidentialityImpact":"NONE","vulnIntegrityImpact":"NONE","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"LOW","subIntegrityImpact":"LOW","subAvailabilityImpact":"LOW","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-116"}]}],"references":[{"url":"https://github.com/go-git/go-git/security/advisories/GHSA-m7cr-m3pv-hgrp","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2026-45571","sourceIdentifier":"security-advisories@github.com","published":"2026-05-27T15:16:30.387","lastModified":"2026-05-29T15:42:56.873","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"go-git is an extensible git implementation library written in pure Go. Prior to 5.19.1 and 6.0.0-alpha.4, a path validation issue in go-git could allow crafted repository data to affect files outside the intended checkout target, including the repository's .git directory. These validations were introduced in upstream Git years ago, so the vulnerability arose from go-git drifting from those checks. This vulnerability is fixed in 5.19.1 and 6.0.0-alpha.4."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:L","baseScore":5.4,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"LOW","availabilityImpact":"LOW"},"exploitabilityScore":2.8,"impactScore":2.5}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-22"}]}],"references":[{"url":"https://github.com/go-git/go-git/security/advisories/GHSA-crhj-59gh-8x96","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2026-48545","sourceIdentifier":"disclosure@vulncheck.com","published":"2026-05-27T15:16:31.020","lastModified":"2026-05-29T15:42:56.873","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Gradio before version 6.15.0 contains a cookie injection vulnerability that allows remote attackers to perform cross-Space session fixation by exploiting a shared module-level HTTP client used across all users in the reverse proxy endpoint. Attackers controlling any HF Space can return a parent-domain cookie that the shared client stores and automatically replays into all subsequent proxy requests to other legitimate Spaces, affecting all users of the same Gradio deployment."}],"metrics":{"cvssMetricV40":[{"source":"disclosure@vulncheck.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:P/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":7.6,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"HIGH","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"PASSIVE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"HIGH","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"disclosure@vulncheck.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:N","baseScore":6.8,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"NONE"},"exploitabilityScore":1.6,"impactScore":5.2}]},"weaknesses":[{"source":"disclosure@vulncheck.com","type":"Secondary","description":[{"lang":"en","value":"CWE-384"}]}],"references":[{"url":"https://github.com/gradio-app/gradio/commit/feb7237d01f359d2ad4ee42d00344e61692b3b39","source":"disclosure@vulncheck.com"},{"url":"https://github.com/gradio-app/gradio/issues/13369","source":"disclosure@vulncheck.com"},{"url":"https://github.com/gradio-app/gradio/pull/13384","source":"disclosure@vulncheck.com"},{"url":"https://github.com/gradio-app/gradio/releases/tag/gradio%406.15.0","source":"disclosure@vulncheck.com"},{"url":"https://www.vulncheck.com/advisories/gradio-cookie-injection-via-shared-pro","source":"disclosure@vulncheck.com"},{"url":"https://github.com/gradio-app/gradio/issues/13369","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0"}]}},{"cve":{"id":"CVE-2026-6957","sourceIdentifier":"responsibledisclosure@mattermost.com","published":"2026-05-27T15:16:34.903","lastModified":"2026-05-29T15:42:56.873","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Mattermost Plugins versions <=1.1.5 fail to sanitize filenames received from federated peers before using them to construct export destination paths, which allows an administrator of a remote federated Mattermost server to write files to arbitrary locations within the target server's filestore via a malicious filename delivered through the shared-channel attachment sync protocol. Mattermost Advisory ID: MMSA-2026-00659"}],"metrics":{"cvssMetricV31":[{"source":"responsibledisclosure@mattermost.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H","baseScore":8.0,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"HIGH","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.3,"impactScore":6.0}]},"weaknesses":[{"source":"responsibledisclosure@mattermost.com","type":"Secondary","description":[{"lang":"en","value":"CWE-22"}]}],"references":[{"url":"https://mattermost.com/security-updates","source":"responsibledisclosure@mattermost.com"}]}},{"cve":{"id":"CVE-2026-42081","sourceIdentifier":"security-advisories@github.com","published":"2026-05-27T17:16:34.967","lastModified":"2026-05-29T19:24:54.783","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"free5GC is an open-source implementation of the 5G core network. Prior to 4.2.2, the AMF in Free5GC does not verify the UE Security Capabilities received in NGAP PathSwitchRequest messages against its locally stored values, as mandated by 3GPP TS 33.501 §6.7.3.1. A malicious gNB can overwrite the AMF's stored UE security capabilities with arbitrary values, which are then propagated in PathSwitchRequest Acknowledge messages and subsequent Handover Request messages. This leads to persistent handover denial-of-service for affected UEs. This vulnerability is fixed in 4.2.2."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:L","baseScore":6.1,"baseSeverity":"MEDIUM","attackVector":"ADJACENT_NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"NONE","integrityImpact":"LOW","availabilityImpact":"LOW"},"exploitabilityScore":2.8,"impactScore":2.7},{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H","baseScore":7.1,"baseSeverity":"HIGH","attackVector":"ADJACENT_NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"LOW","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":4.2}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Secondary","description":[{"lang":"en","value":"CWE-358"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:free5gc:free5gc:*:*:*:*:*:*:*:*","versionEndExcluding":"4.2.2","matchCriteriaId":"EF7EBB95-EB4E-44C5-BF0A-9C99B0A7775F"}]}]}],"references":[{"url":"https://github.com/free5gc/free5gc/security/advisories/GHSA-77x9-rf64-92gv","source":"security-advisories@github.com","tags":["Vendor Advisory","Exploit"]},{"url":"https://github.com/free5gc/free5gc/security/advisories/GHSA-77x9-rf64-92gv","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","tags":["Vendor Advisory","Exploit"]}]}},{"cve":{"id":"CVE-2026-44353","sourceIdentifier":"security-advisories@github.com","published":"2026-05-27T17:16:38.927","lastModified":"2026-05-29T16:25:57.843","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Streamlink is a CLI utility which pipes video streams from various services into a video player. Prior to 8.4.0, Streamlink's HLS and DASH parsers do not validate the URI scheme of segment entries and other resources. A remote .m3u8 HLS playlist or .mpd DASH manifest can list file:///path/to/file as a segment, and streamlink will read that local file and write its contents to the output stream. This vulnerability is fixed in 8.4.0."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":3.6}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Secondary","description":[{"lang":"en","value":"CWE-22"}]}],"references":[{"url":"https://github.com/streamlink/streamlink/security/advisories/GHSA-hgqw-6m45-hw5f","source":"security-advisories@github.com"},{"url":"https://github.com/streamlink/streamlink/security/advisories/GHSA-hgqw-6m45-hw5f","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0"}]}},{"cve":{"id":"CVE-2025-67903","sourceIdentifier":"cve@mitre.org","published":"2026-05-27T18:16:21.507","lastModified":"2026-05-29T16:16:22.147","vulnStatus":"Received","cveTags":[],"descriptions":[{"lang":"en","value":"Northern.tech Mender Client 5 before 5.0.4 allows a Cryptographic signature verification bypass."}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N","baseScore":5.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":1.4}]},"weaknesses":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-347"}]}],"references":[{"url":"https://mender.io/blog/cve-2025-67903-signature-verification-bypass-in-mender-client","source":"cve@mitre.org"},{"url":"https://northern.tech","source":"cve@mitre.org"}]}},{"cve":{"id":"CVE-2026-44345","sourceIdentifier":"security-advisories@github.com","published":"2026-05-27T18:16:23.200","lastModified":"2026-05-29T15:34:31.597","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"BentoML is a Python library for building online serving systems optimized for AI apps and model inference. Prior to 1.4.39, src/bentoml/_internal/container/frontend/dockerfile/templates/base_v2.j2 interpolates docker.base_image raw with no escaping, newline filtering, or validation. A malicious bento.yaml with a multi-line docker.base_image value smuggles arbitrary Dockerfile directives into the generated Dockerfile, and bentoml containerize then runs docker build which executes the injected RUN directives on the victim host. This vulnerability is fixed in 1.4.39."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":5.9}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Secondary","description":[{"lang":"en","value":"CWE-78"}]}],"references":[{"url":"https://github.com/bentoml/BentoML/security/advisories/GHSA-78f9-r8mh-4xm2","source":"security-advisories@github.com"},{"url":"https://github.com/bentoml/BentoML/security/advisories/GHSA-78f9-r8mh-4xm2","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0"}]}},{"cve":{"id":"CVE-2026-44346","sourceIdentifier":"security-advisories@github.com","published":"2026-05-27T18:16:23.333","lastModified":"2026-05-29T15:34:31.597","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"BentoML is a Python library for building online serving systems optimized for AI apps and model inference. Prior to 1.4.39, a malicious bentofile.yaml containing a newline-injected value in envs[*].name produces unquoted RUN directives in the BentoML-generated Dockerfile. When the victim runs bentoml containerize on the imported bento, those RUN directives execute on the host during docker build. This vulnerability is fixed in 1.4.39."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":5.9}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Secondary","description":[{"lang":"en","value":"CWE-78"},{"lang":"en","value":"CWE-94"}]}],"references":[{"url":"https://github.com/bentoml/BentoML/security/advisories/GHSA-w2pm-x38x-jp44","source":"security-advisories@github.com"},{"url":"https://github.com/bentoml/BentoML/security/advisories/GHSA-w2pm-x38x-jp44","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0"}]}},{"cve":{"id":"CVE-2026-44378","sourceIdentifier":"security-advisories@github.com","published":"2026-05-27T18:16:23.470","lastModified":"2026-05-29T16:19:35.753","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Botan is a C++ cryptography library. Prior to 3.12.0, certain patterns of indefinite length encodings in BER data could cause quadratic behavior in the parser, resulting in a denial of service. Such BER encodings were accepted even in structures which are required to be encoded as DER, which prohibits indefinite length encodings. This vulnerability is fixed in 3.12.0."}],"metrics":{"cvssMetricV40":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":6.9,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"NONE","vulnIntegrityImpact":"NONE","vulnAvailabilityImpact":"LOW","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-407"}]}],"references":[{"url":"https://github.com/randombit/botan/security/advisories/GHSA-7q2v-3g27-6g3j","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2026-42877","sourceIdentifier":"security-advisories@github.com","published":"2026-05-27T20:16:36.673","lastModified":"2026-05-29T15:29:42.387","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"FacturaScripts is an open source accounting and invoicing software. In 2025.92 and earlier, a stored Cross-Site Scripting (XSS) vulnerability exists in the product search modal of sales (Core/Lib/AjaxForms/SalesModalHTML.php) and purchases documents (Core/Lib/AjaxForms/PurchasesModalHTML.php). An authenticated user with access to the warehouse module can create a product with a malicious reference that executes arbitrary JavaScript in the browser of any other user who opens the product search modal inside an invoice, order, or delivery note."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N","baseScore":5.4,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":2.3,"impactScore":2.7}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Secondary","description":[{"lang":"en","value":"CWE-79"}]}],"references":[{"url":"https://github.com/NeoRazorX/facturascripts/security/advisories/GHSA-r736-2678-fcrx","source":"security-advisories@github.com"},{"url":"https://github.com/NeoRazorX/facturascripts/security/advisories/GHSA-r736-2678-fcrx","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0"}]}},{"cve":{"id":"CVE-2026-44590","sourceIdentifier":"security-advisories@github.com","published":"2026-05-27T20:16:37.293","lastModified":"2026-05-29T16:32:14.400","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Sherlock hunts down social media accounts by username across social networks. Prior to 0.16.1, the GitHub Actions workflow validate_modified_targets.yml is vulnerable to command injection via the pull_request_target trigger. Any GitHub user can execute arbitrary commands on the CI runner and exfiltrate the GITHUB_TOKEN by opening a pull request. No approval, review, or merge is required. This vulnerability is fixed in 0.16.1."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:H/A:N","baseScore":9.3,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"HIGH","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":4.7}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Secondary","description":[{"lang":"en","value":"CWE-78"}]}],"references":[{"url":"https://github.com/sherlock-project/sherlock/security/advisories/GHSA-v6wr-ccr4-x8g9","source":"security-advisories@github.com"},{"url":"https://github.com/sherlock-project/sherlock/security/advisories/GHSA-v6wr-ccr4-x8g9","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0"}]}},{"cve":{"id":"CVE-2026-44681","sourceIdentifier":"security-advisories@github.com","published":"2026-05-27T20:16:37.463","lastModified":"2026-05-29T16:25:57.843","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Authlib is a Python library which builds OAuth and OpenID Connect servers. Prior to 1.6.12 and 1.7.1, an unauthenticated open redirect in Authlib's OpenIDImplicitGrant and OpenIDHybridGrant authorization endpoint lets a remote attacker cause the authorization server to issue an HTTP 302 to an attacker-chosen URL by submitting an authorization request that omits the openid scope. This vulnerability is fixed in 1.6.12 and 1.7.1."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N","baseScore":6.1,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":2.7}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-601"},{"lang":"en","value":"CWE-863"}]}],"references":[{"url":"https://github.com/authlib/authlib/security/advisories/GHSA-r95x-qfjj-fjj2","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2026-44886","sourceIdentifier":"security-advisories@github.com","published":"2026-05-27T20:16:37.767","lastModified":"2026-05-29T15:29:42.387","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Pi.Alert is a WIFI / LAN intruder detector with web service monitoring. From 2024-06-29 to before 2026-05-07, the web application endpoint is vulnerable to SQL injection. The /pialert/php/server/devices.php route accepts requests from unauthenticated users when the action URL parameter is set to getDevicesTotals. The scansource URL parameter is then injected in a SQL query. This vulnerability is fixed in 2026-05-07."}],"metrics":{"cvssMetricV40":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":8.7,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"NONE","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Secondary","description":[{"lang":"en","value":"CWE-89"}]}],"references":[{"url":"https://github.com/leiweibau/Pi.Alert/security/advisories/GHSA-m929-j7w8-334j","source":"security-advisories@github.com"},{"url":"https://github.com/leiweibau/Pi.Alert/security/advisories/GHSA-m929-j7w8-334j","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0"}]}},{"cve":{"id":"CVE-2026-44887","sourceIdentifier":"security-advisories@github.com","published":"2026-05-27T20:16:37.900","lastModified":"2026-05-29T15:29:42.387","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Pi.Alert is a WIFI / LAN intruder detector with web service monitoring. Prior to 2026-05-07, Pi.Alert's web-based configuration editor allows arbitrary Python code to be injected into pialert.conf. Since the background scan daemon loads this file via Python's exec(), injected code executes as the daemon process. With web protection disabled (the default configuration), no authentication is required, making this an unauthenticated Remote Code Execution vulnerability. This vulnerability is fixed in 2026-05-07."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":9.8,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":5.9}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Secondary","description":[{"lang":"en","value":"CWE-94"}]}],"references":[{"url":"https://github.com/leiweibau/Pi.Alert/security/advisories/GHSA-r59g-5wf9-f7vv","source":"security-advisories@github.com"},{"url":"https://github.com/leiweibau/Pi.Alert/security/advisories/GHSA-r59g-5wf9-f7vv","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0"}]}},{"cve":{"id":"CVE-2026-44888","sourceIdentifier":"security-advisories@github.com","published":"2026-05-27T20:16:38.040","lastModified":"2026-05-29T15:29:42.387","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Pi.Alert is a WIFI / LAN intruder detector with web service monitoring. Prior to 2026-05-07, Pi.Alert's SaveConfigFile() endpoint writes user-supplied numeric config values (e.g., SMTP_PORT) directly into\npialert.conf without validation. Since pialert.conf is loaded via Python's exec() every 3–5 minutes by the\nbackground cron process, an attacker can inject arbitrary Python code and achieve unauthenticated OS-level RCE. On\ndefault installations (PIALERT_WEB_PROTECTION = False), no credentials are required. This vulnerability is fixed in 2026-05-07."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":9.8,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":5.9}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Secondary","description":[{"lang":"en","value":"CWE-94"}]}],"references":[{"url":"https://github.com/leiweibau/Pi.Alert/security/advisories/GHSA-xg85-f8qw-7c5f","source":"security-advisories@github.com"},{"url":"https://github.com/leiweibau/Pi.Alert/security/advisories/GHSA-xg85-f8qw-7c5f","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0"}]}},{"cve":{"id":"CVE-2026-45104","sourceIdentifier":"security-advisories@github.com","published":"2026-05-27T20:16:38.407","lastModified":"2026-05-29T16:25:57.843","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"MapServer is a system for developing web-based GIS applications. From 6.4.0 to before 8.6.3, msSLDParseUserStyle always calls _SLDApplyRuleValues(psRule, psLayer, 1); for any <Rule> carrying <ElseFilter/> — it assumes msSLDParseRule added one class. When the rule has no symbolizer (a structurally valid SLD), msSLDParseRule adds zero, and _SLDApplyRuleValues ends up indexing _class[-1], resulting in a NULL pointer dereference. A 200-byte well-formed SLD via the WMS SLD_BODY= parameter is enough to trigger this, no auth required. This vulnerability is fixed in 8.6.3."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":3.6}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-129"},{"lang":"en","value":"CWE-476"}]}],"references":[{"url":"https://github.com/MapServer/MapServer/security/advisories/GHSA-4h8g-378q-r75m","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2026-45134","sourceIdentifier":"security-advisories@github.com","published":"2026-05-27T20:16:38.697","lastModified":"2026-05-29T16:12:06.690","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"LangSmith Client SDKs provide SDK's for interacting with the LangSmith platform. Prior to LangSmith SDK Python 0.8.0 and JS/TS 0.6.0, the LangSmith SDK's prompt pull methods (pull_prompt / pull_prompt_commit in Python, pullPrompt / pullPromptCommit in JS/TS) fetch and deserialize prompt manifests from the LangSmith Hub. These manifests may contain serialized LangChain objects and model configuration that affect runtime behavior. When pulling a public prompt by owner/name identifier, the manifest content is controlled by an external party, but prior versions of the SDK did not distinguish this from pulling a prompt within the caller's own organization. This vulnerability is fixed in LangSmith SDK Python 0.8.0 and JS/TS 0.6.0."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:L/A:N","baseScore":7.1,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":4.2}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-502"}]}],"references":[{"url":"https://github.com/langchain-ai/langsmith-sdk/security/advisories/GHSA-3644-q5cj-c5c7","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2026-8359","sourceIdentifier":"vulnreport@tenable.com","published":"2026-05-27T20:16:42.590","lastModified":"2026-05-29T20:26:29.583","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"When processing a request with a URL path starting with /status or /sysinfo, WOSHttpStatusModule.dll is to be loaded to handle such URL patterns. The WOSBin_LoadHttpModule function in the dll would be called to set up a \"module\" object for that module. However, WOSHttpStatusModule.dll is not present in the installation. As a result, a function pointer to WOSBin_LoadHttpModule (which would have been in the export table in WOSHttpStatusModule.dll) is set to NULL, resulting in calling a function at address 0."}],"metrics":{"cvssMetricV31":[{"source":"vulnreport@tenable.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":3.6}]},"weaknesses":[{"source":"vulnreport@tenable.com","type":"Secondary","description":[{"lang":"en","value":"CWE-476"}]}],"references":[{"url":"https://www.tenable.com/security/research/TRA-2026-45","source":"vulnreport@tenable.com"},{"url":"https://www.tenable.com/security/research/TRA-2026-45","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0"}]}},{"cve":{"id":"CVE-2026-8360","sourceIdentifier":"vulnreport@tenable.com","published":"2026-05-27T20:16:42.713","lastModified":"2026-05-29T20:26:29.583","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Function calls to WOSCommonUtil.dll!WOSSysInfoGetDeviceInterface() in various DLLs (i.e., WOSProfileMgrModule.dll, WOSWebDavModule.dll) can return a NULL pointer (i.e., when no user is logged into the Triofox Server Agent Management Console).  The returned NULL pointer is not checked before being dereferenced."}],"metrics":{"cvssMetricV31":[{"source":"vulnreport@tenable.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":3.6}]},"weaknesses":[{"source":"vulnreport@tenable.com","type":"Secondary","description":[{"lang":"en","value":"CWE-476"}]}],"references":[{"url":"https://www.tenable.com/security/research/TRA-2026-45","source":"vulnreport@tenable.com"},{"url":"https://www.tenable.com/security/research/TRA-2026-45","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0"}]}},{"cve":{"id":"CVE-2026-8361","sourceIdentifier":"vulnreport@tenable.com","published":"2026-05-27T20:16:42.853","lastModified":"2026-05-29T20:26:29.583","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"A path traversal vulnerability exists in WOSDefaultHttpModule.dll when processing a URL path starting with /woshome"}],"metrics":{"cvssMetricV31":[{"source":"vulnreport@tenable.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":3.6}]},"weaknesses":[{"source":"vulnreport@tenable.com","type":"Secondary","description":[{"lang":"en","value":"CWE-23"}]}],"references":[{"url":"https://www.tenable.com/security/research/TRA-2026-45","source":"vulnreport@tenable.com"},{"url":"https://www.tenable.com/security/research/TRA-2026-45","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0"}]}},{"cve":{"id":"CVE-2026-8362","sourceIdentifier":"vulnreport@tenable.com","published":"2026-05-27T20:16:42.993","lastModified":"2026-05-29T20:26:29.583","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"A stack-based buffer overflow condition exists in WOSDefaultHttpModule.dll when processing a long URL path starting with /woshome"}],"metrics":{"cvssMetricV31":[{"source":"vulnreport@tenable.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":9.8,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":5.9}]},"weaknesses":[{"source":"vulnreport@tenable.com","type":"Secondary","description":[{"lang":"en","value":"CWE-121"}]}],"references":[{"url":"https://www.tenable.com/security/research/TRA-2026-45","source":"vulnreport@tenable.com"},{"url":"https://www.tenable.com/security/research/TRA-2026-45","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0"}]}},{"cve":{"id":"CVE-2026-8363","sourceIdentifier":"vulnreport@tenable.com","published":"2026-05-27T20:16:43.190","lastModified":"2026-05-29T20:26:29.583","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"A stack-based buffer overflow condition exists in WOSDeviceDropFolder.dll when processing a long URL path starting with /resources:"}],"metrics":{"cvssMetricV31":[{"source":"vulnreport@tenable.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":9.8,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":5.9}]},"weaknesses":[{"source":"vulnreport@tenable.com","type":"Secondary","description":[{"lang":"en","value":"CWE-121"}]}],"references":[{"url":"https://www.tenable.com/security/research/TRA-2026-45","source":"vulnreport@tenable.com"},{"url":"https://www.tenable.com/security/research/TRA-2026-45","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0"}]}},{"cve":{"id":"CVE-2026-8364","sourceIdentifier":"vulnreport@tenable.com","published":"2026-05-27T20:16:43.333","lastModified":"2026-05-29T20:26:29.583","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Gladinet Triofox Cloud Server Agent Access Service (GladServerAgentService.exe) listens on TCP port 7878 and processes remote HTTP messages with URL paths starting with /resources, /status, /sysinfo, /woshome, /Settings, /schedule, or /DavCache."}],"metrics":{"cvssMetricV31":[{"source":"vulnreport@tenable.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":9.8,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":5.9}]},"weaknesses":[{"source":"vulnreport@tenable.com","type":"Secondary","description":[{"lang":"en","value":"CWE-306"}]}],"references":[{"url":"https://www.tenable.com/security/research/TRA-2026-45","source":"vulnreport@tenable.com"},{"url":"https://www.tenable.com/security/research/TRA-2026-45","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0"}]}},{"cve":{"id":"CVE-2026-9759","sourceIdentifier":"cve@gitlab.com","published":"2026-05-27T20:16:46.797","lastModified":"2026-05-29T15:42:56.873","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"ROHC protocol dissector crash in Wireshark 4.6.0 to 4.6.5 and 4.4.0 to 4.4.15 allows denial of service"}],"metrics":{"cvssMetricV31":[{"source":"cve@gitlab.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H","baseScore":5.5,"baseSeverity":"MEDIUM","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":1.8,"impactScore":3.6}]},"weaknesses":[{"source":"cve@gitlab.com","type":"Primary","description":[{"lang":"en","value":"CWE-476"}]}],"references":[{"url":"https://gitlab.com/wireshark/wireshark/-/work_items/21243","source":"cve@gitlab.com"},{"url":"https://www.wireshark.org/security/wnpa-sec-2026-51.html","source":"cve@gitlab.com"}]}},{"cve":{"id":"CVE-2026-45136","sourceIdentifier":"security-advisories@github.com","published":"2026-05-27T21:16:18.523","lastModified":"2026-05-29T15:42:56.873","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"claude-code-cache-fix is a cache optimization proxy for Claude Code. From 3.5.0 to before 3.5.2, tools/quota-statusline.sh (introduced in v3.5.0) interpolates Claude Code's hook stdin payload directly into a Python triple-quoted string literal. A ''' byte sequence in any user-controlled field of the payload closes the literal early and lets following bytes execute as Python in the user's Claude Code process. This vulnerability is fixed in 3.5.2."}],"metrics":{"cvssMetricV40":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":8.6,"baseSeverity":"HIGH","attackVector":"LOCAL","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"HIGH","vulnAvailabilityImpact":"LOW","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-78"},{"lang":"en","value":"CWE-94"}]}],"references":[{"url":"https://github.com/cnighswonger/claude-code-cache-fix/issues/108","source":"security-advisories@github.com"},{"url":"https://github.com/cnighswonger/claude-code-cache-fix/pull/110","source":"security-advisories@github.com"},{"url":"https://github.com/cnighswonger/claude-code-cache-fix/security/advisories/GHSA-g3xq-3gmv-qq8g","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2026-45137","sourceIdentifier":"security-advisories@github.com","published":"2026-05-27T21:16:18.670","lastModified":"2026-05-29T15:34:31.597","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Anchor is a framework providing several convenient developer tools for writing Solana programs. From 1.0.0 to before 1.0.2, an logic error causes anchor programs to accept any program id when requiring the system program id, causing false assumptions resulting in potential arbitrary cpi in programs that invoke system program instructions. In the TryFrom<&'a AccountInfo<'a>> implementation for Program<'a, T>, the id of T is compared with Pubkey::default() to check whether anchor should allow any executable account, or a specific account, because when no T is supplied, T defaults to (), which implements Id::id() by returning Pubkey::default(). This results in T = () and T = System (which has Pubkey::default() as the id) having the same behavior, both allow any executable account. Programs built with anchor assume that the anchor runtime verifies passed in programs of type Program<'a, System> are in fact the system program. This false assumption can lead to arbitrary CPI or payment bypassing when programs try making CPI calls to the system program using the passed in system program due to the fact that the attacker can pass in any program instead of the system program.  This vulnerability is fixed in 1.0.2."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:N","baseScore":8.2,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"HIGH","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":4.2}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Secondary","description":[{"lang":"en","value":"CWE-20"}]}],"references":[{"url":"https://github.com/otter-sec/anchor/security/advisories/GHSA-c6rc-8jpp-2fgc","source":"security-advisories@github.com"},{"url":"https://github.com/otter-sec/anchor/security/advisories/GHSA-c6rc-8jpp-2fgc","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0"}]}},{"cve":{"id":"CVE-2026-44247","sourceIdentifier":"security-advisories@github.com","published":"2026-05-27T22:16:35.507","lastModified":"2026-05-29T15:34:31.597","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Volcano is a Kubernetes-native batch scheduling system. Prior to v1.14.2, v1.13.3, and v1.12.4, the Volcano webhook server does not enforce a size limit on incoming HTTP request bodies. Any in-cluster pod that can reach the webhook endpoint may send an arbitrarily large request body, potentially causing the webhook server to be killed by OOM. All Volcano deployments with the webhook server exposed to in-cluster traffic are affected. This vulnerability is fixed in v1.14.2, v1.13.3, and v1.12.4."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H","baseScore":6.8,"baseSeverity":"MEDIUM","attackVector":"ADJACENT_NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":2.3,"impactScore":4.0}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-400"},{"lang":"en","value":"CWE-770"}]}],"references":[{"url":"https://github.com/volcano-sh/volcano/security/advisories/GHSA-8wxp-xxp2-rcgx","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2026-44720","sourceIdentifier":"security-advisories@github.com","published":"2026-05-27T22:16:36.680","lastModified":"2026-05-29T15:29:42.387","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"OpenLearnX is an open-source, decentralized learning and assessment platform. Prior to 2.0.4, a critical authentication vulnerability was identified in OpenLearnX that could allow unauthorized access to user accounts under specific conditions. This vulnerability is fixed in 2.0.4."}],"metrics":{"cvssMetricV40":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":6.9,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"NONE","vulnIntegrityImpact":"LOW","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-287"},{"lang":"en","value":"CWE-347"}]}],"references":[{"url":"https://github.com/th30d4y/OpenLearnX/security/advisories/GHSA-223g-f5mq-gw33","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2026-45083","sourceIdentifier":"security-advisories@github.com","published":"2026-05-27T22:16:36.820","lastModified":"2026-05-29T15:29:42.387","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"The Goobi viewer is a web application that allows digitised material to be displayed in a web browser. From 4.8.0 to before 26.04.1, the Goobi viewer REST endpoint POST /api/v1/index/stream accepted an arbitrary Solr streaming expression from unauthenticated network clients and forwarded it to the backend Solr server without restriction. An attacker could read the complete Solr index and, in default Solr deployments, also modify or delete indexed records. This vulnerability is fixed in 26.04.1."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":9.8,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":5.9}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-306"}]}],"references":[{"url":"https://github.com/intranda/goobi-viewer-core/commit/326980f24ce1e7cfabf658dd5f615934ca68ebbd","source":"security-advisories@github.com"},{"url":"https://github.com/intranda/goobi-viewer-core/commit/6bfb1cbd4250b0b347e84a80f38e8bf46acac705","source":"security-advisories@github.com"},{"url":"https://github.com/intranda/goobi-viewer-core/security/advisories/GHSA-2rgp-f66f-4499","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2026-9739","sourceIdentifier":"cve-coordination@google.com","published":"2026-05-27T23:16:48.573","lastModified":"2026-05-29T15:42:56.873","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Vulnerable to DNS rebinding attacks when using SSE (http://b/499408790). During the beta phase, we implemented `allowed-origins` and `allowed-hosts` flags to align with MCP security guidelines. However, the hardcoded `Access-Control-Allow-Origin: *` header in the SSE initialization handler was inadvertently retained. This vulnerability specifically impacts users connecting via Toolbox using SSE under specification v2024-11-05."}],"metrics":{"cvssMetricV40":[{"source":"cve-coordination@google.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":9.4,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"ACTIVE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"HIGH","vulnAvailabilityImpact":"HIGH","subConfidentialityImpact":"HIGH","subIntegrityImpact":"HIGH","subAvailabilityImpact":"HIGH","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}]},"weaknesses":[{"source":"cve-coordination@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-942"}]}],"references":[{"url":"https://github.com/googleapis/mcp-toolbox/issues/3053","source":"cve-coordination@google.com"},{"url":"https://github.com/googleapis/mcp-toolbox/pull/3054","source":"cve-coordination@google.com"}]}},{"cve":{"id":"CVE-2026-32996","sourceIdentifier":"support@hackerone.com","published":"2026-05-28T05:16:35.637","lastModified":"2026-05-29T15:39:34.620","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"This vulnerability in Veeam Agent for Microsoft Windows allows for Local Privilege Escalation."}],"metrics":{"cvssMetricV40":[{"source":"support@hackerone.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":7.3,"baseSeverity":"HIGH","attackVector":"LOCAL","attackComplexity":"LOW","attackRequirements":"PRESENT","privilegesRequired":"LOW","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"HIGH","vulnAvailabilityImpact":"HIGH","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}]},"weaknesses":[{"source":"support@hackerone.com","type":"Secondary","description":[{"lang":"en","value":"CWE-532"}]}],"references":[{"url":"https://www.veeam.com/kb4852","source":"support@hackerone.com"}]}},{"cve":{"id":"CVE-2026-32997","sourceIdentifier":"support@hackerone.com","published":"2026-05-28T05:16:35.793","lastModified":"2026-05-29T15:39:34.620","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"A vulnerability allowing an authenticated user with the Backup Administrator role to write arbitrary files on Linux-based Veeam Backup & Replication server."}],"metrics":{"cvssMetricV40":[{"source":"support@hackerone.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":8.6,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"HIGH","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"HIGH","vulnAvailabilityImpact":"HIGH","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}]},"weaknesses":[{"source":"support@hackerone.com","type":"Secondary","description":[{"lang":"en","value":"CWE-36"}]}],"references":[{"url":"https://www.veeam.com/kb4852","source":"support@hackerone.com"}]}},{"cve":{"id":"CVE-2026-32998","sourceIdentifier":"support@hackerone.com","published":"2026-05-28T05:16:35.970","lastModified":"2026-05-29T15:39:34.620","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"This vulnerability in Veeam Service Provider Console allows for remote code execution."}],"metrics":{"cvssMetricV40":[{"source":"support@hackerone.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":9.4,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"LOW","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"HIGH","vulnAvailabilityImpact":"HIGH","subConfidentialityImpact":"HIGH","subIntegrityImpact":"HIGH","subAvailabilityImpact":"HIGH","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}]},"weaknesses":[{"source":"support@hackerone.com","type":"Secondary","description":[{"lang":"en","value":"CWE-233"}]}],"references":[{"url":"https://www.veeam.com/kb4853","source":"support@hackerone.com"}]}},{"cve":{"id":"CVE-2026-32999","sourceIdentifier":"support@hackerone.com","published":"2026-05-28T05:16:36.107","lastModified":"2026-05-29T15:39:34.620","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Insufficient character filtering in backup agent signing module on Comet Backup server allows authenticated tenant administrator to execute an arbitrary code on behalf of a privileged user on the affected server and connected devices."}],"metrics":{"cvssMetricV31":[{"source":"support@hackerone.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H","baseScore":9.0,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.2,"impactScore":6.0}]},"weaknesses":[{"source":"support@hackerone.com","type":"Secondary","description":[{"lang":"en","value":"CWE-94"}]}],"references":[{"url":"https://support.cometbackup.com/hc/en-us/articles/40655100268439--CVE-2026-32999-RCE-on-Comet-Server-via-branding-configuration","source":"support@hackerone.com"}]}},{"cve":{"id":"CVE-2026-9806","sourceIdentifier":"5a6e4751-2f3f-4070-9419-94fb35b644e8","published":"2026-05-28T08:16:38.000","lastModified":"2026-05-29T14:46:09.837","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"A stored cross-site scripting (XSS) vulnerability exists in the notification panel of CTI Transmute in versions prior to the patched release. Notification messages containing user-controlled convert names were rendered in the notification bell dropdown using innerHTML without adequate sanitization. An attacker able to create or influence a convert name that is included in a notification could inject arbitrary JavaScript, which would execute in the browser of an authenticated user when they opened the notification panel. Successful exploitation could allow the attacker to perform actions in the victim's session or access information available to the application in the browser context. The issue was remediated by constructing notification elements through DOM methods and assigning notification message content via textContent instead of innerHTML. This vulnerability was only present on a development branch."}],"metrics":{"cvssMetricV40":[{"source":"5a6e4751-2f3f-4070-9419-94fb35b644e8","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:L/VI:N/VA:N/SC:L/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:N/AU:X/R:X/V:X/RE:L/U:Clear","baseScore":6.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"PRESENT","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"LOW","vulnIntegrityImpact":"NONE","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"LOW","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NEGLIGIBLE","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"LOW","providerUrgency":"CLEAR"}}]},"weaknesses":[{"source":"5a6e4751-2f3f-4070-9419-94fb35b644e8","type":"Secondary","description":[{"lang":"en","value":"CWE-79"}]}],"references":[{"url":"https://github.com/MISP/cti-transmute/commit/cf42409badc27b13d9bb644b9175aa7f27e11259","source":"5a6e4751-2f3f-4070-9419-94fb35b644e8"}]}},{"cve":{"id":"CVE-2026-9807","sourceIdentifier":"cve@gitlab.com","published":"2026-05-28T09:16:49.760","lastModified":"2026-05-29T16:40:30.443","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"GitLab has remediated an issue in GitLab CE/EE affecting all versions from 18.9 before 18.10.7, 18.11 before 18.11.4, and 19.0 before 19.0.1 that under certain conditions could have allowed a blocked Project Access Token to continue accessing private resources due to incorrect authorization enforcement."}],"metrics":{"cvssMetricV31":[{"source":"cve@gitlab.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N","baseScore":4.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":1.4}]},"weaknesses":[{"source":"cve@gitlab.com","type":"Primary","description":[{"lang":"en","value":"CWE-863"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:gitlab:gitlab:*:*:*:*:community:*:*:*","versionStartIncluding":"18.9.0","versionEndExcluding":"18.10.7","matchCriteriaId":"B05AAA42-FE02-4189-8C9A-1458ACF3C24C"},{"vulnerable":true,"criteria":"cpe:2.3:a:gitlab:gitlab:*:*:*:*:enterprise:*:*:*","versionStartIncluding":"18.9.0","versionEndExcluding":"18.10.7","matchCriteriaId":"DF7E0D07-DCBD-4D49-AA05-5E99FC5A74FF"},{"vulnerable":true,"criteria":"cpe:2.3:a:gitlab:gitlab:*:*:*:*:community:*:*:*","versionStartIncluding":"18.11.0","versionEndExcluding":"18.11.4","matchCriteriaId":"E97506AF-85D4-4CDE-B129-611438E348E6"},{"vulnerable":true,"criteria":"cpe:2.3:a:gitlab:gitlab:*:*:*:*:enterprise:*:*:*","versionStartIncluding":"18.11.0","versionEndExcluding":"18.11.4","matchCriteriaId":"F4085D50-86E4-4FC7-BB90-5181E6E65DEC"},{"vulnerable":true,"criteria":"cpe:2.3:a:gitlab:gitlab:19.0.0:*:*:*:community:*:*:*","matchCriteriaId":"FE7D542C-BB21-4CF0-A3E5-FAD6E9FB2851"},{"vulnerable":true,"criteria":"cpe:2.3:a:gitlab:gitlab:19.0.0:*:*:*:enterprise:*:*:*","matchCriteriaId":"57A0D68B-909C-416E-8EAE-A14886F4ABA9"}]}]}],"references":[{"url":"https://about.gitlab.com/releases/2026/05/27/patch-release-gitlab-19-0-1-released/","source":"cve@gitlab.com","tags":["Release Notes"]},{"url":"https://gitlab.com/gitlab-org/gitlab/-/work_items/590694","source":"cve@gitlab.com","tags":["Broken Link"]},{"url":"https://hackerone.com/reports/3554993","source":"cve@gitlab.com","tags":["Permissions Required"]}]}},{"cve":{"id":"CVE-2025-48977","sourceIdentifier":"security@apache.org","published":"2026-05-28T10:16:23.423","lastModified":"2026-05-29T14:11:25.720","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Relative Path Traversal vulnerability in Apache Ignite REST API.\n\nAuthenticated REST API users can read any file on the server with \"cmd=log\" command and a log path crafted in a certain way.\nThis issue affects Apache Ignite: from 2.0.0 through 2.17.0.\n\nUsers are recommended to upgrade to version 2.18.0, which fixes the issue."}],"metrics":{"cvssMetricV40":[{"source":"security@apache.org","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":8.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"LOW","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"NONE","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"HIGH","subIntegrityImpact":"HIGH","subAvailabilityImpact":"HIGH","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":3.6}]},"weaknesses":[{"source":"security@apache.org","type":"Secondary","description":[{"lang":"en","value":"CWE-23"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:apache:ignite:*:*:*:*:*:*:*:*","versionStartIncluding":"2.0.0","versionEndExcluding":"2.18.0","matchCriteriaId":"5EB618DA-563A-467F-A78B-C9834C57FE1F"}]}]}],"references":[{"url":"https://lists.apache.org/thread/hgct6918sowd8l58yjohryhpxx81t4n1","source":"security@apache.org","tags":["Mailing List","Vendor Advisory"]},{"url":"http://www.openwall.com/lists/oss-security/2026/05/28/3","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]}]}},{"cve":{"id":"CVE-2026-47074","sourceIdentifier":"6b3ad84c-e1a6-4bf7-a703-f496b71e49db","published":"2026-05-28T10:16:39.800","lastModified":"2026-05-29T15:29:42.387","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Improper Certificate Validation vulnerability in ex-aws ex_aws_sns (ExAws.SNS, ExAws.SNS.PublicKeyCache modules) allows Signature Spoofing by Improper Validation.\n\nThis vulnerability is associated with program files lib/ex_aws/sns.ex, lib/ex_aws/sns/public_key_cache.ex and program routines 'Elixir.ExAws.SNS':verify_message/1, 'Elixir.ExAws.SNS.PublicKeyCache':get/1.\n\n'Elixir.ExAws.SNS':verify_message/1 fetches the signing certificate from the SigningCertURL field of the incoming SNS message without validating that the URL uses HTTPS or that the host matches an AWS-owned SNS certificate domain. An unauthenticated attacker who can POST to an endpoint that calls verify_message/1 can supply an attacker-controlled SigningCertURL, sign a forged SNS message with their own key, and cause the function to return :ok, completely bypassing SNS signature verification.\n\nThis issue affects ex_aws_sns: from 2.0.1 before 2.3.5."}],"metrics":{"cvssMetricV40":[{"source":"6b3ad84c-e1a6-4bf7-a703-f496b71e49db","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":8.7,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"NONE","vulnIntegrityImpact":"HIGH","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}]},"weaknesses":[{"source":"6b3ad84c-e1a6-4bf7-a703-f496b71e49db","type":"Secondary","description":[{"lang":"en","value":"CWE-295"}]}],"references":[{"url":"https://cna.erlef.org/cves/CVE-2026-47074.html","source":"6b3ad84c-e1a6-4bf7-a703-f496b71e49db"},{"url":"https://github.com/ex-aws/ex_aws_sns/commit/1853d280b152d10384a1e21a22cf22152a60be48","source":"6b3ad84c-e1a6-4bf7-a703-f496b71e49db"},{"url":"https://github.com/ex-aws/ex_aws_sns/security/advisories/GHSA-8jgf-23q5-x7xx","source":"6b3ad84c-e1a6-4bf7-a703-f496b71e49db"},{"url":"https://osv.dev/vulnerability/EEF-CVE-2026-47074","source":"6b3ad84c-e1a6-4bf7-a703-f496b71e49db"}]}},{"cve":{"id":"CVE-2026-9813","sourceIdentifier":"5a6e4751-2f3f-4070-9419-94fb35b644e8","published":"2026-05-28T10:16:40.243","lastModified":"2026-05-29T14:46:09.837","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"FlowIntel up to version 3.3.0 contains a server-side request forgery (SSRF) vulnerability in the external reference URL probe functionality in app/case/task.py. An attacker who can submit an external reference URL can cause the application server to issue an HTTP HEAD request to an attacker-specified destination. Due to insufficient validation of the URL scheme and resolved destination address, affected versions may allow requests to loopback, link-local, private, reserved, or other restricted network resources, potentially enabling interaction with internal services or cloud metadata endpoints from the server's network context."}],"metrics":{"cvssMetricV40":[{"source":"5a6e4751-2f3f-4070-9419-94fb35b644e8","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:A/VC:L/VI:N/VA:N/SC:L/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:N/AU:X/R:X/V:X/RE:L/U:Green","baseScore":6.2,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"LOW","userInteraction":"ACTIVE","vulnConfidentialityImpact":"LOW","vulnIntegrityImpact":"NONE","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"LOW","subIntegrityImpact":"HIGH","subAvailabilityImpact":"HIGH","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NEGLIGIBLE","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"LOW","providerUrgency":"GREEN"}}]},"weaknesses":[{"source":"5a6e4751-2f3f-4070-9419-94fb35b644e8","type":"Secondary","description":[{"lang":"en","value":"CWE-918"}]}],"references":[{"url":"https://github.com/flowintel/flowintel/commit/68b523b47854c54bf36fd706c0fd5353063b5409","source":"5a6e4751-2f3f-4070-9419-94fb35b644e8"}]}},{"cve":{"id":"CVE-2026-40914","sourceIdentifier":"security@apache.org","published":"2026-05-28T13:16:23.013","lastModified":"2026-05-29T20:16:23.457","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"A vulnerability exists in Apache Artemis whereby an application using the STOMP protocol with security credentials that grant either the consume or send permission on an address can augment the routing-type supported by that address even if said user doesn't have the createAddress permission for that particular address. A user could successfully send a message to an address or consume a message from a queue with a routing-type not supported by the corresponding address when that operation should actually be rejected on the basis that the user doesn't have permission to change the routing-type of the address. Even though the user was already granted permission to send and/or consume messages, they should not be able to augment the routing-type of the address without the createAddress permission.\n\n\n\nThis issue affects Apache Artemis: from 2.50.0 through 2.53.0; Apache ActiveMQ Artemis: from 2.0.0 through 2.44.0.\n\nUsers are recommended to upgrade to version 2.54.0, which fixes the issue."}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N","baseScore":4.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":1.4},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N","baseScore":4.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":1.4}]},"weaknesses":[{"source":"security@apache.org","type":"Secondary","description":[{"lang":"en","value":"CWE-863"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:apache:activemq_artemis:*:*:*:*:*:*:*:*","versionStartIncluding":"2.0.0","versionEndIncluding":"2.44.0","matchCriteriaId":"4462260B-0DB8-4148-B8AF-E5CCDEF8BC2D"},{"vulnerable":true,"criteria":"cpe:2.3:a:apache:artemis:*:*:*:*:*:*:*:*","versionStartIncluding":"2.50.0","versionEndExcluding":"2.54.0","matchCriteriaId":"A8147EDA-F261-4D34-BF71-C138C59A0331"}]}]}],"references":[{"url":"https://lists.apache.org/thread/6q3st8dlorz2q05svqn11k1xl7jkmm4c","source":"security@apache.org","tags":["Mailing List","Vendor Advisory"]},{"url":"http://www.openwall.com/lists/oss-security/2026/05/27/8","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]}]}},{"cve":{"id":"CVE-2026-9658","sourceIdentifier":"9b29abf9-4ab0-4765-b253-1875cd9b441e","published":"2026-05-28T13:16:25.067","lastModified":"2026-05-29T15:29:42.387","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Plack::Middleware::Security::Common versions before 0.13.1 for Perl did not block header injections in request paths.\n\nThe header injection rule was ineffective at blocking header injections in the request paths unless they were double-encoded, for example,\n\n  GET /path\\r\\nHTTP/1.1\\r\\nHost: secret.example.com\n\nNote that it is unclear whether request paths with CRLF followed by additional headers would be blocked by reverse proxies, or how they would be processed by Plack-based servers."}],"metrics":{},"weaknesses":[{"source":"9b29abf9-4ab0-4765-b253-1875cd9b441e","type":"Secondary","description":[{"lang":"en","value":"CWE-113"},{"lang":"en","value":"CWE-790"}]}],"references":[{"url":"https://metacpan.org/release/RRWO/Plack-Middleware-Security-Simple-v0.13.1/changes","source":"9b29abf9-4ab0-4765-b253-1875cd9b441e"},{"url":"http://www.openwall.com/lists/oss-security/2026/05/28/9","source":"af854a3a-2127-422b-91ae-364da2661108"}]}},{"cve":{"id":"CVE-2026-37266","sourceIdentifier":"cve@mitre.org","published":"2026-05-28T14:16:19.317","lastModified":"2026-05-29T16:32:14.400","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"An issue in Responsive File Manager Responsive FileManager Version 9.14.0 allows a remote attacker to execute arbitrary code via the force_download.php component"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H","baseScore":8.0,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.1,"impactScore":5.9}]},"weaknesses":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-98"}]}],"references":[{"url":"https://csacyber.com/blog/responsive-filemanager-version-9-14-0-multiple-vulnerabilities-cve-2026-37266","source":"cve@mitre.org"},{"url":"https://www.responsivefilemanager.com/","source":"cve@mitre.org"}]}},{"cve":{"id":"CVE-2026-37579","sourceIdentifier":"cve@mitre.org","published":"2026-05-28T14:16:19.427","lastModified":"2026-05-29T20:16:22.850","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"An issue in SMSGate sms-core<=2.1.13.6 allows a remote attacker to execute arbitrary code via the Cmpp7FDeliverRequestMessageCodec.java component"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L","baseScore":7.3,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"LOW"},"exploitabilityScore":3.9,"impactScore":3.4}]},"references":[{"url":"https://github.com/wudijun/jun.github.io/blob/main/SMSGate%20deserialization%20vulnerability.md","source":"cve@mitre.org"},{"url":"https://github.com/wudijun/jun.github.io/blob/main/SMSGate%20deserialization%20vulnerability.md","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0"}]}},{"cve":{"id":"CVE-2026-9828","sourceIdentifier":"vulnerability@ncsc.ch","published":"2026-05-28T14:16:27.430","lastModified":"2026-05-29T15:39:34.620","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Deserialization of untrusted data vulnerability in QOS.CH Sarl logback logback-core (HardenedObjectInputStream (logback-core) modules) allows Object Injection albeit heavily restricted.\n\nMore precisely, an attacker able to influence serialized data sent to \nSimpleSocketServer or SimpleSSLSocketServer can instantiate objects from\n classes in the java.lang and java.util packages that are not explicitly\n blocked.\n\nAlthough deserialization is heavily restricted by HardenedObjectInputStream and no \npractical way to achieve remote code execution or significant privilege \nescalation has been identified, this issue constitutes a bypass of the \nintended security restrictions.\n\n\n\nThis issue affects logback: through 1.5.32 inclusive."}],"metrics":{"cvssMetricV40":[{"source":"vulnerability@ncsc.ch","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:L/VI:L/VA:N/SC:L/SI:L/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:L/U:Green","baseScore":2.9,"baseSeverity":"LOW","attackVector":"NETWORK","attackComplexity":"HIGH","attackRequirements":"PRESENT","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"LOW","vulnIntegrityImpact":"LOW","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"LOW","subIntegrityImpact":"LOW","subAvailabilityImpact":"NONE","exploitMaturity":"PROOF_OF_CONCEPT","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"LOW","providerUrgency":"GREEN"}}]},"weaknesses":[{"source":"vulnerability@ncsc.ch","type":"Secondary","description":[{"lang":"en","value":"CWE-502"}]}],"references":[{"url":"https://logback.qos.ch/news.html#1.5.33","source":"vulnerability@ncsc.ch"}]}},{"cve":{"id":"CVE-2026-35675","sourceIdentifier":"disclosure@vulncheck.com","published":"2026-05-28T16:16:21.800","lastModified":"2026-05-29T14:16:26.403","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"phpMyFAQ before 4.1.3 contains an authentication bypass vulnerability in the password reset endpoint that allows unauthenticated attackers to reset any user account password without token verification or email confirmation. Attackers can enumerate valid usernames, obtain plaintext passwords via email, and achieve complete account takeover including administrative access."}],"metrics":{"cvssMetricV40":[{"source":"disclosure@vulncheck.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:H/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"LOW","vulnIntegrityImpact":"HIGH","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"disclosure@vulncheck.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:N","baseScore":8.2,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"HIGH","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":4.2}]},"weaknesses":[{"source":"disclosure@vulncheck.com","type":"Secondary","description":[{"lang":"en","value":"CWE-307"}]}],"references":[{"url":"https://github.com/thorsten/phpMyFAQ/security/advisories/GHSA-w9xh-5f39-vq89","source":"disclosure@vulncheck.com"},{"url":"https://www.vulncheck.com/advisories/phpmyfaq-authentication-bypass-via-missing-password-reset-token-in-api-user-password-update","source":"disclosure@vulncheck.com"},{"url":"https://github.com/thorsten/phpMyFAQ/security/advisories/GHSA-w9xh-5f39-vq89","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0"}]}},{"cve":{"id":"CVE-2026-41565","sourceIdentifier":"9b29abf9-4ab0-4765-b253-1875cd9b441e","published":"2026-05-28T16:16:22.343","lastModified":"2026-05-29T16:16:27.003","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"CryptX versions before 0.088_001 for Perl have a stack buffer overflow in four AEAD decrypt_verify helpers.\n\nThe gcm_decrypt_verify, ccm_decrypt_verify, chacha20poly1305_decrypt_verify and eax_decrypt_verify XS routines copied the caller-supplied authentication tag into a fixed 144-byte stack buffer (MAXBLOCKSIZE) without checking the supplied length. A longer tag overwrites the stack past the buffer. Version 0.088 added the clamp to gcm_decrypt_verify, and 0.088_001 added it to the other three.\n\nAny caller of an affected helper that forwards an attacker-controlled tag longer than the buffer can trigger the overflow."}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":3.6}]},"weaknesses":[{"source":"9b29abf9-4ab0-4765-b253-1875cd9b441e","type":"Secondary","description":[{"lang":"en","value":"CWE-121"}]}],"references":[{"url":"https://github.com/DCIT/perl-CryptX/commit/57e69e541b0718ca8724c2f61514322a2d859bc1.patch","source":"9b29abf9-4ab0-4765-b253-1875cd9b441e"},{"url":"https://github.com/DCIT/perl-CryptX/commit/7e56347d420aaf43b2ee1586f4a230492ccf1642.patch","source":"9b29abf9-4ab0-4765-b253-1875cd9b441e"},{"url":"https://metacpan.org/release/MIK/CryptX-0.088_001","source":"9b29abf9-4ab0-4765-b253-1875cd9b441e"},{"url":"http://www.openwall.com/lists/oss-security/2026/05/28/10","source":"af854a3a-2127-422b-91ae-364da2661108"}]}},{"cve":{"id":"CVE-2026-44593","sourceIdentifier":"security-advisories@github.com","published":"2026-05-28T16:16:24.587","lastModified":"2026-05-29T16:32:14.400","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"esm.sh is a no-build content delivery network (CDN) for web development. In 137 and earlier, the legacy router first retrieves a response from legacyServer, parses the incoming request path, and ultimately writes the data to storage via buildStorage.Put. The router concatenates the path components without sanitizing them, producing a storage key. When this key is used, the underlying file system resolves the relative segments and writes the file to the specified path. Thus an attacker can craft a request that writes data to arbitrary locations on the server."}],"metrics":{"cvssMetricV40":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":8.7,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"NONE","vulnIntegrityImpact":"HIGH","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-22"}]}],"references":[{"url":"https://github.com/esm-dev/esm.sh/security/advisories/GHSA-3636-h3vx-6465","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2026-44594","sourceIdentifier":"security-advisories@github.com","published":"2026-05-28T16:16:24.717","lastModified":"2026-05-29T16:32:14.400","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"esm.sh is a no-build content delivery network (CDN) for web development. In 137 and earlier, a Local File Inclusion (LFI) vulnerability exists in the esbuild plugin's handling of the browser field in package.json. An attacker can publish an npm package that causes the server to read and return arbitrary files from the host filesystem during the build process."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":3.6}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Secondary","description":[{"lang":"en","value":"CWE-22"}]}],"references":[{"url":"https://github.com/esm-dev/esm.sh/security/advisories/GHSA-rg65-45m7-hq57","source":"security-advisories@github.com"},{"url":"https://github.com/esm-dev/esm.sh/security/advisories/GHSA-rg65-45m7-hq57","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0"}]}},{"cve":{"id":"CVE-2026-48155","sourceIdentifier":"security-advisories@github.com","published":"2026-05-28T16:16:28.890","lastModified":"2026-05-29T19:38:41.470","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"pypdf is a free and open-source pure-python PDF library. Prior to 6.12.0, an attacker who uses this vulnerability can craft a PDF which leads to large memory usage. This requires extracting text in layout mode with large character offsets. This vulnerability is fixed in 6.12.0."}],"metrics":{"cvssMetricV40":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":4.8,"baseSeverity":"MEDIUM","attackVector":"LOCAL","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"PASSIVE","vulnConfidentialityImpact":"NONE","vulnIntegrityImpact":"NONE","vulnAvailabilityImpact":"LOW","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H","baseScore":5.5,"baseSeverity":"MEDIUM","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":1.8,"impactScore":3.6}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-400"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:pypdf_project:pypdf:*:*:*:*:*:*:*:*","versionEndExcluding":"6.12.0","matchCriteriaId":"2F8A1871-BB2B-4FF9-BDEA-D9D10B307914"}]}]}],"references":[{"url":"https://github.com/py-pdf/pypdf/pull/3790","source":"security-advisories@github.com","tags":["Issue Tracking","Patch"]},{"url":"https://github.com/py-pdf/pypdf/releases/tag/6.12.0","source":"security-advisories@github.com","tags":["Release Notes"]},{"url":"https://github.com/py-pdf/pypdf/security/advisories/GHSA-cj93-chg6-vgv8","source":"security-advisories@github.com","tags":["Patch","Vendor Advisory"]}]}},{"cve":{"id":"CVE-2026-48156","sourceIdentifier":"security-advisories@github.com","published":"2026-05-28T16:16:29.020","lastModified":"2026-05-29T19:38:49.830","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"pypdf is a free and open-source pure-python PDF library. Prior to 6.12.0, an attacker who uses this vulnerability can craft a PDF which leads to long runtimes. This requires cross-reference streams with /W [0 0 0] values and large /Size values. This vulnerability is fixed in 6.12.0."}],"metrics":{"cvssMetricV40":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":5.1,"baseSeverity":"MEDIUM","attackVector":"LOCAL","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"NONE","vulnIntegrityImpact":"NONE","vulnAvailabilityImpact":"LOW","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L","baseScore":3.3,"baseSeverity":"LOW","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"LOW"},"exploitabilityScore":1.8,"impactScore":1.4}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-834"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:pypdf_project:pypdf:*:*:*:*:*:*:*:*","versionEndExcluding":"6.12.0","matchCriteriaId":"2F8A1871-BB2B-4FF9-BDEA-D9D10B307914"}]}]}],"references":[{"url":"https://github.com/py-pdf/pypdf/pull/3791","source":"security-advisories@github.com","tags":["Issue Tracking","Patch"]},{"url":"https://github.com/py-pdf/pypdf/releases/tag/6.12.0","source":"security-advisories@github.com","tags":["Release Notes"]},{"url":"https://github.com/py-pdf/pypdf/security/advisories/GHSA-248m-82v9-q6g6","source":"security-advisories@github.com","tags":["Patch","Vendor Advisory"]}]}},{"cve":{"id":"CVE-2026-48735","sourceIdentifier":"security-advisories@github.com","published":"2026-05-28T16:16:29.787","lastModified":"2026-05-29T19:38:59.943","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"pypdf is a free and open-source pure-python PDF library. Prior to 6.12.1, an attacker who uses this vulnerability can craft a PDF which leads to large memory usage. This requires parsing large XMP metadata, possibly with lots of unnecessary elements. This vulnerability is fixed in 6.12.1."}],"metrics":{"cvssMetricV40":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":6.9,"baseSeverity":"MEDIUM","attackVector":"LOCAL","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"NONE","vulnIntegrityImpact":"NONE","vulnAvailabilityImpact":"HIGH","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H","baseScore":5.5,"baseSeverity":"MEDIUM","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":1.8,"impactScore":3.6}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-770"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:pypdf_project:pypdf:*:*:*:*:*:*:*:*","versionEndExcluding":"6.12.1","matchCriteriaId":"8C00A954-F1EA-4863-9525-74ACCB88EEBF"}]}]}],"references":[{"url":"https://github.com/py-pdf/pypdf/pull/3796","source":"security-advisories@github.com","tags":["Issue Tracking","Patch"]},{"url":"https://github.com/py-pdf/pypdf/releases/tag/6.12.1","source":"security-advisories@github.com","tags":["Release Notes"]},{"url":"https://github.com/py-pdf/pypdf/security/advisories/GHSA-wjqc-6w8f-h24c","source":"security-advisories@github.com","tags":["Patch","Vendor Advisory"]}]}},{"cve":{"id":"CVE-2026-38702","sourceIdentifier":"cve@mitre.org","published":"2026-05-28T17:16:21.177","lastModified":"2026-05-29T14:09:18.733","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"A command injection vulnerability exists in the Admin Access feature of InHand Networks IR302 firmware V3.5.108, IR305 firmware V1.0.118, IR315 firmware V1.0.118, IR615 firmware V1.0.118, and earlier versions. Attackers can exploit this vulnerability to obtain ROOT privileges on remote target devices."}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":9.8,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":5.9}]},"weaknesses":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-77"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:inhandnetworks:ir315_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"1.0.121","matchCriteriaId":"949B390B-9038-43F1-89D9-86157D660C86"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:inhandnetworks:ir315:-:*:*:*:*:*:*:*","matchCriteriaId":"72A7D22C-B099-418A-B613-EDBD9EF8732B"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:inhandnetworks:ir302_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"3.5.112","matchCriteriaId":"AA826D38-26F6-4F29-8FC6-AC9563001C0F"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:inhandnetworks:ir302:-:*:*:*:*:*:*:*","matchCriteriaId":"0E358655-E442-4D2C-B0B8-03C6780EC55C"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:inhandnetworks:ir615_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"1.0.121","matchCriteriaId":"ACD93230-0585-4773-BBCE-3BB208702CB5"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:inhandnetworks:ir615:-:*:*:*:*:*:*:*","matchCriteriaId":"A3237242-CF6E-4390-A9F7-85CE2C9BA29C"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:inhandnetworks:ir305_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"1.0.121","matchCriteriaId":"74AFE6EF-AC8F-4D71-9C25-B52B6C028AD1"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:inhandnetworks:ir305:-:*:*:*:*:*:*:*","matchCriteriaId":"0E1DFC28-E910-4287-81F0-D4CD883A989B"}]}]}],"references":[{"url":"https://www.inhand.com/wp-content/uploads/InHand-PSA-2026-05_EN.pdf","source":"cve@mitre.org","tags":["Vendor Advisory"]}]}},{"cve":{"id":"CVE-2026-38703","sourceIdentifier":"cve@mitre.org","published":"2026-05-28T17:16:21.293","lastModified":"2026-05-29T14:09:03.913","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"A command injection vulnerability exists in the ZeroTier VPN feature of InHand Networks IR302 firmware V3.5.108, IR305 firmware V1.0.118, IR315 firmware V1.0.118, IR615 firmware V1.0.118, and earlier versions. Attackers can exploit this vulnerability to obtain ROOT privileges on remote target devices."}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":9.8,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":5.9}]},"weaknesses":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-77"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:inhandnetworks:ir315_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"1.0.121","matchCriteriaId":"949B390B-9038-43F1-89D9-86157D660C86"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:inhandnetworks:ir315:-:*:*:*:*:*:*:*","matchCriteriaId":"72A7D22C-B099-418A-B613-EDBD9EF8732B"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:inhandnetworks:ir302_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"3.5.112","matchCriteriaId":"AA826D38-26F6-4F29-8FC6-AC9563001C0F"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:inhandnetworks:ir302:-:*:*:*:*:*:*:*","matchCriteriaId":"0E358655-E442-4D2C-B0B8-03C6780EC55C"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:inhandnetworks:ir615_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"1.0.121","matchCriteriaId":"ACD93230-0585-4773-BBCE-3BB208702CB5"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:inhandnetworks:ir615:-:*:*:*:*:*:*:*","matchCriteriaId":"A3237242-CF6E-4390-A9F7-85CE2C9BA29C"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:inhandnetworks:ir305_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"1.0.121","matchCriteriaId":"74AFE6EF-AC8F-4D71-9C25-B52B6C028AD1"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:inhandnetworks:ir305:-:*:*:*:*:*:*:*","matchCriteriaId":"0E1DFC28-E910-4287-81F0-D4CD883A989B"}]}]}],"references":[{"url":"https://www.inhand.com/wp-content/uploads/InHand-PSA-2026-05_EN.pdf","source":"cve@mitre.org","tags":["Vendor Advisory"]}]}},{"cve":{"id":"CVE-2026-38704","sourceIdentifier":"cve@mitre.org","published":"2026-05-28T17:16:21.413","lastModified":"2026-05-29T14:08:07.467","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"A command injection vulnerability exists in the WireGuard VPN feature of InHand Networks IR302 firmware V3.5.108, IR305 firmware V1.0.118, IR315 firmware V1.0.118, IR615 firmware V1.0.118, and earlier versions. Attackers can exploit this vulnerability to obtain ROOT privileges on remote target devices."}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":9.8,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":5.9}]},"weaknesses":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-77"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:inhandnetworks:ir315_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"1.0.121","matchCriteriaId":"949B390B-9038-43F1-89D9-86157D660C86"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:inhandnetworks:ir315:-:*:*:*:*:*:*:*","matchCriteriaId":"72A7D22C-B099-418A-B613-EDBD9EF8732B"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:inhandnetworks:ir302_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"3.5.112","matchCriteriaId":"AA826D38-26F6-4F29-8FC6-AC9563001C0F"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:inhandnetworks:ir302:-:*:*:*:*:*:*:*","matchCriteriaId":"0E358655-E442-4D2C-B0B8-03C6780EC55C"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:inhandnetworks:ir615_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"1.0.121","matchCriteriaId":"ACD93230-0585-4773-BBCE-3BB208702CB5"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:inhandnetworks:ir615:-:*:*:*:*:*:*:*","matchCriteriaId":"A3237242-CF6E-4390-A9F7-85CE2C9BA29C"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:inhandnetworks:ir305_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"1.0.121","matchCriteriaId":"74AFE6EF-AC8F-4D71-9C25-B52B6C028AD1"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:inhandnetworks:ir305:-:*:*:*:*:*:*:*","matchCriteriaId":"0E1DFC28-E910-4287-81F0-D4CD883A989B"}]}]}],"references":[{"url":"https://www.inhand.com/wp-content/uploads/InHand-PSA-2026-05_EN.pdf","source":"cve@mitre.org","tags":["Vendor Advisory"]}]}},{"cve":{"id":"CVE-2026-38707","sourceIdentifier":"cve@mitre.org","published":"2026-05-28T17:16:21.530","lastModified":"2026-05-29T14:08:41.327","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"A command injection vulnerability exists in the IPSec VPN feature of InHand Networks IR302 firmware V3.5.108, IR305 firmware V1.0.118, IR315 firmware V1.0.118, IR615 firmware V1.0.118, and earlier versions. Attackers can exploit this vulnerability to obtain ROOT privileges on remote target devices."}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":9.8,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":5.9}]},"weaknesses":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-77"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:inhandnetworks:ir315_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"1.0.121","matchCriteriaId":"949B390B-9038-43F1-89D9-86157D660C86"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:inhandnetworks:ir315:-:*:*:*:*:*:*:*","matchCriteriaId":"72A7D22C-B099-418A-B613-EDBD9EF8732B"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:inhandnetworks:ir302_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"3.5.112","matchCriteriaId":"AA826D38-26F6-4F29-8FC6-AC9563001C0F"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:inhandnetworks:ir302:-:*:*:*:*:*:*:*","matchCriteriaId":"0E358655-E442-4D2C-B0B8-03C6780EC55C"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:inhandnetworks:ir615_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"1.0.121","matchCriteriaId":"ACD93230-0585-4773-BBCE-3BB208702CB5"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:inhandnetworks:ir615:-:*:*:*:*:*:*:*","matchCriteriaId":"A3237242-CF6E-4390-A9F7-85CE2C9BA29C"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:inhandnetworks:ir305_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"1.0.121","matchCriteriaId":"74AFE6EF-AC8F-4D71-9C25-B52B6C028AD1"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:inhandnetworks:ir305:-:*:*:*:*:*:*:*","matchCriteriaId":"0E1DFC28-E910-4287-81F0-D4CD883A989B"}]}]}],"references":[{"url":"https://www.inhand.com/wp-content/uploads/InHand-PSA-2026-05_EN.pdf","source":"cve@mitre.org","tags":["Vendor Advisory"]}]}},{"cve":{"id":"CVE-2026-44466","sourceIdentifier":"security-advisories@github.com","published":"2026-05-28T17:16:30.317","lastModified":"2026-05-29T16:16:27.260","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Zed is a code editor. Prior to 0.229.0, Zed's terminal tool permission system can be bypassed via bash arithmetic expansion $((...)), allowing execution of arbitrary commands nested inside an allowlisted command like echo. This vulnerability is fixed in 0.229.0."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H","baseScore":8.6,"baseSeverity":"HIGH","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.8,"impactScore":6.0}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Secondary","description":[{"lang":"en","value":"CWE-78"}]}],"references":[{"url":"https://github.com/zed-industries/zed/security/advisories/GHSA-c99f-97vf-4h5h","source":"security-advisories@github.com"},{"url":"https://github.com/zed-industries/zed/security/advisories/GHSA-c99f-97vf-4h5h","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0"}]}},{"cve":{"id":"CVE-2026-44477","sourceIdentifier":"security-advisories@github.com","published":"2026-05-28T17:16:30.590","lastModified":"2026-05-29T16:25:57.843","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"CloudNativePG is a platform designed to manage PostgreSQL databases within Kubernetes environments. Prior to 1.29.1 and 1.28.3, the CloudNativePG metrics exporter opens its PostgreSQL connection as the postgres superuser via the pod-local Unix socket, then demotes the session with SET ROLE pg_monitor. SET ROLE changes only current_user; session_user remains postgres. Any SQL expression evaluated inside the scrape session can invoke RESET ROLE to recover real superuser privileges, then use COPY ... TO PROGRAM to spawn an OS-level subprocess as the postgres user inside the primary pod. The READ ONLY transaction flag does not block this; it gates writes to database state, not external processes. This vulnerability is fixed in 1.29.1 and 1.28.3."}],"metrics":{"cvssMetricV40":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":9.4,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"LOW","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"HIGH","vulnAvailabilityImpact":"HIGH","subConfidentialityImpact":"HIGH","subIntegrityImpact":"HIGH","subAvailabilityImpact":"HIGH","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-250"},{"lang":"en","value":"CWE-271"},{"lang":"en","value":"CWE-426"}]}],"references":[{"url":"https://github.com/cloudnative-pg/cloudnative-pg/pull/10576","source":"security-advisories@github.com"},{"url":"https://github.com/cloudnative-pg/cloudnative-pg/security/advisories/GHSA-423p-g724-fr39","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2026-45292","sourceIdentifier":"security-advisories@github.com","published":"2026-05-28T17:16:32.060","lastModified":"2026-05-29T15:42:56.873","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"opentelemetry-java is the Java implementation of the OpenTelemetry API for recording telemetry, and SDK for managing telemetry recorded by the API. Prior to 1.62.0, a vulnerability affects the baggage propagation implementation in opentelemetry-api and opentelemetry-extension-trace-propagators. Parsing oversized baggage causes unbounded memory allocation and CPU consumption. Because baggage is automatically re-injected into every outgoing request, the effect can fan out to downstream services that never received the original malicious request. This vulnerability is fixed in 1.62.0."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L","baseScore":5.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"LOW"},"exploitabilityScore":3.9,"impactScore":1.4}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-770"}]}],"references":[{"url":"https://github.com/open-telemetry/opentelemetry-java/commit/03837d3c1763bc35464aea1078671e2ef2336a5f","source":"security-advisories@github.com"},{"url":"https://github.com/open-telemetry/opentelemetry-java/pull/8380","source":"security-advisories@github.com"},{"url":"https://github.com/open-telemetry/opentelemetry-java/releases/tag/v1.62.0","source":"security-advisories@github.com"},{"url":"https://github.com/open-telemetry/opentelemetry-java/security/advisories/GHSA-rcgg-9c38-7xpx","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2026-47673","sourceIdentifier":"security-advisories@github.com","published":"2026-05-28T17:16:32.233","lastModified":"2026-05-29T17:05:59.723","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Hono is a Web application framework that provides support for any JavaScript runtime. Prior to 4.12.21, the jwt and jwk middlewares do not verify that the Authorization header value uses theBearer scheme. Any two-part header value — regardless of the scheme name in the first position — proceeds to JWT verification. A request presenting a valid JWT under a non-Bearer scheme identifier (such as Basic or Token) is authenticated identically to a correctly formed Bearer request. This vulnerability is fixed in 4.12.21."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N","baseScore":4.8,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":2.2,"impactScore":2.5},{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":2.5}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-285"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:hono:hono:*:*:*:*:*:node.js:*:*","versionEndExcluding":"4.12.21","matchCriteriaId":"797B2A25-4B24-46A9-8EF4-35F6F1214A7C"}]}]}],"references":[{"url":"https://github.com/honojs/hono/security/advisories/GHSA-f577-qrjj-4474","source":"security-advisories@github.com","tags":["Vendor Advisory"]}]}},{"cve":{"id":"CVE-2026-47674","sourceIdentifier":"security-advisories@github.com","published":"2026-05-28T17:16:32.383","lastModified":"2026-05-29T16:57:58.913","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Hono is a Web application framework that provides support for any JavaScript runtime. Prior to 4.12.21, the ip-restriction middleware (hono/ip-restriction) compares incoming IP addresses against configured deny and allow rules using string equality after partial normalization. Non-canonical IPv6 representations of an address already listed in a static rule — such as compressed forms, explicit-zero forms, or hex-notation IPv4-mapped addresses — do not match the normalized rule entry, causing the rule to be silently skipped. This vulnerability is fixed in 4.12.21."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N","baseScore":5.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":1.4}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-185"},{"lang":"en","value":"CWE-1289"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:hono:hono:*:*:*:*:*:node.js:*:*","versionEndExcluding":"4.12.21","matchCriteriaId":"797B2A25-4B24-46A9-8EF4-35F6F1214A7C"}]}]}],"references":[{"url":"https://github.com/honojs/hono/security/advisories/GHSA-xrhx-7g5j-rcj5","source":"security-advisories@github.com","tags":["Vendor Advisory"]}]}},{"cve":{"id":"CVE-2026-47675","sourceIdentifier":"security-advisories@github.com","published":"2026-05-28T17:16:32.537","lastModified":"2026-05-29T16:56:59.497","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Hono is a Web application framework that provides support for any JavaScript runtime. Prior to 4.12.21, the serialize() function in hono/cookie validates domain and path options against characters that corrupt Set-Cookie header syntax (;, \\r, \\n), but does not apply the same validation to sameSite and priority. An application that passes user-controlled input into either option may produce a Set-Cookie response header containing attacker-chosen additional attributes. This vulnerability is fixed in 4.12.21."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N","baseScore":4.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":1.4},{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N","baseScore":5.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":1.4}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-113"},{"lang":"en","value":"CWE-1287"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:hono:hono:*:*:*:*:*:node.js:*:*","versionEndExcluding":"4.12.21","matchCriteriaId":"797B2A25-4B24-46A9-8EF4-35F6F1214A7C"}]}]}],"references":[{"url":"https://github.com/honojs/hono/security/advisories/GHSA-3hrh-pfw6-9m5x","source":"security-advisories@github.com","tags":["Vendor Advisory"]}]}},{"cve":{"id":"CVE-2026-47676","sourceIdentifier":"security-advisories@github.com","published":"2026-05-28T17:16:32.697","lastModified":"2026-05-29T16:55:56.880","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Hono is a Web application framework that provides support for any JavaScript runtime. Prior to 4.12.21, app.mount() strips the mount prefix from the incoming request path using the raw URL pathname, while route matching is performed against the percent-decoded path. This inconsistency causes the prefix to be stripped at the wrong position when the path contains percent-encoded multi-byte characters, resulting in the mounted sub-application receiving an incorrect path. This vulnerability is fixed in 4.12.21."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N","baseScore":5.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":1.4}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-444"},{"lang":"en","value":"CWE-693"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:hono:hono:*:*:*:*:*:node.js:*:*","versionEndExcluding":"4.12.21","matchCriteriaId":"797B2A25-4B24-46A9-8EF4-35F6F1214A7C"}]}]}],"references":[{"url":"https://github.com/honojs/hono/security/advisories/GHSA-2gcr-mfcq-wcc3","source":"security-advisories@github.com","tags":["Vendor Advisory"]}]}},{"cve":{"id":"CVE-2026-6720","sourceIdentifier":"psirt@tigera.io","published":"2026-05-28T17:16:33.490","lastModified":"2026-05-29T15:39:34.620","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"When calicoctl is invoked with --log-level=info or --log-level=debug, the client prints the full contents of its loaded connection-configuration struct to stderr in a single log line. The struct embeds every credential calicoctl uses to talk to the cluster — inline kubeconfig (with bearer token), Kubernetes API bearer token, etcd password, and inline PEM-encoded etcd client certificate and key. Any reader of that stderr stream — CI job logs, session-recording archives, shared support-ticket transcripts, or local filesystem viewers on the host that ran calicoctl — can extract these credentials with zero Kubernetes privilege. calicoctl's default log level is panic, so this issue only triggers when verbose logging is explicitly enabled."}],"metrics":{"cvssMetricV40":[{"source":"psirt@tigera.io","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:P/VC:H/VI:N/VA:N/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":7.2,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"PRESENT","privilegesRequired":"LOW","userInteraction":"PASSIVE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"NONE","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"HIGH","subIntegrityImpact":"HIGH","subAvailabilityImpact":"HIGH","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}]},"weaknesses":[{"source":"psirt@tigera.io","type":"Secondary","description":[{"lang":"en","value":"CWE-532"}]}],"references":[{"url":"https://github.com/projectcalico/calico/pull/12535","source":"psirt@tigera.io"},{"url":"https://github.com/projectcalico/calico/pull/12536","source":"psirt@tigera.io"},{"url":"https://github.com/projectcalico/calico/pull/12537","source":"psirt@tigera.io"},{"url":"https://www.tigera.io/security-bulletins/tta-2026-003/","source":"psirt@tigera.io"}]}},{"cve":{"id":"CVE-2026-9090","sourceIdentifier":"cret@cert.org","published":"2026-05-28T17:16:33.820","lastModified":"2026-05-29T20:16:31.450","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Casdoor versions 2.362.0 and earlier contain a vulnerability that allows an attacker to bypass authentication by supplying an arbitrary signing certificate. The buildSpCertificateStore function extracts the X.509 certificate directly from the incoming SAMLResponse instead of using the trusted pre-configured Identity Provider certificate, allowing an attacker to forge assertions signed with an attacker-controlled key."}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N","baseScore":9.1,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":5.2}]},"references":[{"url":"https://kb.cert.org/vuls/id/780781","source":"cret@cert.org"}]}},{"cve":{"id":"CVE-2026-9091","sourceIdentifier":"cret@cert.org","published":"2026-05-28T17:16:33.953","lastModified":"2026-05-29T20:16:31.587","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Casdoor versions 2.362.0 and earlier contain a logic flaw in the social‑login binding flow that allows users to bypass configured MFA requirements. The binding‑rule code path in controllers/auth.go calls HandleLoggedIn directly without invoking checkMfaEnable. Any user authenticating via this path is logged in without MFA enforcement."}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N","baseScore":5.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":1.4}]},"references":[{"url":"https://kb.cert.org/vuls/id/780781","source":"cret@cert.org"}]}},{"cve":{"id":"CVE-2026-44794","sourceIdentifier":"security-advisories@github.com","published":"2026-05-28T18:16:33.203","lastModified":"2026-05-29T13:29:06.470","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Nautobot is a Network Source of Truth and Network Automation Platform. Prior to 2.4.33 and 3.1.2, in the case of inter-object references via GenericForeignKey (a pattern allowing an object to reference another object that may belong to one of several different \"content types\" or database tables), when creating or updating an object containing a GenericForeignKey, Nautobot's REST API failed to enforce user \"view\" permissions when determining whether a given reference to another object would be valid. This vulnerability is fixed in 2.4.33 and 3.1.2."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N","baseScore":5.4,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":2.5}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-862"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:networktocode:nautobot:*:*:*:*:*:*:*:*","versionEndExcluding":"2.4.33","matchCriteriaId":"1519124C-E6CD-44DF-8DD7-D4A7003ADF94"},{"vulnerable":true,"criteria":"cpe:2.3:a:networktocode:nautobot:*:*:*:*:*:*:*:*","versionStartIncluding":"3.0.0","versionEndExcluding":"3.1.2","matchCriteriaId":"8419C360-D723-4365-82B1-B4DE637BE43C"}]}]}],"references":[{"url":"https://github.com/nautobot/nautobot/commit/36cde7148a207234de6212ec074f321dbc9d1b5b","source":"security-advisories@github.com","tags":["Patch"]},{"url":"https://github.com/nautobot/nautobot/commit/9918bdb9bcf1eb42cda72c344f420a64ef7665f1","source":"security-advisories@github.com","tags":["Patch"]},{"url":"https://github.com/nautobot/nautobot/releases/tag/v2.4.33","source":"security-advisories@github.com","tags":["Product","Release Notes"]},{"url":"https://github.com/nautobot/nautobot/releases/tag/v3.1.2","source":"security-advisories@github.com","tags":["Product","Release Notes"]},{"url":"https://github.com/nautobot/nautobot/security/advisories/GHSA-wpxj-44w3-2j6x","source":"security-advisories@github.com","tags":["Patch","Vendor Advisory"]}]}},{"cve":{"id":"CVE-2026-44796","sourceIdentifier":"security-advisories@github.com","published":"2026-05-28T18:16:33.417","lastModified":"2026-05-29T13:27:23.717","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Nautobot is a Network Source of Truth and Network Automation Platform. Prior to 2.4.33 and 3.1.2, Nautobot UI object-bulk-rename endpoints (for example, /dcim/interfaces/rename/) were vulnerable to application-wide denial of service via maliciously crafted regular expressions in the find field in combination with the use_regex flag. This vulnerability is fixed in 2.4.33 and 3.1.2."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":3.6}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-400"},{"lang":"en","value":"CWE-1333"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:networktocode:nautobot:*:*:*:*:*:*:*:*","versionEndExcluding":"2.4.33","matchCriteriaId":"1519124C-E6CD-44DF-8DD7-D4A7003ADF94"},{"vulnerable":true,"criteria":"cpe:2.3:a:networktocode:nautobot:*:*:*:*:*:*:*:*","versionStartIncluding":"3.0.0","versionEndExcluding":"3.1.2","matchCriteriaId":"8419C360-D723-4365-82B1-B4DE637BE43C"}]}]}],"references":[{"url":"https://github.com/nautobot/nautobot/commit/5a30d0916953afbeedd24a784709e762cc3879cd","source":"security-advisories@github.com","tags":["Patch"]},{"url":"https://github.com/nautobot/nautobot/commit/c2b766966d814a7141f62c7bc90c85fefb7892ee","source":"security-advisories@github.com","tags":["Patch"]},{"url":"https://github.com/nautobot/nautobot/releases/tag/v2.4.33","source":"security-advisories@github.com","tags":["Product","Release Notes"]},{"url":"https://github.com/nautobot/nautobot/releases/tag/v3.1.2","source":"security-advisories@github.com","tags":["Product","Release Notes"]},{"url":"https://github.com/nautobot/nautobot/security/advisories/GHSA-qrpw-gjvh-x5gm","source":"security-advisories@github.com","tags":["Patch","Vendor Advisory"]}]}},{"cve":{"id":"CVE-2026-44797","sourceIdentifier":"security-advisories@github.com","published":"2026-05-28T18:16:33.837","lastModified":"2026-05-29T13:26:24.530","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Nautobot is a Network Source of Truth and Network Automation Platform. Prior to 2.4.33 and 3.1.2, Nautobot's Webhook data model and associated feature set could be configured by users with sufficient access to perform requests to various hosts and IP addresses that should not be permitted, allowing for various behaviors similar to server-side request forgery (SSRF). This vulnerability is fixed in 2.4.33 and 3.1.2."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:L/A:N","baseScore":8.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":3.1,"impactScore":4.7}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-918"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:networktocode:nautobot:*:*:*:*:*:*:*:*","versionEndExcluding":"2.4.33","matchCriteriaId":"1519124C-E6CD-44DF-8DD7-D4A7003ADF94"},{"vulnerable":true,"criteria":"cpe:2.3:a:networktocode:nautobot:*:*:*:*:*:*:*:*","versionStartIncluding":"3.0.0","versionEndExcluding":"3.1.2","matchCriteriaId":"8419C360-D723-4365-82B1-B4DE637BE43C"}]}]}],"references":[{"url":"https://github.com/nautobot/nautobot/commit/16aa4aa9796ab7a31c4d615ec945e1f16d8c77c4","source":"security-advisories@github.com","tags":["Patch"]},{"url":"https://github.com/nautobot/nautobot/commit/7324c8f0d8c7245fbc691e15d729adc2d2707d08","source":"security-advisories@github.com","tags":["Patch"]},{"url":"https://github.com/nautobot/nautobot/releases/tag/v2.4.33","source":"security-advisories@github.com","tags":["Product","Release Notes"]},{"url":"https://github.com/nautobot/nautobot/releases/tag/v3.1.2","source":"security-advisories@github.com","tags":["Product","Release Notes"]},{"url":"https://github.com/nautobot/nautobot/security/advisories/GHSA-c35q-vxrp-ph26","source":"security-advisories@github.com","tags":["Mitigation","Patch","Vendor Advisory"]}]}},{"cve":{"id":"CVE-2026-45306","sourceIdentifier":"security-advisories@github.com","published":"2026-05-28T18:16:34.777","lastModified":"2026-05-29T15:39:34.620","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"pyLoad is a free and open-source download manager written in Python. Prior to 0.5.0b3.dev100, the fix for CVE-2026-33509 prevents setting storage_folder inside PKGDIR or userdir, but does NOT protect the Flask session directory (/tmp/pyLoad/flask). An authenticated attacker can set storage_folder to the session directory and download session files of other users via /files/get/, leading to account takeover. This vulnerability is fixed in 0.5.0b3.dev100."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"HIGH","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"NONE"},"exploitabilityScore":1.2,"impactScore":5.2}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Secondary","description":[{"lang":"en","value":"CWE-706"}]}],"references":[{"url":"https://github.com/pyload/pyload/security/advisories/GHSA-w727-595x-pc3r","source":"security-advisories@github.com"},{"url":"https://github.com/pyload/pyload/security/advisories/GHSA-w727-595x-pc3r","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0"}]}},{"cve":{"id":"CVE-2026-45323","sourceIdentifier":"security-advisories@github.com","published":"2026-05-28T18:16:35.300","lastModified":"2026-05-29T16:25:57.843","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"MeshCore Card provides MeshCore Lovelace card for Home Assistant. Prior to 0.3.3, Meshcore node names are rendered without HTML escaping in meshcore-card, allowing any node within direct or indirect (repeated) radio range to execute arbitrary javascript in the Home Assistant frontend of anyone viewing the card. This vulnerability is fixed in 0.3.3."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H","baseScore":9.6,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":6.0}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Secondary","description":[{"lang":"en","value":"CWE-79"}]}],"references":[{"url":"https://github.com/jpettitt/meshcore-card/security/advisories/GHSA-5vrg-xpcj-xppc","source":"security-advisories@github.com"},{"url":"https://github.com/jpettitt/meshcore-card/security/advisories/GHSA-5vrg-xpcj-xppc","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0"}]}},{"cve":{"id":"CVE-2026-45348","sourceIdentifier":"security-advisories@github.com","published":"2026-05-28T18:16:35.437","lastModified":"2026-05-29T15:39:34.620","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"pyLoad is a free and open-source download manager written in Python. Prior to 0.5.0b3.dev100, the packages.js template at src/pyload/webui/app/themes/modern/templates/js/packages.js:172 interpolates a stored link URL into a template literal inside single-quoted HTML and then writes the result to the DOM via $(div).html(html). No escaping runs between the API value and innerHTML. An attacker (Alice) who can submit a package link puts a single quote plus event handler into the URL, breaks out of the attribute, and executes JavaScript in every operator's browser that opens the downloads view. The theme does not set a Content Security Policy that restricts inline script or event handlers. This vulnerability is fixed in 0.5.0b3.dev100."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:N","baseScore":8.7,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"NONE"},"exploitabilityScore":2.3,"impactScore":5.8}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Secondary","description":[{"lang":"en","value":"CWE-79"}]}],"references":[{"url":"https://github.com/pyload/pyload/security/advisories/GHSA-fcjq-435v-jx94","source":"security-advisories@github.com"},{"url":"https://github.com/pyload/pyload/security/advisories/GHSA-fcjq-435v-jx94","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0"}]}},{"cve":{"id":"CVE-2026-45353","sourceIdentifier":"security-advisories@github.com","published":"2026-05-28T18:16:35.587","lastModified":"2026-05-29T15:34:31.597","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"electerm is an open-sourced terminal/ssh/sftp/telnet/serialport/RDP/VNC/Spice/ftp client. From 3.0.6 to 3.8.8,  This vulnerability is fixed in 3.9.0."}],"metrics":{"cvssMetricV40":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":9.3,"baseSeverity":"CRITICAL","attackVector":"LOCAL","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"LOW","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"HIGH","vulnAvailabilityImpact":"HIGH","subConfidentialityImpact":"HIGH","subIntegrityImpact":"HIGH","subAvailabilityImpact":"HIGH","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-94"},{"lang":"en","value":"CWE-732"},{"lang":"en","value":"CWE-940"}]}],"references":[{"url":"https://github.com/electerm/electerm/commit/0599e67069b00e376a2e962649aaad6096e63507","source":"security-advisories@github.com"},{"url":"https://github.com/electerm/electerm/security/advisories/GHSA-7p5m-v798-f8vv","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2026-45787","sourceIdentifier":"security-advisories@github.com","published":"2026-05-28T18:16:35.977","lastModified":"2026-05-29T15:34:31.597","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"electerm is an open-sourced terminal/ssh/sftp/telnet/serialport/RDP/VNC/Spice/ftp client. Prior to 3.9.5, deterministic AES-192-CBC with a fixed zero IV, constant KDF salt, and no MAC leads to confidentiality and integrity failures for synced bookmark/profile data. Attackers can crack common passwords across installs and perform undetected ciphertext bit-flips to alter config/bookmarks. This vulnerability is fixed in 3.9.5."}],"metrics":{"cvssMetricV40":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:H/AT:P/PR:L/UI:N/VC:H/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":6.0,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"HIGH","attackRequirements":"PRESENT","privilegesRequired":"LOW","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"LOW","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-326"},{"lang":"en","value":"CWE-329"},{"lang":"en","value":"CWE-353"},{"lang":"en","value":"CWE-759"},{"lang":"en","value":"CWE-916"}]}],"references":[{"url":"https://github.com/electerm/electerm/commit/9dd8295e37d53396b980cd45dfc5ed11ad79b937","source":"security-advisories@github.com"},{"url":"https://github.com/electerm/electerm/security/advisories/GHSA-g29v-q6h7-76wh","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2026-46561","sourceIdentifier":"security-advisories@github.com","published":"2026-05-28T18:16:36.123","lastModified":"2026-05-29T15:39:34.620","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"pyLoad is a free and open-source download manager written in Python. Prior to 0.5.0b3.dev100, the PREREQFUNCTION-based private IP check was not applied to HTTPRequest (used by the parse_urls API). An authenticated attacker can supply a URL pointing to an attacker-controlled server that responds with a 302 redirect to an internal/private IP address, bypassing the is_global_host() check on the initial URL. This vulnerability is fixed in 0.5.0b3.dev100."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N","baseScore":5.0,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":3.1,"impactScore":1.4}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Secondary","description":[{"lang":"en","value":"CWE-918"}]}],"references":[{"url":"https://github.com/pyload/pyload/security/advisories/GHSA-8rp3-xc6w-5qp5","source":"security-advisories@github.com"},{"url":"https://github.com/pyload/pyload/security/advisories/GHSA-8rp3-xc6w-5qp5","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0"}]}},{"cve":{"id":"CVE-2026-30760","sourceIdentifier":"cve@mitre.org","published":"2026-05-28T19:16:37.230","lastModified":"2026-05-29T16:16:24.793","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"An issue in SourceBans Material Admin before v.1.1.6 (3ecd95e) allows attackers to manipulate arbitrary user data in the web app via a crafted XAJAX call."}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L","baseScore":7.3,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"LOW"},"exploitabilityScore":3.9,"impactScore":3.4}]},"weaknesses":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-20"}]}],"references":[{"url":"https://gist.github.com/ng-dst/450b698433f628990921f1e5ab46ff8c","source":"cve@mitre.org"},{"url":"https://gist.github.com/ng-dst/ca6663a4107fd39eaba1be2cb1d52b51","source":"cve@mitre.org"},{"url":"https://github.com/SB-MaterialAdmin/Web","source":"cve@mitre.org"},{"url":"https://github.com/SB-MaterialAdmin/Web/issues/374","source":"cve@mitre.org"}]}},{"cve":{"id":"CVE-2026-30761","sourceIdentifier":"cve@mitre.org","published":"2026-05-28T19:16:37.360","lastModified":"2026-05-29T16:16:24.940","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"An arbitrary file upload vulnerability in the pages/admin.uploadmapimg.php component of SourceBans Material Admin v1.1.6 allows attackers to execute arbitrary code via uploading a crafted image file."}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L","baseScore":7.3,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"LOW"},"exploitabilityScore":3.9,"impactScore":3.4}]},"weaknesses":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-434"}]}],"references":[{"url":"https://gist.github.com/ng-dst/254163056c2d8a2f55259dcb79531b31","source":"cve@mitre.org"},{"url":"https://gist.github.com/ng-dst/ca6663a4107fd39eaba1be2cb1d52b51","source":"cve@mitre.org"},{"url":"https://github.com/SB-MaterialAdmin/Web","source":"cve@mitre.org"},{"url":"https://github.com/SB-MaterialAdmin/Web/issues/374","source":"cve@mitre.org"}]}},{"cve":{"id":"CVE-2026-42998","sourceIdentifier":"cve@mitre.org","published":"2026-05-28T19:16:37.483","lastModified":"2026-05-29T16:19:35.753","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"An issue was discovered in OpenStack Keystone before 29.0.2. The Keystone application credential authentication plugin does not verify that the user supplied in the authentication request matches the owner of the application credential. An attacker can authenticate with their own application credential ID and secret while specifying a different user's name and domain in the request body. Keystone issues a token attributed to the victim user. The impersonated token is project-scoped and carries the intersection of the application credential's roles and the victim's actual roles on the project. This enables audit evasion, reading the victim's credentials, and acting as the victim within shared projects."}],"metrics":{"cvssMetricV31":[{"source":"cve@mitre.org","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:L","baseScore":6.0,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"LOW"},"exploitabilityScore":1.8,"impactScore":3.7}]},"weaknesses":[{"source":"cve@mitre.org","type":"Primary","description":[{"lang":"en","value":"CWE-863"}]}],"references":[{"url":"https://bugs.launchpad.net/keystone/+bug/2148477","source":"cve@mitre.org"},{"url":"https://security.openstack.org/ossa/OSSA-2026-015.html","source":"cve@mitre.org"}]}},{"cve":{"id":"CVE-2026-42999","sourceIdentifier":"cve@mitre.org","published":"2026-05-28T19:16:37.630","lastModified":"2026-05-29T15:42:56.873","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"An issue was discovered in OpenStack Keystone before 29.0.2. The Keystone RBAC policy enforcer in enforce_call unconditionally merges the raw JSON request body into the policy enforcement dictionary via policy_dict.update(json_input.copy()), overwriting trusted target data that was previously set from database lookups. Because flask.request.get_json is called with force=True, this works regardless of Content-Type or HTTP method. Any authenticated user can inject arbitrary policy target attributes (e.g., user_id, project_id) into the request body to bypass RBAC checks and perform unauthorized operations on resources belonging to other users or projects. This was introduced in commit 5ea59f52 (Rocky/14.0.0)."}],"metrics":{"cvssMetricV31":[{"source":"cve@mitre.org","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:L","baseScore":6.0,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"LOW"},"exploitabilityScore":1.8,"impactScore":3.7}]},"weaknesses":[{"source":"cve@mitre.org","type":"Primary","description":[{"lang":"en","value":"CWE-863"}]}],"references":[{"url":"https://bugs.launchpad.net/keystone/+bug/2148398","source":"cve@mitre.org"},{"url":"https://security.openstack.org/ossa/OSSA-2026-015.html","source":"cve@mitre.org"}]}},{"cve":{"id":"CVE-2026-43000","sourceIdentifier":"cve@mitre.org","published":"2026-05-28T19:16:37.773","lastModified":"2026-05-29T15:42:56.873","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"An issue was discovered in OpenStack Keystone before 29.0.2. When combined with an application credential impersonation vulnerability, an attacker with the member role on a project can escalate to admin by chaining unrestricted application credentials with Keystone trusts. The impersonated token carries the victim's identity, which passes the trustor validation check. Keystone then validates the delegated roles against the victim's actual role assignments in the database, not the roles on the requesting token. This allows the attacker to create a trust delegating the victim's admin role to themselves. The trust persists independently, and additional trusts and application credentials can be created to maintain access. All actions are logged under the victim's identity."}],"metrics":{"cvssMetricV31":[{"source":"cve@mitre.org","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:L","baseScore":6.0,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"LOW"},"exploitabilityScore":1.8,"impactScore":3.7}]},"weaknesses":[{"source":"cve@mitre.org","type":"Primary","description":[{"lang":"en","value":"CWE-863"}]}],"references":[{"url":"https://bugs.launchpad.net/keystone/+bug/2148477","source":"cve@mitre.org"},{"url":"https://security.openstack.org/ossa/OSSA-2026-015.html","source":"cve@mitre.org"}]}},{"cve":{"id":"CVE-2026-44394","sourceIdentifier":"cve@mitre.org","published":"2026-05-28T19:16:38.223","lastModified":"2026-05-29T15:42:56.873","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"An issue was discovered in OpenStack Keystone before 29.0.2. The Keystone federated token rescoping mechanism does not propagate the original token's expiry to the newly issued token. When a federated user rescopes a token via POST /v3/auth/tokens, the handle_scoped_token() function in the mapped authentication plugin returns response data without an expires_at value. The token provider falls back to issuing a token with a fresh default TTL. By rescoping repeatedly before each token expires, a user can maintain access indefinitely, bypassing operator-configured token lifetime policies. This is a variant of CVE-2012-3426. Only deployments using federated identity (SAML2, OpenID Connect) are affected."}],"metrics":{"cvssMetricV31":[{"source":"cve@mitre.org","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:L","baseScore":6.0,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"LOW"},"exploitabilityScore":1.8,"impactScore":3.7}]},"weaknesses":[{"source":"cve@mitre.org","type":"Primary","description":[{"lang":"en","value":"CWE-863"}]}],"references":[{"url":"https://bugs.launchpad.net/keystone/+bug/2150379","source":"cve@mitre.org"},{"url":"https://security.openstack.org/ossa/OSSA-2026-015.html","source":"cve@mitre.org"}]}},{"cve":{"id":"CVE-2026-45039","sourceIdentifier":"security-advisories@github.com","published":"2026-05-28T19:16:38.390","lastModified":"2026-05-29T15:11:03.853","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"RustFS is a distributed object storage system built in Rust. Prior to 1.0.0-beta.2, the internode RPC layer authenticates every request with an HMAC-SHA256 signature using a shared secret. The function that produces this secret, get_shared_secret() in crates/ecstore/src/rpc/http_auth.rs, falls back to the public, source-tree-embedded DEFAULT_SECRET_KEY = \"rustfsadmin\" when neither the RUSTFS_RPC_SECRET environment variable nor the global S3 secret key has been configured. This vulnerability is fixed in 1.0.0-beta.2."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":9.8,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":5.9}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-798"},{"lang":"en","value":"CWE-1392"}]}],"references":[{"url":"https://github.com/rustfs/rustfs/security/advisories/GHSA-r5qv-rc46-hv8q","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2026-45040","sourceIdentifier":"security-advisories@github.com","published":"2026-05-28T19:16:38.543","lastModified":"2026-05-29T15:11:03.853","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"RustFS is a distributed object storage system built in Rust. Prior to 1.0.0-beta.2, RustFS suffers from sensitive information leakage in log outputs. When the server is run with RUST_LOG=debug sensitive credentials including SessionToken (JWT), SecretAccessKey, and full JWT claims are printed in plaintext to the server logs. This vulnerability is fixed in 1.0.0-beta.2."}],"metrics":{"cvssMetricV40":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":5.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"LOW","userInteraction":"NONE","vulnConfidentialityImpact":"LOW","vulnIntegrityImpact":"NONE","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-312"},{"lang":"en","value":"CWE-532"}]}],"references":[{"url":"https://github.com/rustfs/rustfs/security/advisories/GHSA-8cm2-h255-v749","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2026-45041","sourceIdentifier":"security-advisories@github.com","published":"2026-05-28T19:16:38.697","lastModified":"2026-05-29T15:16:23.243","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"RustFS is a distributed object storage system built in Rust. Prior to 1.0.0-beta.2, crates/appauth/src/token.rs ships a 2048-bit RSA private key as a string constant named TEST_PRIVATE_KEY and uses it in production via parse_license() to \"verify\" license tokens. Because the key is embedded in every published source release and binary, anyone who can read the repository or extract it from the binary can mint arbitrary license tokens (any subject, any expiration). When the license Cargo feature is enabled, this defeats the entire license-enforcement mechanism. This vulnerability is fixed in 1.0.0-beta.2."}],"metrics":{"cvssMetricV40":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":8.7,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"NONE","vulnIntegrityImpact":"HIGH","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Secondary","description":[{"lang":"en","value":"CWE-321"}]}],"references":[{"url":"https://github.com/rustfs/rustfs/security/advisories/GHSA-923g-jp7v-f97f","source":"security-advisories@github.com"},{"url":"https://github.com/rustfs/rustfs/security/advisories/GHSA-923g-jp7v-f97f","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0"}]}},{"cve":{"id":"CVE-2026-45042","sourceIdentifier":"security-advisories@github.com","published":"2026-05-28T19:16:38.847","lastModified":"2026-05-29T15:11:03.853","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"RustFS is a distributed object storage system built in Rust. Prior to 1.0.0-beta.2, improper authorization in the UploadPartCopy operation allows copying objects across buckets without enforcing destination bucket restrictions on allowed copy sources. The implementation validates GetObject permission on the source bucket and PutObject on the destination bucket independently, but does not enforce any policy constraints on whether the destination bucket permits the specified copy source. This enables unauthorized cross-bucket data movement. This vulnerability is fixed in 1.0.0-beta.2."}],"metrics":{"cvssMetricV40":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":7.1,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"LOW","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"NONE","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Secondary","description":[{"lang":"en","value":"CWE-863"}]}],"references":[{"url":"https://github.com/rustfs/rustfs/security/advisories/GHSA-wfxj-ph3v-7mjf","source":"security-advisories@github.com"},{"url":"https://github.com/rustfs/rustfs/security/advisories/GHSA-wfxj-ph3v-7mjf","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0"}]}},{"cve":{"id":"CVE-2026-45044","sourceIdentifier":"security-advisories@github.com","published":"2026-05-28T19:16:38.980","lastModified":"2026-05-29T15:11:03.853","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"RustFS is a distributed object storage system built in Rust. Prior to 1.0.0-beta.2, the admin router explicitly whitelists /profile/cpu and /profile/memory from the authentication layer, allowing any unauthenticated HTTP client to invoke profiling handlers without credentials. On supported builds (e.g., glibc), the handler invokes a fixed 60-second CPU profiling operation (dump_cpu_pprof_for(Duration::from_secs(60))). This may result in significant CPU resource consumption per request and can potentially lead to denial of service when abused. Additionally, the handler returns the server’s absolute filesystem path in the response body, resulting in information disclosure. This vulnerability is fixed in 1.0.0-beta.2."}],"metrics":{"cvssMetricV40":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"LOW","vulnIntegrityImpact":"NONE","vulnAvailabilityImpact":"HIGH","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Secondary","description":[{"lang":"en","value":"CWE-306"}]}],"references":[{"url":"https://github.com/rustfs/rustfs/security/advisories/GHSA-8784-9m7f-c6p6","source":"security-advisories@github.com"},{"url":"https://github.com/rustfs/rustfs/security/advisories/GHSA-8784-9m7f-c6p6","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0"}]}},{"cve":{"id":"CVE-2026-46526","sourceIdentifier":"security-advisories@github.com","published":"2026-05-28T19:16:39.430","lastModified":"2026-05-29T15:16:23.987","vulnStatus":"Received","cveTags":[],"descriptions":[{"lang":"en","value":"Local Deep Research is an AI-powered research assistant for deep, iterative research. Prior to 1.6.10, the URL checking logic in local-deep-research has a logical flaw that could be bypassed by attackers, leading to SSRF attacks. The current project uses validate_url to validate the input URL. The main logic is to perform security checks on the host portion of the URL extracted by urlparse to prevent SSRF attacks. However, there are indeed differences in parsing between urlparse and the library that actually sends the request. For example, in safe_get, validate_url is first used to perform an SSRF check, and then requests.get is used to send the actual request. This vulnerability is fixed in 1.6.10."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N","baseScore":5.0,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":3.1,"impactScore":1.4}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Secondary","description":[{"lang":"en","value":"CWE-918"}]}],"references":[{"url":"https://github.com/LearningCircuit/local-deep-research/pull/3873","source":"security-advisories@github.com"},{"url":"https://github.com/LearningCircuit/local-deep-research/pull/3882","source":"security-advisories@github.com"},{"url":"https://github.com/LearningCircuit/local-deep-research/pull/3889","source":"security-advisories@github.com"},{"url":"https://github.com/LearningCircuit/local-deep-research/pull/3932","source":"security-advisories@github.com"},{"url":"https://github.com/LearningCircuit/local-deep-research/releases/tag/v1.6.10","source":"security-advisories@github.com"},{"url":"https://github.com/LearningCircuit/local-deep-research/security/advisories/GHSA-g23j-2vwm-5c25","source":"security-advisories@github.com"},{"url":"https://github.com/LearningCircuit/local-deep-research/security/advisories/GHSA-g23j-2vwm-5c25","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0"}]}},{"cve":{"id":"CVE-2026-46685","sourceIdentifier":"security-advisories@github.com","published":"2026-05-28T19:16:39.583","lastModified":"2026-05-29T15:11:03.853","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"RustFS is a distributed object storage system built in Rust. Prior to 1.0.0-beta.2, when RUSTFS_CORS_ALLOWED_ORIGINS is unset, the RustFS S3 listener's ConditionalCorsLayer reflects any request Origin value back as Access-Control-Allow-Origin and also sets Access-Control-Allow-Credentials: true and Access-Control-Allow-Headers: * on responses, including preflight responses and error responses. This creates a permissive cross-domain policy with untrusted origins. A browser visiting an attacker-controlled page can issue credentialed cross-origin requests to a reachable RustFS deployment and read the response when the victim browser has ambient credentials for the RustFS origin, such as saved HTTP Basic Auth credentials, reverse-proxy SSO cookies, or TLS client certificates. This vulnerability is fixed in 1.0.0-beta.2."}],"metrics":{"cvssMetricV40":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:P/VC:H/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":6.0,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"PRESENT","privilegesRequired":"NONE","userInteraction":"PASSIVE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"LOW","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Secondary","description":[{"lang":"en","value":"CWE-306"},{"lang":"en","value":"CWE-346"},{"lang":"en","value":"CWE-942"}]}],"references":[{"url":"https://github.com/rustfs/rustfs/security/advisories/GHSA-x5xv-223c-8vm7","source":"security-advisories@github.com"},{"url":"https://github.com/rustfs/rustfs/security/advisories/GHSA-x5xv-223c-8vm7","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0"}]}},{"cve":{"id":"CVE-2026-47136","sourceIdentifier":"security-advisories@github.com","published":"2026-05-28T19:16:39.753","lastModified":"2026-05-29T15:11:03.853","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"RustFS is a distributed object storage system built in Rust. Prior to 1.0.0-beta.2, the RustFS console endpoint GET /rustfs/console/license returns parsed license metadata without requiring authentication. The endpoint is registered on the console listener and returns JSON containing license information such as the license subject and expiration timestamp. Any client that can reach the console listener can query this endpoint without credentials. This vulnerability is fixed in 1.0.0-beta.2."}],"metrics":{"cvssMetricV40":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":6.9,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"LOW","vulnIntegrityImpact":"NONE","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-200"},{"lang":"en","value":"CWE-306"}]}],"references":[{"url":"https://github.com/rustfs/rustfs/security/advisories/GHSA-xp32-gxq2-3v52","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2026-47335","sourceIdentifier":"security@ubuntu.com","published":"2026-05-28T19:16:42.327","lastModified":"2026-05-29T21:24:14.940","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Ubuntu Linux 6.8 contains SAUCE patches with a possible NULL pointer dereference in the handling of AppArmor notifications. The bug can be triggered by an unprivileged local user. This can lead to a kernel panic."}],"metrics":{"cvssMetricV31":[{"source":"security@ubuntu.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","baseScore":5.5,"baseSeverity":"MEDIUM","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":1.8,"impactScore":3.6}]},"weaknesses":[{"source":"security@ubuntu.com","type":"Secondary","description":[{"lang":"en","value":"CWE-476"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:canonical:ubuntu_linux:6.8:*:*:*:*:*:*:*","matchCriteriaId":"5C0FE973-AED1-47AB-AA38-4F63BA724D8F"}]}]}],"references":[{"url":"https://git.launchpad.net/~ubuntu-kernel/ubuntu/+source/linux/+git/noble/commit/?id=406571d530ccdbae6119fe64ce9cf5c74160f20b","source":"security@ubuntu.com","tags":["Broken Link"]}]}},{"cve":{"id":"CVE-2026-47336","sourceIdentifier":"security@ubuntu.com","published":"2026-05-28T19:16:42.443","lastModified":"2026-05-29T21:23:58.113","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Ubuntu Linux 6.8 contains SAUCE patches with a possible use of an uninitialized variable in AppArmor AF_INET/AF_INET6 socket mediation code. The bug can be triggered by an unprivileged local user and could result in incorrect fine-grained mediation of network sockets."}],"metrics":{"cvssMetricV31":[{"source":"security@ubuntu.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N","baseScore":3.3,"baseSeverity":"LOW","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":1.8,"impactScore":1.4}]},"weaknesses":[{"source":"security@ubuntu.com","type":"Secondary","description":[{"lang":"en","value":"CWE-457"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:canonical:ubuntu_linux:6.8:*:*:*:*:*:*:*","matchCriteriaId":"5C0FE973-AED1-47AB-AA38-4F63BA724D8F"}]}]}],"references":[{"url":"https://git.launchpad.net/~ubuntu-kernel/ubuntu/+source/linux/+git/noble/commit/?id=f37c6a70fe7b435322c334554002809a4e7b7293","source":"security@ubuntu.com","tags":["Broken Link"]}]}},{"cve":{"id":"CVE-2026-47337","sourceIdentifier":"security@ubuntu.com","published":"2026-05-28T19:16:42.560","lastModified":"2026-05-29T21:21:45.863","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Ubuntu Linux 6.8, 6.17 and 7.0 contain SAUCE patches with a possible NULL pointer dereference in the handling of AF_INET/AF_INET6 socket mediation. The bug can be triggered by an unprivileged local user. This can lead to a kernel oops."}],"metrics":{"cvssMetricV31":[{"source":"security@ubuntu.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L","baseScore":3.3,"baseSeverity":"LOW","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"LOW"},"exploitabilityScore":1.8,"impactScore":1.4}]},"weaknesses":[{"source":"security@ubuntu.com","type":"Secondary","description":[{"lang":"en","value":"CWE-476"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:canonical:ubuntu_linux:6.8:*:*:*:*:*:*:*","matchCriteriaId":"5C0FE973-AED1-47AB-AA38-4F63BA724D8F"},{"vulnerable":true,"criteria":"cpe:2.3:o:canonical:ubuntu_linux:6.17:*:*:*:*:*:*:*","matchCriteriaId":"D189E0FC-E80D-4B02-95C1-1D96A838E4E2"},{"vulnerable":true,"criteria":"cpe:2.3:o:canonical:ubuntu_linux:7.0:*:*:*:*:*:*:*","matchCriteriaId":"C596C12C-917E-4E9A-8E5C-F97694C28A0F"}]}]}],"references":[{"url":"https://git.launchpad.net/~ubuntu-kernel/ubuntu/+source/linux/+git/noble/commit/?id=9f03f0012a2367efae1edb4798f1c5103aeb6cbc","source":"security@ubuntu.com","tags":["Broken Link"]}]}},{"cve":{"id":"CVE-2026-4944","sourceIdentifier":"security@huntr.dev","published":"2026-05-28T19:16:42.677","lastModified":"2026-05-29T15:39:34.620","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"vllm-project/vllm version 0.14.1 contains a vulnerability where the `trust_remote_code=True` parameter is hardcoded in two model implementation files (`vllm/model_executor/models/nemotron_vl.py` and `vllm/model_executor/models/kimi_k25.py`). This bypasses the user's explicit `--trust-remote-code=False` setting, enabling remote code execution via malicious HuggingFace model repositories. This issue is an incomplete fix for CVE-2025-66448 and CVE-2026-22807, as it affects separate code paths in model implementation files. Deployments loading NemotronVL or KimiK25 models are particularly impacted."}],"metrics":{"cvssMetricV30":[{"source":"security@huntr.dev","type":"Secondary","cvssData":{"version":"3.0","vectorString":"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":5.9}]},"weaknesses":[{"source":"security@huntr.dev","type":"Secondary","description":[{"lang":"en","value":"CWE-22"}]}],"references":[{"url":"https://huntr.com/bounties/97f706f7-a852-49b2-a4eb-76811e611daf","source":"security@huntr.dev"},{"url":"https://huntr.com/bounties/97f706f7-a852-49b2-a4eb-76811e611daf","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0"}]}},{"cve":{"id":"CVE-2026-32847","sourceIdentifier":"disclosure@vulncheck.com","published":"2026-05-28T20:16:22.613","lastModified":"2026-05-29T16:19:35.753","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"DeepCode through commit c991dc2 contains a path traversal vulnerability in the SPA catch-all route in new_ui/backend/main.py that allows unauthenticated attackers to read arbitrary files by supplying percent-encoded path segments to the GET /{full_path:path} endpoint. Attackers can bypass Starlette's path normalization by encoding slashes as %2F and dots as %2E%2E, causing the joined path to traverse outside FRONTEND_DIST and exposing sensitive files such as SSH private keys, TLS certificates, and application secrets with a single HTTP request."}],"metrics":{"cvssMetricV40":[{"source":"disclosure@vulncheck.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":8.7,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"NONE","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"disclosure@vulncheck.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":3.6}]},"weaknesses":[{"source":"disclosure@vulncheck.com","type":"Primary","description":[{"lang":"en","value":"CWE-22"}]}],"references":[{"url":"https://github.com/HKUDS/DeepCode/issues/126","source":"disclosure@vulncheck.com"},{"url":"https://www.vulncheck.com/advisories/deepcode-path-traversal-via-spa-catch-all-route-in-main-py","source":"disclosure@vulncheck.com"}]}},{"cve":{"id":"CVE-2026-33462","sourceIdentifier":"security@elastic.co","published":"2026-05-28T20:16:22.773","lastModified":"2026-05-29T21:20:41.200","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"A path traversal vulnerability was identified in Kibana's dashboard management functionality. An authenticated user with limited permissions could create a dashboard with a specially crafted identifier. When an administrator subsequently attempts to delete this dashboard through the Kibana interface, the deletion request is redirected to an unintended internal endpoint, potentially resulting in the unauthorized deletion of user accounts or other resources. Exploitation requires an administrator to perform a delete action on the maliciously crafted dashboard object."}],"metrics":{"cvssMetricV31":[{"source":"security@elastic.co","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:L","baseScore":4.6,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"LOW","availabilityImpact":"LOW"},"exploitabilityScore":2.1,"impactScore":2.5},{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:H/A:H","baseScore":7.3,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.1,"impactScore":5.2}]},"weaknesses":[{"source":"security@elastic.co","type":"Secondary","description":[{"lang":"en","value":"CWE-22"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:elastic:kibana:*:*:*:*:*:*:*:*","versionStartIncluding":"8.0.0","versionEndExcluding":"8.19.16","matchCriteriaId":"43EDC5B3-131D-489E-8447-05C5C599E6A7"},{"vulnerable":true,"criteria":"cpe:2.3:a:elastic:kibana:*:*:*:*:*:*:*:*","versionStartIncluding":"9.0.0","versionEndExcluding":"9.3.5","matchCriteriaId":"E9B40710-912A-4157-9F25-89CE26C098A9"}]}]}],"references":[{"url":"https://discuss.elastic.co/t/kibana-8-19-16-and-9-3-5-security-update-esa-2026-30/386545","source":"security@elastic.co","tags":["Vendor Advisory"]}]}},{"cve":{"id":"CVE-2026-33463","sourceIdentifier":"security@elastic.co","published":"2026-05-28T20:16:22.917","lastModified":"2026-05-29T21:18:16.463","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Operation on a Resource after Expiration or Termination (CWE-672) in Kibana can lead to unauthorized information disclosure. A logic error in how expiration timestamps were validated allowed a time-bounded access token to remain usable beyond its intended validity window, enabling an unauthenticated actor in possession of the token to retrieve the associated content after expiration."}],"metrics":{"cvssMetricV31":[{"source":"security@elastic.co","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N","baseScore":5.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":1.4}]},"weaknesses":[{"source":"security@elastic.co","type":"Secondary","description":[{"lang":"en","value":"CWE-672"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:elastic:kibana:*:*:*:*:*:*:*:*","versionStartIncluding":"8.0.0","versionEndExcluding":"8.19.16","matchCriteriaId":"43EDC5B3-131D-489E-8447-05C5C599E6A7"},{"vulnerable":true,"criteria":"cpe:2.3:a:elastic:kibana:*:*:*:*:*:*:*:*","versionStartIncluding":"9.0.0","versionEndExcluding":"9.3.5","matchCriteriaId":"E9B40710-912A-4157-9F25-89CE26C098A9"}]}]}],"references":[{"url":"https://discuss.elastic.co/t/8-19-16-9-3-5-security-update-esa-2026-33/386551","source":"security@elastic.co","tags":["Vendor Advisory"]}]}},{"cve":{"id":"CVE-2026-33464","sourceIdentifier":"security@elastic.co","published":"2026-05-28T20:16:23.043","lastModified":"2026-05-29T21:17:42.463","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Uncontrolled Resource Consumption (CWE-400) in Kibana can lead to a denial of service via Excessive Allocation (CAPEC-130). An authenticated user holding a low-privileged role can submit a specially crafted, oversized payload to an internal Kibana API, causing the Kibana process to exhaust available resources and become unresponsive to all users until the service recovers or is restarted."}],"metrics":{"cvssMetricV31":[{"source":"security@elastic.co","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":3.6}]},"weaknesses":[{"source":"security@elastic.co","type":"Secondary","description":[{"lang":"en","value":"CWE-400"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:elastic:kibana:*:*:*:*:*:*:*:*","versionStartIncluding":"8.0.0","versionEndExcluding":"8.19.16","matchCriteriaId":"43EDC5B3-131D-489E-8447-05C5C599E6A7"},{"vulnerable":true,"criteria":"cpe:2.3:a:elastic:kibana:*:*:*:*:*:*:*:*","versionStartIncluding":"9.0.0","versionEndExcluding":"9.3.5","matchCriteriaId":"E9B40710-912A-4157-9F25-89CE26C098A9"},{"vulnerable":true,"criteria":"cpe:2.3:a:elastic:kibana:9.4.0:*:*:*:*:*:*:*","matchCriteriaId":"66E32573-8928-42AC-8CE5-68F444910F38"}]}]}],"references":[{"url":"https://discuss.elastic.co/t/kibana-8-19-16-9-3-5-9-4-1-security-update-esa-2026-32/386548","source":"security@elastic.co","tags":["Vendor Advisory"]}]}},{"cve":{"id":"CVE-2026-33590","sourceIdentifier":"a6d3dc9e-0591-4a13-bce7-0f5b31ff6158","published":"2026-05-28T20:16:23.163","lastModified":"2026-05-29T15:06:44.207","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Insecure default settings of Portainer CE grant regular (non-admin) users privileges that allow host filesystem access and host-level code execution. An authenticated non-administrative user with endpoint access can exploit these settings to read host files or obtain root equivalent \n\naccess on the host."}],"metrics":{"cvssMetricV40":[{"source":"a6d3dc9e-0591-4a13-bce7-0f5b31ff6158","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":8.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"LOW","userInteraction":"PASSIVE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"HIGH","vulnAvailabilityImpact":"HIGH","subConfidentialityImpact":"HIGH","subIntegrityImpact":"HIGH","subAvailabilityImpact":"HIGH","exploitMaturity":"PROOF_OF_CONCEPT","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}]},"weaknesses":[{"source":"a6d3dc9e-0591-4a13-bce7-0f5b31ff6158","type":"Secondary","description":[{"lang":"en","value":"CWE-276"}]}],"references":[{"url":"https://github.com/portainer/portainer/commit/3e2fdb1891e81a8e4c5c8beb60e45f07c8ecae52","source":"a6d3dc9e-0591-4a13-bce7-0f5b31ff6158"},{"url":"https://github.com/portainer/portainer/commit/ac8fa7672e732b44b970c9eaf928eddd2c68796c","source":"a6d3dc9e-0591-4a13-bce7-0f5b31ff6158"},{"url":"https://intwave.com/blog/2026/02/26/improving-portainer-security.html","source":"a6d3dc9e-0591-4a13-bce7-0f5b31ff6158"}]}},{"cve":{"id":"CVE-2026-42401","sourceIdentifier":"security@elastic.co","published":"2026-05-28T20:16:23.620","lastModified":"2026-05-29T21:17:18.420","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Improper Neutralization of Input During Web Page Generation (CWE-79) in Kibana can lead to stored HTML injection. A user with write access to an Elasticsearch index could persist crafted markup which, when subsequently rendered through an affected Kibana view by another user, was not sufficiently sanitized. Successful exploitation could result in unauthorized UI manipulation and outbound network requests issued from the viewing user's browser session."}],"metrics":{"cvssMetricV31":[{"source":"security@elastic.co","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:N/I:L/A:N","baseScore":4.1,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"NONE","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":2.3,"impactScore":1.4},{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N","baseScore":5.4,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":2.3,"impactScore":2.7}]},"weaknesses":[{"source":"security@elastic.co","type":"Secondary","description":[{"lang":"en","value":"CWE-79"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:elastic:kibana:*:*:*:*:*:*:*:*","versionStartIncluding":"8.0.0","versionEndExcluding":"8.19.16","matchCriteriaId":"43EDC5B3-131D-489E-8447-05C5C599E6A7"},{"vulnerable":true,"criteria":"cpe:2.3:a:elastic:kibana:*:*:*:*:*:*:*:*","versionStartIncluding":"9.0.0","versionEndExcluding":"9.3.5","matchCriteriaId":"E9B40710-912A-4157-9F25-89CE26C098A9"}]}]}],"references":[{"url":"https://discuss.elastic.co/t/kibana-8-19-16-9-3-5-security-update-esa-2026-34/386552","source":"security@elastic.co","tags":["Vendor Advisory"]}]}},{"cve":{"id":"CVE-2026-49127","sourceIdentifier":"disclosure@vulncheck.com","published":"2026-05-28T20:16:26.387","lastModified":"2026-05-29T14:07:47.980","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Music Player Daemon (MPD) before version 0.24.11 contains a stack buffer overflow vulnerability in the pcm_unpack_24be function in src/pcm/Pack.cxx that allows unauthenticated attackers to corrupt stack memory by triggering an off-by-one write in the PCM decoder plugin. Attackers can issue two MPD commands referencing a malicious HTTP audio source to cause the unpack loop to write 1366 entries into a 1365-entry buffer, overwriting four bytes past the array boundary with three attacker-controlled bytes from an HTTP response body, resulting in daemon termination or potential code execution."}],"metrics":{"cvssMetricV40":[{"source":"disclosure@vulncheck.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"LOW","vulnIntegrityImpact":"LOW","vulnAvailabilityImpact":"HIGH","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"disclosure@vulncheck.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H","baseScore":8.6,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":4.7}]},"weaknesses":[{"source":"disclosure@vulncheck.com","type":"Secondary","description":[{"lang":"en","value":"CWE-193"}]}],"references":[{"url":"https://github.com/MusicPlayerDaemon/MPD/commit/59911028c020f84bc2e669da6a1ef88121301274","source":"disclosure@vulncheck.com"},{"url":"https://github.com/MusicPlayerDaemon/MPD/issues/2485","source":"disclosure@vulncheck.com"},{"url":"https://github.com/MusicPlayerDaemon/MPD/releases/tag/v0.24.11","source":"disclosure@vulncheck.com"},{"url":"https://mstreet97.github.io/security-research/opensource/vulnerability-disclosure/cybersecurity/cve/2026/05/25/Four_Bugs_Reachable_nc.html","source":"disclosure@vulncheck.com"},{"url":"https://raw.githubusercontent.com/MusicPlayerDaemon/MPD/v0.24.11/NEWS","source":"disclosure@vulncheck.com"},{"url":"https://www.musicpd.org/news/2026/05/mpd-0-24-11-released/","source":"disclosure@vulncheck.com"},{"url":"https://www.vulncheck.com/advisories/music-player-daemon-stack-buffer-overflow-via-pcm-unpack-24be","source":"disclosure@vulncheck.com"}]}},{"cve":{"id":"CVE-2026-49128","sourceIdentifier":"disclosure@vulncheck.com","published":"2026-05-28T20:16:26.547","lastModified":"2026-05-29T14:16:32.350","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Music Player Daemon (MPD) before version 0.24.11 contains a path traversal vulnerability in LocalStorage::MapFSOrThrow and LocalStorage::MapUTF8 within the local storage plugin, where the on-disk path is constructed by joining the storage root with a user-supplied URI as plain strings without canonicalization, allowing '..' segments to survive into the resolved path and be flattened by the kernel at openat() time. An unauthenticated attacker can exploit this flaw using the listfiles command to enumerate names, sizes, and modification times of arbitrary directories readable by the MPD process, and the albumart command to read image files in any attacker-chosen directory outside the configured music_directory."}],"metrics":{"cvssMetricV40":[{"source":"disclosure@vulncheck.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":8.7,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"NONE","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"disclosure@vulncheck.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":3.6}]},"weaknesses":[{"source":"disclosure@vulncheck.com","type":"Secondary","description":[{"lang":"en","value":"CWE-22"}]}],"references":[{"url":"https://github.com/MusicPlayerDaemon/MPD/commit/0b5315b9e5a42cb0e88bf46a7579bb5641543f60","source":"disclosure@vulncheck.com"},{"url":"https://github.com/MusicPlayerDaemon/MPD/issues/2484","source":"disclosure@vulncheck.com"},{"url":"https://github.com/MusicPlayerDaemon/MPD/releases/tag/v0.24.11","source":"disclosure@vulncheck.com"},{"url":"https://mstreet97.github.io/security-research/opensource/vulnerability-disclosure/cybersecurity/cve/2026/05/25/Four_Bugs_Reachable_nc.html","source":"disclosure@vulncheck.com"},{"url":"https://raw.githubusercontent.com/MusicPlayerDaemon/MPD/v0.24.11/NEWS","source":"disclosure@vulncheck.com"},{"url":"https://www.musicpd.org/news/2026/05/mpd-0-24-11-released/","source":"disclosure@vulncheck.com"},{"url":"https://www.vulncheck.com/advisories/music-player-daemon-path-traversal-via-localstorage-uri-handling","source":"disclosure@vulncheck.com"},{"url":"https://github.com/MusicPlayerDaemon/MPD/issues/2484","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0"}]}},{"cve":{"id":"CVE-2026-49129","sourceIdentifier":"disclosure@vulncheck.com","published":"2026-05-28T20:16:26.683","lastModified":"2026-05-29T14:07:47.980","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Music Player Daemon (MPD) before version 0.24.11 contains a server-side request forgery vulnerability in CurlInputPlugin where CURLOPT_FOLLOWLOCATION is set without CURLOPT_REDIR_PROTOCOLS_STR, allowing unauthenticated attackers to bypass the http/https scheme restriction by causing a malicious HTTP server to redirect to non-HTTP protocols such as gopher, ftp, sftp, ldap, dict, rtmp, or rtsp. Attackers can trigger this vulnerability via MPD commands that initiate URL fetches, including add, readcomments, albumart, readpicture, or load, to interact with internal or restricted network services on systems running libcurl versions prior to 7.85.0."}],"metrics":{"cvssMetricV40":[{"source":"disclosure@vulncheck.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:N/SC:L/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":6.9,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"NONE","vulnIntegrityImpact":"NONE","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"LOW","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"disclosure@vulncheck.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:N","baseScore":5.8,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":1.4}]},"weaknesses":[{"source":"disclosure@vulncheck.com","type":"Secondary","description":[{"lang":"en","value":"CWE-918"}]}],"references":[{"url":"https://github.com/MusicPlayerDaemon/MPD/commit/78341dd6c7b101c3feede233d4cc4f8f1fcc4bb3","source":"disclosure@vulncheck.com"},{"url":"https://github.com/MusicPlayerDaemon/MPD/issues/2487","source":"disclosure@vulncheck.com"},{"url":"https://github.com/MusicPlayerDaemon/MPD/releases/tag/v0.24.11","source":"disclosure@vulncheck.com"},{"url":"https://mstreet97.github.io/security-research/opensource/vulnerability-disclosure/cybersecurity/cve/2026/05/25/Four_Bugs_Reachable_nc.html","source":"disclosure@vulncheck.com"},{"url":"https://raw.githubusercontent.com/MusicPlayerDaemon/MPD/v0.24.11/NEWS","source":"disclosure@vulncheck.com"},{"url":"https://www.musicpd.org/news/2026/05/mpd-0-24-11-released/","source":"disclosure@vulncheck.com"},{"url":"https://www.vulncheck.com/advisories/music-player-daemon-ssrf-via-curlinputplugin","source":"disclosure@vulncheck.com"}]}},{"cve":{"id":"CVE-2026-49130","sourceIdentifier":"disclosure@vulncheck.com","published":"2026-05-28T20:16:26.823","lastModified":"2026-05-29T14:07:47.980","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Music Player Daemon (MPD) before version 0.24.11 contains a CRLF injection vulnerability in the xspf_char_data function within the XSPF playlist plugin that allows attackers to embed literal CR/LF bytes in URI fields by supplying a malicious XSPF playlist with XML numeric character references. Attackers can inject forged key-value lines through the location field into MPD protocol responses including playlistinfo, currentsong, and listplaylist outputs, as well as the state file writer, by exploiting Expat's decoding of numeric character references prior to the character data callback."}],"metrics":{"cvssMetricV40":[{"source":"disclosure@vulncheck.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":6.9,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"NONE","vulnIntegrityImpact":"LOW","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"disclosure@vulncheck.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N","baseScore":5.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":1.4}]},"weaknesses":[{"source":"disclosure@vulncheck.com","type":"Secondary","description":[{"lang":"en","value":"CWE-93"}]}],"references":[{"url":"https://github.com/MusicPlayerDaemon/MPD/commit/855085b35c67dddeef0652e2cb3ac8cdd4f457b7","source":"disclosure@vulncheck.com"},{"url":"https://github.com/MusicPlayerDaemon/MPD/issues/2483","source":"disclosure@vulncheck.com"},{"url":"https://github.com/MusicPlayerDaemon/MPD/releases/tag/v0.24.11","source":"disclosure@vulncheck.com"},{"url":"https://mstreet97.github.io/security-research/opensource/vulnerability-disclosure/cybersecurity/cve/2026/05/25/Four_Bugs_Reachable_nc.html","source":"disclosure@vulncheck.com"},{"url":"https://raw.githubusercontent.com/MusicPlayerDaemon/MPD/v0.24.11/NEWS","source":"disclosure@vulncheck.com"},{"url":"https://www.musicpd.org/news/2026/05/mpd-0-24-11-released/","source":"disclosure@vulncheck.com"},{"url":"https://www.vulncheck.com/advisories/music-player-daemon-crlf-injection-via-xspfplaylistplugin-cxx","source":"disclosure@vulncheck.com"}]}},{"cve":{"id":"CVE-2026-9037","sourceIdentifier":"ics-cert@hq.dhs.gov","published":"2026-05-28T20:16:27.093","lastModified":"2026-05-29T15:42:56.873","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"A firmware update mechanism in the affected charging controller fails to validate the authenticity of firmware packages delivered through the device's management interface. Because cryptographic signatures are not verified, an attacker with the ability to interfere with or impersonate the management channel could cause the device to install an unauthorized firmware package. This condition could allow execution of unauthorized code with high privileges on the device."}],"metrics":{"cvssMetricV40":[{"source":"ics-cert@hq.dhs.gov","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":9.3,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"HIGH","vulnAvailabilityImpact":"HIGH","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}]},"weaknesses":[{"source":"ics-cert@hq.dhs.gov","type":"Primary","description":[{"lang":"en","value":"CWE-494"}]}],"references":[{"url":"https://www.cisa.gov/news-events/ics-advisories/icsa-26-148-08","source":"ics-cert@hq.dhs.gov"}]}},{"cve":{"id":"CVE-2026-9038","sourceIdentifier":"ics-cert@hq.dhs.gov","published":"2026-05-28T20:16:27.227","lastModified":"2026-05-29T15:42:56.873","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"A stack-based buffer overflow vulnerability in the charging controller’s signal-processing logic allows an attacker with physical access to the charging interface to supply message fields that exceed expected bounds. Because the input is not sufficiently validated, memory corruption may occur, which can lead to execution of unauthorized code with elevated privileges."}],"metrics":{"cvssMetricV40":[{"source":"ics-cert@hq.dhs.gov","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":8.6,"baseSeverity":"HIGH","attackVector":"PHYSICAL","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"HIGH","vulnAvailabilityImpact":"HIGH","subConfidentialityImpact":"HIGH","subIntegrityImpact":"HIGH","subAvailabilityImpact":"HIGH","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}]},"weaknesses":[{"source":"ics-cert@hq.dhs.gov","type":"Primary","description":[{"lang":"en","value":"CWE-121"}]}],"references":[{"url":"https://www.cisa.gov/news-events/ics-advisories/icsa-26-148-08","source":"ics-cert@hq.dhs.gov"}]}},{"cve":{"id":"CVE-2026-9039","sourceIdentifier":"ics-cert@hq.dhs.gov","published":"2026-05-28T20:16:27.350","lastModified":"2026-05-29T15:42:56.873","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"A configuration weakness in the device’s remote management service allows an authenticated session to be established over a communication channel intended solely for vehicle-charger signaling. The service is accessible on interfaces exposed through the charging connector, and it accepts a default administrative credential. A malicious device physically connected to the charging interface could leverage this misconfiguration to obtain full administrative access."}],"metrics":{"cvssMetricV40":[{"source":"ics-cert@hq.dhs.gov","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":8.6,"baseSeverity":"HIGH","attackVector":"PHYSICAL","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"HIGH","vulnAvailabilityImpact":"HIGH","subConfidentialityImpact":"HIGH","subIntegrityImpact":"HIGH","subAvailabilityImpact":"HIGH","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}]},"weaknesses":[{"source":"ics-cert@hq.dhs.gov","type":"Primary","description":[{"lang":"en","value":"CWE-1188"}]}],"references":[{"url":"https://www.cisa.gov/news-events/ics-advisories/icsa-26-148-08","source":"ics-cert@hq.dhs.gov"}]}},{"cve":{"id":"CVE-2026-34311","sourceIdentifier":"secalert_us@oracle.com","published":"2026-05-28T21:16:29.180","lastModified":"2026-05-29T21:14:30.070","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Vulnerability in the Oracle Hospitality OPERA 5 Property Services product of Oracle Hospitality Applications (component: Opera).  Supported versions that are affected are 5.6.19.24, 5.6.22, 5.6.25.19, 5.6.27.6 and  5.6.28. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Hospitality OPERA 5 Property Services.  Successful attacks of this vulnerability can result in takeover of Oracle Hospitality OPERA 5 Property Services. CVSS 3.1 Base Score 9.8 (Confidentiality, Integrity and Availability impacts).  CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H)."}],"metrics":{"cvssMetricV31":[{"source":"secalert_us@oracle.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":9.8,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":5.9}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"NVD-CWE-noinfo"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:hospitality_opera_5_property_services:5.6.19.24:*:*:*:*:*:*:*","matchCriteriaId":"D18CF60F-3C88-461C-90A0-03CF89D96E81"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:hospitality_opera_5_property_services:5.6.22:*:*:*:*:*:*:*","matchCriteriaId":"640D3D8C-564B-49FF-87C4-55CBCE38E2D4"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:hospitality_opera_5_property_services:5.6.25.19:*:*:*:*:*:*:*","matchCriteriaId":"FA6D549C-9F9D-451D-971F-8B51027AEB54"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:hospitality_opera_5_property_services:5.6.27.6:*:*:*:*:*:*:*","matchCriteriaId":"78335075-5D9B-4506-95C6-FE6FE0C0B422"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:hospitality_opera_5_property_services:5.6.28:*:*:*:*:*:*:*","matchCriteriaId":"BDCBE667-37C2-4467-9628-BF61C8C7F998"}]}]}],"references":[{"url":"https://www.oracle.com/security-alerts/cspumay2026.html","source":"secalert_us@oracle.com","tags":["Vendor Advisory"]}]}},{"cve":{"id":"CVE-2026-35266","sourceIdentifier":"secalert_us@oracle.com","published":"2026-05-28T21:16:29.330","lastModified":"2026-05-29T18:17:08.850","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Vulnerability in Oracle REST Data Services (component: Core).  Supported versions that are affected are 24.2.0-26.1.0. Difficult to exploit vulnerability allows low privileged attacker with network access via HTTPS to compromise Oracle REST Data Services.  Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Oracle REST Data Services, attacks may significantly impact additional products (scope change). Successful attacks of this vulnerability can result in  unauthorized creation, deletion or modification access to critical data or all Oracle REST Data Services accessible data as well as  unauthorized access to critical data or complete access to all Oracle REST Data Services accessible data and unauthorized ability to cause a partial denial of service (partial DOS) of Oracle REST Data Services. CVSS 3.1 Base Score 7.9 (Confidentiality, Integrity and Availability impacts).  CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:L)."}],"metrics":{"cvssMetricV31":[{"source":"secalert_us@oracle.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:L","baseScore":7.9,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"LOW","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"LOW"},"exploitabilityScore":1.3,"impactScore":6.0}]},"weaknesses":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-352"}]}],"references":[{"url":"https://www.oracle.com/security-alerts/cspumay2026.html","source":"secalert_us@oracle.com"}]}},{"cve":{"id":"CVE-2026-35277","sourceIdentifier":"secalert_us@oracle.com","published":"2026-05-28T21:16:29.460","lastModified":"2026-05-29T18:17:09.007","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Vulnerability in Oracle REST Data Services (component: Core).  Supported versions that are affected are 24.2.0-26.1.0. Easily exploitable vulnerability allows low privileged attacker with network access via HTTPS to compromise Oracle REST Data Services.  Successful attacks of this vulnerability can result in  unauthorized creation, deletion or modification access to critical data or all Oracle REST Data Services accessible data as well as  unauthorized access to critical data or complete access to all Oracle REST Data Services accessible data. CVSS 3.1 Base Score 8.1 (Confidentiality and Integrity impacts).  CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N)."}],"metrics":{"cvssMetricV31":[{"source":"secalert_us@oracle.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N","baseScore":8.1,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":5.2}]},"weaknesses":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-284"}]}],"references":[{"url":"https://www.oracle.com/security-alerts/cspumay2026.html","source":"secalert_us@oracle.com"}]}},{"cve":{"id":"CVE-2026-41897","sourceIdentifier":"security-advisories@github.com","published":"2026-05-28T21:16:29.640","lastModified":"2026-05-29T15:11:03.853","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Mantis Bug Tracker (MantisBT) is an open source issue tracker. From 1.0.0 to 2.28.1, lack of validation of filter_target parameter on return_dynamic_filters.php (normally used as an AJAX in View Issues Page) allows an attacker to inject arbitrary HTML if the target is a TEXTAREA custom field. This vulnerability is fixed in 2.28.2."}],"metrics":{"cvssMetricV40":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":5.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"LOW","userInteraction":"NONE","vulnConfidentialityImpact":"LOW","vulnIntegrityImpact":"LOW","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-79"}]}],"references":[{"url":"https://github.com/mantisbt/mantisbt/commit/c885af13f0b8596714ffe11df757c09f35fbd8f4","source":"security-advisories@github.com"},{"url":"https://github.com/mantisbt/mantisbt/security/advisories/GHSA-j7v9-f46r-2rp4","source":"security-advisories@github.com"},{"url":"https://mantisbt.org/bugs/view.php?id=37013","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2026-42070","sourceIdentifier":"security-advisories@github.com","published":"2026-05-28T21:16:29.830","lastModified":"2026-05-29T15:11:03.853","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Mantis Bug Tracker (MantisBT) is an open source issue tracker. Prior to 2.28.2, the mc_issue_update() function in MantisBT allows users having update_bug_threshold access (UPDATER, with default settings) to edit, change view state, and modify time tracking on bugnotes belonging to other users — bypassing the default DEVELOPER (level 55) threshold required by the dedicated mc_issue_note_update() function. This vulnerability is fixed in 2.28.2."}],"metrics":{"cvssMetricV40":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":5.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"LOW","userInteraction":"NONE","vulnConfidentialityImpact":"LOW","vulnIntegrityImpact":"LOW","vulnAvailabilityImpact":"LOW","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-863"}]}],"references":[{"url":"https://github.com/mantisbt/mantisbt/commit/6e58fae4f22efdc3987f903c8ba2611de17a9435","source":"security-advisories@github.com"},{"url":"https://github.com/mantisbt/mantisbt/security/advisories/GHSA-pq86-j2c2-47f6","source":"security-advisories@github.com"},{"url":"https://mantisbt.org/bugs/view.php?id=37089","source":"security-advisories@github.com"},{"url":"https://mantisbt.org/bugs/view.php?id=37093","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2026-42071","sourceIdentifier":"security-advisories@github.com","published":"2026-05-28T21:16:30.017","lastModified":"2026-05-29T15:11:03.853","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Mantis Bug Tracker (MantisBT) is an open source issue tracker. From 2.23.0 to 2.28.1, a missing authorization check in MantisBT's file visibility function allows any authenticated user (REPORTER+) to download attachments on private bugnotes they should not be able to access, via the REST API endpoint GET /api/rest/issues/{id}/files and SOAP API mc_issue_attachment_get endpoint. This vulnerability is fixed in 2.28.2."}],"metrics":{"cvssMetricV40":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:L/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":7.2,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"LOW","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"LOW","vulnAvailabilityImpact":"LOW","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-862"}]}],"references":[{"url":"https://github.com/mantisbt/mantisbt/commit/029d9d203d9e4ae96b3e59d552fa7395cc1e5071","source":"security-advisories@github.com"},{"url":"https://github.com/mantisbt/mantisbt/security/advisories/GHSA-pw5x-2mf9-3xc8","source":"security-advisories@github.com"},{"url":"https://mantisbt.org/bugs/view.php?id=27039","source":"security-advisories@github.com"},{"url":"https://mantisbt.org/bugs/view.php?id=36985","source":"security-advisories@github.com"},{"url":"https://mantisbt.org/bugs/view.php?id=37092","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2026-42398","sourceIdentifier":"security@elastic.co","published":"2026-05-28T21:16:30.180","lastModified":"2026-05-29T14:46:09.837","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Server-Side Request Forgery (CWE-918) in Kibana allows authenticated users with connector management privileges to bypass the operator-configured connection allowlist. By configuring a Webhook connector with a crafted target, an attacker can cause Kibana to issue outbound requests to destinations that the egress restriction controls were intended to block."}],"metrics":{"cvssMetricV31":[{"source":"security@elastic.co","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N","baseScore":7.7,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":3.1,"impactScore":4.0}]},"weaknesses":[{"source":"security@elastic.co","type":"Secondary","description":[{"lang":"en","value":"CWE-918"}]}],"references":[{"url":"https://discuss.elastic.co/t/kibana-9-2-8-and-9-3-2-security-update-esa-2026-37/386557","source":"security@elastic.co"}]}},{"cve":{"id":"CVE-2026-42399","sourceIdentifier":"security@elastic.co","published":"2026-05-28T21:16:30.323","lastModified":"2026-05-29T14:46:09.837","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Uncontrolled Resource Consumption (CWE-400) in Kibana can lead to denial of service via Excessive Allocation (CAPEC-130). An authenticated low-privileged user can cause Kibana to consume exponentially increasing amounts of memory by submitting a specially crafted Timelion visualization expression containing deeply chained function calls. The resulting data structure grows without bound, exhausting available memory and causing the Kibana service to crash and become unavailable to all users."}],"metrics":{"cvssMetricV31":[{"source":"security@elastic.co","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":3.6}]},"weaknesses":[{"source":"security@elastic.co","type":"Secondary","description":[{"lang":"en","value":"CWE-400"}]}],"references":[{"url":"https://discuss.elastic.co/t/kibana-8-19-16-and-9-3-5-security-update-esa-2026-36/386556","source":"security@elastic.co"}]}},{"cve":{"id":"CVE-2026-42400","sourceIdentifier":"security@elastic.co","published":"2026-05-28T21:16:30.497","lastModified":"2026-05-29T14:46:09.837","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Uncontrolled Resource Consumption (CWE-400) in Kibana can lead to denial of service via Excessive Allocation (CAPEC-130). An authenticated user can send a specially crafted compressed request payload that is processed prior to authorization checks, causing excessive memory and CPU resource consumption that can result in a Kibana instance becoming unresponsive or crashing."}],"metrics":{"cvssMetricV31":[{"source":"security@elastic.co","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":3.6}]},"weaknesses":[{"source":"security@elastic.co","type":"Secondary","description":[{"lang":"en","value":"CWE-400"}]}],"references":[{"url":"https://discuss.elastic.co/t/kibana-8-19-16-9-3-5-9-4-2-security-update-esa-2026-35/386554","source":"security@elastic.co"}]}},{"cve":{"id":"CVE-2026-44655","sourceIdentifier":"security-advisories@github.com","published":"2026-05-28T21:16:30.900","lastModified":"2026-05-29T15:11:03.853","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Mantis Bug Tracker (MantisBT) is an open source issue tracker. From 1.3.0 to 2.28.1, unescaped Project Name allows an attacker that can set it (which typically requires manager or administrator access level) to inject HTML in Move Attachments admin page. This vulnerability is fixed in 2.28.2."}],"metrics":{"cvssMetricV40":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":8.6,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"HIGH","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"HIGH","vulnAvailabilityImpact":"HIGH","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-79"}]}],"references":[{"url":"https://github.com/mantisbt/mantisbt/commit/5cb4b469295889f5d2b01677c9bf82c143e0fdaa","source":"security-advisories@github.com"},{"url":"https://github.com/mantisbt/mantisbt/security/advisories/GHSA-7mqj-8gj2-cg59","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2026-44657","sourceIdentifier":"security-advisories@github.com","published":"2026-05-28T21:16:31.053","lastModified":"2026-05-29T15:11:03.853","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Mantis Bug Tracker (MantisBT) is an open source issue tracker. Prior to 2.28.2, using show_inline=1 parameter and a valid file_show_inline_token CSRF token on file_download.php, an attacker can execute code by uploading a crafted XHTML attachment referencing a JavaScript attachment. This vulnerability is fixed in 2.28.2."}],"metrics":{"cvssMetricV40":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:P/VC:H/VI:H/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"PRESENT","privilegesRequired":"LOW","userInteraction":"PASSIVE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"HIGH","vulnAvailabilityImpact":"LOW","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-79"}]}],"references":[{"url":"https://github.com/mantisbt/mantisbt/commit/26647b2e68ba30b9d7987d4e03d7a16416684bc2","source":"security-advisories@github.com"},{"url":"https://github.com/mantisbt/mantisbt/security/advisories/GHSA-9c3j-xm6v-j7j3","source":"security-advisories@github.com"},{"url":"https://github.com/mantisbt/mantisbt/security/advisories/GHSA-p6fr-rxq7-xcg8","source":"security-advisories@github.com"},{"url":"https://mantisbt.org/bugs/view.php?id=37020","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2026-46775","sourceIdentifier":"secalert_us@oracle.com","published":"2026-05-28T21:16:31.383","lastModified":"2026-05-29T18:17:12.200","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Vulnerability in Oracle REST Data Services (component: Core).  Supported versions that are affected are 24.2.0-26.1.0. Easily exploitable vulnerability allows low privileged attacker with network access via HTTPS to compromise Oracle REST Data Services.  While the vulnerability is in Oracle REST Data Services, attacks may significantly impact additional products (scope change).  Successful attacks of this vulnerability can result in takeover of Oracle REST Data Services. CVSS 3.1 Base Score 9.9 (Confidentiality, Integrity and Availability impacts).  CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H)."}],"metrics":{"cvssMetricV31":[{"source":"secalert_us@oracle.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H","baseScore":9.9,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.1,"impactScore":6.0}]},"weaknesses":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-284"}]}],"references":[{"url":"https://www.oracle.com/security-alerts/cspumay2026.html","source":"secalert_us@oracle.com"}]}},{"cve":{"id":"CVE-2026-46817","sourceIdentifier":"secalert_us@oracle.com","published":"2026-05-28T21:16:31.503","lastModified":"2026-05-29T16:16:28.533","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Vulnerability in the Oracle Payments product of Oracle E-Business Suite (component: File Transmission).  Supported versions that are affected are 12.2.3-12.2.15. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Payments.  Successful attacks of this vulnerability can result in takeover of Oracle Payments. CVSS 3.1 Base Score 9.8 (Confidentiality, Integrity and Availability impacts).  CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H)."}],"metrics":{"cvssMetricV31":[{"source":"secalert_us@oracle.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":9.8,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":5.9}]},"weaknesses":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-269"},{"lang":"en","value":"CWE-287"},{"lang":"en","value":"CWE-306"}]}],"references":[{"url":"https://www.oracle.com/security-alerts/cspumay2026.html","source":"secalert_us@oracle.com"}]}},{"cve":{"id":"CVE-2026-46818","sourceIdentifier":"secalert_us@oracle.com","published":"2026-05-28T21:16:31.637","lastModified":"2026-05-29T16:16:28.757","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Vulnerability in the Oracle Payments product of Oracle E-Business Suite (component: File Transmission).  Supported versions that are affected are 12.2.3-12.2.15. Difficult to exploit vulnerability allows unauthenticated attacker with network access via HTTPS to compromise Oracle Payments.  Successful attacks of this vulnerability can result in  unauthorized creation, deletion or modification access to critical data or all Oracle Payments accessible data as well as  unauthorized access to critical data or complete access to all Oracle Payments accessible data. CVSS 3.1 Base Score 7.4 (Confidentiality and Integrity impacts).  CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N)."}],"metrics":{"cvssMetricV31":[{"source":"secalert_us@oracle.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N","baseScore":7.4,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"NONE"},"exploitabilityScore":2.2,"impactScore":5.2}]},"weaknesses":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-284"}]}],"references":[{"url":"https://www.oracle.com/security-alerts/cspumay2026.html","source":"secalert_us@oracle.com"}]}},{"cve":{"id":"CVE-2026-46819","sourceIdentifier":"secalert_us@oracle.com","published":"2026-05-28T21:16:31.760","lastModified":"2026-05-29T16:16:28.900","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Vulnerability in the Oracle Internet Procurement Connector product of Oracle E-Business Suite (component: Internal Operations).  Supported versions that are affected are 12.2.3-12.2.15. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Internet Procurement Connector.  Successful attacks of this vulnerability can result in  unauthorized creation, deletion or modification access to critical data or all Oracle Internet Procurement Connector accessible data as well as  unauthorized access to critical data or complete access to all Oracle Internet Procurement Connector accessible data. CVSS 3.1 Base Score 9.1 (Confidentiality and Integrity impacts).  CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N)."}],"metrics":{"cvssMetricV31":[{"source":"secalert_us@oracle.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N","baseScore":9.1,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":5.2}]},"weaknesses":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-284"}]}],"references":[{"url":"https://www.oracle.com/security-alerts/cspumay2026.html","source":"secalert_us@oracle.com"}]}},{"cve":{"id":"CVE-2026-46820","sourceIdentifier":"secalert_us@oracle.com","published":"2026-05-28T21:16:31.890","lastModified":"2026-05-29T20:58:47.073","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Vulnerability in the Oracle Financials Common Modules product of Oracle E-Business Suite (component: Common Components).  Supported versions that are affected are 12.2.3-12.2.15. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Financials Common Modules.  While the vulnerability is in Oracle Financials Common Modules, attacks may significantly impact additional products (scope change).  Successful attacks of this vulnerability can result in  unauthorized access to critical data or complete access to all Oracle Financials Common Modules accessible data as well as  unauthorized update, insert or delete access to some of Oracle Financials Common Modules accessible data. CVSS 3.1 Base Score 8.5 (Confidentiality and Integrity impacts).  CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:L/A:N)."}],"metrics":{"cvssMetricV31":[{"source":"secalert_us@oracle.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:L/A:N","baseScore":8.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":3.1,"impactScore":4.7}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"NVD-CWE-noinfo"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:financials_common_modules:*:*:*:*:*:*:*:*","versionStartIncluding":"12.2.3","versionEndIncluding":"12.2.15","matchCriteriaId":"7E4FBCB8-6206-4FD9-9F56-DF48AC7AA5E8"}]}]}],"references":[{"url":"https://www.oracle.com/security-alerts/cspumay2026.html","source":"secalert_us@oracle.com","tags":["Vendor Advisory"]}]}},{"cve":{"id":"CVE-2026-46821","sourceIdentifier":"secalert_us@oracle.com","published":"2026-05-28T21:16:32.020","lastModified":"2026-05-29T20:49:23.327","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Vulnerability in the Oracle Financials Common Modules product of Oracle E-Business Suite (component: Common Components).  Supported versions that are affected are 12.2.3-12.2.15. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Financials Common Modules.  While the vulnerability is in Oracle Financials Common Modules, attacks may significantly impact additional products (scope change).  Successful attacks of this vulnerability can result in  unauthorized access to critical data or complete access to all Oracle Financials Common Modules accessible data. CVSS 3.1 Base Score 7.7 (Confidentiality impacts).  CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N)."}],"metrics":{"cvssMetricV31":[{"source":"secalert_us@oracle.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N","baseScore":7.7,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":3.1,"impactScore":4.0}]},"weaknesses":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-284"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:financials_common_modules:*:*:*:*:*:*:*:*","versionStartIncluding":"12.2.3","versionEndIncluding":"12.2.15","matchCriteriaId":"7E4FBCB8-6206-4FD9-9F56-DF48AC7AA5E8"}]}]}],"references":[{"url":"https://www.oracle.com/security-alerts/cspumay2026.html","source":"secalert_us@oracle.com","tags":["Vendor Advisory"]}]}},{"cve":{"id":"CVE-2026-46822","sourceIdentifier":"secalert_us@oracle.com","published":"2026-05-28T21:16:32.157","lastModified":"2026-05-29T20:48:29.147","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Vulnerability in the Oracle iAssets product of Oracle E-Business Suite (component: Internal Operations).  Supported versions that are affected are 12.2.3-12.2.15. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle iAssets.  While the vulnerability is in Oracle iAssets, attacks may significantly impact additional products (scope change).  Successful attacks of this vulnerability can result in takeover of Oracle iAssets. CVSS 3.1 Base Score 9.9 (Confidentiality, Integrity and Availability impacts).  CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H)."}],"metrics":{"cvssMetricV31":[{"source":"secalert_us@oracle.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H","baseScore":9.9,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.1,"impactScore":6.0}]},"weaknesses":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-284"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:iassets:*:*:*:*:*:*:*:*","versionStartIncluding":"12.2.3","versionEndIncluding":"12.2.15","matchCriteriaId":"F6482920-C229-4301-A1D7-530589C45B6C"}]}]}],"references":[{"url":"https://www.oracle.com/security-alerts/cspumay2026.html","source":"secalert_us@oracle.com","tags":["Vendor Advisory"]}]}},{"cve":{"id":"CVE-2026-46823","sourceIdentifier":"secalert_us@oracle.com","published":"2026-05-28T21:16:32.280","lastModified":"2026-05-29T20:47:17.630","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Vulnerability in the Oracle Public Sector Financials (International) product of Oracle E-Business Suite (component: Authorization).  Supported versions that are affected are 12.2.6-12.2.15. Easily exploitable vulnerability allows low privileged attacker with network access via HTTPS to compromise Oracle Public Sector Financials (International).  While the vulnerability is in Oracle Public Sector Financials (International), attacks may significantly impact additional products (scope change).  Successful attacks of this vulnerability can result in  unauthorized access to critical data or complete access to all Oracle Public Sector Financials (International) accessible data. CVSS 3.1 Base Score 7.7 (Confidentiality impacts).  CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N)."}],"metrics":{"cvssMetricV31":[{"source":"secalert_us@oracle.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N","baseScore":7.7,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":3.1,"impactScore":4.0}]},"weaknesses":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-863"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:public_sector_financials:*:*:*:*:*:*:*:*","versionStartIncluding":"12.2.6","versionEndIncluding":"12.2.15","matchCriteriaId":"6F37991C-4918-4BB1-9A1F-D9FB0C06B87A"}]}]}],"references":[{"url":"https://www.oracle.com/security-alerts/cspumay2026.html","source":"secalert_us@oracle.com","tags":["Vendor Advisory"]}]}},{"cve":{"id":"CVE-2026-46824","sourceIdentifier":"secalert_us@oracle.com","published":"2026-05-28T21:16:32.413","lastModified":"2026-05-29T20:42:56.207","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Vulnerability in the Oracle Universal Work Queue product of Oracle E-Business Suite (component: Work Provider Site Level Administration).  Supported versions that are affected are 12.2.3-12.2.15. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Universal Work Queue.  While the vulnerability is in Oracle Universal Work Queue, attacks may significantly impact additional products (scope change).  Successful attacks of this vulnerability can result in takeover of Oracle Universal Work Queue. CVSS 3.1 Base Score 9.9 (Confidentiality, Integrity and Availability impacts).  CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H)."}],"metrics":{"cvssMetricV31":[{"source":"secalert_us@oracle.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H","baseScore":9.9,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.1,"impactScore":6.0}]},"weaknesses":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-269"},{"lang":"en","value":"CWE-284"},{"lang":"en","value":"CWE-306"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:universal_work_queue:*:*:*:*:*:*:*:*","versionStartIncluding":"12.2.3","versionEndIncluding":"12.2.15","matchCriteriaId":"8204CF3B-5ADA-4D25-BCE5-E97CB5A710DB"}]}]}],"references":[{"url":"https://www.oracle.com/security-alerts/cspumay2026.html","source":"secalert_us@oracle.com","tags":["Vendor Advisory"]}]}},{"cve":{"id":"CVE-2026-46826","sourceIdentifier":"secalert_us@oracle.com","published":"2026-05-28T21:16:32.560","lastModified":"2026-05-29T16:16:29.800","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Vulnerability in the Oracle Payroll product of Oracle E-Business Suite (component: Internal Operations).  Supported versions that are affected are 12.2.3-12.2.15. Easily exploitable vulnerability allows low privileged attacker with network access via HTTPS to compromise Oracle Payroll.  Successful attacks of this vulnerability can result in takeover of Oracle Payroll. CVSS 3.1 Base Score 8.8 (Confidentiality, Integrity and Availability impacts).  CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H)."}],"metrics":{"cvssMetricV31":[{"source":"secalert_us@oracle.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":5.9}]},"weaknesses":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-306"}]}],"references":[{"url":"https://www.oracle.com/security-alerts/cspumay2026.html","source":"secalert_us@oracle.com"}]}},{"cve":{"id":"CVE-2026-46827","sourceIdentifier":"secalert_us@oracle.com","published":"2026-05-28T21:16:32.687","lastModified":"2026-05-29T16:16:29.920","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Vulnerability in the Oracle Payroll product of Oracle E-Business Suite (component: Self Service Manager).  Supported versions that are affected are 12.2.3-12.2.15. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Payroll.  Successful attacks of this vulnerability can result in takeover of Oracle Payroll. CVSS 3.1 Base Score 8.8 (Confidentiality, Integrity and Availability impacts).  CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H)."}],"metrics":{"cvssMetricV31":[{"source":"secalert_us@oracle.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":5.9}]},"weaknesses":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-269"},{"lang":"en","value":"CWE-284"},{"lang":"en","value":"CWE-287"},{"lang":"en","value":"CWE-306"}]}],"references":[{"url":"https://www.oracle.com/security-alerts/cspumay2026.html","source":"secalert_us@oracle.com"}]}},{"cve":{"id":"CVE-2026-46828","sourceIdentifier":"secalert_us@oracle.com","published":"2026-05-28T21:16:32.820","lastModified":"2026-05-29T16:16:30.043","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Vulnerability in the Oracle Payroll product of Oracle E-Business Suite (component: Internal Operations).  Supported versions that are affected are 12.2.3-12.2.15. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Payroll.  Successful attacks of this vulnerability can result in  unauthorized creation, deletion or modification access to critical data or all Oracle Payroll accessible data as well as  unauthorized access to critical data or complete access to all Oracle Payroll accessible data. CVSS 3.1 Base Score 8.1 (Confidentiality and Integrity impacts).  CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N)."}],"metrics":{"cvssMetricV31":[{"source":"secalert_us@oracle.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N","baseScore":8.1,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":5.2}]},"weaknesses":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-284"}]}],"references":[{"url":"https://www.oracle.com/security-alerts/cspumay2026.html","source":"secalert_us@oracle.com"}]}},{"cve":{"id":"CVE-2026-46829","sourceIdentifier":"secalert_us@oracle.com","published":"2026-05-28T21:16:32.950","lastModified":"2026-05-29T16:16:30.160","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Vulnerability in Oracle REST Data Services (component: Mongoapi).  Supported versions that are affected are 24.2.0-26.1.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTPS to compromise Oracle REST Data Services.  Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of Oracle REST Data Services. CVSS 3.1 Base Score 7.5 (Availability impacts).  CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H)."}],"metrics":{"cvssMetricV31":[{"source":"secalert_us@oracle.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":3.6}]},"weaknesses":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-400"}]}],"references":[{"url":"https://www.oracle.com/security-alerts/cspumay2026.html","source":"secalert_us@oracle.com"}]}},{"cve":{"id":"CVE-2026-46830","sourceIdentifier":"secalert_us@oracle.com","published":"2026-05-28T21:16:33.070","lastModified":"2026-05-29T16:16:30.277","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Vulnerability in Oracle REST Data Services (component: Mongoapi).  Supported versions that are affected are 24.2.0-26.1.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTPS to compromise Oracle REST Data Services.  Successful attacks of this vulnerability can result in  unauthorized read access to a subset of Oracle REST Data Services accessible data. CVSS 3.1 Base Score 5.3 (Confidentiality impacts).  CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N)."}],"metrics":{"cvssMetricV31":[{"source":"secalert_us@oracle.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N","baseScore":5.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":1.4}]},"weaknesses":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-200"}]}],"references":[{"url":"https://www.oracle.com/security-alerts/cspumay2026.html","source":"secalert_us@oracle.com"}]}},{"cve":{"id":"CVE-2026-46834","sourceIdentifier":"secalert_us@oracle.com","published":"2026-05-28T21:16:33.330","lastModified":"2026-05-29T16:16:30.400","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Vulnerability in the Net Service component of Oracle Database Server.  Supported versions that are affected are 23.4.0-23.26.2. Easily exploitable vulnerability allows unauthenticated attacker with network access via TLS to compromise Net Service.  Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of Net Service. CVSS 3.1 Base Score 7.5 (Availability impacts).  CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H)."}],"metrics":{"cvssMetricV31":[{"source":"secalert_us@oracle.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":3.6}]},"weaknesses":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-400"}]}],"references":[{"url":"https://www.oracle.com/security-alerts/cspumay2026.html","source":"secalert_us@oracle.com"}]}},{"cve":{"id":"CVE-2026-46835","sourceIdentifier":"secalert_us@oracle.com","published":"2026-05-28T21:16:33.450","lastModified":"2026-05-29T16:16:30.520","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Vulnerability in the Net Service component of Oracle Database Server.  Supported versions that are affected are 23.4.0-23.26.2. Easily exploitable vulnerability allows unauthenticated attacker with network access via TLS to compromise Net Service.  Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of Net Service. CVSS 3.1 Base Score 7.5 (Availability impacts).  CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H)."}],"metrics":{"cvssMetricV31":[{"source":"secalert_us@oracle.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":3.6}]},"weaknesses":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-400"}]}],"references":[{"url":"https://www.oracle.com/security-alerts/cspumay2026.html","source":"secalert_us@oracle.com"}]}},{"cve":{"id":"CVE-2026-46837","sourceIdentifier":"secalert_us@oracle.com","published":"2026-05-28T21:16:33.573","lastModified":"2026-05-29T16:16:30.673","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Vulnerability in the Oracle Flow Manufacturing product of Oracle E-Business Suite (component: Security).  Supported versions that are affected are 12.2.9-12.2.15. Easily exploitable vulnerability allows low privileged attacker with network access via SQL to compromise Oracle Flow Manufacturing.  Successful attacks of this vulnerability can result in takeover of Oracle Flow Manufacturing. CVSS 3.1 Base Score 8.8 (Confidentiality, Integrity and Availability impacts).  CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H)."}],"metrics":{"cvssMetricV31":[{"source":"secalert_us@oracle.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":5.9}]},"weaknesses":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-269"}]}],"references":[{"url":"https://www.oracle.com/security-alerts/cspumay2026.html","source":"secalert_us@oracle.com"}]}},{"cve":{"id":"CVE-2026-46839","sourceIdentifier":"secalert_us@oracle.com","published":"2026-05-28T21:16:33.707","lastModified":"2026-05-29T16:16:30.780","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Vulnerability in Oracle REST Data Services (component: Core).  Supported versions that are affected are 24.2.0-26.1.0. Easily exploitable vulnerability allows low privileged attacker with network access via HTTPS to compromise Oracle REST Data Services.  While the vulnerability is in Oracle REST Data Services, attacks may significantly impact additional products (scope change).  Successful attacks of this vulnerability can result in takeover of Oracle REST Data Services. CVSS 3.1 Base Score 9.9 (Confidentiality, Integrity and Availability impacts).  CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H)."}],"metrics":{"cvssMetricV31":[{"source":"secalert_us@oracle.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H","baseScore":9.9,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.1,"impactScore":6.0}]},"weaknesses":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-284"}]}],"references":[{"url":"https://www.oracle.com/security-alerts/cspumay2026.html","source":"secalert_us@oracle.com"}]}},{"cve":{"id":"CVE-2026-46840","sourceIdentifier":"secalert_us@oracle.com","published":"2026-05-28T21:16:33.837","lastModified":"2026-05-29T16:16:30.893","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Vulnerability in Oracle REST Data Services (component: Backend-as-a-Service).  Supported versions that are affected are 24.2.0-26.1.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTPS to compromise Oracle REST Data Services.  While the vulnerability is in Oracle REST Data Services, attacks may significantly impact additional products (scope change).  Successful attacks of this vulnerability can result in takeover of Oracle REST Data Services. CVSS 3.1 Base Score 10.0 (Confidentiality, Integrity and Availability impacts).  CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H)."}],"metrics":{"cvssMetricV31":[{"source":"secalert_us@oracle.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H","baseScore":10.0,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":6.0}]},"weaknesses":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-284"},{"lang":"en","value":"CWE-287"},{"lang":"en","value":"CWE-306"}]}],"references":[{"url":"https://www.oracle.com/security-alerts/cspumay2026.html","source":"secalert_us@oracle.com"}]}},{"cve":{"id":"CVE-2026-46841","sourceIdentifier":"secalert_us@oracle.com","published":"2026-05-28T21:16:33.960","lastModified":"2026-05-29T16:16:31.020","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Vulnerability in Oracle REST Data Services (component: General).  Supported versions that are affected are 24.2.0-26.1.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTPS to compromise Oracle REST Data Services.  Successful attacks of this vulnerability can result in  unauthorized read access to a subset of Oracle REST Data Services accessible data. CVSS 3.1 Base Score 5.3 (Confidentiality impacts).  CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N)."}],"metrics":{"cvssMetricV31":[{"source":"secalert_us@oracle.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N","baseScore":5.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":1.4}]},"weaknesses":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-200"}]}],"references":[{"url":"https://www.oracle.com/security-alerts/cspumay2026.html","source":"secalert_us@oracle.com"}]}},{"cve":{"id":"CVE-2026-46842","sourceIdentifier":"secalert_us@oracle.com","published":"2026-05-28T21:16:34.093","lastModified":"2026-05-29T16:16:31.130","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Vulnerability in Oracle REST Data Services (component: Core).  Supported versions that are affected are 24.2.0-26.1.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTPS to compromise Oracle REST Data Services.  Successful attacks of this vulnerability can result in  unauthorized update, insert or delete access to some of Oracle REST Data Services accessible data. CVSS 3.1 Base Score 5.3 (Integrity impacts).  CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N)."}],"metrics":{"cvssMetricV31":[{"source":"secalert_us@oracle.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N","baseScore":5.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":1.4}]},"weaknesses":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-284"}]}],"references":[{"url":"https://www.oracle.com/security-alerts/cspumay2026.html","source":"secalert_us@oracle.com"}]}},{"cve":{"id":"CVE-2026-46843","sourceIdentifier":"secalert_us@oracle.com","published":"2026-05-28T21:16:34.223","lastModified":"2026-05-29T16:16:31.243","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Vulnerability in Oracle REST Data Services (component: Core).  Supported versions that are affected are 24.2.0-26.1.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTPS to compromise Oracle REST Data Services.  Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Oracle REST Data Services. CVSS 3.1 Base Score 5.3 (Availability impacts).  CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L)."}],"metrics":{"cvssMetricV31":[{"source":"secalert_us@oracle.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L","baseScore":5.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"LOW"},"exploitabilityScore":3.9,"impactScore":1.4}]},"weaknesses":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-400"}]}],"references":[{"url":"https://www.oracle.com/security-alerts/cspumay2026.html","source":"secalert_us@oracle.com"}]}},{"cve":{"id":"CVE-2026-49093","sourceIdentifier":"security@elastic.co","published":"2026-05-28T21:16:34.350","lastModified":"2026-05-29T14:46:09.837","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Server-Side Request Forgery (CWE-918) in Kibana can allow an authenticated user with connector management privileges to bypass the operator-configured connector allowlist, causing the Kibana server to issue outbound requests to destinations the egress controls were intended to block."}],"metrics":{"cvssMetricV31":[{"source":"security@elastic.co","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N","baseScore":6.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":1.8,"impactScore":4.0}]},"weaknesses":[{"source":"security@elastic.co","type":"Secondary","description":[{"lang":"en","value":"CWE-918"}]}],"references":[{"url":"https://discuss.elastic.co/t/kibana-9-3-3-security-update-esa-2026-40/386562","source":"security@elastic.co"}]}},{"cve":{"id":"CVE-2026-49094","sourceIdentifier":"security@elastic.co","published":"2026-05-28T21:16:34.503","lastModified":"2026-05-29T14:46:09.837","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Uncontrolled Resource Consumption (CWE-400) in Kibana can lead to denial of service via Excessive Allocation (CAPEC-130). An authenticated user with viewer-level access can submit a request containing an oversized input value to an analytics collections management endpoint. Kibana will consume excessive CPU and memory resources while processing the request. This results in Kibana becoming unavailable to all users until the service is manually recovered."}],"metrics":{"cvssMetricV31":[{"source":"security@elastic.co","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":3.6}]},"weaknesses":[{"source":"security@elastic.co","type":"Secondary","description":[{"lang":"en","value":"CWE-400"}]}],"references":[{"url":"https://discuss.elastic.co/t/kibana-8-19-16-security-update-esa-2026-39/386561/1","source":"security@elastic.co"}]}},{"cve":{"id":"CVE-2026-49095","sourceIdentifier":"security@elastic.co","published":"2026-05-28T21:16:34.660","lastModified":"2026-05-29T14:46:09.837","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Improper Input Validation (CWE-20) in the Kibana Fleet agent policy management feature can lead to privilege escalation. An authenticated user with Fleet management privileges can manipulate agent policy configuration by injecting values into a configuration override mechanism that is not adequately validated. An attacker can cause Elastic Agents to be issued API keys with elevated Elasticsearch privileges, potentially granting unauthorized read and write access to sensitive Elasticsearch security indices beyond what is intended for the Fleet management role."}],"metrics":{"cvssMetricV31":[{"source":"security@elastic.co","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"HIGH","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"NONE"},"exploitabilityScore":1.2,"impactScore":5.2}]},"weaknesses":[{"source":"security@elastic.co","type":"Secondary","description":[{"lang":"en","value":"CWE-20"}]}],"references":[{"url":"https://discuss.elastic.co/t/kibana-fleet-8-19-16-9-3-5-and-9-4-2-security-update-esa-2026-38/386559","source":"security@elastic.co"}]}},{"cve":{"id":"CVE-2026-44848","sourceIdentifier":"security-advisories@github.com","published":"2026-05-28T22:16:58.837","lastModified":"2026-05-29T15:06:44.207","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Portainer Community Edition is a lightweight service delivery platform for containerized applications that can be used to manage Docker, Swarm, Kubernetes and ACI environments. From 2.33.0 to before 2.33.8, 2.39.2, and 2.41.0, The Docker plugin management endpoints (/plugins/*) were not registered with a handler, so standard users with endpoint access could call privileged plugin operations — including installing and enabling plugins — directly against the underlying Docker daemon. The vulnerability is exposed when a non-admin Portainer user (Standard User role, or any role granted endpoint-level access) has been given access to a Docker endpoint via Portainer RBAC. This vulnerability is fixed in 2.33.8, 2.39.2, and 2.41.0."}],"metrics":{"cvssMetricV40":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":9.4,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"LOW","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"HIGH","vulnAvailabilityImpact":"HIGH","subConfidentialityImpact":"HIGH","subIntegrityImpact":"HIGH","subAvailabilityImpact":"HIGH","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-862"}]}],"references":[{"url":"https://github.com/portainer/portainer/security/advisories/GHSA-rrmm-9v76-h3p4","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2026-44849","sourceIdentifier":"security-advisories@github.com","published":"2026-05-28T22:16:58.973","lastModified":"2026-05-29T15:06:44.207","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Portainer Community Edition is a lightweight service delivery platform for containerized applications that can be used to manage Docker, Swarm, Kubernetes and ACI environments. From 2.33.0 to before 2.33.8, 2.39.2, and 2.41.0, Portainer enforces seven EndpointSecuritySettings restrictions that administrators configure to restrict the container configurations non-admin users can launch: privileged mode, host PID namespace, device mapping, capabilities, sysctls, security-opt (Seccomp / AppArmor), and bind mounts. These restrictions are enforced on the standard container creation path, but several of them are not applied on the Docker Swarm service API. This vulnerability is fixed in 2.33.8, 2.39.2, and 2.41.0."}],"metrics":{"cvssMetricV40":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":9.4,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"LOW","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"HIGH","vulnAvailabilityImpact":"HIGH","subConfidentialityImpact":"HIGH","subIntegrityImpact":"HIGH","subAvailabilityImpact":"HIGH","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-862"}]}],"references":[{"url":"https://github.com/portainer/portainer/security/advisories/GHSA-5fxq-qcf3-244w","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2026-44850","sourceIdentifier":"security-advisories@github.com","published":"2026-05-28T22:16:59.107","lastModified":"2026-05-29T15:06:44.207","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Portainer Community Edition is a lightweight service delivery platform for containerized applications that can be used to manage Docker, Swarm, Kubernetes and ACI environments. From 2.33.0 to before 2.33.8, 2.39.2, and 2.41.0, Portainer offers an environment-level Disable bind mounts for non-administrators security setting that blocks regular users from binding host paths into containers they create through the Portainer-mediated Docker API. The check that enforces this setting only inspected the legacy HostConfig.Binds array on the container-create proxy and never looked at the equivalent HostConfig.Mounts array. Any authenticated user with rights to create containers on a Docker environment where the restriction is enabled could submit a bind-typed entry under HostConfig.Mounts and mount any host path into their container. This vulnerability is fixed in 2.33.8, 2.39.2, and 2.41.0."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:L/A:N","baseScore":8.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":3.1,"impactScore":4.7}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-863"}]}],"references":[{"url":"https://github.com/portainer/portainer/security/advisories/GHSA-7fw3-x4r2-g7wc","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2026-44881","sourceIdentifier":"security-advisories@github.com","published":"2026-05-28T22:16:59.247","lastModified":"2026-05-29T15:06:44.207","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Portainer Community Edition is a lightweight service delivery platform for containerized applications that can be used to manage Docker, Swarm, Kubernetes and ACI environments. From 2.33.0 to before 2.33.8, 2.39.2, and 2.41.0, Portainer supports deploying stacks from Git repositories. When a Git-backed stack is created or updated, Portainer clones the repository using go-git v5, which translates Git blob entries with mode 0o120000 (symlink) into real OS symlinks on the host filesystem via os.Symlink. The only entry blocked from becoming a symlink is .gitmodules; every other path is created as a symlink without validation. Portainer's GET /api/stacks/{id}/file endpoint then reads the stack entry point with os.ReadFile, which follows OS symlinks transparently. A repository containing docker-compose.yml as a symlink to an arbitrary filesystem path causes the symlink target's contents to be returned verbatim in the HTTP response. Any authenticated user with rights to create or update a Git-backed stack — the default configuration in Portainer CE — can read arbitrary files accessible to the Portainer process. This vulnerability is fixed in 2.33.8, 2.39.2, and 2.41.0."}],"metrics":{"cvssMetricV40":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":8.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"LOW","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"NONE","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"HIGH","subIntegrityImpact":"HIGH","subAvailabilityImpact":"HIGH","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-59"},{"lang":"en","value":"CWE-200"}]}],"references":[{"url":"https://github.com/portainer/portainer/security/advisories/GHSA-rpgq-m5fp-32wr","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2026-44882","sourceIdentifier":"security-advisories@github.com","published":"2026-05-28T22:16:59.380","lastModified":"2026-05-29T15:06:44.207","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Portainer Community Edition is a lightweight service delivery platform for containerized applications that can be used to manage Docker, Swarm, Kubernetes and ACI environments. From 2.33.0 to before 2.33., Portainer proxies requests to Kubernetes clusters through a middleware layer (kubeClientMiddleware) that validates the requesting user's token before forwarding traffic to the cluster. When security.RetrieveTokenData returned an error, the middleware wrote an HTTP 403 response but was missing a return statement — execution continued into the handler with a nil tokenData value. The Kubernetes endpoints sit behind Portainer's outer AuthenticatedAccess bouncer, so an attacker requires a valid Portainer session. However, a user whose secondary token validation fails in kubeClientMiddleware — for example a user without permission to access a given Kubernetes endpoint — would have their request forwarded to the cluster anyway, bypassing the authorization check. The same defect was present in both the CE and EE codebases. This vulnerability is fixed in 2.33.8."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N","baseScore":8.1,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":5.2}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-863"}]}],"references":[{"url":"https://github.com/portainer/portainer/security/advisories/GHSA-mgq6-4x29-88r3","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2026-44883","sourceIdentifier":"security-advisories@github.com","published":"2026-05-28T22:16:59.537","lastModified":"2026-05-29T15:06:44.207","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Portainer Community Edition is a lightweight service delivery platform for containerized applications that can be used to manage Docker, Swarm, Kubernetes and ACI environments. From 2.33.0 to before 2.33.8, 2.39.2, and 2.41.0, Portainer's authentication middleware accepts JWT bearer tokens passed as the ?token=<JWT> URL query parameter on any authenticated API endpoint, in addition to the standard Authorization: Bearer header. URLs are recorded in reverse-proxy access logs, browser history, and HTTP Referer headers on outbound navigation, so any JWT passed this way can be harvested by anyone with access to those logs or by an external site the user subsequently visits. A leaked token grants the full privileges of the user it was issued to, until the token expires (default 8 hours, configurable). The ?token= parameter was used by Portainer's browser-based container attach, exec, and pod shell features, so any user with exec or attach rights on a container was exposed — not only administrators. This vulnerability is fixed in 2.33.8, 2.39.2, and 2.41.0."}],"metrics":{"cvssMetricV40":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":7.7,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"HIGH","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"PASSIVE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"HIGH","vulnAvailabilityImpact":"HIGH","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-598"}]}],"references":[{"url":"https://github.com/portainer/portainer/security/advisories/GHSA-jvp4-q659-95mj","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2026-44884","sourceIdentifier":"security-advisories@github.com","published":"2026-05-28T22:16:59.677","lastModified":"2026-05-29T15:06:44.207","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Portainer Community Edition is a lightweight service delivery platform for containerized applications that can be used to manage Docker, Swarm, Kubernetes and ACI environments. From 2.33.0 to before 2.33.8 and 2.39.1, a missing authorization vulnerability in the Custom Template file endpoint (GET /api/custom_templates/{id}/file) allows any authenticated user to read the file content of any custom template by enumerating sequential integer IDs, bypassing Resource Control access restrictions. Template files may contain environment-specific values such as connection strings, API tokens, or registry credentials that administrators would not expect standard users to read. This vulnerability is fixed in 2.33.8 and 2.39.1."}],"metrics":{"cvssMetricV40":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":6.0,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"PRESENT","privilegesRequired":"LOW","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"NONE","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-862"}]}],"references":[{"url":"https://github.com/portainer/portainer/security/advisories/GHSA-cqpq-2fgr-8mvc","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2026-44885","sourceIdentifier":"security-advisories@github.com","published":"2026-05-28T22:16:59.803","lastModified":"2026-05-29T15:06:44.207","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Portainer Community Edition is a lightweight service delivery platform for containerized applications that can be used to manage Docker, Swarm, Kubernetes and ACI environments. From 2.33.0 to before 2.33.8, Portainer's backup restore feature accepts a .tar.gz archive and extracts it to a target directory on the server. The extraction function (ExtractTarGz in api/archive/targz.go) constructed output paths using filepath.Clean(filepath.Join(outputDirPath, header.Name)). This combination does not prevent directory traversal — a tar entry named ../../etc/cron.d/evil resolves to a path outside the extraction root, so a crafted archive can write files to arbitrary locations on the server filesystem. This vulnerability is fixed in 2.33.8."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:L","baseScore":5.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"HIGH","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"HIGH","availabilityImpact":"LOW"},"exploitabilityScore":1.2,"impactScore":4.2}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-22"}]}],"references":[{"url":"https://github.com/portainer/portainer-suite/pull/1875","source":"security-advisories@github.com"},{"url":"https://github.com/portainer/portainer/security/advisories/GHSA-m8fg-67j7-cx4v","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2026-44973","sourceIdentifier":"security-advisories@github.com","published":"2026-05-28T22:16:59.937","lastModified":"2026-05-29T16:32:14.400","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Billy is an interface filesystem abstraction for Go. Prior to 5.9.0, multiple path traversal issues exist across different components of go-billy. Insufficient path sanitization and boundary enforcement may allow crafted paths (e.g., using ..) to escape intended base directories. While go-billy was not originally designed to provide a strong security boundary, some of these issues were inconsistent across some of the built-in implementations. This results in scenarios where applications relying on go-billy for some level of isolation may inadvertently expose access to unintended filesystem locations. This vulnerability is fixed in 5.9.0."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N","baseScore":8.1,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":5.2}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-22"}]}],"references":[{"url":"https://github.com/go-git/go-billy/security/advisories/GHSA-qw64-3x98-g7q2","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2026-45023","sourceIdentifier":"security-advisories@github.com","published":"2026-05-28T22:17:00.080","lastModified":"2026-05-29T16:07:40.747","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"AutoGPT is a workflow automation platform for creating, deploying, and managing continuous artificial intelligence agents. Prior to 0.6.59, POST /api/blocks/{block_id}/execute endpoint executes blocks without consuming any credits, regardless of the user's balance. The credit check that exists in the graph execution path (manager.py) is never reached when blocks are called directly via the external API, allowing unlimited free execution of all blocks. This vulnerability is fixed in 0.6.59."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L","baseScore":5.4,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"LOW","availabilityImpact":"LOW"},"exploitabilityScore":2.8,"impactScore":2.5}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Secondary","description":[{"lang":"en","value":"CWE-770"},{"lang":"en","value":"CWE-841"}]}],"references":[{"url":"https://github.com/Significant-Gravitas/AutoGPT/security/advisories/GHSA-8pjg-mfqm-vrhr","source":"security-advisories@github.com"},{"url":"https://github.com/Significant-Gravitas/AutoGPT/security/advisories/GHSA-8pjg-mfqm-vrhr","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0"}]}},{"cve":{"id":"CVE-2026-45342","sourceIdentifier":"security-advisories@github.com","published":"2026-05-28T22:17:00.227","lastModified":"2026-05-29T16:16:28.007","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"LinkAce is a self-hosted archive to collect website links. Prior to 2.5.6, LinkAce contains an Insecure Direct Object Reference vulnerability in the authorization policy layer that allows any authenticated user to modify resources owned by other users. The affected resource types are links, lists, tags, and notes. Both the web UI and the REST API are vulnerable. The root cause is in the update() methods of all four model policies: LinkPolicy, LinkListPolicy, TagPolicy, and NotePolicy. Each delegates to an access-check method (e.g., userCanAccessLink()) that returns true for any resource with non-private visibility, regardless of who owns it. This means any registered user can edit any public or internal resource across the entire instance. The delete() methods in the same policy files correctly require ownership via $link->user->is($user), which confirms that update was intended to be owner-only. The same flaw exists in the API layer through AuthorizesUserApiActions::userCanUpdateModel(), which mirrors the broken visibility-only check instead of the ownership check used by userCanDeleteModel(). Bulk edit operations via BulkEditController are also affected. This vulnerability is fixed in 2.5.6."}],"metrics":{"cvssMetricV40":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:H/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":7.1,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"LOW","userInteraction":"NONE","vulnConfidentialityImpact":"LOW","vulnIntegrityImpact":"HIGH","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Secondary","description":[{"lang":"en","value":"CWE-639"}]}],"references":[{"url":"https://github.com/Kovah/LinkAce/security/advisories/GHSA-cj8f-h888-m57m","source":"security-advisories@github.com"},{"url":"https://github.com/Kovah/LinkAce/security/advisories/GHSA-cj8f-h888-m57m","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0"}]}},{"cve":{"id":"CVE-2026-45403","sourceIdentifier":"security-advisories@github.com","published":"2026-05-28T22:17:00.907","lastModified":"2026-05-29T20:16:26.613","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"AnythingLLM is an application that turns pieces of content into context that any LLM can use as references during chatting. Prior to 1.13.0, the AnythingLLM agent filesystem copy tool validates only the top-level source and destination paths. The recursive copy helper then descends into child entries using fs.stat() and copies files with fs.copyFile() without validating each child or rejecting symlinks. Because both APIs follow symlinks, a symlink nested inside an allowed source directory can point outside the allowed filesystem root and cause outside file contents to be copied into an allowed destination as a regular file. This vulnerability is fixed in 1.13.0."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:H/UI:R/S:U/C:L/I:N/A:N","baseScore":2.0,"baseSeverity":"LOW","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"HIGH","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":0.5,"impactScore":1.4}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Secondary","description":[{"lang":"en","value":"CWE-59"}]}],"references":[{"url":"https://github.com/Mintplex-Labs/anything-llm/commit/21ce03087145a4261c1de03b056fba639f699c09","source":"security-advisories@github.com"},{"url":"https://github.com/Mintplex-Labs/anything-llm/security/advisories/GHSA-vjrp-43mm-j7vw","source":"security-advisories@github.com"},{"url":"https://github.com/Mintplex-Labs/anything-llm/security/advisories/GHSA-vjrp-43mm-j7vw","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0"}]}},{"cve":{"id":"CVE-2026-45410","sourceIdentifier":"security-advisories@github.com","published":"2026-05-28T22:17:01.050","lastModified":"2026-05-29T16:32:14.400","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"TREK is a collaborative travel planner. Prior to 3.0.18, early return on missing user during login flow allowed an attacker to enumerate valid user accounts via response timing discrepancy. When an email address existed in the database, the backend performed a bcrypt password comparison before returning a 401 Unauthorized, adding ~370 ms of latency. When the email did not exist, the backend returned immediately (~10 ms). This ~14× timing difference could be detected without any difference in HTTP status codes or response bodies. This vulnerability is fixed in 3.0.18."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N","baseScore":5.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":1.4}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Secondary","description":[{"lang":"en","value":"CWE-203"},{"lang":"en","value":"CWE-208"}]}],"references":[{"url":"https://gist.github.com/jubnl/c2402adf85d946c1730867aeecc794de","source":"security-advisories@github.com"},{"url":"https://github.com/mauriceboe/TREK/security/advisories/GHSA-3552-3c98-x79r","source":"security-advisories@github.com"},{"url":"https://github.com/mauriceboe/TREK/security/advisories/GHSA-3552-3c98-x79r","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0"}]}},{"cve":{"id":"CVE-2026-47713","sourceIdentifier":"security-advisories@github.com","published":"2026-05-28T22:17:01.250","lastModified":"2026-05-29T16:16:31.353","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"AnythingLLM is an application that turns pieces of content into context that any LLM can use as references during chatting. Prior to 1.13.0, an approved mobile device token created in single-user mode can survive single-user -> multi-user migration even when the device record has userId = null. In multi-user mode, that stale token is still accepted by the mobile authentication middleware. Because no user is attached to the request, downstream mobile handlers fall back to unscoped data-access branches and return workspaces and workspace content without per-user filtering. This permits a pre-migration mobile token to enumerate a workspace assigned only to another user and retrieve victim-owned thread metadata and chat content in multi-user mode. This vulnerability is fixed in 1.13.0."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:H/UI:R/S:U/C:L/I:N/A:N","baseScore":2.0,"baseSeverity":"LOW","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"HIGH","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":0.5,"impactScore":1.4}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Secondary","description":[{"lang":"en","value":"CWE-285"},{"lang":"en","value":"CWE-639"}]}],"references":[{"url":"https://github.com/Mintplex-Labs/anything-llm/commit/9d714f95c124b61df00b840e36f623a2eb7e7eb4","source":"security-advisories@github.com"},{"url":"https://github.com/Mintplex-Labs/anything-llm/security/advisories/GHSA-h349-hp2v-8rhw","source":"security-advisories@github.com"},{"url":"https://github.com/Mintplex-Labs/anything-llm/security/advisories/GHSA-h349-hp2v-8rhw","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0"}]}},{"cve":{"id":"CVE-2026-49299","sourceIdentifier":"cve@mitre.org","published":"2026-05-28T22:17:02.093","lastModified":"2026-05-29T15:39:34.620","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"In OpenStack Neutron before 28.0.1, the tagging controller enforces plural policy action names on single-tag write operations while the defined policy rules use singular names. The mismatched names evaluate as allowed under the default policy, permitting a project reader to create and update tags on same-project resources. Deployments running Neutron 26.0.0 or later are affected."}],"metrics":{"cvssMetricV40":[{"source":"cve@mitre.org","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":5.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"LOW","userInteraction":"NONE","vulnConfidentialityImpact":"NONE","vulnIntegrityImpact":"LOW","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}]},"weaknesses":[{"source":"cve@mitre.org","type":"Primary","description":[{"lang":"en","value":"CWE-863"}]}],"references":[{"url":"https://bugs.launchpad.net/bugs/2150132","source":"cve@mitre.org"},{"url":"https://review.opendev.org/c/openstack/neutron/+/989099","source":"cve@mitre.org"},{"url":"https://www.openwall.com/lists/oss-security/2026/05/28/8","source":"cve@mitre.org"}]}},{"cve":{"id":"CVE-2026-10000","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:40.907","lastModified":"2026-05-29T15:16:21.197","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Use after free in Passwords in Google Chrome on Windows prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H","baseScore":8.3,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.6,"impactScore":6.0}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-416"}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com"},{"url":"https://issues.chromium.org/issues/513505608","source":"chrome-cve-admin@google.com"}]}},{"cve":{"id":"CVE-2026-10001","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:41.863","lastModified":"2026-05-29T17:40:36.683","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Use after free in PerformanceManager in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H","baseScore":8.3,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.6,"impactScore":6.0}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-416"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"148.0.7778.216","matchCriteriaId":"E59192D9-BF13-4B43-B69F-869A6BF83955"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*","matchCriteriaId":"A2572D17-1DE6-457B-99CC-64AFD54487EA"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"148.0.7778.215","matchCriteriaId":"875ACED4-0D6D-4BAA-8FAF-F13B5FEDF09A"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*","matchCriteriaId":"387021A0-AF36-463C-A605-32EA7DAC172E"},{"vulnerable":false,"criteria":"cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*","matchCriteriaId":"703AF700-7A70-47E2-BC3A-7FD03B3CA9C1"}]}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com","tags":["Vendor Advisory"]},{"url":"https://issues.chromium.org/issues/513505927","source":"chrome-cve-admin@google.com","tags":["Permissions Required"]}]}},{"cve":{"id":"CVE-2026-10002","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:41.970","lastModified":"2026-05-29T19:16:22.323","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Use after free in PDFium in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to potentially exploit heap corruption via a crafted PDF file. (Chromium security severity: High)"}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":5.9},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":5.9}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-416"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"148.0.7778.216","matchCriteriaId":"E59192D9-BF13-4B43-B69F-869A6BF83955"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*","matchCriteriaId":"A2572D17-1DE6-457B-99CC-64AFD54487EA"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"148.0.7778.215","matchCriteriaId":"875ACED4-0D6D-4BAA-8FAF-F13B5FEDF09A"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*","matchCriteriaId":"387021A0-AF36-463C-A605-32EA7DAC172E"},{"vulnerable":false,"criteria":"cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*","matchCriteriaId":"703AF700-7A70-47E2-BC3A-7FD03B3CA9C1"}]}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com","tags":["Vendor Advisory"]},{"url":"https://issues.chromium.org/issues/513536416","source":"chrome-cve-admin@google.com","tags":["Permissions Required"]}]}},{"cve":{"id":"CVE-2026-10004","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:42.187","lastModified":"2026-05-29T19:16:22.940","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Insufficient validation of untrusted input in Passwords in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (Chromium security severity: High)"}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"HIGH","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":3.6},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L","baseScore":5.4,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"NONE","availabilityImpact":"LOW"},"exploitabilityScore":2.8,"impactScore":2.5}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-20"}]},{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"NVD-CWE-noinfo"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"148.0.7778.216","matchCriteriaId":"E59192D9-BF13-4B43-B69F-869A6BF83955"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*","matchCriteriaId":"A2572D17-1DE6-457B-99CC-64AFD54487EA"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"148.0.7778.215","matchCriteriaId":"875ACED4-0D6D-4BAA-8FAF-F13B5FEDF09A"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*","matchCriteriaId":"387021A0-AF36-463C-A605-32EA7DAC172E"},{"vulnerable":false,"criteria":"cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*","matchCriteriaId":"703AF700-7A70-47E2-BC3A-7FD03B3CA9C1"}]}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com","tags":["Vendor Advisory"]},{"url":"https://issues.chromium.org/issues/513730012","source":"chrome-cve-admin@google.com","tags":["Permissions Required"]}]}},{"cve":{"id":"CVE-2026-10006","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:42.430","lastModified":"2026-05-29T17:18:09.337","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Race in WebAudio in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.6,"impactScore":5.9}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-362"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"148.0.7778.216","matchCriteriaId":"E59192D9-BF13-4B43-B69F-869A6BF83955"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*","matchCriteriaId":"A2572D17-1DE6-457B-99CC-64AFD54487EA"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"148.0.7778.215","matchCriteriaId":"875ACED4-0D6D-4BAA-8FAF-F13B5FEDF09A"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*","matchCriteriaId":"387021A0-AF36-463C-A605-32EA7DAC172E"},{"vulnerable":false,"criteria":"cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*","matchCriteriaId":"703AF700-7A70-47E2-BC3A-7FD03B3CA9C1"}]}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com","tags":["Release Notes"]},{"url":"https://issues.chromium.org/issues/513750691","source":"chrome-cve-admin@google.com","tags":["Permissions Required"]}]}},{"cve":{"id":"CVE-2026-10008","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:42.637","lastModified":"2026-05-29T18:16:29.750","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Uninitialized Use in GPU in Google Chrome on Android prior to 148.0.7778.216 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. (Chromium security severity: High)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":3.6}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-457"}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com"},{"url":"https://issues.chromium.org/issues/513768979","source":"chrome-cve-admin@google.com"}]}},{"cve":{"id":"CVE-2026-10010","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:42.840","lastModified":"2026-05-29T19:16:23.100","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Inappropriate implementation in Input in Google Chrome on Android prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to bypass site isolation via a crafted HTML page. (Chromium security severity: High)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L","baseScore":5.0,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"LOW"},"exploitabilityScore":1.6,"impactScore":3.4}]},"weaknesses":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-346"}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com"},{"url":"https://issues.chromium.org/issues/513995565","source":"chrome-cve-admin@google.com"}]}},{"cve":{"id":"CVE-2026-10011","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:42.940","lastModified":"2026-05-29T18:16:29.937","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Inappropriate implementation in Skia in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page. (Chromium security severity: High)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N","baseScore":3.1,"baseSeverity":"LOW","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":1.6,"impactScore":1.4}]},"weaknesses":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-200"}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com"},{"url":"https://issues.chromium.org/issues/514017326","source":"chrome-cve-admin@google.com"}]}},{"cve":{"id":"CVE-2026-10012","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:43.030","lastModified":"2026-05-29T17:17:22.623","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Use after free in Skia in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)"}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H","baseScore":8.3,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.6,"impactScore":6.0},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H","baseScore":8.3,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.6,"impactScore":6.0}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-416"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"148.0.7778.216","matchCriteriaId":"E59192D9-BF13-4B43-B69F-869A6BF83955"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*","matchCriteriaId":"A2572D17-1DE6-457B-99CC-64AFD54487EA"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"148.0.7778.215","matchCriteriaId":"875ACED4-0D6D-4BAA-8FAF-F13B5FEDF09A"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*","matchCriteriaId":"387021A0-AF36-463C-A605-32EA7DAC172E"},{"vulnerable":false,"criteria":"cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*","matchCriteriaId":"703AF700-7A70-47E2-BC3A-7FD03B3CA9C1"}]}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com","tags":["Vendor Advisory"]},{"url":"https://issues.chromium.org/issues/514063977","source":"chrome-cve-admin@google.com","tags":["Permissions Required"]}]}},{"cve":{"id":"CVE-2026-10014","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:43.233","lastModified":"2026-05-29T15:16:21.693","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Use after free in WebMIDI in Google Chrome on Android prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H","baseScore":8.3,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.6,"impactScore":6.0}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-416"}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com"},{"url":"https://issues.chromium.org/issues/514742327","source":"chrome-cve-admin@google.com"}]}},{"cve":{"id":"CVE-2026-10017","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:43.577","lastModified":"2026-05-29T16:16:22.310","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Out of bounds read in Headless in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Medium)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H","baseScore":8.3,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.6,"impactScore":6.0}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-125"}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com"},{"url":"https://issues.chromium.org/issues/504156069","source":"chrome-cve-admin@google.com"}]}},{"cve":{"id":"CVE-2026-10018","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:43.680","lastModified":"2026-05-29T18:16:30.143","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Integer overflow in ANGLE in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. (Chromium security severity: Medium)"}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":3.6},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":3.6}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-472"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"148.0.7778.216","matchCriteriaId":"E59192D9-BF13-4B43-B69F-869A6BF83955"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*","matchCriteriaId":"A2572D17-1DE6-457B-99CC-64AFD54487EA"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"148.0.7778.215","matchCriteriaId":"875ACED4-0D6D-4BAA-8FAF-F13B5FEDF09A"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*","matchCriteriaId":"387021A0-AF36-463C-A605-32EA7DAC172E"},{"vulnerable":false,"criteria":"cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*","matchCriteriaId":"703AF700-7A70-47E2-BC3A-7FD03B3CA9C1"}]}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com","tags":["Vendor Advisory"]},{"url":"https://issues.chromium.org/issues/504175501","source":"chrome-cve-admin@google.com","tags":["Permissions Required"]}]}},{"cve":{"id":"CVE-2026-10019","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:43.783","lastModified":"2026-05-29T18:16:30.317","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Integer overflow in ANGLE in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Medium)"}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":5.9},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N","baseScore":4.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":1.4}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-472"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"148.0.7778.216","matchCriteriaId":"E59192D9-BF13-4B43-B69F-869A6BF83955"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*","matchCriteriaId":"A2572D17-1DE6-457B-99CC-64AFD54487EA"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"148.0.7778.215","matchCriteriaId":"875ACED4-0D6D-4BAA-8FAF-F13B5FEDF09A"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*","matchCriteriaId":"387021A0-AF36-463C-A605-32EA7DAC172E"},{"vulnerable":false,"criteria":"cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*","matchCriteriaId":"703AF700-7A70-47E2-BC3A-7FD03B3CA9C1"}]}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com","tags":["Vendor Advisory"]},{"url":"https://issues.chromium.org/issues/505056913","source":"chrome-cve-admin@google.com","tags":["Permissions Required"]}]}},{"cve":{"id":"CVE-2026-10020","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:43.887","lastModified":"2026-05-29T16:16:22.460","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Insufficient validation of untrusted input in Skia in Google Chrome on Android prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Medium)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H","baseScore":8.3,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.6,"impactScore":6.0}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-20"}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com"},{"url":"https://issues.chromium.org/issues/496565479","source":"chrome-cve-admin@google.com"}]}},{"cve":{"id":"CVE-2026-10021","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:43.990","lastModified":"2026-05-29T17:13:15.067","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Insufficient validation of untrusted input in USB in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to execute arbitrary code via a crafted HTML page. (Chromium security severity: Medium)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":5.9}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-20"}]},{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"NVD-CWE-noinfo"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"148.0.7778.216","matchCriteriaId":"E59192D9-BF13-4B43-B69F-869A6BF83955"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*","matchCriteriaId":"A2572D17-1DE6-457B-99CC-64AFD54487EA"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"148.0.7778.215","matchCriteriaId":"875ACED4-0D6D-4BAA-8FAF-F13B5FEDF09A"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*","matchCriteriaId":"387021A0-AF36-463C-A605-32EA7DAC172E"},{"vulnerable":false,"criteria":"cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*","matchCriteriaId":"703AF700-7A70-47E2-BC3A-7FD03B3CA9C1"}]}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com","tags":["Vendor Advisory"]},{"url":"https://issues.chromium.org/issues/497327715","source":"chrome-cve-admin@google.com","tags":["Permissions Required"]}]}},{"cve":{"id":"CVE-2026-10022","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:44.090","lastModified":"2026-05-29T17:08:58.433","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Type Confusion in V8 in Google Chrome prior to 148.0.7778.216 allowed an attacker who convinced a user to install a malicious extension to execute arbitrary code inside a sandbox via a crafted Chrome Extension. (Chromium security severity: Medium)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":5.9}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-843"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"148.0.7778.216","matchCriteriaId":"E59192D9-BF13-4B43-B69F-869A6BF83955"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*","matchCriteriaId":"A2572D17-1DE6-457B-99CC-64AFD54487EA"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"148.0.7778.215","matchCriteriaId":"875ACED4-0D6D-4BAA-8FAF-F13B5FEDF09A"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*","matchCriteriaId":"387021A0-AF36-463C-A605-32EA7DAC172E"},{"vulnerable":false,"criteria":"cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*","matchCriteriaId":"703AF700-7A70-47E2-BC3A-7FD03B3CA9C1"}]}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com","tags":["Vendor Advisory"]},{"url":"https://issues.chromium.org/issues/513289241","source":"chrome-cve-admin@google.com","tags":["Permissions Required"]}]}},{"cve":{"id":"CVE-2026-5343","sourceIdentifier":"mlhess@drupal.org","published":"2026-05-28T23:16:44.520","lastModified":"2026-05-29T20:16:30.813","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Improper Check for Unusual or Exceptional Conditions vulnerability in Drupal SAML SSO - Service Provider allows Privilege Escalation.\n\nThis issue affects SAML SSO - Service Provider: from 0.0.0 before 3.1.4."}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N","baseScore":7.4,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"NONE"},"exploitabilityScore":2.2,"impactScore":5.2}]},"weaknesses":[{"source":"mlhess@drupal.org","type":"Secondary","description":[{"lang":"en","value":"CWE-754"}]}],"references":[{"url":"https://www.drupal.org/sa-contrib-2026-031","source":"mlhess@drupal.org"}]}},{"cve":{"id":"CVE-2026-6816","sourceIdentifier":"mlhess@drupal.org","published":"2026-05-28T23:16:44.637","lastModified":"2026-05-29T20:16:31.087","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"An access bypass vulnerability in Drupal TFA Basic Plugins allows users with the administer users permission to view or generate recovery codes for other users.\n\n\nThis issue affects TFA Basic Plugins: from 7.x-1.0 through 7.x-1.2."}],"metrics":{"cvssMetricV40":[{"source":"mlhess@drupal.org","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":5.1,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"HIGH","userInteraction":"NONE","vulnConfidentialityImpact":"LOW","vulnIntegrityImpact":"LOW","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}]},"weaknesses":[{"source":"mlhess@drupal.org","type":"Secondary","description":[{"lang":"en","value":"CWE-267"}]}],"references":[{"url":"https://d7es.tag1.com/security-advisories/tfa-basic-plugins-less-critical-access-bypass-sa-contrib-2025-085","source":"mlhess@drupal.org"},{"url":"https://www.herodevs.com/vulnerability-directory/cve-2026-6816","source":"mlhess@drupal.org"},{"url":"https://www.herodevs.com/vulnerability-directory/cve-2026-6816?nes-for-drupal-7","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0"}]}},{"cve":{"id":"CVE-2026-9872","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:45.140","lastModified":"2026-05-29T16:16:33.380","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Out of bounds write in GPU in Google Chrome on Android prior to 148.0.7778.216 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Critical)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H","baseScore":9.6,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":6.0}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-787"}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com"},{"url":"https://issues.chromium.org/issues/505077859","source":"chrome-cve-admin@google.com"}]}},{"cve":{"id":"CVE-2026-9873","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:45.240","lastModified":"2026-05-29T17:05:13.967","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Use after free in Network in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: Critical)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":5.9}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-416"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"148.0.7778.216","matchCriteriaId":"E59192D9-BF13-4B43-B69F-869A6BF83955"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*","matchCriteriaId":"A2572D17-1DE6-457B-99CC-64AFD54487EA"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"148.0.7778.215","matchCriteriaId":"875ACED4-0D6D-4BAA-8FAF-F13B5FEDF09A"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*","matchCriteriaId":"387021A0-AF36-463C-A605-32EA7DAC172E"},{"vulnerable":false,"criteria":"cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*","matchCriteriaId":"703AF700-7A70-47E2-BC3A-7FD03B3CA9C1"}]}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com","tags":["Vendor Advisory"]},{"url":"https://issues.chromium.org/issues/507365348","source":"chrome-cve-admin@google.com","tags":["Permissions Required"]}]}},{"cve":{"id":"CVE-2026-9874","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:45.343","lastModified":"2026-05-29T17:04:15.220","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Use after free in Dawn in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Critical)"}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H","baseScore":9.6,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":6.0},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H","baseScore":9.6,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":6.0}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-416"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"148.0.7778.216","matchCriteriaId":"E59192D9-BF13-4B43-B69F-869A6BF83955"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*","matchCriteriaId":"A2572D17-1DE6-457B-99CC-64AFD54487EA"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"148.0.7778.215","matchCriteriaId":"875ACED4-0D6D-4BAA-8FAF-F13B5FEDF09A"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*","matchCriteriaId":"387021A0-AF36-463C-A605-32EA7DAC172E"},{"vulnerable":false,"criteria":"cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*","matchCriteriaId":"703AF700-7A70-47E2-BC3A-7FD03B3CA9C1"}]}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com","tags":["Vendor Advisory"]},{"url":"https://issues.chromium.org/issues/500609038","source":"chrome-cve-admin@google.com","tags":["Permissions Required"]}]}},{"cve":{"id":"CVE-2026-9875","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:45.443","lastModified":"2026-05-29T16:16:33.820","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Out of bounds read in WebGL in Google Chrome on Android prior to 148.0.7778.216 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Critical)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H","baseScore":9.6,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":6.0}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-125"}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com"},{"url":"https://issues.chromium.org/issues/507508103","source":"chrome-cve-admin@google.com"}]}},{"cve":{"id":"CVE-2026-9876","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:45.543","lastModified":"2026-05-29T16:16:33.970","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Use after free in WebGL in Google Chrome on Android prior to 148.0.7778.216 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Critical)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H","baseScore":9.6,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":6.0}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-416"}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com"},{"url":"https://issues.chromium.org/issues/493747593","source":"chrome-cve-admin@google.com"}]}},{"cve":{"id":"CVE-2026-9877","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:45.643","lastModified":"2026-05-29T17:00:09.780","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Use after free in ANGLE in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Critical)"}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H","baseScore":8.3,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.6,"impactScore":6.0},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H","baseScore":8.3,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.6,"impactScore":6.0}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-416"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"148.0.7778.216","matchCriteriaId":"E59192D9-BF13-4B43-B69F-869A6BF83955"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*","matchCriteriaId":"A2572D17-1DE6-457B-99CC-64AFD54487EA"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"148.0.7778.215","matchCriteriaId":"875ACED4-0D6D-4BAA-8FAF-F13B5FEDF09A"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*","matchCriteriaId":"387021A0-AF36-463C-A605-32EA7DAC172E"},{"vulnerable":false,"criteria":"cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*","matchCriteriaId":"703AF700-7A70-47E2-BC3A-7FD03B3CA9C1"}]}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com","tags":["Vendor Advisory"]},{"url":"https://issues.chromium.org/issues/496445460","source":"chrome-cve-admin@google.com","tags":["Permissions Required"]}]}},{"cve":{"id":"CVE-2026-9878","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:45.747","lastModified":"2026-05-29T16:57:14.753","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Use after free in ANGLE in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: Critical)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":5.9}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-416"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"148.0.7778.216","matchCriteriaId":"E59192D9-BF13-4B43-B69F-869A6BF83955"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*","matchCriteriaId":"A2572D17-1DE6-457B-99CC-64AFD54487EA"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"148.0.7778.215","matchCriteriaId":"875ACED4-0D6D-4BAA-8FAF-F13B5FEDF09A"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*","matchCriteriaId":"387021A0-AF36-463C-A605-32EA7DAC172E"},{"vulnerable":false,"criteria":"cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*","matchCriteriaId":"703AF700-7A70-47E2-BC3A-7FD03B3CA9C1"}]}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com","tags":["Release Notes"]},{"url":"https://issues.chromium.org/issues/499054245","source":"chrome-cve-admin@google.com","tags":["Permissions Required"]}]}},{"cve":{"id":"CVE-2026-9879","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:45.843","lastModified":"2026-05-29T18:46:46.460","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Out of bounds write in ANGLE in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to execute arbitrary code via a crafted HTML page. (Chromium security severity: Critical)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":5.9}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-787"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"148.0.7778.216","matchCriteriaId":"E59192D9-BF13-4B43-B69F-869A6BF83955"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*","matchCriteriaId":"A2572D17-1DE6-457B-99CC-64AFD54487EA"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"148.0.7778.215","matchCriteriaId":"875ACED4-0D6D-4BAA-8FAF-F13B5FEDF09A"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*","matchCriteriaId":"387021A0-AF36-463C-A605-32EA7DAC172E"},{"vulnerable":false,"criteria":"cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*","matchCriteriaId":"703AF700-7A70-47E2-BC3A-7FD03B3CA9C1"}]}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com","tags":["Release Notes"]},{"url":"https://issues.chromium.org/issues/499129768","source":"chrome-cve-admin@google.com","tags":["Permissions Required"]}]}},{"cve":{"id":"CVE-2026-9880","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:45.947","lastModified":"2026-05-29T17:17:35.147","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Insufficient validation of untrusted input in WebGL in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Critical)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H","baseScore":8.3,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.6,"impactScore":6.0}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-20"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"148.0.7778.216","matchCriteriaId":"E59192D9-BF13-4B43-B69F-869A6BF83955"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*","matchCriteriaId":"A2572D17-1DE6-457B-99CC-64AFD54487EA"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"148.0.7778.215","matchCriteriaId":"875ACED4-0D6D-4BAA-8FAF-F13B5FEDF09A"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*","matchCriteriaId":"387021A0-AF36-463C-A605-32EA7DAC172E"},{"vulnerable":false,"criteria":"cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*","matchCriteriaId":"703AF700-7A70-47E2-BC3A-7FD03B3CA9C1"}]}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com","tags":["Vendor Advisory","Release Notes"]},{"url":"https://issues.chromium.org/issues/503615025","source":"chrome-cve-admin@google.com","tags":["Permissions Required"]}]}},{"cve":{"id":"CVE-2026-9881","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:46.047","lastModified":"2026-05-29T16:16:34.497","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Use after free in Bluetooth in Google Chrome on Mac prior to 148.0.7778.216 allowed an attacker who convinced a user to install a malicious extension to potentially perform a sandbox escape via a crafted Chrome Extension. (Chromium security severity: Critical)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H","baseScore":9.0,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.2,"impactScore":6.0}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-416"}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com"},{"url":"https://issues.chromium.org/issues/505140741","source":"chrome-cve-admin@google.com"}]}},{"cve":{"id":"CVE-2026-9882","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:46.160","lastModified":"2026-05-29T18:44:48.317","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Integer overflow in ANGLE in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Critical)"}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":3.6},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N","baseScore":4.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":1.4}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-472"}]},{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-190"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"148.0.7778.216","matchCriteriaId":"E59192D9-BF13-4B43-B69F-869A6BF83955"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*","matchCriteriaId":"A2572D17-1DE6-457B-99CC-64AFD54487EA"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"148.0.7778.215","matchCriteriaId":"875ACED4-0D6D-4BAA-8FAF-F13B5FEDF09A"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*","matchCriteriaId":"387021A0-AF36-463C-A605-32EA7DAC172E"},{"vulnerable":false,"criteria":"cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*","matchCriteriaId":"703AF700-7A70-47E2-BC3A-7FD03B3CA9C1"}]}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com","tags":["Vendor Advisory"]},{"url":"https://issues.chromium.org/issues/506375217","source":"chrome-cve-admin@google.com","tags":["Permissions Required"]}]}},{"cve":{"id":"CVE-2026-9883","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:46.267","lastModified":"2026-05-29T18:43:05.703","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Use after free in Base in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to execute arbitrary code via a crafted HTML page. (Chromium security severity: Critical)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":5.9}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-416"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"148.0.7778.216","matchCriteriaId":"E59192D9-BF13-4B43-B69F-869A6BF83955"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*","matchCriteriaId":"A2572D17-1DE6-457B-99CC-64AFD54487EA"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"148.0.7778.215","matchCriteriaId":"875ACED4-0D6D-4BAA-8FAF-F13B5FEDF09A"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*","matchCriteriaId":"387021A0-AF36-463C-A605-32EA7DAC172E"},{"vulnerable":false,"criteria":"cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*","matchCriteriaId":"703AF700-7A70-47E2-BC3A-7FD03B3CA9C1"}]}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com","tags":["Release Notes"]},{"url":"https://issues.chromium.org/issues/506477192","source":"chrome-cve-admin@google.com","tags":["Permissions Required"]}]}},{"cve":{"id":"CVE-2026-9884","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:46.383","lastModified":"2026-05-29T18:41:25.400","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Use after free in Browser in Google Chrome on Mac prior to 148.0.7778.216 allowed a remote attacker to execute arbitrary code via a crafted HTML page. (Chromium security severity: Critical)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":5.9}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-416"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"148.0.7778.216","matchCriteriaId":"E59192D9-BF13-4B43-B69F-869A6BF83955"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*","matchCriteriaId":"387021A0-AF36-463C-A605-32EA7DAC172E"}]}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com","tags":["Release Notes"]},{"url":"https://issues.chromium.org/issues/508289938","source":"chrome-cve-admin@google.com","tags":["Permissions Required"]}]}},{"cve":{"id":"CVE-2026-9885","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:46.490","lastModified":"2026-05-29T16:16:34.640","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Insufficient validation of untrusted input in UI in Google Chrome on Mac prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Critical)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H","baseScore":8.3,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.6,"impactScore":6.0}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-20"}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com"},{"url":"https://issues.chromium.org/issues/508452241","source":"chrome-cve-admin@google.com"}]}},{"cve":{"id":"CVE-2026-9886","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:46.587","lastModified":"2026-05-29T16:16:34.787","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Use after free in Base in Google Chrome on Mac prior to 148.0.7778.216 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Critical)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H","baseScore":9.6,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":6.0}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-416"}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com"},{"url":"https://issues.chromium.org/issues/508456788","source":"chrome-cve-admin@google.com"}]}},{"cve":{"id":"CVE-2026-9887","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:46.687","lastModified":"2026-05-29T18:40:35.380","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Use after free in Proxy in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to execute arbitrary code via a crafted PAC script. (Chromium security severity: Critical)"}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":5.9},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","baseScore":7.8,"baseSeverity":"HIGH","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.8,"impactScore":5.9}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-416"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"148.0.7778.216","matchCriteriaId":"E59192D9-BF13-4B43-B69F-869A6BF83955"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*","matchCriteriaId":"A2572D17-1DE6-457B-99CC-64AFD54487EA"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"148.0.7778.215","matchCriteriaId":"875ACED4-0D6D-4BAA-8FAF-F13B5FEDF09A"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*","matchCriteriaId":"387021A0-AF36-463C-A605-32EA7DAC172E"},{"vulnerable":false,"criteria":"cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*","matchCriteriaId":"703AF700-7A70-47E2-BC3A-7FD03B3CA9C1"}]}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com","tags":["Vendor Advisory"]},{"url":"https://issues.chromium.org/issues/511249104","source":"chrome-cve-admin@google.com","tags":["Permissions Required"]}]}},{"cve":{"id":"CVE-2026-9888","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:46.787","lastModified":"2026-05-29T16:16:34.930","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Use after free in WebView in Google Chrome on Android prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Critical)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H","baseScore":8.3,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.6,"impactScore":6.0}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-416"}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com"},{"url":"https://issues.chromium.org/issues/511715166","source":"chrome-cve-admin@google.com"}]}},{"cve":{"id":"CVE-2026-9889","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:46.893","lastModified":"2026-05-29T16:16:35.077","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Out of bounds read and write in Dawn in Google Chrome on Android prior to 148.0.7778.216 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Critical)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H","baseScore":8.3,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.6,"impactScore":6.0}]},"weaknesses":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-125"},{"lang":"en","value":"CWE-787"}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com"},{"url":"https://issues.chromium.org/issues/511727159","source":"chrome-cve-admin@google.com"}]}},{"cve":{"id":"CVE-2026-9890","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:46.983","lastModified":"2026-05-29T16:16:35.223","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Use after free in XR in Google Chrome on Windows prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Critical)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H","baseScore":8.3,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.6,"impactScore":6.0}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-416"}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com"},{"url":"https://issues.chromium.org/issues/513135985","source":"chrome-cve-admin@google.com"}]}},{"cve":{"id":"CVE-2026-9891","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:47.083","lastModified":"2026-05-29T17:15:18.660","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Use after free in Extensions in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted Chrome Extension. (Chromium security severity: Critical)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H","baseScore":9.0,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.2,"impactScore":6.0}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-416"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"148.0.7778.216","matchCriteriaId":"E59192D9-BF13-4B43-B69F-869A6BF83955"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*","matchCriteriaId":"A2572D17-1DE6-457B-99CC-64AFD54487EA"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"148.0.7778.215","matchCriteriaId":"875ACED4-0D6D-4BAA-8FAF-F13B5FEDF09A"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*","matchCriteriaId":"387021A0-AF36-463C-A605-32EA7DAC172E"},{"vulnerable":false,"criteria":"cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*","matchCriteriaId":"703AF700-7A70-47E2-BC3A-7FD03B3CA9C1"}]}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com","tags":["Vendor Advisory","Release Notes"]},{"url":"https://issues.chromium.org/issues/513508128","source":"chrome-cve-admin@google.com","tags":["Permissions Required"]}]}},{"cve":{"id":"CVE-2026-9892","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:47.187","lastModified":"2026-05-29T16:16:35.553","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Inappropriate implementation in Skia in Google Chrome on Android prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Critical)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H","baseScore":8.3,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.6,"impactScore":6.0}]},"weaknesses":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-269"}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com"},{"url":"https://issues.chromium.org/issues/513948178","source":"chrome-cve-admin@google.com"}]}},{"cve":{"id":"CVE-2026-9893","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:47.280","lastModified":"2026-05-29T16:16:35.743","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Use after free in Skia in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Critical)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H","baseScore":8.3,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.6,"impactScore":6.0}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-416"}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com"},{"url":"https://issues.chromium.org/issues/513972075","source":"chrome-cve-admin@google.com"}]}},{"cve":{"id":"CVE-2026-9894","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:47.393","lastModified":"2026-05-29T16:16:35.907","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Use after free in GPU in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H","baseScore":8.3,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.6,"impactScore":6.0}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-416"}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com"},{"url":"https://issues.chromium.org/issues/507707838","source":"chrome-cve-admin@google.com"}]}},{"cve":{"id":"CVE-2026-9895","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:47.497","lastModified":"2026-05-29T16:16:36.067","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Out of bounds read in GPU in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H","baseScore":8.3,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.6,"impactScore":6.0}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-125"}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com"},{"url":"https://issues.chromium.org/issues/491685406","source":"chrome-cve-admin@google.com"}]}},{"cve":{"id":"CVE-2026-9896","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:47.600","lastModified":"2026-05-29T18:08:41.940","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Out of bounds write in V8 in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":5.9}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-787"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"148.0.7778.216","matchCriteriaId":"E59192D9-BF13-4B43-B69F-869A6BF83955"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*","matchCriteriaId":"A2572D17-1DE6-457B-99CC-64AFD54487EA"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"148.0.7778.215","matchCriteriaId":"875ACED4-0D6D-4BAA-8FAF-F13B5FEDF09A"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*","matchCriteriaId":"387021A0-AF36-463C-A605-32EA7DAC172E"},{"vulnerable":false,"criteria":"cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*","matchCriteriaId":"703AF700-7A70-47E2-BC3A-7FD03B3CA9C1"}]}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com","tags":["Release Notes"]},{"url":"https://issues.chromium.org/issues/508811474","source":"chrome-cve-admin@google.com","tags":["Permissions Required"]}]}},{"cve":{"id":"CVE-2026-9897","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:47.703","lastModified":"2026-05-29T18:08:13.907","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Use after free in DOM in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":5.9}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-416"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"148.0.7778.216","matchCriteriaId":"E59192D9-BF13-4B43-B69F-869A6BF83955"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*","matchCriteriaId":"A2572D17-1DE6-457B-99CC-64AFD54487EA"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"148.0.7778.215","matchCriteriaId":"875ACED4-0D6D-4BAA-8FAF-F13B5FEDF09A"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*","matchCriteriaId":"387021A0-AF36-463C-A605-32EA7DAC172E"},{"vulnerable":false,"criteria":"cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*","matchCriteriaId":"703AF700-7A70-47E2-BC3A-7FD03B3CA9C1"}]}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com","tags":["Release Notes"]},{"url":"https://issues.chromium.org/issues/496271580","source":"chrome-cve-admin@google.com","tags":["Permissions Required"]}]}},{"cve":{"id":"CVE-2026-9898","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:47.803","lastModified":"2026-05-29T16:16:36.220","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Insufficient validation of untrusted input in GPU in Google Chrome on Android prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H","baseScore":8.3,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.6,"impactScore":6.0}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-20"}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com"},{"url":"https://issues.chromium.org/issues/496282591","source":"chrome-cve-admin@google.com"}]}},{"cve":{"id":"CVE-2026-9899","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:47.907","lastModified":"2026-05-29T16:16:36.373","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Use after free in ANGLE in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H","baseScore":8.3,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.6,"impactScore":6.0}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-416"}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com"},{"url":"https://issues.chromium.org/issues/497533569","source":"chrome-cve-admin@google.com"}]}},{"cve":{"id":"CVE-2026-9900","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:48.007","lastModified":"2026-05-29T16:16:36.530","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Out of bounds write in ANGLE in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H","baseScore":8.3,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.6,"impactScore":6.0}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-787"}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com"},{"url":"https://issues.chromium.org/issues/497637277","source":"chrome-cve-admin@google.com"}]}},{"cve":{"id":"CVE-2026-9901","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:48.110","lastModified":"2026-05-29T16:47:53.353","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Use after free in ANGLE in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to execute arbitrary code via a crafted HTML page. (Chromium security severity: High)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.6,"impactScore":5.9}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-416"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"148.0.7778.216","matchCriteriaId":"E59192D9-BF13-4B43-B69F-869A6BF83955"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*","matchCriteriaId":"A2572D17-1DE6-457B-99CC-64AFD54487EA"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"148.0.7778.215","matchCriteriaId":"875ACED4-0D6D-4BAA-8FAF-F13B5FEDF09A"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*","matchCriteriaId":"387021A0-AF36-463C-A605-32EA7DAC172E"},{"vulnerable":false,"criteria":"cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*","matchCriteriaId":"703AF700-7A70-47E2-BC3A-7FD03B3CA9C1"}]}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com","tags":["Release Notes","Vendor Advisory"]},{"url":"https://issues.chromium.org/issues/497737770","source":"chrome-cve-admin@google.com","tags":["Permissions Required"]}]}},{"cve":{"id":"CVE-2026-9902","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:48.207","lastModified":"2026-05-29T16:16:36.683","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Use after free in Accessibility in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H","baseScore":8.3,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.6,"impactScore":6.0}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-416"}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com"},{"url":"https://issues.chromium.org/issues/498205735","source":"chrome-cve-admin@google.com"}]}},{"cve":{"id":"CVE-2026-9903","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:48.310","lastModified":"2026-05-29T19:16:29.413","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Insufficient validation of untrusted input in Site Isolation in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to bypass site isolation via a crafted MHTML page. (Chromium security severity: High)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L","baseScore":5.0,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"LOW"},"exploitabilityScore":1.6,"impactScore":3.4}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-20"}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com"},{"url":"https://issues.chromium.org/issues/498783665","source":"chrome-cve-admin@google.com"}]}},{"cve":{"id":"CVE-2026-9904","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:48.413","lastModified":"2026-05-29T16:16:36.833","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Use after free in ANGLE in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H","baseScore":8.3,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.6,"impactScore":6.0}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-416"}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com"},{"url":"https://issues.chromium.org/issues/498804020","source":"chrome-cve-admin@google.com"}]}},{"cve":{"id":"CVE-2026-9905","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:48.553","lastModified":"2026-05-29T16:16:36.987","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Use after free in Accessibility in Google Chrome on Windows prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H","baseScore":8.3,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.6,"impactScore":6.0}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-416"}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com"},{"url":"https://issues.chromium.org/issues/498883610","source":"chrome-cve-admin@google.com"}]}},{"cve":{"id":"CVE-2026-9906","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:48.663","lastModified":"2026-05-29T16:16:37.147","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Out of bounds write in GPU in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H","baseScore":8.3,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.6,"impactScore":6.0}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-787"}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com"},{"url":"https://issues.chromium.org/issues/499005260","source":"chrome-cve-admin@google.com"}]}},{"cve":{"id":"CVE-2026-9907","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:48.767","lastModified":"2026-05-29T18:17:14.010","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Out of bounds read in Dawn in Google Chrome on Windows prior to 148.0.7778.216 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: High)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N","baseScore":4.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":1.4}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-125"}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com"},{"url":"https://issues.chromium.org/issues/499091269","source":"chrome-cve-admin@google.com"}]}},{"cve":{"id":"CVE-2026-9908","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:48.867","lastModified":"2026-05-29T18:17:14.160","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Out of bounds read in ANGLE in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. (Chromium security severity: High)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":3.6}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-125"}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com"},{"url":"https://issues.chromium.org/issues/499091328","source":"chrome-cve-admin@google.com"}]}},{"cve":{"id":"CVE-2026-9909","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:48.983","lastModified":"2026-05-29T18:07:39.577","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Integer overflow in Skia in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.6,"impactScore":5.9}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-472"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"148.0.7778.216","matchCriteriaId":"E59192D9-BF13-4B43-B69F-869A6BF83955"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*","matchCriteriaId":"A2572D17-1DE6-457B-99CC-64AFD54487EA"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"148.0.7778.215","matchCriteriaId":"875ACED4-0D6D-4BAA-8FAF-F13B5FEDF09A"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*","matchCriteriaId":"387021A0-AF36-463C-A605-32EA7DAC172E"},{"vulnerable":false,"criteria":"cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*","matchCriteriaId":"703AF700-7A70-47E2-BC3A-7FD03B3CA9C1"}]}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com","tags":["Release Notes"]},{"url":"https://issues.chromium.org/issues/499152771","source":"chrome-cve-admin@google.com","tags":["Permissions Required"]}]}},{"cve":{"id":"CVE-2026-9910","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:49.080","lastModified":"2026-05-29T17:56:16.063","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Out of bounds memory access in ANGLE in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":5.9}]},"weaknesses":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-125"},{"lang":"en","value":"CWE-787"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"148.0.7778.216","matchCriteriaId":"E59192D9-BF13-4B43-B69F-869A6BF83955"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*","matchCriteriaId":"A2572D17-1DE6-457B-99CC-64AFD54487EA"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"148.0.7778.215","matchCriteriaId":"875ACED4-0D6D-4BAA-8FAF-F13B5FEDF09A"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*","matchCriteriaId":"387021A0-AF36-463C-A605-32EA7DAC172E"},{"vulnerable":false,"criteria":"cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*","matchCriteriaId":"703AF700-7A70-47E2-BC3A-7FD03B3CA9C1"}]}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com","tags":["Release Notes"]},{"url":"https://issues.chromium.org/issues/499176133","source":"chrome-cve-admin@google.com","tags":["Permissions Required"]}]}},{"cve":{"id":"CVE-2026-9911","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:49.197","lastModified":"2026-05-29T19:16:29.603","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Integer overflow in ANGLE in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page. (Chromium security severity: High)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N","baseScore":4.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":1.4}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-472"}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com"},{"url":"https://issues.chromium.org/issues/499205491","source":"chrome-cve-admin@google.com"}]}},{"cve":{"id":"CVE-2026-9912","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:49.300","lastModified":"2026-05-29T18:17:14.317","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Inappropriate implementation in GPU in Google Chrome on Android prior to 148.0.7778.216 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. (Chromium security severity: High)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":3.6}]},"weaknesses":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-200"}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com"},{"url":"https://issues.chromium.org/issues/499873765","source":"chrome-cve-admin@google.com"}]}},{"cve":{"id":"CVE-2026-9913","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:49.393","lastModified":"2026-05-29T18:17:14.493","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Inappropriate implementation in ANGLE in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to potentially perform out of bounds memory access via a crafted HTML page. (Chromium security severity: High)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N","baseScore":4.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":1.4}]},"weaknesses":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-125"}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com"},{"url":"https://issues.chromium.org/issues/500046096","source":"chrome-cve-admin@google.com"}]}},{"cve":{"id":"CVE-2026-9914","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:49.487","lastModified":"2026-05-29T16:16:37.300","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Insufficient validation of untrusted input in ANGLE in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H","baseScore":8.3,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.6,"impactScore":6.0}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-20"}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com"},{"url":"https://issues.chromium.org/issues/500047428","source":"chrome-cve-admin@google.com"}]}},{"cve":{"id":"CVE-2026-9915","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:49.593","lastModified":"2026-05-29T16:16:37.457","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Heap buffer overflow in ANGLE in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H","baseScore":8.3,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.6,"impactScore":6.0}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-122"}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com"},{"url":"https://issues.chromium.org/issues/500063836","source":"chrome-cve-admin@google.com"}]}},{"cve":{"id":"CVE-2026-9916","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:49.697","lastModified":"2026-05-29T16:16:37.613","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Out of bounds write in ANGLE in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H","baseScore":8.3,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.6,"impactScore":6.0}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-787"}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com"},{"url":"https://issues.chromium.org/issues/500080303","source":"chrome-cve-admin@google.com"}]}},{"cve":{"id":"CVE-2026-9917","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:49.797","lastModified":"2026-05-29T18:17:14.657","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Uninitialized Use in WebGL in Google Chrome on Android prior to 148.0.7778.216 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. (Chromium security severity: High)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":3.6}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-457"}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com"},{"url":"https://issues.chromium.org/issues/500095304","source":"chrome-cve-admin@google.com"}]}},{"cve":{"id":"CVE-2026-9918","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:49.897","lastModified":"2026-05-29T16:16:37.770","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Inappropriate implementation in Tint in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H","baseScore":9.6,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":6.0}]},"weaknesses":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-269"}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com"},{"url":"https://issues.chromium.org/issues/500099471","source":"chrome-cve-admin@google.com"}]}},{"cve":{"id":"CVE-2026-9919","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:49.990","lastModified":"2026-05-29T18:17:14.817","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Out of bounds read in WebGL in Google Chrome on Android prior to 148.0.7778.216 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: High)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N","baseScore":4.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":1.4}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-125"}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com"},{"url":"https://issues.chromium.org/issues/500114058","source":"chrome-cve-admin@google.com"}]}},{"cve":{"id":"CVE-2026-9920","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:50.090","lastModified":"2026-05-29T18:17:14.977","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Uninitialized Use in GPU in Google Chrome on Android prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page. (Chromium security severity: High)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N","baseScore":3.1,"baseSeverity":"LOW","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":1.6,"impactScore":1.4}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-457"}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com"},{"url":"https://issues.chromium.org/issues/500138014","source":"chrome-cve-admin@google.com"}]}},{"cve":{"id":"CVE-2026-9921","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:50.200","lastModified":"2026-05-29T18:17:15.137","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Uninitialized Use in WebGL in Google Chrome on Android prior to 148.0.7778.216 allowed a remote attacker to leak cross-origin information via a crafted HTML page. (Chromium security severity: High)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N","baseScore":4.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":1.4}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-457"}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com"},{"url":"https://issues.chromium.org/issues/500150338","source":"chrome-cve-admin@google.com"}]}},{"cve":{"id":"CVE-2026-9922","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:50.303","lastModified":"2026-05-29T16:46:01.807","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Use after free in GPU in Google Chrome on Mac prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to execute arbitrary code via a crafted HTML page. (Chromium security severity: High)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.6,"impactScore":5.9}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-416"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"148.0.7778.216","matchCriteriaId":"E59192D9-BF13-4B43-B69F-869A6BF83955"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*","matchCriteriaId":"387021A0-AF36-463C-A605-32EA7DAC172E"}]}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com","tags":["Release Notes","Vendor Advisory"]},{"url":"https://issues.chromium.org/issues/500187083","source":"chrome-cve-admin@google.com","tags":["Permissions Required"]}]}},{"cve":{"id":"CVE-2026-9923","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:50.407","lastModified":"2026-05-29T19:16:29.767","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Use after free in Skia in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":5.9}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-416"}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com"},{"url":"https://issues.chromium.org/issues/500393328","source":"chrome-cve-admin@google.com"}]}},{"cve":{"id":"CVE-2026-9924","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:50.503","lastModified":"2026-05-29T16:16:37.933","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Heap buffer overflow in ANGLE in Google Chrome on Windows prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H","baseScore":8.3,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.6,"impactScore":6.0}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-122"}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com"},{"url":"https://issues.chromium.org/issues/500398345","source":"chrome-cve-admin@google.com"}]}},{"cve":{"id":"CVE-2026-9925","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:50.600","lastModified":"2026-05-29T17:14:31.493","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Use after free in ANGLE in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H","baseScore":8.3,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.6,"impactScore":6.0}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-416"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"148.0.7778.216","matchCriteriaId":"E59192D9-BF13-4B43-B69F-869A6BF83955"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*","matchCriteriaId":"A2572D17-1DE6-457B-99CC-64AFD54487EA"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"148.0.7778.215","matchCriteriaId":"875ACED4-0D6D-4BAA-8FAF-F13B5FEDF09A"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*","matchCriteriaId":"387021A0-AF36-463C-A605-32EA7DAC172E"},{"vulnerable":false,"criteria":"cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*","matchCriteriaId":"703AF700-7A70-47E2-BC3A-7FD03B3CA9C1"}]}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com","tags":["Vendor Advisory","Release Notes"]},{"url":"https://issues.chromium.org/issues/500536458","source":"chrome-cve-admin@google.com","tags":["Permissions Required"]}]}},{"cve":{"id":"CVE-2026-9926","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:50.700","lastModified":"2026-05-29T17:16:37.260","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Heap buffer overflow in ANGLE in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H","baseScore":8.3,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.6,"impactScore":6.0}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-122"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"148.0.7778.216","matchCriteriaId":"E59192D9-BF13-4B43-B69F-869A6BF83955"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*","matchCriteriaId":"A2572D17-1DE6-457B-99CC-64AFD54487EA"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"148.0.7778.215","matchCriteriaId":"875ACED4-0D6D-4BAA-8FAF-F13B5FEDF09A"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*","matchCriteriaId":"387021A0-AF36-463C-A605-32EA7DAC172E"},{"vulnerable":false,"criteria":"cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*","matchCriteriaId":"703AF700-7A70-47E2-BC3A-7FD03B3CA9C1"}]}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com","tags":["Vendor Advisory","Release Notes"]},{"url":"https://issues.chromium.org/issues/500540748","source":"chrome-cve-admin@google.com","tags":["Permissions Required"]}]}},{"cve":{"id":"CVE-2026-9927","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:50.800","lastModified":"2026-05-29T17:49:54.513","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Use after free in ANGLE in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":5.9}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-416"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"148.0.7778.215","matchCriteriaId":"875ACED4-0D6D-4BAA-8FAF-F13B5FEDF09A"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*","matchCriteriaId":"387021A0-AF36-463C-A605-32EA7DAC172E"},{"vulnerable":false,"criteria":"cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*","matchCriteriaId":"703AF700-7A70-47E2-BC3A-7FD03B3CA9C1"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"148.0.7778.216","matchCriteriaId":"E59192D9-BF13-4B43-B69F-869A6BF83955"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*","matchCriteriaId":"A2572D17-1DE6-457B-99CC-64AFD54487EA"}]}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com","tags":["Release Notes"]},{"url":"https://issues.chromium.org/issues/500540958","source":"chrome-cve-admin@google.com","tags":["Permissions Required"]}]}},{"cve":{"id":"CVE-2026-9928","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:50.900","lastModified":"2026-05-29T17:49:00.253","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Out of bounds read in ANGLE in Google Chrome on Windows prior to 148.0.7778.216 allowed a remote attacker to execute arbitrary code via a crafted HTML page. (Chromium security severity: High)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":5.9}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-125"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"148.0.7778.216","matchCriteriaId":"E59192D9-BF13-4B43-B69F-869A6BF83955"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*","matchCriteriaId":"A2572D17-1DE6-457B-99CC-64AFD54487EA"}]}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com","tags":["Release Notes"]},{"url":"https://issues.chromium.org/issues/501125002","source":"chrome-cve-admin@google.com","tags":["Permissions Required"]}]}},{"cve":{"id":"CVE-2026-9929","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:50.997","lastModified":"2026-05-29T18:17:15.290","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Inappropriate implementation in WebGL in Google Chrome on Android prior to 148.0.7778.216 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: High)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N","baseScore":4.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":1.4}]},"weaknesses":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-200"}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com"},{"url":"https://issues.chromium.org/issues/501367791","source":"chrome-cve-admin@google.com"}]}},{"cve":{"id":"CVE-2026-9930","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:51.090","lastModified":"2026-05-29T19:16:29.927","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Out of bounds write in Dawn in Google Chrome on Mac prior to 148.0.7778.216 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page. (Chromium security severity: High)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N","baseScore":4.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":1.4}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-787"}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com"},{"url":"https://issues.chromium.org/issues/501499832","source":"chrome-cve-admin@google.com"}]}},{"cve":{"id":"CVE-2026-9931","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:51.197","lastModified":"2026-05-29T17:12:00.247","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Use after free in GPU in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H","baseScore":8.3,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.6,"impactScore":6.0}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-416"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"148.0.7778.216","matchCriteriaId":"E59192D9-BF13-4B43-B69F-869A6BF83955"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*","matchCriteriaId":"A2572D17-1DE6-457B-99CC-64AFD54487EA"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"148.0.7778.215","matchCriteriaId":"875ACED4-0D6D-4BAA-8FAF-F13B5FEDF09A"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*","matchCriteriaId":"387021A0-AF36-463C-A605-32EA7DAC172E"},{"vulnerable":false,"criteria":"cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*","matchCriteriaId":"703AF700-7A70-47E2-BC3A-7FD03B3CA9C1"}]}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com","tags":["Vendor Advisory","Release Notes"]},{"url":"https://issues.chromium.org/issues/501524262","source":"chrome-cve-admin@google.com","tags":["Permissions Required"]}]}},{"cve":{"id":"CVE-2026-9932","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:51.300","lastModified":"2026-05-29T16:16:38.643","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Use after free in ANGLE in Google Chrome on Windows prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H","baseScore":8.3,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.6,"impactScore":6.0}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-416"}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com"},{"url":"https://issues.chromium.org/issues/501563323","source":"chrome-cve-admin@google.com"}]}},{"cve":{"id":"CVE-2026-9933","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:51.417","lastModified":"2026-05-29T18:27:09.793","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Use after free in Input in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.6,"impactScore":5.9}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-416"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"148.0.7778.216","matchCriteriaId":"E59192D9-BF13-4B43-B69F-869A6BF83955"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*","matchCriteriaId":"A2572D17-1DE6-457B-99CC-64AFD54487EA"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"148.0.7778.215","matchCriteriaId":"875ACED4-0D6D-4BAA-8FAF-F13B5FEDF09A"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*","matchCriteriaId":"387021A0-AF36-463C-A605-32EA7DAC172E"},{"vulnerable":false,"criteria":"cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*","matchCriteriaId":"703AF700-7A70-47E2-BC3A-7FD03B3CA9C1"}]}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com","tags":["Vendor Advisory","Release Notes"]},{"url":"https://issues.chromium.org/issues/501575979","source":"chrome-cve-admin@google.com","tags":["Permissions Required"]}]}},{"cve":{"id":"CVE-2026-9935","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:51.613","lastModified":"2026-05-29T18:26:36.823","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Uninitialized Use in ANGLE in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: High)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N","baseScore":4.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":1.4}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-457"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"148.0.7778.216","matchCriteriaId":"E59192D9-BF13-4B43-B69F-869A6BF83955"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*","matchCriteriaId":"A2572D17-1DE6-457B-99CC-64AFD54487EA"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"148.0.7778.215","matchCriteriaId":"875ACED4-0D6D-4BAA-8FAF-F13B5FEDF09A"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*","matchCriteriaId":"387021A0-AF36-463C-A605-32EA7DAC172E"},{"vulnerable":false,"criteria":"cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*","matchCriteriaId":"703AF700-7A70-47E2-BC3A-7FD03B3CA9C1"}]}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com","tags":["Vendor Advisory","Release Notes"]},{"url":"https://issues.chromium.org/issues/501584689","source":"chrome-cve-admin@google.com","tags":["Permissions Required"]}]}},{"cve":{"id":"CVE-2026-9936","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:51.723","lastModified":"2026-05-29T16:52:57.800","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Use after free in GFX in Google Chrome on Mac prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H","baseScore":8.3,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.6,"impactScore":6.0}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-416"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"148.0.7778.216","matchCriteriaId":"E59192D9-BF13-4B43-B69F-869A6BF83955"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*","matchCriteriaId":"387021A0-AF36-463C-A605-32EA7DAC172E"}]}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com","tags":["Release Notes","Vendor Advisory"]},{"url":"https://issues.chromium.org/issues/502104354","source":"chrome-cve-admin@google.com","tags":["Permissions Required"]}]}},{"cve":{"id":"CVE-2026-9937","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:51.830","lastModified":"2026-05-29T16:52:33.860","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Use after free in UI in Google Chrome on Windows prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H","baseScore":8.3,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.6,"impactScore":6.0}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-416"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"148.0.7778.216","matchCriteriaId":"E59192D9-BF13-4B43-B69F-869A6BF83955"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*","matchCriteriaId":"A2572D17-1DE6-457B-99CC-64AFD54487EA"}]}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com","tags":["Release Notes","Vendor Advisory"]},{"url":"https://issues.chromium.org/issues/502112506","source":"chrome-cve-admin@google.com","tags":["Permissions Required"]}]}},{"cve":{"id":"CVE-2026-9938","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:51.930","lastModified":"2026-05-29T17:12:38.720","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Inappropriate implementation in V8 in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":5.9}]},"weaknesses":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-94"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"148.0.7778.216","matchCriteriaId":"E59192D9-BF13-4B43-B69F-869A6BF83955"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*","matchCriteriaId":"A2572D17-1DE6-457B-99CC-64AFD54487EA"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"148.0.7778.215","matchCriteriaId":"875ACED4-0D6D-4BAA-8FAF-F13B5FEDF09A"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*","matchCriteriaId":"387021A0-AF36-463C-A605-32EA7DAC172E"},{"vulnerable":false,"criteria":"cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*","matchCriteriaId":"703AF700-7A70-47E2-BC3A-7FD03B3CA9C1"}]}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com","tags":["Vendor Advisory","Release Notes"]},{"url":"https://issues.chromium.org/issues/502300817","source":"chrome-cve-admin@google.com","tags":["Permissions Required"]}]}},{"cve":{"id":"CVE-2026-9939","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:52.023","lastModified":"2026-05-29T17:13:00.720","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Heap buffer overflow in WebCodecs in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":5.9}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-122"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"148.0.7778.216","matchCriteriaId":"E59192D9-BF13-4B43-B69F-869A6BF83955"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*","matchCriteriaId":"A2572D17-1DE6-457B-99CC-64AFD54487EA"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"148.0.7778.215","matchCriteriaId":"875ACED4-0D6D-4BAA-8FAF-F13B5FEDF09A"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*","matchCriteriaId":"387021A0-AF36-463C-A605-32EA7DAC172E"},{"vulnerable":false,"criteria":"cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*","matchCriteriaId":"703AF700-7A70-47E2-BC3A-7FD03B3CA9C1"}]}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com","tags":["Vendor Advisory","Release Notes"]},{"url":"https://issues.chromium.org/issues/502735235","source":"chrome-cve-admin@google.com","tags":["Permissions Required"]}]}},{"cve":{"id":"CVE-2026-9940","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:52.123","lastModified":"2026-05-29T19:16:30.097","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Heap buffer overflow in ANGLE in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":5.9}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-122"}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com"},{"url":"https://issues.chromium.org/issues/502738003","source":"chrome-cve-admin@google.com"}]}},{"cve":{"id":"CVE-2026-9942","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:52.333","lastModified":"2026-05-29T18:26:02.940","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Uninitialized Use in ANGLE in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to bypass site isolation via a crafted HTML page. (Chromium security severity: High)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L","baseScore":5.0,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"LOW"},"exploitabilityScore":1.6,"impactScore":3.4}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-457"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"148.0.7778.216","matchCriteriaId":"E59192D9-BF13-4B43-B69F-869A6BF83955"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*","matchCriteriaId":"A2572D17-1DE6-457B-99CC-64AFD54487EA"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"148.0.7778.215","matchCriteriaId":"875ACED4-0D6D-4BAA-8FAF-F13B5FEDF09A"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*","matchCriteriaId":"387021A0-AF36-463C-A605-32EA7DAC172E"},{"vulnerable":false,"criteria":"cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*","matchCriteriaId":"703AF700-7A70-47E2-BC3A-7FD03B3CA9C1"}]}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com","tags":["Release Notes","Vendor Advisory"]},{"url":"https://issues.chromium.org/issues/503438092","source":"chrome-cve-admin@google.com","tags":["Permissions Required"]}]}},{"cve":{"id":"CVE-2026-9943","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:52.433","lastModified":"2026-05-29T18:17:16.017","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Out of bounds read in WebGL in Google Chrome on Android prior to 148.0.7778.216 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: High)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N","baseScore":4.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":1.4}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-125"}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com"},{"url":"https://issues.chromium.org/issues/503464551","source":"chrome-cve-admin@google.com"}]}},{"cve":{"id":"CVE-2026-9944","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:52.540","lastModified":"2026-05-29T18:17:16.170","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Uninitialized Use in ANGLE in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page. (Chromium security severity: High)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N","baseScore":3.1,"baseSeverity":"LOW","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":1.6,"impactScore":1.4}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-457"}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com"},{"url":"https://issues.chromium.org/issues/503471286","source":"chrome-cve-admin@google.com"}]}},{"cve":{"id":"CVE-2026-9945","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:52.637","lastModified":"2026-05-29T16:29:39.160","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Use after free in Media in Google Chrome on Windows prior to 148.0.7778.216 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":5.9}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-416"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"148.0.7778.216","matchCriteriaId":"E59192D9-BF13-4B43-B69F-869A6BF83955"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*","matchCriteriaId":"A2572D17-1DE6-457B-99CC-64AFD54487EA"}]}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com","tags":["Release Notes"]},{"url":"https://issues.chromium.org/issues/503565293","source":"chrome-cve-admin@google.com","tags":["Permissions Required"]}]}},{"cve":{"id":"CVE-2026-9946","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:52.740","lastModified":"2026-05-29T16:29:30.010","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Use after free in ANGLE in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)"}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H","baseScore":8.3,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.6,"impactScore":6.0},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H","baseScore":8.3,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.6,"impactScore":6.0}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-416"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"148.0.7778.216","matchCriteriaId":"E59192D9-BF13-4B43-B69F-869A6BF83955"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*","matchCriteriaId":"A2572D17-1DE6-457B-99CC-64AFD54487EA"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"148.0.7778.215","matchCriteriaId":"875ACED4-0D6D-4BAA-8FAF-F13B5FEDF09A"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*","matchCriteriaId":"387021A0-AF36-463C-A605-32EA7DAC172E"},{"vulnerable":false,"criteria":"cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*","matchCriteriaId":"703AF700-7A70-47E2-BC3A-7FD03B3CA9C1"}]}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com","tags":["Vendor Advisory"]},{"url":"https://issues.chromium.org/issues/503596863","source":"chrome-cve-admin@google.com","tags":["Permissions Required"]}]}},{"cve":{"id":"CVE-2026-9947","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:52.840","lastModified":"2026-05-29T16:29:06.490","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Use after free in XML in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":5.9}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-416"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"148.0.7778.216","matchCriteriaId":"E59192D9-BF13-4B43-B69F-869A6BF83955"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*","matchCriteriaId":"A2572D17-1DE6-457B-99CC-64AFD54487EA"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"148.0.7778.215","matchCriteriaId":"875ACED4-0D6D-4BAA-8FAF-F13B5FEDF09A"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*","matchCriteriaId":"387021A0-AF36-463C-A605-32EA7DAC172E"},{"vulnerable":false,"criteria":"cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*","matchCriteriaId":"703AF700-7A70-47E2-BC3A-7FD03B3CA9C1"}]}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com","tags":["Release Notes"]},{"url":"https://issues.chromium.org/issues/503627446","source":"chrome-cve-admin@google.com","tags":["Permissions Required"]}]}},{"cve":{"id":"CVE-2026-9948","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:52.940","lastModified":"2026-05-29T16:16:38.833","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Use after free in Views in Google Chrome on Mac prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H","baseScore":8.3,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.6,"impactScore":6.0}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-416"}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com"},{"url":"https://issues.chromium.org/issues/503790201","source":"chrome-cve-admin@google.com"}]}},{"cve":{"id":"CVE-2026-9949","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:53.050","lastModified":"2026-05-29T16:28:25.540","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Use after free in Core in Google Chrome on Windows prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H","baseScore":8.3,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.6,"impactScore":6.0}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-416"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"148.0.7778.216","matchCriteriaId":"E59192D9-BF13-4B43-B69F-869A6BF83955"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*","matchCriteriaId":"A2572D17-1DE6-457B-99CC-64AFD54487EA"}]}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com","tags":["Release Notes"]},{"url":"https://issues.chromium.org/issues/503793153","source":"chrome-cve-admin@google.com","tags":["Permissions Required","Vendor Advisory"]}]}},{"cve":{"id":"CVE-2026-9950","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:53.150","lastModified":"2026-05-29T18:17:16.357","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Insufficient validation of untrusted input in iOS in Google Chrome on iOS prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to bypass same origin policy via a crafted HTML page. (Chromium security severity: High)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N","baseScore":3.1,"baseSeverity":"LOW","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":1.6,"impactScore":1.4}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-20"}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com"},{"url":"https://issues.chromium.org/issues/503862359","source":"chrome-cve-admin@google.com"}]}},{"cve":{"id":"CVE-2026-9951","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:53.250","lastModified":"2026-05-29T16:28:02.983","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Use after free in UI in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H","baseScore":8.3,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.6,"impactScore":6.0}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-416"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"148.0.7778.215","matchCriteriaId":"875ACED4-0D6D-4BAA-8FAF-F13B5FEDF09A"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*","matchCriteriaId":"387021A0-AF36-463C-A605-32EA7DAC172E"},{"vulnerable":false,"criteria":"cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*","matchCriteriaId":"703AF700-7A70-47E2-BC3A-7FD03B3CA9C1"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"148.0.7778.216","matchCriteriaId":"E59192D9-BF13-4B43-B69F-869A6BF83955"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*","matchCriteriaId":"A2572D17-1DE6-457B-99CC-64AFD54487EA"}]}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com","tags":["Release Notes"]},{"url":"https://issues.chromium.org/issues/503873388","source":"chrome-cve-admin@google.com","tags":["Permissions Required","Vendor Advisory"]}]}},{"cve":{"id":"CVE-2026-9952","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:53.357","lastModified":"2026-05-29T16:27:03.130","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Use after free in WebAudio in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":5.9}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-416"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"148.0.7778.216","matchCriteriaId":"E59192D9-BF13-4B43-B69F-869A6BF83955"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*","matchCriteriaId":"A2572D17-1DE6-457B-99CC-64AFD54487EA"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"148.0.7778.215","matchCriteriaId":"875ACED4-0D6D-4BAA-8FAF-F13B5FEDF09A"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*","matchCriteriaId":"387021A0-AF36-463C-A605-32EA7DAC172E"},{"vulnerable":false,"criteria":"cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*","matchCriteriaId":"703AF700-7A70-47E2-BC3A-7FD03B3CA9C1"}]}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com","tags":["Release Notes"]},{"url":"https://issues.chromium.org/issues/503929476","source":"chrome-cve-admin@google.com","tags":["Permissions Required"]}]}},{"cve":{"id":"CVE-2026-9953","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:53.470","lastModified":"2026-05-29T18:17:16.517","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Out of bounds read in ANGLE in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. (Chromium security severity: High)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":3.6}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-125"}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com"},{"url":"https://issues.chromium.org/issues/503985322","source":"chrome-cve-admin@google.com"}]}},{"cve":{"id":"CVE-2026-9954","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:53.590","lastModified":"2026-05-29T19:16:30.297","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Use after free in TabStrip in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.6,"impactScore":5.9}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-416"}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com"},{"url":"https://issues.chromium.org/issues/504175497","source":"chrome-cve-admin@google.com"}]}},{"cve":{"id":"CVE-2026-9955","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:53.703","lastModified":"2026-05-29T18:17:16.680","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Inappropriate implementation in iOS in Google Chrome on iOS prior to 148.0.7778.216 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: High)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N","baseScore":4.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":1.4}]},"weaknesses":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-200"}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com"},{"url":"https://issues.chromium.org/issues/504184408","source":"chrome-cve-admin@google.com"}]}},{"cve":{"id":"CVE-2026-9956","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:53.797","lastModified":"2026-05-29T16:20:09.000","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Use after free in iOS in Google Chrome on iOS prior to 148.0.7778.216 allowed a remote attacker who convinced a user to engage in specific UI gestures to execute arbitrary code via a crafted HTML page. (Chromium security severity: High)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.6,"impactScore":5.9}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-416"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"148.0.7778.216","matchCriteriaId":"E59192D9-BF13-4B43-B69F-869A6BF83955"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:apple:iphone_os:-:*:*:*:*:*:*:*","matchCriteriaId":"B5415705-33E5-46D5-8E4D-9EBADC8C5705"}]}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com","tags":["Release Notes"]},{"url":"https://issues.chromium.org/issues/504195132","source":"chrome-cve-admin@google.com","tags":["Permissions Required"]}]}},{"cve":{"id":"CVE-2026-9957","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:53.900","lastModified":"2026-05-29T16:19:18.157","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Use after free in PDF in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted PDF file. (Chromium security severity: High)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":5.9}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-416"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"148.0.7778.216","matchCriteriaId":"E59192D9-BF13-4B43-B69F-869A6BF83955"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*","matchCriteriaId":"A2572D17-1DE6-457B-99CC-64AFD54487EA"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"148.0.7778.215","matchCriteriaId":"875ACED4-0D6D-4BAA-8FAF-F13B5FEDF09A"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*","matchCriteriaId":"387021A0-AF36-463C-A605-32EA7DAC172E"},{"vulnerable":false,"criteria":"cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*","matchCriteriaId":"703AF700-7A70-47E2-BC3A-7FD03B3CA9C1"}]}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com","tags":["Release Notes"]},{"url":"https://issues.chromium.org/issues/504516117","source":"chrome-cve-admin@google.com","tags":["Permissions Required"]}]}},{"cve":{"id":"CVE-2026-9958","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:54.000","lastModified":"2026-05-29T19:16:30.470","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Use after free in PDFium in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to potentially exploit heap corruption via a crafted PDF file. (Chromium security severity: High)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":5.9}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-416"}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com"},{"url":"https://issues.chromium.org/issues/504555886","source":"chrome-cve-admin@google.com"}]}},{"cve":{"id":"CVE-2026-9959","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:54.100","lastModified":"2026-05-29T20:38:45.123","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Race in WebRTC in Google Chrome on Windows prior to 148.0.7778.216 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: High)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N","baseScore":3.1,"baseSeverity":"LOW","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":1.6,"impactScore":1.4}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-362"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"148.0.7778.216","matchCriteriaId":"E59192D9-BF13-4B43-B69F-869A6BF83955"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*","matchCriteriaId":"A2572D17-1DE6-457B-99CC-64AFD54487EA"}]}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com","tags":["Release Notes"]},{"url":"https://issues.chromium.org/issues/504557432","source":"chrome-cve-admin@google.com","tags":["Permissions Required"]}]}},{"cve":{"id":"CVE-2026-9960","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:54.213","lastModified":"2026-05-29T16:18:15.647","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Integer overflow in PDFium in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to execute arbitrary code inside a sandbox via a crafted font file. (Chromium security severity: High)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.6,"impactScore":5.9}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-472"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"148.0.7778.216","matchCriteriaId":"E59192D9-BF13-4B43-B69F-869A6BF83955"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*","matchCriteriaId":"A2572D17-1DE6-457B-99CC-64AFD54487EA"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"148.0.7778.215","matchCriteriaId":"875ACED4-0D6D-4BAA-8FAF-F13B5FEDF09A"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*","matchCriteriaId":"387021A0-AF36-463C-A605-32EA7DAC172E"},{"vulnerable":false,"criteria":"cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*","matchCriteriaId":"703AF700-7A70-47E2-BC3A-7FD03B3CA9C1"}]}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com","tags":["Release Notes"]},{"url":"https://issues.chromium.org/issues/504573260","source":"chrome-cve-admin@google.com","tags":["Permissions Required"]}]}},{"cve":{"id":"CVE-2026-9961","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:54.320","lastModified":"2026-05-29T20:35:20.490","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Use after free in SurfaceCapture in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":5.9}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-416"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"148.0.7778.215","matchCriteriaId":"875ACED4-0D6D-4BAA-8FAF-F13B5FEDF09A"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*","matchCriteriaId":"387021A0-AF36-463C-A605-32EA7DAC172E"},{"vulnerable":false,"criteria":"cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*","matchCriteriaId":"703AF700-7A70-47E2-BC3A-7FD03B3CA9C1"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"148.0.7778.216","matchCriteriaId":"E59192D9-BF13-4B43-B69F-869A6BF83955"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*","matchCriteriaId":"A2572D17-1DE6-457B-99CC-64AFD54487EA"}]}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com","tags":["Release Notes"]},{"url":"https://issues.chromium.org/issues/504710769","source":"chrome-cve-admin@google.com","tags":["Permissions Required"]}]}},{"cve":{"id":"CVE-2026-9962","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:54.427","lastModified":"2026-05-29T16:17:15.097","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Use after free in WebRTC in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":5.9}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-416"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"148.0.7778.216","matchCriteriaId":"E59192D9-BF13-4B43-B69F-869A6BF83955"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*","matchCriteriaId":"A2572D17-1DE6-457B-99CC-64AFD54487EA"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"148.0.7778.215","matchCriteriaId":"875ACED4-0D6D-4BAA-8FAF-F13B5FEDF09A"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*","matchCriteriaId":"387021A0-AF36-463C-A605-32EA7DAC172E"},{"vulnerable":false,"criteria":"cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*","matchCriteriaId":"703AF700-7A70-47E2-BC3A-7FD03B3CA9C1"}]}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com","tags":["Vendor Advisory"]},{"url":"https://issues.chromium.org/issues/504716948","source":"chrome-cve-admin@google.com","tags":["Permissions Required"]}]}},{"cve":{"id":"CVE-2026-9963","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:54.527","lastModified":"2026-05-29T16:06:09.290","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Uninitialized Use in iOS in Google Chrome on iOS prior to 148.0.7778.216 allowed a remote attacker who convinced a user to engage in specific UI gestures to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.6,"impactScore":5.9}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-457"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"148.0.7778.216","matchCriteriaId":"E59192D9-BF13-4B43-B69F-869A6BF83955"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:apple:iphone_os:-:*:*:*:*:*:*:*","matchCriteriaId":"B5415705-33E5-46D5-8E4D-9EBADC8C5705"}]}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com","tags":["Release Notes"]},{"url":"https://issues.chromium.org/issues/505143241","source":"chrome-cve-admin@google.com","tags":["Permissions Required","Vendor Advisory"]}]}},{"cve":{"id":"CVE-2026-9964","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:54.623","lastModified":"2026-05-29T20:33:33.310","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Use after free in Bluetooth in Google Chrome on Mac prior to 148.0.7778.216 allowed an attacker who convinced a user to install a malicious extension to execute arbitrary code via a crafted Chrome Extension. (Chromium security severity: High)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":8.1,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.2,"impactScore":5.9}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-416"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"148.0.7778.216","matchCriteriaId":"E59192D9-BF13-4B43-B69F-869A6BF83955"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*","matchCriteriaId":"387021A0-AF36-463C-A605-32EA7DAC172E"}]}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com","tags":["Release Notes"]},{"url":"https://issues.chromium.org/issues/505190999","source":"chrome-cve-admin@google.com","tags":["Permissions Required"]}]}},{"cve":{"id":"CVE-2026-9965","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:54.720","lastModified":"2026-05-29T20:33:01.573","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Out of bounds write in ANGLE in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":5.9}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-787"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"148.0.7778.215","matchCriteriaId":"875ACED4-0D6D-4BAA-8FAF-F13B5FEDF09A"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*","matchCriteriaId":"387021A0-AF36-463C-A605-32EA7DAC172E"},{"vulnerable":false,"criteria":"cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*","matchCriteriaId":"703AF700-7A70-47E2-BC3A-7FD03B3CA9C1"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"148.0.7778.216","matchCriteriaId":"E59192D9-BF13-4B43-B69F-869A6BF83955"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*","matchCriteriaId":"A2572D17-1DE6-457B-99CC-64AFD54487EA"}]}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com","tags":["Release Notes"]},{"url":"https://issues.chromium.org/issues/506377574","source":"chrome-cve-admin@google.com","tags":["Permissions Required"]}]}},{"cve":{"id":"CVE-2026-9966","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:54.817","lastModified":"2026-05-29T20:28:06.317","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Integer overflow in XML in Google Chrome on Windows prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H","baseScore":8.3,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.6,"impactScore":6.0}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-472"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"148.0.7778.216","matchCriteriaId":"E59192D9-BF13-4B43-B69F-869A6BF83955"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*","matchCriteriaId":"A2572D17-1DE6-457B-99CC-64AFD54487EA"}]}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com","tags":["Release Notes"]},{"url":"https://issues.chromium.org/issues/506388321","source":"chrome-cve-admin@google.com","tags":["Permissions Required"]}]}},{"cve":{"id":"CVE-2026-9967","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:54.913","lastModified":"2026-05-29T16:16:39.157","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Out of bounds write in GPU in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H","baseScore":9.6,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":6.0}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-787"}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com"},{"url":"https://issues.chromium.org/issues/506414791","source":"chrome-cve-admin@google.com"}]}},{"cve":{"id":"CVE-2026-9968","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:55.017","lastModified":"2026-05-29T16:44:19.430","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Integer overflow in V8 in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":5.9}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-472"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"148.0.7778.216","matchCriteriaId":"E59192D9-BF13-4B43-B69F-869A6BF83955"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*","matchCriteriaId":"A2572D17-1DE6-457B-99CC-64AFD54487EA"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"148.0.7778.215","matchCriteriaId":"875ACED4-0D6D-4BAA-8FAF-F13B5FEDF09A"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*","matchCriteriaId":"387021A0-AF36-463C-A605-32EA7DAC172E"},{"vulnerable":false,"criteria":"cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*","matchCriteriaId":"703AF700-7A70-47E2-BC3A-7FD03B3CA9C1"}]}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com","tags":["Vendor Advisory"]},{"url":"https://issues.chromium.org/issues/506499280","source":"chrome-cve-admin@google.com","tags":["Permissions Required"]}]}},{"cve":{"id":"CVE-2026-9969","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:55.117","lastModified":"2026-05-29T14:16:34.500","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Insufficient validation of untrusted input in ANGLE in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to execute arbitrary code via a crafted HTML page. (Chromium security severity: High)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":5.9}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-20"}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com"},{"url":"https://issues.chromium.org/issues/506550494","source":"chrome-cve-admin@google.com"}]}},{"cve":{"id":"CVE-2026-9970","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:55.213","lastModified":"2026-05-29T15:16:26.693","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Use after free in WebGL in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H","baseScore":8.3,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.6,"impactScore":6.0}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-416"}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com"},{"url":"https://issues.chromium.org/issues/506653647","source":"chrome-cve-admin@google.com"}]}},{"cve":{"id":"CVE-2026-9971","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:55.310","lastModified":"2026-05-29T18:17:17.170","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Inappropriate implementation in iOS in Google Chrome on iOS prior to 148.0.7778.216 allowed a remote attacker who convinced a user to engage in specific UI gestures to inject arbitrary scripts or HTML (UXSS) via a crafted HTML page. (Chromium security severity: High)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N","baseScore":5.4,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":2.5}]},"weaknesses":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-79"}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com"},{"url":"https://issues.chromium.org/issues/508448586","source":"chrome-cve-admin@google.com"}]}},{"cve":{"id":"CVE-2026-9972","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:55.407","lastModified":"2026-05-29T16:16:39.317","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Uninitialized Use in Gamepad in Google Chrome on Mac prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H","baseScore":8.3,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.6,"impactScore":6.0}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-457"}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com"},{"url":"https://issues.chromium.org/issues/508463705","source":"chrome-cve-admin@google.com"}]}},{"cve":{"id":"CVE-2026-9973","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:55.513","lastModified":"2026-05-29T16:44:03.647","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Out of bounds write in V8 in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":5.9}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-787"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"148.0.7778.216","matchCriteriaId":"E59192D9-BF13-4B43-B69F-869A6BF83955"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*","matchCriteriaId":"A2572D17-1DE6-457B-99CC-64AFD54487EA"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"148.0.7778.215","matchCriteriaId":"875ACED4-0D6D-4BAA-8FAF-F13B5FEDF09A"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*","matchCriteriaId":"387021A0-AF36-463C-A605-32EA7DAC172E"},{"vulnerable":false,"criteria":"cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*","matchCriteriaId":"703AF700-7A70-47E2-BC3A-7FD03B3CA9C1"}]}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com","tags":["Vendor Advisory"]},{"url":"https://issues.chromium.org/issues/509268941","source":"chrome-cve-admin@google.com","tags":["Permissions Required"]}]}},{"cve":{"id":"CVE-2026-9974","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:55.623","lastModified":"2026-05-29T16:16:39.487","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Out of bounds write in GPU in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H","baseScore":8.3,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.6,"impactScore":6.0}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-787"}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com"},{"url":"https://issues.chromium.org/issues/511710468","source":"chrome-cve-admin@google.com"}]}},{"cve":{"id":"CVE-2026-9975","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:55.740","lastModified":"2026-05-29T18:17:17.350","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Out of bounds read and write in ANGLE in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H","baseScore":8.3,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.6,"impactScore":6.0}]},"weaknesses":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-125"},{"lang":"en","value":"CWE-787"}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com"},{"url":"https://issues.chromium.org/issues/511719039","source":"chrome-cve-admin@google.com"}]}},{"cve":{"id":"CVE-2026-9976","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:55.833","lastModified":"2026-05-29T16:43:46.580","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Inappropriate implementation in USB in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to execute arbitrary code via a crafted HTML page. (Chromium security severity: High)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":5.9}]},"weaknesses":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-94"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"148.0.7778.216","matchCriteriaId":"E59192D9-BF13-4B43-B69F-869A6BF83955"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*","matchCriteriaId":"A2572D17-1DE6-457B-99CC-64AFD54487EA"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"148.0.7778.215","matchCriteriaId":"875ACED4-0D6D-4BAA-8FAF-F13B5FEDF09A"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*","matchCriteriaId":"387021A0-AF36-463C-A605-32EA7DAC172E"},{"vulnerable":false,"criteria":"cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*","matchCriteriaId":"703AF700-7A70-47E2-BC3A-7FD03B3CA9C1"}]}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com","tags":["Vendor Advisory"]},{"url":"https://issues.chromium.org/issues/511732828","source":"chrome-cve-admin@google.com","tags":["Permissions Required"]}]}},{"cve":{"id":"CVE-2026-9977","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:55.927","lastModified":"2026-05-29T16:16:39.807","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Insufficient validation of untrusted input in WebShare in Google Chrome on Android prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H","baseScore":8.3,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.6,"impactScore":6.0}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-20"}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com"},{"url":"https://issues.chromium.org/issues/511741173","source":"chrome-cve-admin@google.com"}]}},{"cve":{"id":"CVE-2026-9978","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:56.027","lastModified":"2026-05-29T16:43:30.273","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Use after free in Glic in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":5.9}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-416"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"148.0.7778.216","matchCriteriaId":"E59192D9-BF13-4B43-B69F-869A6BF83955"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*","matchCriteriaId":"A2572D17-1DE6-457B-99CC-64AFD54487EA"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"148.0.7778.215","matchCriteriaId":"875ACED4-0D6D-4BAA-8FAF-F13B5FEDF09A"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*","matchCriteriaId":"387021A0-AF36-463C-A605-32EA7DAC172E"},{"vulnerable":false,"criteria":"cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*","matchCriteriaId":"703AF700-7A70-47E2-BC3A-7FD03B3CA9C1"}]}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com","tags":["Vendor Advisory"]},{"url":"https://issues.chromium.org/issues/511741396","source":"chrome-cve-admin@google.com","tags":["Permissions Required"]}]}},{"cve":{"id":"CVE-2026-9979","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:56.127","lastModified":"2026-05-29T19:16:30.953","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Insufficient validation of untrusted input in Input in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to bypass site isolation via a crafted HTML page. (Chromium security severity: High)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L","baseScore":5.0,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"LOW"},"exploitabilityScore":1.6,"impactScore":3.4}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-20"}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com"},{"url":"https://issues.chromium.org/issues/511742228","source":"chrome-cve-admin@google.com"}]}},{"cve":{"id":"CVE-2026-9980","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:56.230","lastModified":"2026-05-29T19:16:31.113","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Insufficient validation of untrusted input in Printing in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to bypass site isolation via a crafted HTML page. (Chromium security severity: High)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L","baseScore":5.0,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"LOW"},"exploitabilityScore":1.6,"impactScore":3.4}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-20"}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com"},{"url":"https://issues.chromium.org/issues/511776372","source":"chrome-cve-admin@google.com"}]}},{"cve":{"id":"CVE-2026-9981","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:56.333","lastModified":"2026-05-29T19:16:31.277","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Inappropriate implementation in Skia in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. (Chromium security severity: High)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":3.6}]},"weaknesses":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-200"}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com"},{"url":"https://issues.chromium.org/issues/512995705","source":"chrome-cve-admin@google.com"}]}},{"cve":{"id":"CVE-2026-9982","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:56.437","lastModified":"2026-05-29T16:16:39.960","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Insufficient validation of untrusted input in ANGLE in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H","baseScore":8.3,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.6,"impactScore":6.0}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-20"}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com"},{"url":"https://issues.chromium.org/issues/513001247","source":"chrome-cve-admin@google.com"}]}},{"cve":{"id":"CVE-2026-9983","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:56.537","lastModified":"2026-05-29T16:42:15.363","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Type Confusion in Skia in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":5.9}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-843"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"148.0.7778.216","matchCriteriaId":"E59192D9-BF13-4B43-B69F-869A6BF83955"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*","matchCriteriaId":"A2572D17-1DE6-457B-99CC-64AFD54487EA"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"148.0.7778.215","matchCriteriaId":"875ACED4-0D6D-4BAA-8FAF-F13B5FEDF09A"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*","matchCriteriaId":"387021A0-AF36-463C-A605-32EA7DAC172E"},{"vulnerable":false,"criteria":"cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*","matchCriteriaId":"703AF700-7A70-47E2-BC3A-7FD03B3CA9C1"}]}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com","tags":["Vendor Advisory"]},{"url":"https://issues.chromium.org/issues/513001309","source":"chrome-cve-admin@google.com","tags":["Permissions Required"]}]}},{"cve":{"id":"CVE-2026-9984","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:56.637","lastModified":"2026-05-29T16:42:00.880","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Use after free in UI in Google Chrome on Windows prior to 148.0.7778.216 allowed a remote attacker to execute arbitrary code via a crafted HTML page. (Chromium security severity: High)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":5.9}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-416"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"148.0.7778.216","matchCriteriaId":"E59192D9-BF13-4B43-B69F-869A6BF83955"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*","matchCriteriaId":"A2572D17-1DE6-457B-99CC-64AFD54487EA"}]}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com","tags":["Vendor Advisory"]},{"url":"https://issues.chromium.org/issues/513002543","source":"chrome-cve-admin@google.com","tags":["Permissions Required"]}]}},{"cve":{"id":"CVE-2026-9985","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:56.740","lastModified":"2026-05-29T18:17:17.580","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Insufficient validation of untrusted input in Media in Google Chrome on ChromeOS prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to obtain potentially sensitive information from process memory via a crafted HTML page. (Chromium security severity: High)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:N/A:N","baseScore":5.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":1.6,"impactScore":3.6}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-20"}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com"},{"url":"https://issues.chromium.org/issues/513019760","source":"chrome-cve-admin@google.com"}]}},{"cve":{"id":"CVE-2026-9986","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:56.840","lastModified":"2026-05-29T20:27:43.160","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Insufficient validation of untrusted input in OptimizationGuide in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to perform UI spoofing via a crafted HTML page. (Chromium security severity: High)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:L","baseScore":4.2,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"NONE","availabilityImpact":"LOW"},"exploitabilityScore":1.6,"impactScore":2.5}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-20"}]},{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"NVD-CWE-noinfo"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"148.0.7778.216","matchCriteriaId":"E59192D9-BF13-4B43-B69F-869A6BF83955"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*","matchCriteriaId":"A2572D17-1DE6-457B-99CC-64AFD54487EA"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"148.0.7778.215","matchCriteriaId":"875ACED4-0D6D-4BAA-8FAF-F13B5FEDF09A"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*","matchCriteriaId":"387021A0-AF36-463C-A605-32EA7DAC172E"},{"vulnerable":false,"criteria":"cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*","matchCriteriaId":"703AF700-7A70-47E2-BC3A-7FD03B3CA9C1"}]}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com","tags":["Vendor Advisory"]},{"url":"https://issues.chromium.org/issues/513028160","source":"chrome-cve-admin@google.com","tags":["Permissions Required"]}]}},{"cve":{"id":"CVE-2026-9987","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:56.940","lastModified":"2026-05-29T16:41:42.507","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Insufficient validation of untrusted input in WebAppInstalls in Google Chrome on Android prior to 148.0.7778.216 allowed a local attacker to execute arbitrary code via a malicious file. (Chromium security severity: High)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","baseScore":7.8,"baseSeverity":"HIGH","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.8,"impactScore":5.9}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-20"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"148.0.7778.216","matchCriteriaId":"E59192D9-BF13-4B43-B69F-869A6BF83955"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:google:android:-:*:*:*:*:*:*:*","matchCriteriaId":"F8B9FEC8-73B6-43B8-B24E-1F7C20D91D26"}]}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com","tags":["Vendor Advisory"]},{"url":"https://issues.chromium.org/issues/513046475","source":"chrome-cve-admin@google.com","tags":["Permissions Required"]}]}},{"cve":{"id":"CVE-2026-9988","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:57.040","lastModified":"2026-05-29T20:26:56.690","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Use after free in WebRTC in Google Chrome on Linux prior to 148.0.7778.216 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H","baseScore":8.3,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.6,"impactScore":6.0}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-416"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"148.0.7778.216","matchCriteriaId":"E59192D9-BF13-4B43-B69F-869A6BF83955"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*","matchCriteriaId":"703AF700-7A70-47E2-BC3A-7FD03B3CA9C1"}]}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com","tags":["Vendor Advisory"]},{"url":"https://issues.chromium.org/issues/513049286","source":"chrome-cve-admin@google.com","tags":["Permissions Required"]}]}},{"cve":{"id":"CVE-2026-9989","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:57.140","lastModified":"2026-05-29T19:16:31.457","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Inappropriate implementation in Media in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to bypass same origin policy via a crafted video file. (Chromium security severity: High)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L","baseScore":6.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"LOW"},"exploitabilityScore":2.8,"impactScore":3.4}]},"weaknesses":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-346"}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com"},{"url":"https://issues.chromium.org/issues/513054053","source":"chrome-cve-admin@google.com"}]}},{"cve":{"id":"CVE-2026-9990","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:57.233","lastModified":"2026-05-29T19:16:31.623","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Use after free in WebAppInstalls in Google Chrome on Mac prior to 148.0.7778.216 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.6,"impactScore":5.9}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-416"}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com"},{"url":"https://issues.chromium.org/issues/513128608","source":"chrome-cve-admin@google.com"}]}},{"cve":{"id":"CVE-2026-9991","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:57.340","lastModified":"2026-05-29T18:17:18.547","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Inappropriate implementation in Media in Google Chrome on Windows prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page. (Chromium security severity: High)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N","baseScore":3.1,"baseSeverity":"LOW","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":1.6,"impactScore":1.4}]},"weaknesses":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-200"}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com"},{"url":"https://issues.chromium.org/issues/513173565","source":"chrome-cve-admin@google.com"}]}},{"cve":{"id":"CVE-2026-9992","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:57.433","lastModified":"2026-05-29T16:41:22.493","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Use after free in Network in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":5.9}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-416"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"148.0.7778.216","matchCriteriaId":"E59192D9-BF13-4B43-B69F-869A6BF83955"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*","matchCriteriaId":"A2572D17-1DE6-457B-99CC-64AFD54487EA"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"148.0.7778.215","matchCriteriaId":"875ACED4-0D6D-4BAA-8FAF-F13B5FEDF09A"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*","matchCriteriaId":"387021A0-AF36-463C-A605-32EA7DAC172E"},{"vulnerable":false,"criteria":"cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*","matchCriteriaId":"703AF700-7A70-47E2-BC3A-7FD03B3CA9C1"}]}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com","tags":["Vendor Advisory"]},{"url":"https://issues.chromium.org/issues/513177826","source":"chrome-cve-admin@google.com","tags":["Permissions Required"]}]}},{"cve":{"id":"CVE-2026-9993","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:57.530","lastModified":"2026-05-29T16:52:01.427","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Use after free in Views in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted PDF file. (Chromium security severity: High)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H","baseScore":8.3,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.6,"impactScore":6.0}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-416"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"148.0.7778.216","matchCriteriaId":"E59192D9-BF13-4B43-B69F-869A6BF83955"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*","matchCriteriaId":"A2572D17-1DE6-457B-99CC-64AFD54487EA"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"148.0.7778.215","matchCriteriaId":"875ACED4-0D6D-4BAA-8FAF-F13B5FEDF09A"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*","matchCriteriaId":"387021A0-AF36-463C-A605-32EA7DAC172E"},{"vulnerable":false,"criteria":"cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*","matchCriteriaId":"703AF700-7A70-47E2-BC3A-7FD03B3CA9C1"}]}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com","tags":["Vendor Advisory","Release Notes"]},{"url":"https://issues.chromium.org/issues/513208588","source":"chrome-cve-admin@google.com","tags":["Permissions Required"]}]}},{"cve":{"id":"CVE-2026-9994","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:57.630","lastModified":"2026-05-29T16:51:31.297","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Use after free in Core in Google Chrome on Windows prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H","baseScore":8.3,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.6,"impactScore":6.0}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-416"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"148.0.7778.216","matchCriteriaId":"E59192D9-BF13-4B43-B69F-869A6BF83955"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*","matchCriteriaId":"A2572D17-1DE6-457B-99CC-64AFD54487EA"}]}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com","tags":["Vendor Advisory","Release Notes"]},{"url":"https://issues.chromium.org/issues/513235131","source":"chrome-cve-admin@google.com","tags":["Permissions Required"]}]}},{"cve":{"id":"CVE-2026-9995","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:57.730","lastModified":"2026-05-29T16:40:56.180","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Use after free in WebXR in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":5.9}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-416"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"148.0.7778.216","matchCriteriaId":"E59192D9-BF13-4B43-B69F-869A6BF83955"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*","matchCriteriaId":"A2572D17-1DE6-457B-99CC-64AFD54487EA"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"148.0.7778.215","matchCriteriaId":"875ACED4-0D6D-4BAA-8FAF-F13B5FEDF09A"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*","matchCriteriaId":"387021A0-AF36-463C-A605-32EA7DAC172E"},{"vulnerable":false,"criteria":"cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*","matchCriteriaId":"703AF700-7A70-47E2-BC3A-7FD03B3CA9C1"}]}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com","tags":["Vendor Advisory"]},{"url":"https://issues.chromium.org/issues/513256572","source":"chrome-cve-admin@google.com","tags":["Permissions Required"]}]}},{"cve":{"id":"CVE-2026-9996","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:57.830","lastModified":"2026-05-29T18:17:18.730","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Out of bounds read in WebRTC in Google Chrome on Mac prior to 148.0.7778.216 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. (Chromium security severity: High)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":3.6}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-125"}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com"},{"url":"https://issues.chromium.org/issues/513268100","source":"chrome-cve-admin@google.com"}]}},{"cve":{"id":"CVE-2026-9997","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:57.933","lastModified":"2026-05-29T16:51:15.490","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Use after free in Input in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H","baseScore":8.3,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.6,"impactScore":6.0}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-416"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"148.0.7778.216","matchCriteriaId":"E59192D9-BF13-4B43-B69F-869A6BF83955"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*","matchCriteriaId":"A2572D17-1DE6-457B-99CC-64AFD54487EA"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"148.0.7778.215","matchCriteriaId":"875ACED4-0D6D-4BAA-8FAF-F13B5FEDF09A"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*","matchCriteriaId":"387021A0-AF36-463C-A605-32EA7DAC172E"},{"vulnerable":false,"criteria":"cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*","matchCriteriaId":"703AF700-7A70-47E2-BC3A-7FD03B3CA9C1"}]}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com","tags":["Vendor Advisory","Release Notes"]},{"url":"https://issues.chromium.org/issues/513324041","source":"chrome-cve-admin@google.com","tags":["Permissions Required"]}]}},{"cve":{"id":"CVE-2026-9998","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:58.037","lastModified":"2026-05-29T20:18:44.250","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Integer overflow in Skia in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H","baseScore":8.3,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.6,"impactScore":6.0}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-472"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"148.0.7778.216","matchCriteriaId":"E59192D9-BF13-4B43-B69F-869A6BF83955"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*","matchCriteriaId":"A2572D17-1DE6-457B-99CC-64AFD54487EA"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"148.0.7778.215","matchCriteriaId":"875ACED4-0D6D-4BAA-8FAF-F13B5FEDF09A"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*","matchCriteriaId":"387021A0-AF36-463C-A605-32EA7DAC172E"},{"vulnerable":false,"criteria":"cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*","matchCriteriaId":"703AF700-7A70-47E2-BC3A-7FD03B3CA9C1"}]}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com","tags":["Vendor Advisory"]},{"url":"https://issues.chromium.org/issues/513337118","source":"chrome-cve-admin@google.com","tags":["Permissions Required"]}]}},{"cve":{"id":"CVE-2026-9999","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-05-28T23:16:58.140","lastModified":"2026-05-29T18:17:18.940","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Inappropriate implementation in ANGLE in Google Chrome on Mac prior to 148.0.7778.216 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":5.9}]},"weaknesses":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-269"}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html","source":"chrome-cve-admin@google.com"},{"url":"https://issues.chromium.org/issues/513364480","source":"chrome-cve-admin@google.com"}]}},{"cve":{"id":"CVE-2026-6891","sourceIdentifier":"f98c90f0-e9bd-4fa7-911b-51993f3571fd","published":"2026-05-29T00:16:15.987","lastModified":"2026-05-29T14:46:09.837","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Improper handling of symbolic links in the installer of My Image Garden for macOS Version 3.6.8 or earlier may allow a local attacker with login privileges to exploit a specially crafted symbolic link during installation to modify permissions of files for which they would not normally have authorization."}],"metrics":{"cvssMetricV40":[{"source":"f98c90f0-e9bd-4fa7-911b-51993f3571fd","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:P/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":5.1,"baseSeverity":"MEDIUM","attackVector":"LOCAL","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"LOW","userInteraction":"PASSIVE","vulnConfidentialityImpact":"NONE","vulnIntegrityImpact":"HIGH","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"f98c90f0-e9bd-4fa7-911b-51993f3571fd","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:H/A:N","baseScore":5.0,"baseSeverity":"MEDIUM","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"HIGH","availabilityImpact":"NONE"},"exploitabilityScore":1.3,"impactScore":3.6}]},"weaknesses":[{"source":"f98c90f0-e9bd-4fa7-911b-51993f3571fd","type":"Secondary","description":[{"lang":"en","value":"CWE-59"}]}],"references":[{"url":"https://canon.jp/support/support-info/260528-2vulnerability-response","source":"f98c90f0-e9bd-4fa7-911b-51993f3571fd"},{"url":"https://psirt.canon/advisory-information/cp2026-004/","source":"f98c90f0-e9bd-4fa7-911b-51993f3571fd"},{"url":"https://www.canon-europe.com/support/product-security/","source":"f98c90f0-e9bd-4fa7-911b-51993f3571fd"},{"url":"https://www.usa.canon.com/support/canon-product-advisories/CPA2026-004-Vulnerability-Remediation-for-My-Image-Garden-for-macOS-and-CUPS-Printer-Driver-for-macOS","source":"f98c90f0-e9bd-4fa7-911b-51993f3571fd"}]}},{"cve":{"id":"CVE-2026-6892","sourceIdentifier":"f98c90f0-e9bd-4fa7-911b-51993f3571fd","published":"2026-05-29T00:16:16.847","lastModified":"2026-05-29T14:46:09.837","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Improper handling of symbolic links in the installer of CUPS Printer Driver for macOS(*) may allow a local attacker with login privileges to exploit a specially crafted symbolic link during installation to modify permissions of directories for which they would not normally have authorization. \n\n*:Canon PIXUS iX6800 Series CUPS Printer Driver for macOS Version 16.91.0.0 or earlier (Japan)\n\nCanon PIXMA MG2500 Series and iX6800 Series CUPS Printer Driver for macOS Version 16.91.0.0 or earlier (US and Europe)"}],"metrics":{"cvssMetricV40":[{"source":"f98c90f0-e9bd-4fa7-911b-51993f3571fd","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:P/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":5.1,"baseSeverity":"MEDIUM","attackVector":"LOCAL","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"LOW","userInteraction":"PASSIVE","vulnConfidentialityImpact":"NONE","vulnIntegrityImpact":"HIGH","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"f98c90f0-e9bd-4fa7-911b-51993f3571fd","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:H/A:N","baseScore":5.0,"baseSeverity":"MEDIUM","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"HIGH","availabilityImpact":"NONE"},"exploitabilityScore":1.3,"impactScore":3.6}]},"weaknesses":[{"source":"f98c90f0-e9bd-4fa7-911b-51993f3571fd","type":"Secondary","description":[{"lang":"en","value":"CWE-59"}]}],"references":[{"url":"https://canon.jp/support/support-info/260528-1vulnerability-response","source":"f98c90f0-e9bd-4fa7-911b-51993f3571fd"},{"url":"https://psirt.canon/advisory-information/cp2026-004/","source":"f98c90f0-e9bd-4fa7-911b-51993f3571fd"},{"url":"https://www.canon-europe.com/support/product-security/","source":"f98c90f0-e9bd-4fa7-911b-51993f3571fd"},{"url":"https://www.usa.canon.com/support/canon-product-advisories/CPA2026-004-Vulnerability-Remediation-for-My-Image-Garden-for-macOS-and-CUPS-Printer-Driver-for-macOS","source":"f98c90f0-e9bd-4fa7-911b-51993f3571fd"}]}},{"cve":{"id":"CVE-2026-7480","sourceIdentifier":"54bf65a7-a193-42d2-b1ba-8e150d3c35e1","published":"2026-05-29T02:16:17.223","lastModified":"2026-05-29T14:46:09.837","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"An Incorrect Permission Assignment for Critical Resource vulnerability in ASUS System Control Interface allows a local user to elevate privileges to SYSTEM and execute arbitrary code via a crafted RPC call that bypass the validation mechanism.\nRefer to the 'Security Update for ASUS System Control Interface' section on the ASUS Security Advisory for more information."}],"metrics":{"cvssMetricV40":[{"source":"54bf65a7-a193-42d2-b1ba-8e150d3c35e1","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":7.3,"baseSeverity":"HIGH","attackVector":"LOCAL","attackComplexity":"HIGH","attackRequirements":"NONE","privilegesRequired":"LOW","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"HIGH","vulnAvailabilityImpact":"HIGH","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}]},"weaknesses":[{"source":"54bf65a7-a193-42d2-b1ba-8e150d3c35e1","type":"Secondary","description":[{"lang":"en","value":"CWE-732"}]}],"references":[{"url":"https://www.asus.com/security-advisory/","source":"54bf65a7-a193-42d2-b1ba-8e150d3c35e1"}]}},{"cve":{"id":"CVE-2026-8070","sourceIdentifier":"54bf65a7-a193-42d2-b1ba-8e150d3c35e1","published":"2026-05-29T02:16:17.380","lastModified":"2026-05-29T14:46:09.837","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Incorrect permission assignment for a critical resource in Armoury Crate allows a local user to bypass the driver’s validation mechanism, resulting in unauthorized read and write access to physical memory.Refer to the ' \nSecurity Update for Armoury Crate App   ' section on the ASUS Security Advisory for more information."}],"metrics":{"cvssMetricV40":[{"source":"54bf65a7-a193-42d2-b1ba-8e150d3c35e1","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":7.3,"baseSeverity":"HIGH","attackVector":"LOCAL","attackComplexity":"HIGH","attackRequirements":"NONE","privilegesRequired":"LOW","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"HIGH","vulnAvailabilityImpact":"HIGH","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}]},"weaknesses":[{"source":"54bf65a7-a193-42d2-b1ba-8e150d3c35e1","type":"Secondary","description":[{"lang":"en","value":"CWE-732"}]}],"references":[{"url":"https://www.asus.com/security-advisory","source":"54bf65a7-a193-42d2-b1ba-8e150d3c35e1"}]}},{"cve":{"id":"CVE-2026-6324","sourceIdentifier":"secalert@redhat.com","published":"2026-05-29T07:16:14.327","lastModified":"2026-05-29T15:16:25.023","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"A flaw was found in libsoup. A remote attacker could exploit an unsigned to signed conversion error in the `soup_body_input_stream_read_chunked()` function by sending a malicious HTTP request. This vulnerability occurs when libsoup operates behind a non-libsoup proxy server or as a proxy in front of a non-libsoup backend server. Successful exploitation can allow an attacker to bypass security controls, poison web caches, or gain unauthorized access."}],"metrics":{"cvssMetricV31":[{"source":"secalert@redhat.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N","baseScore":4.8,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":2.2,"impactScore":2.5}]},"weaknesses":[{"source":"secalert@redhat.com","type":"Secondary","description":[{"lang":"en","value":"CWE-444"}]}],"references":[{"url":"https://access.redhat.com/security/cve/CVE-2026-6324","source":"secalert@redhat.com"},{"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2458479","source":"secalert@redhat.com"},{"url":"https://gitlab.gnome.org/GNOME/libsoup/-/issues/508","source":"secalert@redhat.com"},{"url":"https://gitlab.gnome.org/GNOME/libsoup/-/work_items/508","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0"}]}},{"cve":{"id":"CVE-2026-9493","sourceIdentifier":"twcert@cert.org.tw","published":"2026-05-29T07:16:14.620","lastModified":"2026-05-29T15:11:03.853","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Service Center developed by BankPro E-Service Technology has an Insecure Direct Object Reference vulnerability, allowing authenticated remote attackers to modify the parameter of a specific query function to access other users' EC order details."}],"metrics":{"cvssMetricV40":[{"source":"twcert@cert.org.tw","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":7.1,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"LOW","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"NONE","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"twcert@cert.org.tw","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":3.6}]},"weaknesses":[{"source":"twcert@cert.org.tw","type":"Primary","description":[{"lang":"en","value":"CWE-639"}]}],"references":[{"url":"https://www.twcert.org.tw/en/cp-139-10940-d90bd-2.html","source":"twcert@cert.org.tw"},{"url":"https://www.twcert.org.tw/tw/cp-132-10938-97ddd-1.html","source":"twcert@cert.org.tw"}]}},{"cve":{"id":"CVE-2026-49322","sourceIdentifier":"cve@asrg.io","published":"2026-05-29T08:16:19.060","lastModified":"2026-05-29T15:16:24.487","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Weak authentication in the Wireless Control Module (WCM) of the Indian Motorcycle Scout Bobber + Tech 2025 model year allows an adjacent-network attacker with read access to the in-vehicle network to recover the user-set unlock PIN by passively observing a single PIN authentication exchange. The Infotainment Digital Round display computes its response using a non-cryptographic operation rather than a cryptographic challenge-response, so the PIN is mathematically derivable from one captured exchange, defeating the motorcycle's primary user-authentication control. Specific protocol details have been withheld pending vendor remediation."}],"metrics":{"cvssMetricV40":[{"source":"cve@asrg.io","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:P/AC:L/AT:P/PR:N/UI:P/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":4.1,"baseSeverity":"MEDIUM","attackVector":"PHYSICAL","attackComplexity":"LOW","attackRequirements":"PRESENT","privilegesRequired":"NONE","userInteraction":"PASSIVE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"NONE","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"cve@asrg.io","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:P/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N","baseScore":4.3,"baseSeverity":"MEDIUM","attackVector":"PHYSICAL","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":0.7,"impactScore":3.6}]},"weaknesses":[{"source":"cve@asrg.io","type":"Secondary","description":[{"lang":"en","value":"CWE-294"},{"lang":"en","value":"CWE-327"},{"lang":"en","value":"CWE-1390"}]}],"references":[{"url":"https://www.asrg.io/security-advisories/cve-2026-49322-indian-scout-infotainment-wcm-weak-authentication","source":"cve@asrg.io"}]}},{"cve":{"id":"CVE-2026-4776","sourceIdentifier":"security@mautic.org","published":"2026-05-29T08:16:19.260","lastModified":"2026-05-29T15:39:34.620","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"An SQL injection vulnerability exists in Mautic's API contact filtering mechanism. Due to insufficient recursive sanitization of nested query parameters, an authenticated API user can bypass input filtering and inject arbitrary SQL commands."}],"metrics":{"cvssMetricV31":[{"source":"security@mautic.org","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L","baseScore":7.1,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"LOW"},"exploitabilityScore":2.8,"impactScore":4.2}]},"weaknesses":[{"source":"security@mautic.org","type":"Secondary","description":[{"lang":"en","value":"CWE-89"}]}],"references":[{"url":"https://github.com/mautic/mautic/security/advisories/GHSA-fcmw-wx57-9p75","source":"security@mautic.org"}]}},{"cve":{"id":"CVE-2026-10052","sourceIdentifier":"secalert@redhat.com","published":"2026-05-29T09:16:17.003","lastModified":"2026-05-29T14:06:47.240","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"A flaw was found in the Quay config-tool's LDAP and SMTP validation functions. An attacker with config editor access can exploit these functions, which make outbound connections to user-supplied endpoints without proper IP or host filtering. This allows the attacker to perform internal network reconnaissance from the Quay pod's network position, potentially mapping the internal network infrastructure."}],"metrics":{"cvssMetricV31":[{"source":"secalert@redhat.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:L/I:N/A:N","baseScore":4.1,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"HIGH","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":2.3,"impactScore":1.4}]},"weaknesses":[{"source":"secalert@redhat.com","type":"Primary","description":[{"lang":"en","value":"CWE-918"}]}],"references":[{"url":"https://access.redhat.com/security/cve/CVE-2026-10052","source":"secalert@redhat.com"},{"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2483157","source":"secalert@redhat.com"}]}},{"cve":{"id":"CVE-2026-10057","sourceIdentifier":"twcert@cert.org.tw","published":"2026-05-29T09:16:17.310","lastModified":"2026-05-29T15:11:03.853","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"ITS Intelligent SCADA System developed by ITP Technology has a Stored Cross-Site Scripting vulnerability, allowing privileged remote attackers to inject persistent JavaScript codes that are executed in users' browsers upon page load."}],"metrics":{"cvssMetricV40":[{"source":"twcert@cert.org.tw","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":4.8,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"HIGH","userInteraction":"PASSIVE","vulnConfidentialityImpact":"NONE","vulnIntegrityImpact":"NONE","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"LOW","subIntegrityImpact":"LOW","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"twcert@cert.org.tw","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N","baseScore":4.8,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"HIGH","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":1.7,"impactScore":2.7}]},"weaknesses":[{"source":"twcert@cert.org.tw","type":"Primary","description":[{"lang":"en","value":"CWE-79"}]}],"references":[{"url":"https://www.twcert.org.tw/en/cp-139-10942-2b78b-2.html","source":"twcert@cert.org.tw"},{"url":"https://www.twcert.org.tw/tw/cp-132-10941-6c082-1.html","source":"twcert@cert.org.tw"}]}},{"cve":{"id":"CVE-2026-10058","sourceIdentifier":"twcert@cert.org.tw","published":"2026-05-29T09:16:17.460","lastModified":"2026-05-29T15:11:03.853","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"ITS Intelligent SCADA System developed by ITP Technology has a Stored Cross-Site Scripting vulnerability, allowing privileged remote attackers to inject persistent JavaScript codes that are executed in users' browsers upon page load."}],"metrics":{"cvssMetricV40":[{"source":"twcert@cert.org.tw","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":4.8,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"HIGH","userInteraction":"PASSIVE","vulnConfidentialityImpact":"NONE","vulnIntegrityImpact":"NONE","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"LOW","subIntegrityImpact":"LOW","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"twcert@cert.org.tw","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N","baseScore":4.8,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"HIGH","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":1.7,"impactScore":2.7}]},"weaknesses":[{"source":"twcert@cert.org.tw","type":"Primary","description":[{"lang":"en","value":"CWE-79"}]}],"references":[{"url":"https://www.twcert.org.tw/en/cp-139-10942-2b78b-2.html","source":"twcert@cert.org.tw"},{"url":"https://www.twcert.org.tw/tw/cp-132-10941-6c082-1.html","source":"twcert@cert.org.tw"}]}},{"cve":{"id":"CVE-2026-49195","sourceIdentifier":"8fc372e3-d9c5-46e4-9410-38469745c639","published":"2026-05-29T09:16:17.610","lastModified":"2026-05-29T14:46:09.837","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Unauthenticated Debug Service. The /sbin/mtk_dut binary is exposed on TCP port 9000 without authentication, allowing any LAN-based attacker to execute arbitrary UCC commands."}],"metrics":{"cvssMetricV40":[{"source":"8fc372e3-d9c5-46e4-9410-38469745c639","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:L/SI:L/SA:L/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":8.7,"baseSeverity":"HIGH","attackVector":"ADJACENT","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"HIGH","vulnAvailabilityImpact":"HIGH","subConfidentialityImpact":"LOW","subIntegrityImpact":"LOW","subAvailabilityImpact":"LOW","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}]},"weaknesses":[{"source":"8fc372e3-d9c5-46e4-9410-38469745c639","type":"Secondary","description":[{"lang":"en","value":"CWE-306"}]}],"references":[{"url":"https://community.acer.com/en/kb/articles/19672","source":"8fc372e3-d9c5-46e4-9410-38469745c639"}]}},{"cve":{"id":"CVE-2026-49196","sourceIdentifier":"8fc372e3-d9c5-46e4-9410-38469745c639","published":"2026-05-29T09:16:17.743","lastModified":"2026-05-29T14:46:09.837","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"The Wi-Fi device blocking feature fails to sanitize MAC address input, allowing injection and execution of arbitrary shell commands."}],"metrics":{"cvssMetricV40":[{"source":"8fc372e3-d9c5-46e4-9410-38469745c639","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":8.6,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"HIGH","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"HIGH","vulnAvailabilityImpact":"HIGH","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}]},"weaknesses":[{"source":"8fc372e3-d9c5-46e4-9410-38469745c639","type":"Secondary","description":[{"lang":"en","value":"CWE-77"}]}],"references":[{"url":"https://community.acer.com/en/kb/articles/19672","source":"8fc372e3-d9c5-46e4-9410-38469745c639"}]}},{"cve":{"id":"CVE-2026-49197","sourceIdentifier":"8fc372e3-d9c5-46e4-9410-38469745c639","published":"2026-05-29T09:16:17.877","lastModified":"2026-05-29T14:46:09.837","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Web endpoints intended for the Acer Connect app improperly validate the HTTP Authorization header, failing to block requests when Base64 decoding fails."}],"metrics":{"cvssMetricV40":[{"source":"8fc372e3-d9c5-46e4-9410-38469745c639","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":10.0,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"HIGH","vulnAvailabilityImpact":"HIGH","subConfidentialityImpact":"HIGH","subIntegrityImpact":"HIGH","subAvailabilityImpact":"HIGH","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}]},"weaknesses":[{"source":"8fc372e3-d9c5-46e4-9410-38469745c639","type":"Secondary","description":[{"lang":"en","value":"CWE-287"}]}],"references":[{"url":"https://community.acer.com/en/kb/articles/19672","source":"8fc372e3-d9c5-46e4-9410-38469745c639"}]}},{"cve":{"id":"CVE-2026-49198","sourceIdentifier":"8fc372e3-d9c5-46e4-9410-38469745c639","published":"2026-05-29T09:16:18.007","lastModified":"2026-05-29T14:46:09.837","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Improper access control in the MQTT broker allows wildcard topic subscriptions, exposing all MQTT traffic to unauthorized actors."}],"metrics":{"cvssMetricV40":[{"source":"8fc372e3-d9c5-46e4-9410-38469745c639","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:H/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":8.3,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"LOW","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"NONE","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"HIGH","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}]},"weaknesses":[{"source":"8fc372e3-d9c5-46e4-9410-38469745c639","type":"Secondary","description":[{"lang":"en","value":"CWE-284"}]}],"references":[{"url":"https://community.acer.com/en/kb/articles/19672","source":"8fc372e3-d9c5-46e4-9410-38469745c639"}]}},{"cve":{"id":"CVE-2026-49199","sourceIdentifier":"8fc372e3-d9c5-46e4-9410-38469745c639","published":"2026-05-29T09:16:18.143","lastModified":"2026-05-29T14:46:09.837","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Crafted MQTT messages can trigger command injection, resulting in root-level code execution on the target device."}],"metrics":{"cvssMetricV40":[{"source":"8fc372e3-d9c5-46e4-9410-38469745c639","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":10.0,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"HIGH","vulnAvailabilityImpact":"HIGH","subConfidentialityImpact":"HIGH","subIntegrityImpact":"HIGH","subAvailabilityImpact":"HIGH","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}]},"weaknesses":[{"source":"8fc372e3-d9c5-46e4-9410-38469745c639","type":"Secondary","description":[{"lang":"en","value":"CWE-77"}]}],"references":[{"url":"https://community.acer.com/en/kb/articles/19672","source":"8fc372e3-d9c5-46e4-9410-38469745c639"}]}},{"cve":{"id":"CVE-2026-49200","sourceIdentifier":"8fc372e3-d9c5-46e4-9410-38469745c639","published":"2026-05-29T09:16:18.270","lastModified":"2026-05-29T14:46:09.837","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"The acer_cgi.log file in the device firmware is accessible without authentication via the web interface. This file contains cleartext login credentials (for web and Telnet), leading to unauthorized system access."}],"metrics":{"cvssMetricV40":[{"source":"8fc372e3-d9c5-46e4-9410-38469745c639","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":10.0,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"HIGH","vulnAvailabilityImpact":"HIGH","subConfidentialityImpact":"HIGH","subIntegrityImpact":"HIGH","subAvailabilityImpact":"HIGH","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}]},"weaknesses":[{"source":"8fc372e3-d9c5-46e4-9410-38469745c639","type":"Secondary","description":[{"lang":"en","value":"CWE-532"}]}],"references":[{"url":"https://community.acer.com/en/kb/articles/19673","source":"8fc372e3-d9c5-46e4-9410-38469745c639"}]}},{"cve":{"id":"CVE-2026-10078","sourceIdentifier":"secalert@redhat.com","published":"2026-05-29T11:16:16.663","lastModified":"2026-05-29T14:06:47.240","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"A flaw was found in the Quay config-tool's GitLab OAuth validator. This vulnerability causes sensitive credentials, specifically client_id and client_secret, to be transmitted as plaintext in URL query parameters during POST requests to the GitLab endpoint. This insecure transmission can lead to the disclosure of these credentials in various system logs, such as server access logs, reverse proxy logs, and other monitoring systems. An attacker with access to these logs could potentially obtain these credentials, leading to unauthorized information disclosure."}],"metrics":{"cvssMetricV31":[{"source":"secalert@redhat.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N","baseScore":2.7,"baseSeverity":"LOW","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"HIGH","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":1.2,"impactScore":1.4}]},"weaknesses":[{"source":"secalert@redhat.com","type":"Primary","description":[{"lang":"en","value":"CWE-598"}]}],"references":[{"url":"https://access.redhat.com/security/cve/CVE-2026-10078","source":"secalert@redhat.com"},{"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2483168","source":"secalert@redhat.com"}]}},{"cve":{"id":"CVE-2026-42965","sourceIdentifier":"secalert@redhat.com","published":"2026-05-29T11:16:16.923","lastModified":"2026-05-29T14:06:47.240","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"A flaw was found in the OpenShift Router. A user with EndpointSlice write access can exploit this vulnerability by creating a Service backed by an FQDN (Fully Qualified Domain Name) EndpointSlice that resolves to a cloud metadata endpoint. This allows the router to proxy requests to the cloud metadata endpoint, leading to the disclosure of instance credentials and other sensitive metadata. This bypasses previous security measures for validating IP addresses."}],"metrics":{"cvssMetricV31":[{"source":"secalert@redhat.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N","baseScore":7.7,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":3.1,"impactScore":4.0}]},"weaknesses":[{"source":"secalert@redhat.com","type":"Primary","description":[{"lang":"en","value":"CWE-918"}]}],"references":[{"url":"https://access.redhat.com/security/cve/CVE-2026-42965","source":"secalert@redhat.com"},{"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2483184","source":"secalert@redhat.com"}]}},{"cve":{"id":"CVE-2026-46579","sourceIdentifier":"secalert@redhat.com","published":"2026-05-29T11:16:17.050","lastModified":"2026-05-29T14:06:47.240","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"A flaw was found in the OpenShift Router. When a Route has `insecureEdgeTerminationPolicy` set to Allow, the HTTP frontend does not remove `X-SSL-Client-*` headers from incoming requests. This allows an unauthenticated attacker to send plain HTTP requests with crafted `X-SSL-Client-*` headers. As a result, backends relying on these headers for mutual TLS (Transport Layer Security) authentication can be bypassed, enabling the attacker to impersonate client certificate identities."}],"metrics":{"cvssMetricV31":[{"source":"secalert@redhat.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N","baseScore":7.4,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"NONE"},"exploitabilityScore":2.2,"impactScore":5.2}]},"weaknesses":[{"source":"secalert@redhat.com","type":"Primary","description":[{"lang":"en","value":"CWE-287"}]}],"references":[{"url":"https://access.redhat.com/security/cve/CVE-2026-46579","source":"secalert@redhat.com"},{"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2483181","source":"secalert@redhat.com"}]}},{"cve":{"id":"CVE-2026-49201","sourceIdentifier":"8fc372e3-d9c5-46e4-9410-38469745c639","published":"2026-05-29T11:16:17.183","lastModified":"2026-05-29T14:46:09.837","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"The upload.cgi binary, responsible for processing device backups, contains a hardcoded AES encryption key. This allows an attacker to decrypt, modify, and re-encrypt system backups, facilitating persistent backdoor injection."}],"metrics":{"cvssMetricV40":[{"source":"8fc372e3-d9c5-46e4-9410-38469745c639","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":10.0,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"HIGH","vulnAvailabilityImpact":"HIGH","subConfidentialityImpact":"HIGH","subIntegrityImpact":"HIGH","subAvailabilityImpact":"HIGH","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}]},"weaknesses":[{"source":"8fc372e3-d9c5-46e4-9410-38469745c639","type":"Secondary","description":[{"lang":"en","value":"CWE-798"}]}],"references":[{"url":"https://community.acer.com/en/kb/articles/19673","source":"8fc372e3-d9c5-46e4-9410-38469745c639"}]}},{"cve":{"id":"CVE-2026-9557","sourceIdentifier":"security@mautic.org","published":"2026-05-29T11:16:17.853","lastModified":"2026-05-29T15:39:34.620","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"A Server-Side Request Forgery (SSRF) vulnerability exists in Mautic's Focus component. Due to insufficient validation of user-supplied URLs, an authenticated user can trigger outbound HTTP requests from the hosting server, enabling internal network reconnaissance or forcing requests to arbitrary internal or external destinations."}],"metrics":{"cvssMetricV31":[{"source":"security@mautic.org","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N","baseScore":6.4,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":3.1,"impactScore":2.7}]},"weaknesses":[{"source":"security@mautic.org","type":"Secondary","description":[{"lang":"en","value":"CWE-918"}]}],"references":[{"url":"https://github.com/mautic/mautic/security/advisories/GHSA-jmv8-8j9j-rcpc","source":"security@mautic.org"}]}},{"cve":{"id":"CVE-2026-9558","sourceIdentifier":"security@mautic.org","published":"2026-05-29T11:16:17.980","lastModified":"2026-05-29T15:39:34.620","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"A Server-Side Template Injection (SSTI) vulnerability exists in Mautic's theme engine. The platform renders uploaded Twig templates without a sandbox or strict function restrictions. Authenticated users with permissions to create or upload themes can abuse this to execute arbitrary code on the hosting server (Remote Code Execution) or access restricted system files and configuration settings."}],"metrics":{"cvssMetricV31":[{"source":"security@mautic.org","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H","baseScore":9.9,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.1,"impactScore":6.0}]},"weaknesses":[{"source":"security@mautic.org","type":"Secondary","description":[{"lang":"en","value":"CWE-1336"}]}],"references":[{"url":"https://github.com/mautic/mautic/security/advisories/GHSA-9fx4-7cmj-47vg","source":"security@mautic.org"}]}},{"cve":{"id":"CVE-2025-41265","sourceIdentifier":"prodsec@nozominetworks.com","published":"2026-05-29T12:16:21.743","lastModified":"2026-05-29T14:06:26.220","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Nozomi Networks Labs identified a CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') in the Administration WebUI in Waterfall WF-500 TX Host in version 7.9.1.0 R2502171040 that allows remote authenticated attackers to execute arbitrary operating system commands on the WF-500 TX Host."}],"metrics":{"cvssMetricV40":[{"source":"prodsec@nozominetworks.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":8.6,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"HIGH","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"HIGH","vulnAvailabilityImpact":"HIGH","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}]},"weaknesses":[{"source":"prodsec@nozominetworks.com","type":"Primary","description":[{"lang":"en","value":"CWE-78"}]}],"references":[{"url":"https://www.nozominetworks.com/labs/vulnerability-advisories-cve-2025-41265","source":"prodsec@nozominetworks.com"}]}},{"cve":{"id":"CVE-2025-41266","sourceIdentifier":"prodsec@nozominetworks.com","published":"2026-05-29T12:16:22.823","lastModified":"2026-05-29T14:06:26.220","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Nozomi Networks Labs identified a CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') in the Administration WebUI in Waterfall WF-500 TX Host in version 7.9.1.0 R2502171040 that allows remote authenticated attackers to execute arbitrary operating system commands on the WF-500 TX Host."}],"metrics":{"cvssMetricV40":[{"source":"prodsec@nozominetworks.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":8.6,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"HIGH","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"HIGH","vulnAvailabilityImpact":"HIGH","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}]},"weaknesses":[{"source":"prodsec@nozominetworks.com","type":"Primary","description":[{"lang":"en","value":"CWE-78"}]}],"references":[{"url":"https://www.nozominetworks.com/labs/vulnerability-advisories-cve-2025-41266","source":"prodsec@nozominetworks.com"}]}},{"cve":{"id":"CVE-2025-41267","sourceIdentifier":"prodsec@nozominetworks.com","published":"2026-05-29T12:16:22.947","lastModified":"2026-05-29T14:06:26.220","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Nozomi Networks Labs identified a CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') in the Administration WebUI in Waterfall WF-500 TX Host in version 7.9.1.0 R2502171040 that allows remote authenticated attackers to execute arbitrary operating system commands on the WF-500 TX Host."}],"metrics":{"cvssMetricV40":[{"source":"prodsec@nozominetworks.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":8.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"HIGH","userInteraction":"PASSIVE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"HIGH","vulnAvailabilityImpact":"HIGH","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}]},"weaknesses":[{"source":"prodsec@nozominetworks.com","type":"Primary","description":[{"lang":"en","value":"CWE-78"}]}],"references":[{"url":"https://www.nozominetworks.com/labs/vulnerability-advisories-cve-2025-41267","source":"prodsec@nozominetworks.com"}]}},{"cve":{"id":"CVE-2025-41268","sourceIdentifier":"prodsec@nozominetworks.com","published":"2026-05-29T12:16:23.067","lastModified":"2026-05-29T14:06:26.220","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Nozomi Networks Labs identified a CWE-23: Relative Path Traversal in the Administration WebUI in Waterfall WF-500 TX and RX Hosts in version 7.9.1.0 R2502171040 that allows remote unauthenticated attackers to delete arbitrary files on the Host machines."}],"metrics":{"cvssMetricV40":[{"source":"prodsec@nozominetworks.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"NONE","vulnIntegrityImpact":"HIGH","vulnAvailabilityImpact":"HIGH","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}]},"weaknesses":[{"source":"prodsec@nozominetworks.com","type":"Primary","description":[{"lang":"en","value":"CWE-23"}]}],"references":[{"url":"https://www.nozominetworks.com/labs/vulnerability-advisories-cve-2025-41268","source":"prodsec@nozominetworks.com"}]}},{"cve":{"id":"CVE-2025-41269","sourceIdentifier":"prodsec@nozominetworks.com","published":"2026-05-29T12:16:23.190","lastModified":"2026-05-29T14:06:26.220","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Nozomi Networks Labs identified a CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') in the Console WebUI in Waterfall WF-500 TX and RX Hosts in version 7.9.1.0 R2502171040 that allows remote unauthenticated attackers to execute arbitrary operating system commands on the device."}],"metrics":{"cvssMetricV40":[{"source":"prodsec@nozominetworks.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":9.3,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"HIGH","vulnAvailabilityImpact":"HIGH","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}]},"weaknesses":[{"source":"prodsec@nozominetworks.com","type":"Primary","description":[{"lang":"en","value":"CWE-78"}]}],"references":[{"url":"https://www.nozominetworks.com/labs/vulnerability-advisories-cve-2025-41269","source":"prodsec@nozominetworks.com"}]}},{"cve":{"id":"CVE-2025-41270","sourceIdentifier":"prodsec@nozominetworks.com","published":"2026-05-29T12:16:23.323","lastModified":"2026-05-29T14:06:26.220","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Nozomi Networks Labs identified a CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') in the Console WebUI in Waterfall WF-500 TX and RX Hosts in version 7.9.1.0 R2502171040 that allows remote unauthenticated attackers to execute arbitrary operating system commands on the device."}],"metrics":{"cvssMetricV40":[{"source":"prodsec@nozominetworks.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":9.3,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"HIGH","vulnAvailabilityImpact":"HIGH","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}]},"weaknesses":[{"source":"prodsec@nozominetworks.com","type":"Primary","description":[{"lang":"en","value":"CWE-78"}]}],"references":[{"url":"https://www.nozominetworks.com/labs/vulnerability-advisories-cve-2025-41270","source":"prodsec@nozominetworks.com"}]}},{"cve":{"id":"CVE-2025-41271","sourceIdentifier":"prodsec@nozominetworks.com","published":"2026-05-29T12:16:23.450","lastModified":"2026-05-29T14:06:26.220","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Nozomi Networks Labs identified a CWE-23: Relative Path Traversal in the Console WebUI in Waterfall WF-500 TX and RX Hosts in version 7.9.1.0 R2502171040 that allows remote unauthenticated attackers to read arbitrary files from the device."}],"metrics":{"cvssMetricV40":[{"source":"prodsec@nozominetworks.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":8.7,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"NONE","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}]},"weaknesses":[{"source":"prodsec@nozominetworks.com","type":"Primary","description":[{"lang":"en","value":"CWE-23"}]}],"references":[{"url":"https://www.nozominetworks.com/labs/vulnerability-advisories-cve-2025-41271","source":"prodsec@nozominetworks.com"}]}},{"cve":{"id":"CVE-2025-41272","sourceIdentifier":"prodsec@nozominetworks.com","published":"2026-05-29T12:16:23.570","lastModified":"2026-05-29T14:06:26.220","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Nozomi Networks Labs identified a CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') in the Console WebUI in Waterfall WF-500 TX and RX Hosts in version 7.9.1.0 R2502171040 that allows remote unauthenticated attackers to execute arbitrary operating system commands on the device."}],"metrics":{"cvssMetricV40":[{"source":"prodsec@nozominetworks.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":9.3,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"HIGH","vulnAvailabilityImpact":"HIGH","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}]},"weaknesses":[{"source":"prodsec@nozominetworks.com","type":"Primary","description":[{"lang":"en","value":"CWE-78"}]}],"references":[{"url":"https://www.nozominetworks.com/labs/vulnerability-advisories-cve-2025-41272","source":"prodsec@nozominetworks.com"}]}},{"cve":{"id":"CVE-2025-41273","sourceIdentifier":"prodsec@nozominetworks.com","published":"2026-05-29T12:16:23.690","lastModified":"2026-05-29T14:06:26.220","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Nozomi Networks Labs identified a CWE-288: Authentication Bypass Using an Alternate Path or Channel in the Console WebUI in Waterfall WF-500 TX and RX Hosts in version 7.9.1.0 R2502171040 that allows remote unauthenticated attackers to bypass authentication of the Console web application and perform actions as an authenticated user."}],"metrics":{"cvssMetricV40":[{"source":"prodsec@nozominetworks.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":9.3,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"HIGH","vulnAvailabilityImpact":"HIGH","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}]},"weaknesses":[{"source":"prodsec@nozominetworks.com","type":"Primary","description":[{"lang":"en","value":"CWE-288"}]}],"references":[{"url":"https://www.nozominetworks.com/labs/vulnerability-advisories-cve-2025-41273","source":"prodsec@nozominetworks.com"}]}},{"cve":{"id":"CVE-2025-41274","sourceIdentifier":"prodsec@nozominetworks.com","published":"2026-05-29T12:16:23.810","lastModified":"2026-05-29T14:06:26.220","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Nozomi Networks Labs identified a CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') in the Console WebUI in Waterfall WF-500 TX and RX Hosts in version 7.9.1.0 R2502171040 that allows remote unauthenticated attackers to execute arbitrary operating system commands on the device."}],"metrics":{"cvssMetricV40":[{"source":"prodsec@nozominetworks.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":9.3,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"HIGH","vulnAvailabilityImpact":"HIGH","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}]},"weaknesses":[{"source":"prodsec@nozominetworks.com","type":"Primary","description":[{"lang":"en","value":"CWE-78"}]}],"references":[{"url":"https://www.nozominetworks.com/labs/vulnerability-advisories-cve-2025-41274","source":"prodsec@nozominetworks.com"}]}},{"cve":{"id":"CVE-2025-41275","sourceIdentifier":"prodsec@nozominetworks.com","published":"2026-05-29T12:16:23.930","lastModified":"2026-05-29T14:06:26.220","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Nozomi Networks Labs identified a CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') in the Console WebUI in Waterfall WF-500 TX and RX Hosts in version 7.9.1.0 R2502171040 that allows remote unauthenticated attackers to execute arbitrary operating system commands on the device."}],"metrics":{"cvssMetricV40":[{"source":"prodsec@nozominetworks.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":9.3,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"HIGH","vulnAvailabilityImpact":"HIGH","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}]},"weaknesses":[{"source":"prodsec@nozominetworks.com","type":"Primary","description":[{"lang":"en","value":"CWE-78"}]}],"references":[{"url":"https://www.nozominetworks.com/labs/vulnerability-advisories-cve-2025-41275","source":"prodsec@nozominetworks.com"}]}},{"cve":{"id":"CVE-2025-41276","sourceIdentifier":"prodsec@nozominetworks.com","published":"2026-05-29T12:16:24.050","lastModified":"2026-05-29T14:06:26.220","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Nozomi Networks Labs identified a CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') in the Console WebUI in Waterfall WF-500 TX and RX Hosts in version 7.9.1.0 R2502171040 that allows remote unauthenticated attackers to execute arbitrary operating system commands on the device."}],"metrics":{"cvssMetricV40":[{"source":"prodsec@nozominetworks.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":9.3,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"HIGH","vulnAvailabilityImpact":"HIGH","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}]},"weaknesses":[{"source":"prodsec@nozominetworks.com","type":"Primary","description":[{"lang":"en","value":"CWE-78"}]}],"references":[{"url":"https://www.nozominetworks.com/labs/vulnerability-advisories-cve-2025-41276","source":"prodsec@nozominetworks.com"}]}},{"cve":{"id":"CVE-2025-41277","sourceIdentifier":"prodsec@nozominetworks.com","published":"2026-05-29T12:16:24.167","lastModified":"2026-05-29T14:06:26.220","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Nozomi Networks Labs identified a CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') in the Console WebUI in Waterfall WF-500 TX and RX Hosts in version 7.9.1.0 R2502171040 that allows remote unauthenticated attackers to execute arbitrary operating system commands on the device."}],"metrics":{"cvssMetricV40":[{"source":"prodsec@nozominetworks.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":9.3,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"HIGH","vulnAvailabilityImpact":"HIGH","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}]},"weaknesses":[{"source":"prodsec@nozominetworks.com","type":"Primary","description":[{"lang":"en","value":"CWE-78"}]}],"references":[{"url":"https://www.nozominetworks.com/labs/vulnerability-advisories-cve-2025-41277","source":"prodsec@nozominetworks.com"}]}},{"cve":{"id":"CVE-2025-41278","sourceIdentifier":"prodsec@nozominetworks.com","published":"2026-05-29T12:16:24.293","lastModified":"2026-05-29T14:06:26.220","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Nozomi Networks Labs identified a CWE-125: Out-of-bounds Read in Waterfall WF-500 RX Host in version 7.10.0.0 R2601141040 that allows attackers with access to the TX Host to execute code on the RX Host."}],"metrics":{"cvssMetricV40":[{"source":"prodsec@nozominetworks.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"LOCAL","attackComplexity":"LOW","attackRequirements":"PRESENT","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"HIGH","vulnAvailabilityImpact":"HIGH","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}]},"weaknesses":[{"source":"prodsec@nozominetworks.com","type":"Primary","description":[{"lang":"en","value":"CWE-125"}]}],"references":[{"url":"https://www.nozominetworks.com/labs/vulnerability-advisories-cve-2025-41278","source":"prodsec@nozominetworks.com"}]}},{"cve":{"id":"CVE-2025-41279","sourceIdentifier":"prodsec@nozominetworks.com","published":"2026-05-29T12:16:24.420","lastModified":"2026-05-29T14:06:47.240","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Nozomi Networks Labs identified a CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') in the Administration WebUI in Waterfall WF-500 RX Host in version 7.9.1.0 R2502171040 that allows remote authenticated attackers to execute arbitrary operating system commands on the WF-500 RX Host."}],"metrics":{"cvssMetricV40":[{"source":"prodsec@nozominetworks.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":8.6,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"HIGH","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"HIGH","vulnAvailabilityImpact":"HIGH","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}]},"weaknesses":[{"source":"prodsec@nozominetworks.com","type":"Primary","description":[{"lang":"en","value":"CWE-78"}]}],"references":[{"url":"https://www.nozominetworks.com/labs/vulnerability-advisories-cve-2025-41279","source":"prodsec@nozominetworks.com"}]}},{"cve":{"id":"CVE-2025-41280","sourceIdentifier":"prodsec@nozominetworks.com","published":"2026-05-29T12:16:24.547","lastModified":"2026-05-29T14:06:47.240","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Nozomi Networks Labs identified a CWE-23: Relative Path Traversal (Zip Slip) in Waterfall WF-500 RX Host in version 7.9.1.0 R2502171040 that allows attackers with access to the TX Host to execute code on the RX Host when a MySQL connector is configured and file compression is enabled."}],"metrics":{"cvssMetricV40":[{"source":"prodsec@nozominetworks.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"LOCAL","attackComplexity":"LOW","attackRequirements":"PRESENT","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"HIGH","vulnAvailabilityImpact":"HIGH","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}]},"weaknesses":[{"source":"prodsec@nozominetworks.com","type":"Primary","description":[{"lang":"en","value":"CWE-23"}]}],"references":[{"url":"https://www.nozominetworks.com/labs/vulnerability-advisories-cve-2025-41280","source":"prodsec@nozominetworks.com"}]}},{"cve":{"id":"CVE-2025-41281","sourceIdentifier":"prodsec@nozominetworks.com","published":"2026-05-29T12:16:24.670","lastModified":"2026-05-29T14:06:47.240","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Nozomi Networks Labs identified a CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') in Waterfall WF-500 RX Host in version 7.9.1.0 R2502171040 that allows attackers with access to the TX Host to execute code on the RX Host when a MySQL connector is configured."}],"metrics":{"cvssMetricV40":[{"source":"prodsec@nozominetworks.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"LOCAL","attackComplexity":"LOW","attackRequirements":"PRESENT","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"HIGH","vulnAvailabilityImpact":"HIGH","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}]},"weaknesses":[{"source":"prodsec@nozominetworks.com","type":"Primary","description":[{"lang":"en","value":"CWE-78"}]}],"references":[{"url":"https://www.nozominetworks.com/labs/vulnerability-advisories-cve-2025-41281","source":"prodsec@nozominetworks.com"}]}},{"cve":{"id":"CVE-2026-9559","sourceIdentifier":"security@mautic.org","published":"2026-05-29T12:16:26.680","lastModified":"2026-05-29T15:39:34.620","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"A path traversal vulnerability exists in the campaign import feature of Mautic 7. When extracting uploaded ZIP files during campaign imports, a flaw in the validation logic allows file paths to escape the intended temporary directories. An authenticated user with campaign import privileges (campaign:imports:create) can write arbitrary PHP files to sensitive system directories. An attacker can exploit this to overwrite critical internal configuration or cache components, resulting in Remote Code Execution (RCE) under the context of the web server user."}],"metrics":{"cvssMetricV31":[{"source":"security@mautic.org","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H","baseScore":9.9,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.1,"impactScore":6.0}]},"weaknesses":[{"source":"security@mautic.org","type":"Secondary","description":[{"lang":"en","value":"CWE-22"},{"lang":"en","value":"CWE-73"},{"lang":"en","value":"CWE-98"}]}],"references":[{"url":"https://github.com/mautic/mautic/security/advisories/GHSA-6r9h-4h75-7q4x","source":"security@mautic.org"}]}},{"cve":{"id":"CVE-2026-9808","sourceIdentifier":"security@mautic.org","published":"2026-05-29T12:16:26.800","lastModified":"2026-05-29T15:39:34.620","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"An authorization bypass vulnerability exists in the Mautic 7 API v2 endpoints (utilizing API Platform). Under certain conditions, roles configured with owner-scope restrictions (such as `viewown` or `editown`) are not properly enforced. This allows low-privilege authenticated API users to bypass ownership-logic controls and access or modify resources belonging to other users."}],"metrics":{"cvssMetricV31":[{"source":"security@mautic.org","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:N","baseScore":7.1,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":4.2}]},"weaknesses":[{"source":"security@mautic.org","type":"Secondary","description":[{"lang":"en","value":"CWE-863"}]}],"references":[{"url":"https://github.com/mautic/mautic/security/advisories/GHSA-2jrw-c95w-h43g","source":"security@mautic.org"}]}},{"cve":{"id":"CVE-2026-9809","sourceIdentifier":"security@mautic.org","published":"2026-05-29T12:16:26.917","lastModified":"2026-05-29T15:39:34.620","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"A stored Cross-Site Scripting (XSS) vulnerability exists in the Projects component of Mautic 7. When displaying project tags and popovers on administrative detail views (such as campaigns, emails, or forms), user-supplied project names are rendered without proper sanitization. An authenticated user with permissions to create or edit projects can exploit this to inject malicious script payloads. When an administrative user views an entity associated with a compromised project and hovers over its tag, the injected script executes within the context of their active browser session. This could allow an attacker to perform administrative actions on behalf of the victim, alter system configurations, or exfiltrate sensitive data."}],"metrics":{"cvssMetricV31":[{"source":"security@mautic.org","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:H/A:N","baseScore":7.6,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"HIGH","availabilityImpact":"NONE"},"exploitabilityScore":2.3,"impactScore":4.7}]},"weaknesses":[{"source":"security@mautic.org","type":"Secondary","description":[{"lang":"en","value":"CWE-79"}]}],"references":[{"url":"https://github.com/mautic/mautic/security/advisories/GHSA-7h65-whp7-rgqf","source":"security@mautic.org"}]}},{"cve":{"id":"CVE-2026-9811","sourceIdentifier":"security@mautic.org","published":"2026-05-29T12:16:27.030","lastModified":"2026-05-29T15:39:34.620","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"A stored Cross-Site Scripting (XSS) vulnerability exists in the project selector component of Mautic 7. When rendering selection menus for associating projects with system entities, the application fails to sanitize project names returned via AJAX before injecting them into the DOM as option fields. An authenticated user with permissions to create projects can exploit this to store a malicious script payload in the project's name. When another administrative user subsequently opens an entity editor containing the project selector, the injected script executes within the context of their active browser session. This could allow an attacker to hijack the session, perform unauthorized state coordination, or access organizational data within the dashboard."}],"metrics":{"cvssMetricV31":[{"source":"security@mautic.org","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N","baseScore":5.4,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":2.3,"impactScore":2.7}]},"weaknesses":[{"source":"security@mautic.org","type":"Secondary","description":[{"lang":"en","value":"CWE-79"}]}],"references":[{"url":"https://github.com/mautic/mautic/security/advisories/GHSA-5hvg-w58j-545m","source":"security@mautic.org"}]}},{"cve":{"id":"CVE-2026-10071","sourceIdentifier":"twcert@cert.org.tw","published":"2026-05-29T13:16:22.480","lastModified":"2026-05-29T15:11:03.853","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"DreamMaker developed by Interinfo has an Arbitrary File Upload vulnerability, allowing unauthenticated remote attackers to upload and execute web shell backdoors, thereby enabling arbitrary code execution on the server."}],"metrics":{"cvssMetricV40":[{"source":"twcert@cert.org.tw","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":9.3,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"HIGH","vulnAvailabilityImpact":"HIGH","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"twcert@cert.org.tw","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":9.8,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":5.9}]},"weaknesses":[{"source":"twcert@cert.org.tw","type":"Primary","description":[{"lang":"en","value":"CWE-434"}]}],"references":[{"url":"https://www.twcert.org.tw/en/cp-139-10946-1127f-2.html","source":"twcert@cert.org.tw"},{"url":"https://www.twcert.org.tw/tw/cp-132-10943-8fb00-1.html","source":"twcert@cert.org.tw"}]}},{"cve":{"id":"CVE-2026-45043","sourceIdentifier":"security-advisories@github.com","published":"2026-05-29T13:16:22.630","lastModified":"2026-05-29T15:11:03.853","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"RustFS is a distributed object storage system built in Rust. Prior to 1.0.0-beta.2, improper validation in the PUT /rustfs/admin/v3/import-iam endpoint allows a user with ImportIAMAction to create service accounts under arbitrary parent identities, including the root user (minioadmin). The endpoint accepts attacker-controlled parent, claims, accessKey, and secretKey values without enforcing privilege boundaries or sanitization. This enables privilege escalation to full administrative access using a persistent, attacker-defined credential. This vulnerability is fixed in 1.0.0-beta.2."}],"metrics":{"cvssMetricV40":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:N/SC:H/SI:H/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":9.3,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"LOW","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"HIGH","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"HIGH","subIntegrityImpact":"HIGH","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-269"},{"lang":"en","value":"CWE-284"}]}],"references":[{"url":"https://github.com/rustfs/rustfs/security/advisories/GHSA-566f-q62r-wcr8","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2026-45551","sourceIdentifier":"security-advisories@github.com","published":"2026-05-29T13:16:22.917","lastModified":"2026-05-29T16:29:11.350","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Group-Office is an enterprise customer relationship management and groupware tool. Prior to 26.0.25, 25.0.100, and 6.8.165, GroupOffice allows authenticated users to persist arbitrary legacy settings for any user_id via index.php?r=core/saveSetting. A separate client-side sink in the email module injects the email_font_size setting directly into JavaScript without escaping. By combining these two issues, any low-privileged authenticated user can overwrite an administrator's email_font_size setting with a JavaScript payload and trigger stored XSS in the administrator's browser when the GroupOffice web client loads views/Extjs3/modulescripts.php. This vulnerability is fixed in 26.0.25, 25.0.100, and 6.8.165."}],"metrics":{"cvssMetricV40":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":5.1,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"LOW","userInteraction":"PASSIVE","vulnConfidentialityImpact":"NONE","vulnIntegrityImpact":"NONE","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"LOW","subIntegrityImpact":"LOW","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Secondary","description":[{"lang":"en","value":"CWE-79"},{"lang":"en","value":"CWE-639"}]}],"references":[{"url":"https://github.com/Intermesh/groupoffice/security/advisories/GHSA-9w92-p32g-g99p","source":"security-advisories@github.com"},{"url":"https://github.com/Intermesh/groupoffice/security/advisories/GHSA-9w92-p32g-g99p","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0"}]}},{"cve":{"id":"CVE-2026-48527","sourceIdentifier":"security-advisories@github.com","published":"2026-05-29T13:16:23.133","lastModified":"2026-05-29T16:29:11.350","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"HAX CMS helps manage microsite universe with PHP or NodeJs backends. Versions up to and including 26.0.0 are affected by a stored cross-site scripting (XSS) vulnerability in the `/system/api/saveNode` endpoint. An authenticated user with a permission to edit pages can bypass the HTML sanitizer by injecting an event handler attribute without whitespace before the attribute name. @haxtheweb/haxcms-nodejs 26.0.1 and haxcms-php 26.0.2 patch the issue."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:N","baseScore":8.7,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"NONE"},"exploitabilityScore":2.3,"impactScore":5.8}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Secondary","description":[{"lang":"en","value":"CWE-79"}]}],"references":[{"url":"https://github.com/haxtheweb/issues/security/advisories/GHSA-g2g8-95qg-v35h","source":"security-advisories@github.com"},{"url":"https://github.com/haxtheweb/issues/security/advisories/GHSA-g2g8-95qg-v35h","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0"}]}},{"cve":{"id":"CVE-2026-49323","sourceIdentifier":"cve@asrg.io","published":"2026-05-29T13:16:23.407","lastModified":"2026-05-29T15:16:24.630","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Weak authentication between the Wireless Control Module (WCM) and the Engine Control Module (ECM) of the Indian Motorcycle Scout Bobber + Tech 2025 model year allows an adjacent-network attacker with read access to the in-vehicle network to recover the per-vehicle ECM immobilizer secret by passively observing a single seed/key exchange. The WCM derives its response using a reversible, non-cryptographic operation rather than a cryptographic challenge-response, so the persistent immobilizer secret can be reconstructed from one captured exchange. With this secret the attacker can authenticate to the ECM independently of the WCM and start the engine, defeating the immobilizer. Specific protocol details have been withheld pending vendor remediation."}],"metrics":{"cvssMetricV40":[{"source":"cve@asrg.io","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:P/AC:L/AT:P/PR:N/UI:P/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":4.1,"baseSeverity":"MEDIUM","attackVector":"PHYSICAL","attackComplexity":"LOW","attackRequirements":"PRESENT","privilegesRequired":"NONE","userInteraction":"PASSIVE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"NONE","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"cve@asrg.io","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:P/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N","baseScore":4.3,"baseSeverity":"MEDIUM","attackVector":"PHYSICAL","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":0.7,"impactScore":3.6}]},"weaknesses":[{"source":"cve@asrg.io","type":"Secondary","description":[{"lang":"en","value":"CWE-327"},{"lang":"en","value":"CWE-798"},{"lang":"en","value":"CWE-1390"}]}],"references":[{"url":"https://www.asrg.io/security-advisories/cve-2026-49323-indian-scout-wcm-ecm-weak-authentication","source":"cve@asrg.io"}]}},{"cve":{"id":"CVE-2026-49324","sourceIdentifier":"cve@asrg.io","published":"2026-05-29T13:16:23.557","lastModified":"2026-05-29T15:16:24.753","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Uncontrolled resource consumption in the Wireless Control Module (WCM) of the Indian Motorcycle Scout Bobber + Tech 2025 model year allows an adjacent-network attacker with write access to the in-vehicle network to permanently immobilize the motorcycle. The WCM enforces a brute-force lockout on the immobilizer authentication algorithm, but the lockout counter is reachable by any unauthenticated message, has no session binding, and does not reset on power cycle. An attacker can deliberately trip the lockout with a small number of crafted frames, leaving the bike un-startable until dealer service. Specific thresholds have been withheld pending vendor remediation."}],"metrics":{"cvssMetricV40":[{"source":"cve@asrg.io","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:P/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":4.1,"baseSeverity":"MEDIUM","attackVector":"PHYSICAL","attackComplexity":"LOW","attackRequirements":"PRESENT","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"NONE","vulnIntegrityImpact":"NONE","vulnAvailabilityImpact":"HIGH","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"cve@asrg.io","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","baseScore":4.6,"baseSeverity":"MEDIUM","attackVector":"PHYSICAL","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":0.9,"impactScore":3.6}]},"weaknesses":[{"source":"cve@asrg.io","type":"Secondary","description":[{"lang":"en","value":"CWE-307"},{"lang":"en","value":"CWE-400"},{"lang":"en","value":"CWE-770"}]}],"references":[{"url":"https://www.asrg.io/security-advisories/cve-2026-49324-indian-scout-wcm-bruteforce-lockout-dos","source":"cve@asrg.io"}]}},{"cve":{"id":"CVE-2026-8326","sourceIdentifier":"vulnerability@ncsc.ch","published":"2026-05-29T13:16:23.770","lastModified":"2026-05-29T15:39:34.620","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Path traversal vulnerability in Remote Spark (https://www.Remotespark.Com/) SparkView allows reading and writing arbitrary files in all directories as root. This leads to RCE. The affected component is the RDP drive redirection.  Depending on implementation, the vulnerability can be exploited by an unauthenticated attacker.\n\nThis issue affects SparkView: before build 1127."}],"metrics":{"cvssMetricV40":[{"source":"vulnerability@ncsc.ch","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":10.0,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"HIGH","vulnAvailabilityImpact":"HIGH","subConfidentialityImpact":"HIGH","subIntegrityImpact":"HIGH","subAvailabilityImpact":"HIGH","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}]},"weaknesses":[{"source":"vulnerability@ncsc.ch","type":"Secondary","description":[{"lang":"en","value":"CWE-23"}]}],"references":[{"url":"https://www.remotespark.com/view/new.html","source":"vulnerability@ncsc.ch"}]}},{"cve":{"id":"CVE-2026-9508","sourceIdentifier":"cve-coordination@incibe.es","published":"2026-05-29T13:16:23.967","lastModified":"2026-05-29T15:39:34.620","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Incorrect permission settings on a critical resource in Suprema BioStar 2 (versions 2.9.3 through 2.9.11) that allow backup files to be publicly exposed when the administrator configures their path within the NGINX webroot. This vulnerability allows an attacker with network access to directly download backup ZIP files via ‘http(s)://[server]/download/…’ without requiring authentication. This exposes highly sensitive information that can lead to server impersonation, unauthorized access to databases, and lateral movement."}],"metrics":{"cvssMetricV40":[{"source":"cve-coordination@incibe.es","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:L/SC:H/SI:H/SA:L/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":10.0,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"HIGH","vulnAvailabilityImpact":"LOW","subConfidentialityImpact":"HIGH","subIntegrityImpact":"HIGH","subAvailabilityImpact":"LOW","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}]},"weaknesses":[{"source":"cve-coordination@incibe.es","type":"Primary","description":[{"lang":"en","value":"CWE-732"}]}],"references":[{"url":"https://www.incibe.es/en/incibe-cert/notices/aviso/multiple-vulnerabilities-supremas-biostar","source":"cve-coordination@incibe.es"}]}},{"cve":{"id":"CVE-2026-9509","sourceIdentifier":"cve-coordination@incibe.es","published":"2026-05-29T13:16:24.120","lastModified":"2026-05-29T15:39:34.620","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"An unhandled exception in Suprema BioStar 2 (Server), versions 2.9.8, 2.9.10, and 2.9.11, that allows an unauthenticated remote attacker to cause a denial of service (DoS) by sending HTTP POST requests to the ‘/api/migration’ endpoint. This request triggers a failure that halts critical processes, leaving the system offline until the services or server are manually restarted. As a result, access control readers cease to function, and potential failures may occur in third-party integrations. Since the exploit requires no privileges or user interaction and is trivial to automate, the impact on availability is high, and the effect extends to interconnected systems."}],"metrics":{"cvssMetricV40":[{"source":"cve-coordination@incibe.es","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":8.7,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"NONE","vulnIntegrityImpact":"NONE","vulnAvailabilityImpact":"HIGH","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}]},"weaknesses":[{"source":"cve-coordination@incibe.es","type":"Primary","description":[{"lang":"en","value":"CWE-248"}]}],"references":[{"url":"https://www.incibe.es/en/incibe-cert/notices/aviso/multiple-vulnerabilities-supremas-biostar","source":"cve-coordination@incibe.es"}]}},{"cve":{"id":"CVE-2026-10060","sourceIdentifier":"cna@vuldb.com","published":"2026-05-29T14:16:25.340","lastModified":"2026-05-29T16:16:22.803","vulnStatus":"Undergoing Analysis","cveTags":[{"sourceIdentifier":"cna@vuldb.com","tags":["unsupported-when-assigned"]}],"descriptions":[{"lang":"en","value":"A vulnerability has been found in TRENDnet TEW-432BRP 3.10B20. This impacts the function formSetRoute of the file /goform/formSetRoute. The manipulation of the argument ip/mask/gateway leads to command injection. Remote exploitation of the attack is possible. The exploit has been disclosed to the public and may be used. The vendor explains: \"This product has been EOL for 15 years (since 2009). As the item has been EOL for such a long time, we are not able to replicate or fix any vulnerabilities.\" This vulnerability only affects products that are no longer supported by the maintainer."}],"metrics":{"cvssMetricV40":[{"source":"cna@vuldb.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":2.1,"baseSeverity":"LOW","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"LOW","userInteraction":"NONE","vulnConfidentialityImpact":"LOW","vulnIntegrityImpact":"LOW","vulnAvailabilityImpact":"LOW","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"PROOF_OF_CONCEPT","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"cna@vuldb.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L","baseScore":6.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"LOW"},"exploitabilityScore":2.8,"impactScore":3.4}],"cvssMetricV2":[{"source":"cna@vuldb.com","type":"Secondary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:S/C:P/I:P/A:P","baseScore":6.5,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"SINGLE","confidentialityImpact":"PARTIAL","integrityImpact":"PARTIAL","availabilityImpact":"PARTIAL"},"baseSeverity":"MEDIUM","exploitabilityScore":8.0,"impactScore":6.4,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"cna@vuldb.com","type":"Secondary","description":[{"lang":"en","value":"CWE-74"},{"lang":"en","value":"CWE-77"}]}],"references":[{"url":"https://github.com/wudipjq/my_vuln/blob/main/TRENDnet/vuln_1/1.md","source":"cna@vuldb.com"},{"url":"https://vuldb.com/submit/814756","source":"cna@vuldb.com"},{"url":"https://vuldb.com/vuln/367146","source":"cna@vuldb.com"},{"url":"https://vuldb.com/vuln/367146/cti","source":"cna@vuldb.com"},{"url":"https://vuldb.com/submit/814756","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0"}]}},{"cve":{"id":"CVE-2026-10061","sourceIdentifier":"cna@vuldb.com","published":"2026-05-29T14:16:25.563","lastModified":"2026-05-29T15:11:32.477","vulnStatus":"Undergoing Analysis","cveTags":[{"sourceIdentifier":"cna@vuldb.com","tags":["unsupported-when-assigned"]}],"descriptions":[{"lang":"en","value":"A vulnerability was found in TRENDnet TEW-432BRP 3.10B20. Affected is the function formWPS of the file /goform/formWPS. The manipulation of the argument peerPin results in command injection. The attack can be executed remotely. The exploit has been made public and could be used. The vendor explains: \"This product has been EOL for 15 years (since 2009). As the item has been EOL for such a long time, we are not able to replicate or fix any vulnerabilities.\" This vulnerability only affects products that are no longer supported by the maintainer."}],"metrics":{"cvssMetricV40":[{"source":"cna@vuldb.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":2.1,"baseSeverity":"LOW","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"LOW","userInteraction":"NONE","vulnConfidentialityImpact":"LOW","vulnIntegrityImpact":"LOW","vulnAvailabilityImpact":"LOW","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"PROOF_OF_CONCEPT","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"cna@vuldb.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L","baseScore":6.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"LOW"},"exploitabilityScore":2.8,"impactScore":3.4}],"cvssMetricV2":[{"source":"cna@vuldb.com","type":"Secondary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:S/C:P/I:P/A:P","baseScore":6.5,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"SINGLE","confidentialityImpact":"PARTIAL","integrityImpact":"PARTIAL","availabilityImpact":"PARTIAL"},"baseSeverity":"MEDIUM","exploitabilityScore":8.0,"impactScore":6.4,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"cna@vuldb.com","type":"Primary","description":[{"lang":"en","value":"CWE-74"},{"lang":"en","value":"CWE-77"}]}],"references":[{"url":"https://github.com/wudipjq/my_vuln/blob/main/TRENDnet/vuln_2/2.md","source":"cna@vuldb.com"},{"url":"https://vuldb.com/submit/814757","source":"cna@vuldb.com"},{"url":"https://vuldb.com/vuln/367147","source":"cna@vuldb.com"},{"url":"https://vuldb.com/vuln/367147/cti","source":"cna@vuldb.com"}]}},{"cve":{"id":"CVE-2026-10072","sourceIdentifier":"twcert@cert.org.tw","published":"2026-05-29T14:16:25.817","lastModified":"2026-05-29T15:11:03.853","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"DreamMaker developed by Interinfo has an Arbitrary File Upload vulnerability, allowing privileged remote attackers to upload and execute web shell backdoors, thereby enabling arbitrary code execution on the server."}],"metrics":{"cvssMetricV40":[{"source":"twcert@cert.org.tw","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":8.6,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"HIGH","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"HIGH","vulnAvailabilityImpact":"HIGH","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"twcert@cert.org.tw","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H","baseScore":7.2,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"HIGH","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.2,"impactScore":5.9}]},"weaknesses":[{"source":"twcert@cert.org.tw","type":"Primary","description":[{"lang":"en","value":"CWE-434"}]}],"references":[{"url":"https://www.twcert.org.tw/en/cp-139-10946-1127f-2.html","source":"twcert@cert.org.tw"},{"url":"https://www.twcert.org.tw/tw/cp-132-10943-8fb00-1.html","source":"twcert@cert.org.tw"}]}},{"cve":{"id":"CVE-2026-10073","sourceIdentifier":"twcert@cert.org.tw","published":"2026-05-29T14:16:25.953","lastModified":"2026-05-29T15:11:03.853","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"DreamMaker developed by Interinfo has an Arbitrary File Read vulnerability, allowing unauthenticated local attackers to exploit Relative Path Traversal to download arbitrary system files."}],"metrics":{"cvssMetricV40":[{"source":"twcert@cert.org.tw","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":8.7,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"NONE","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"twcert@cert.org.tw","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":3.6}]},"weaknesses":[{"source":"twcert@cert.org.tw","type":"Primary","description":[{"lang":"en","value":"CWE-23"}]}],"references":[{"url":"https://www.twcert.org.tw/en/cp-139-10946-1127f-2.html","source":"twcert@cert.org.tw"},{"url":"https://www.twcert.org.tw/tw/cp-132-10943-8fb00-1.html","source":"twcert@cert.org.tw"}]}},{"cve":{"id":"CVE-2026-10074","sourceIdentifier":"twcert@cert.org.tw","published":"2026-05-29T14:16:26.097","lastModified":"2026-05-29T15:11:03.853","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"DreamMaker developed by Interinfo has an Arbitrary File Read vulnerability, allowing privileged local attackers to exploit Relative Path Traversal to download arbitrary system files."}],"metrics":{"cvssMetricV40":[{"source":"twcert@cert.org.tw","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":6.9,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"HIGH","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"NONE","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"twcert@cert.org.tw","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N","baseScore":4.9,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"HIGH","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":1.2,"impactScore":3.6}]},"weaknesses":[{"source":"twcert@cert.org.tw","type":"Primary","description":[{"lang":"en","value":"CWE-23"}]}],"references":[{"url":"https://www.twcert.org.tw/en/cp-139-10946-1127f-2.html","source":"twcert@cert.org.tw"},{"url":"https://www.twcert.org.tw/tw/cp-132-10943-8fb00-1.html","source":"twcert@cert.org.tw"}]}},{"cve":{"id":"CVE-2026-10075","sourceIdentifier":"twcert@cert.org.tw","published":"2026-05-29T14:16:26.250","lastModified":"2026-05-29T15:11:03.853","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"DreamMaker developed by Interinfo has a Path Traversal vulnerability, allowing unauthenticated remote attackers to read file names under arbitrary path by exploiting an Absolute Path Traversal vulnerability."}],"metrics":{"cvssMetricV40":[{"source":"twcert@cert.org.tw","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":6.9,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"LOW","vulnIntegrityImpact":"NONE","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"twcert@cert.org.tw","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N","baseScore":5.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":1.4}]},"weaknesses":[{"source":"twcert@cert.org.tw","type":"Primary","description":[{"lang":"en","value":"CWE-36"}]}],"references":[{"url":"https://www.twcert.org.tw/en/cp-139-10946-1127f-2.html","source":"twcert@cert.org.tw"},{"url":"https://www.twcert.org.tw/tw/cp-132-10943-8fb00-1.html","source":"twcert@cert.org.tw"}]}},{"cve":{"id":"CVE-2026-40510","sourceIdentifier":"disclosure@vulncheck.com","published":"2026-05-29T14:16:26.540","lastModified":"2026-05-29T15:42:56.873","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"OpenSC before 0.27.0-rc1, fixed in commit 3f24f0b, contains a stack buffer overflow vulnerability in piv_process_history() in src/libopensc/card-piv.c that allows physically present attackers to trigger memory corruption by presenting a crafted PIV smart card or USB device returning a URL field longer than 118 bytes in the Key History Object ASN.1 response."}],"metrics":{"cvssMetricV40":[{"source":"disclosure@vulncheck.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:P/AC:H/AT:N/PR:N/UI:P/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":1.0,"baseSeverity":"LOW","attackVector":"PHYSICAL","attackComplexity":"HIGH","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"PASSIVE","vulnConfidentialityImpact":"LOW","vulnIntegrityImpact":"LOW","vulnAvailabilityImpact":"LOW","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"disclosure@vulncheck.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:P/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L","baseScore":3.8,"baseSeverity":"LOW","attackVector":"PHYSICAL","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"LOW"},"exploitabilityScore":0.4,"impactScore":3.4}]},"weaknesses":[{"source":"disclosure@vulncheck.com","type":"Primary","description":[{"lang":"en","value":"CWE-121"}]}],"references":[{"url":"https://github.com/OpenSC/OpenSC/commit/3f24f0b48a481a8cf2e46059d8238a283ddc1c13","source":"disclosure@vulncheck.com"},{"url":"https://github.com/OpenSC/OpenSC/pull/3558","source":"disclosure@vulncheck.com"},{"url":"https://www.vulncheck.com/advisories/opensc-stack-buffer-overflow-via-piv-process-history-in-card-piv-c","source":"disclosure@vulncheck.com"}]}},{"cve":{"id":"CVE-2026-40528","sourceIdentifier":"disclosure@vulncheck.com","published":"2026-05-29T14:16:26.730","lastModified":"2026-05-29T15:42:56.873","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"OpenSC before 0.27.0, fixed in commit 0358817, contains a stack and heap buffer overrun vulnerability in the do_key_value() function in src/pkcs15init/profile.c that allows attackers to corrupt memory by supplying a crafted profile configuration file. During pkcs15-init invocation, a key value entry beginning with '=' followed by more than sizeof(keybuf) characters is copied into keybuf via memcpy without a length check, causing both stack and heap buffer overruns."}],"metrics":{"cvssMetricV40":[{"source":"disclosure@vulncheck.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:P/AC:H/AT:N/PR:N/UI:P/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":1.0,"baseSeverity":"LOW","attackVector":"PHYSICAL","attackComplexity":"HIGH","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"PASSIVE","vulnConfidentialityImpact":"LOW","vulnIntegrityImpact":"LOW","vulnAvailabilityImpact":"LOW","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"disclosure@vulncheck.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:P/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L","baseScore":3.8,"baseSeverity":"LOW","attackVector":"PHYSICAL","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"LOW"},"exploitabilityScore":0.4,"impactScore":3.4}]},"weaknesses":[{"source":"disclosure@vulncheck.com","type":"Primary","description":[{"lang":"en","value":"CWE-121"},{"lang":"en","value":"CWE-122"}]}],"references":[{"url":"https://github.com/OpenSC/OpenSC/commit/0358817ec74aeca654f83e7709c7720b14c5db59","source":"disclosure@vulncheck.com"},{"url":"https://www.vulncheck.com/advisories/opensc-buffer-overrun-in-do-key-value-via-profile-c","source":"disclosure@vulncheck.com"}]}},{"cve":{"id":"CVE-2026-44237","sourceIdentifier":"security-advisories@github.com","published":"2026-05-29T14:16:27.060","lastModified":"2026-05-29T15:06:44.207","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"FreePBX is an open source IP PBX. Prior to 17.0.8, the FreePBX api module's OAuth2 implementation does not sufficiently validate client credentials during token issuance. Knowledge of a valid client_id is required. The validateClient() method in ClientRepository.php unconditionally returns true, allowing any party with knowledge of a valid client_id to obtain OAuth2 access tokens without providing the correct client_secret. This vulnerability is fixed in 17.0.8."}],"metrics":{"cvssMetricV40":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":7.6,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"PRESENT","privilegesRequired":"LOW","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"HIGH","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-1390"}]}],"references":[{"url":"https://github.com/FreePBX/security-reporting/security/advisories/GHSA-vgjf-4h63-8vcc","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2026-44238","sourceIdentifier":"security-advisories@github.com","published":"2026-05-29T14:16:27.233","lastModified":"2026-05-29T15:06:44.207","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"FreePBX is an open source IP PBX. Prior to 16.0.50 and 17.0.11, the CDR Reports module page allows SQL injection through the order and sort POST parameters. Authentication with a FreePBX Administration Control Panel account that has CDR section access is required. Full administrator privileges are not needed. This vulnerability is fixed in 16.0.50 and 17.0.11."}],"metrics":{"cvssMetricV40":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":8.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"HIGH","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"HIGH","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-89"}]}],"references":[{"url":"https://github.com/FreePBX/security-reporting/security/advisories/GHSA-p9fq-fmpw-2h9x","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2026-44239","sourceIdentifier":"security-advisories@github.com","published":"2026-05-29T14:16:27.363","lastModified":"2026-05-29T15:06:44.207","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"FreePBX is an open source IP PBX. Prior to 16.0.22 and 17.0.5, the Dashboard module's getcontent AJAX handler includes PHP files based on user-supplied input without path sanitization. The $_REQUEST['rawname'] parameter is concatenated into an include() call with a .class.php suffix, allowing path traversal via ../ sequences to include arbitrary .class.php files from the filesystem. The included file's PHP code executes before the subsequent class instantiation error occurs. This vulnerability is fixed in 16.0.22 and 17.0.5."}],"metrics":{"cvssMetricV40":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":7.6,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"PRESENT","privilegesRequired":"LOW","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"HIGH","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-98"}]}],"references":[{"url":"https://github.com/FreePBX/security-reporting/security/advisories/GHSA-hw7v-v2jp-wc4v","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2026-44698","sourceIdentifier":"security-advisories@github.com","published":"2026-05-29T14:16:28.823","lastModified":"2026-05-29T16:25:57.843","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Home Assistant is open source home automation software that puts local control and privacy first. Prior to 2026.4.1 for iOS and 2026.4.4 for Android, he Home Assistant Companion apps for Android and iOS expose a JavaScript bridge to the in-app WebView window.externalApp on Android and webkit.messageHandlers.getExternalAuth (alongside revokeExternalAuth and externalBus) on iOS. Two flaws expose the bridge to all frames (including cross-origin iframes) and unsanitized interpolation of the JavaScript callback identifier allows a cross-origin iframe rendered inside the Companion app to execute arbitrary JavaScript in the Home Assistant frontend's main-frame origin and exfiltrate the signed-in user's access token. This vulnerability is fixed in 2026.4.1 for iOS and 2026.4.4 for Android."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H","baseScore":8.3,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.6,"impactScore":6.0}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-94"},{"lang":"en","value":"CWE-346"},{"lang":"en","value":"CWE-749"},{"lang":"en","value":"CWE-940"}]}],"references":[{"url":"https://github.com/home-assistant/core/security/advisories/GHSA-7jp2-p2fw-mgvf","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2026-45555","sourceIdentifier":"security-advisories@github.com","published":"2026-05-29T14:16:30.113","lastModified":"2026-05-29T18:17:09.893","vulnStatus":"Received","cveTags":[],"descriptions":[{"lang":"en","value":"Roslyn CodeLens MCP Server is a Roslyn-based MCP server providing semantic code intelligence for .NET codebases. From 0.0.9 to 1.17.0, the get_diagnostics MCP tool loads and executes all DiagnosticAnalyzer assemblies referenced by the target solution without any allowlist, signature check, or user confirmation; includeAnalyzers defaults to true, so no explicit opt-in is required. An attacker who can place a malicious .csproj referencing an attacker-controlled DLL in a location the victim opens with the MCP server will achieve arbitrary code execution in the server process with the server's OS privileges. This vulnerability is fixed in 1.17.0."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","baseScore":7.8,"baseSeverity":"HIGH","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.8,"impactScore":5.9}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Secondary","description":[{"lang":"en","value":"CWE-94"}]}],"references":[{"url":"https://github.com/MarcelRoozekrans/roslyn-codelens-mcp/security/advisories/GHSA-552p-8f74-6x7q","source":"security-advisories@github.com"},{"url":"https://github.com/MarcelRoozekrans/roslyn-codelens-mcp/security/advisories/GHSA-552p-8f74-6x7q","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0"}]}},{"cve":{"id":"CVE-2026-45578","sourceIdentifier":"security-advisories@github.com","published":"2026-05-29T14:16:30.253","lastModified":"2026-05-29T15:06:44.207","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"WWBN AVideo is an open source video platform. In 29.0 and earlier, there is a classic shell-metacharacter injection. The YPTSocket notification branch in plugin/Live/on_publish.php builds an execAsync() command line by string concatenation, single-quoting each argument but never calling escapeshellarg(). A ' in any of the three interpolated values ($users_id, $m3u8, $obj->liveTransmitionHistory_id) closes the quoted token and lets the attacker append arbitrary commands."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":5.9}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-78"}]}],"references":[{"url":"https://github.com/WWBN/AVideo/security/advisories/GHSA-xw67-cg5f-4m2r","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2026-45580","sourceIdentifier":"security-advisories@github.com","published":"2026-05-29T14:16:30.413","lastModified":"2026-05-29T15:06:44.207","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"WWBN AVideo is an open source video platform. In 29.0 and earlier, there is a stored cross-site scripting vulnerability. The Live plugin's \"YouTube-style\" view renders the live transmission's stream key into an HTML class attribute by raw echo, without htmlspecialchars(). A canStream user can persist a key containing \" plus an event handler via plugin/Live/saveLive.php, and any visitor (logged in or anonymous) opening the stream's live page executes attacker JavaScript in the platform origin."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N","baseScore":5.4,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":2.3,"impactScore":2.7}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-79"}]}],"references":[{"url":"https://github.com/WWBN/AVideo/security/advisories/GHSA-m5j4-7r85-2cj2","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2026-45582","sourceIdentifier":"security-advisories@github.com","published":"2026-05-29T14:16:30.563","lastModified":"2026-05-29T15:06:44.207","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"n8n-MCP is an MCP server that provides AI assistants access to n8n node documentation, properties, and operations. Prior to 2.51.3, the workflow telemetry sanitizer could retain partial fragments of URL-shaped node parameters before sending workflow data to the project's anonymous telemetry backend. Values placed in HTTP-Request-style node parameters — such as customer or tenant identifiers, short secrets embedded in query strings, and signed request parameters — could therefore appear in stored telemetry, contrary to the collection boundary documented in PRIVACY.md. This vulnerability is fixed in 2.51.3."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":3.6}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-201"}]}],"references":[{"url":"https://github.com/czlonkowski/n8n-mcp/commit/6cf6fef653fcd6d598f2f356aac4754931c7329f","source":"security-advisories@github.com"},{"url":"https://github.com/czlonkowski/n8n-mcp/pull/782","source":"security-advisories@github.com"},{"url":"https://github.com/czlonkowski/n8n-mcp/releases/tag/v2.51.3","source":"security-advisories@github.com"},{"url":"https://github.com/czlonkowski/n8n-mcp/security/advisories/GHSA-f3rg-xqjj-cj9w","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2026-45610","sourceIdentifier":"security-advisories@github.com","published":"2026-05-29T14:16:30.713","lastModified":"2026-05-29T15:16:23.610","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"WWBN AVideo is an open source video platform. In 29.0 and earlier, there is a cross-site request forgery vulnerability on the 2FA toggle. plugin/LoginControl/set.json.php accepts POST type=set2FA value=false, calls LoginControl::setUser2FA(User::getId(), false) on the session-authenticated user, and returns. There is no forbidIfIsUntrustedRequest() call, no isTokenValid() check, no X-CSRF-Token/SameSite enforcement, and no re-authentication step. A cross-origin page that the victim visits while logged into the AVideo dashboard issues the POST via a hidden form (or fetch without credentials:\"omit\") and disables the victim's 2FA in one request."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:H/A:N","baseScore":5.7,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"HIGH","availabilityImpact":"NONE"},"exploitabilityScore":2.1,"impactScore":3.6}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Secondary","description":[{"lang":"en","value":"CWE-306"},{"lang":"en","value":"CWE-352"}]}],"references":[{"url":"https://github.com/WWBN/AVideo/security/advisories/GHSA-3mv2-vmwh-rwfx","source":"security-advisories@github.com"},{"url":"https://github.com/WWBN/AVideo/security/advisories/GHSA-3mv2-vmwh-rwfx","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0"}]}},{"cve":{"id":"CVE-2026-45615","sourceIdentifier":"security-advisories@github.com","published":"2026-05-29T14:16:30.847","lastModified":"2026-05-29T18:17:10.163","vulnStatus":"Received","cveTags":[],"descriptions":[{"lang":"en","value":"mouse07410/asn1c is an ASN.1 compiler. In 1.4 and earlier, a memory safety vulnerability was identified in the OER decoding skeleton files generated by asn1c (specifically INTEGER_oer.c). When parsing a maliciously crafted, zero-length OER payload for a variable-length, non-negative INTEGER type, the decoder fails to validate the required bytes before extracting the Most Significant Bit (MSB). This forces a precise 1-byte Heap Out-of-Bounds (OOB) Read. Because asn1c generated code is primarily deployed to parse untrusted network inputs (such as V2X network protocols, 5G telecom headers, or X.509 certificates), when the decoder processes untrusted network-originated input, a remote attacker can exploit this to cause a Denial of Service (DoS) or trigger incorrect integer interpretation in downstream applications (e.g., protocol state poisoning or logic bypass)."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H","baseScore":8.2,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"LOW","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":4.2}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Secondary","description":[{"lang":"en","value":"CWE-20"},{"lang":"en","value":"CWE-125"},{"lang":"en","value":"CWE-130"}]}],"references":[{"url":"https://github.com/mouse07410/asn1c/security/advisories/GHSA-wxx8-76rw-96j2","source":"security-advisories@github.com"},{"url":"https://github.com/mouse07410/asn1c/security/advisories/GHSA-wxx8-76rw-96j2","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0"}]}},{"cve":{"id":"CVE-2026-45619","sourceIdentifier":"security-advisories@github.com","published":"2026-05-29T14:16:30.980","lastModified":"2026-05-29T15:06:44.207","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"WWBN AVideo is an open source video platform. In 29.0 and earlier, EpgParser.php, plugin/AI/receiveAsync.json.php, and other locations do not use the $resolvedIP out-param of isSSRFSafeURL() for DNS pinning via CURLOPT_RESOLVE, opening DNS-rebinding TOCTOU."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:L/A:N","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":2.2,"impactScore":4.2}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-367"},{"lang":"en","value":"CWE-918"}]}],"references":[{"url":"https://github.com/WWBN/AVideo/security/advisories/GHSA-c3ch-22rq-xfwr","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2026-45620","sourceIdentifier":"security-advisories@github.com","published":"2026-05-29T14:16:31.107","lastModified":"2026-05-29T15:06:44.207","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"WWBN AVideo is an open source video platform. In 29.0 and earlier, objects/mention.json.php has no User::loginCheck() or admin gate. It only has an entry guard: preg_match('/^@/', $_REQUEST['term']) and hard-coded rowCount=10. This enables unauthenticated user enumeration."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N","baseScore":5.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":1.4}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-204"},{"lang":"en","value":"CWE-285"}]}],"references":[{"url":"https://github.com/WWBN/AVideo/security/advisories/GHSA-vpfx-pxqw-2w79","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2026-45707","sourceIdentifier":"security-advisories@github.com","published":"2026-05-29T14:16:31.240","lastModified":"2026-05-29T15:06:44.207","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"n8n-MCP is an MCP server that provides AI assistants access to n8n node documentation, properties, and operations. Prior to 2.51.2, when ENABLE_MULTI_TENANT=true, the HTTP transport documents that the target n8n instance is selected per-request from x-n8n-url / x-n8n-key headers. Requests that omitted those headers — or supplied only one of them — silently fell back to the process-level N8N_API_URL / N8N_API_KEY credentials configured for the operator's own n8n instance. As a result, an authenticated MCP tenant could cause n8n management calls to execute against the operator's instance instead of its own. This affects HTTP-mode deployments of n8n-mcp that are run as a shared multi-tenant service. Single-tenant deployments (ENABLE_MULTI_TENANT unset or false) are not affected. This vulnerability is fixed in 2.51.2."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N","baseScore":8.1,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":5.2}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-284"}]}],"references":[{"url":"https://github.com/czlonkowski/n8n-mcp/commit/853015d0897be7cf2d9d4726de195c938e4395ab","source":"security-advisories@github.com"},{"url":"https://github.com/czlonkowski/n8n-mcp/releases/tag/v2.51.2","source":"security-advisories@github.com"},{"url":"https://github.com/czlonkowski/n8n-mcp/security/advisories/GHSA-jxx9-px88-pj69","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2026-45731","sourceIdentifier":"security-advisories@github.com","published":"2026-05-29T14:16:31.383","lastModified":"2026-05-29T15:16:23.787","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"WWBN AVideo is an open source video platform. In 29.0 and earlier, view/update.php reads $_POST['updateFile'] as a relative path under updatedb/ and passes it to PHP's file() for line-by-line execution as part of a database migration. An authenticated administrator can abuse this to read arbitrary text files reachable from the web-server process."}],"metrics":{"cvssMetricV40":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":6.9,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"HIGH","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"NONE","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Secondary","description":[{"lang":"en","value":"CWE-22"}]}],"references":[{"url":"https://github.com/WWBN/AVideo/security/advisories/GHSA-3mjv-375j-6h92","source":"security-advisories@github.com"},{"url":"https://github.com/WWBN/AVideo/security/advisories/GHSA-3mjv-375j-6h92","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0"}]}},{"cve":{"id":"CVE-2026-46337","sourceIdentifier":"security-advisories@github.com","published":"2026-05-29T14:16:31.520","lastModified":"2026-05-29T18:17:12.047","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"WWBN AVideo is an open source video platform. In 29.0 and earlier, an unauthenticated remote attacker can read arbitrary image files anywhere on disk that the PHP user can open — including private user-profile photos that the application's normal serving wrappers gate behind ACLs, admin-uploaded thumbnails, encrypted-video poster frames, and image content under sibling-app directories reachable via .. traversal. The endpoint requires no authentication."}],"metrics":{"cvssMetricV40":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":6.9,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"LOW","vulnIntegrityImpact":"NONE","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Secondary","description":[{"lang":"en","value":"CWE-22"}]}],"references":[{"url":"https://github.com/WWBN/AVideo/security/advisories/GHSA-w4qq-74h6-58wq","source":"security-advisories@github.com"},{"url":"https://github.com/WWBN/AVideo/security/advisories/GHSA-w4qq-74h6-58wq","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0"}]}},{"cve":{"id":"CVE-2026-46376","sourceIdentifier":"security-advisories@github.com","published":"2026-05-29T14:16:31.677","lastModified":"2026-05-29T15:06:44.207","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"FreePBX is an open source IP PBX. From 15.0.42 to before 16.0.45 and 17.0.7, unauthenticated users may be able to access the User Control Panel (UCP) using hard-coded initial template credentials if these were not immediately changed by the Administrator who enabled UCP. Authenticated access to ACP is required for the initial setup of UCP generic templates, but after that, without further steps by the admin, unauthenticated users may be able to gain access. This vulnerability is fixed in 16.0.45 and 17.0.7."}],"metrics":{"cvssMetricV40":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":9.3,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"HIGH","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-798"}]}],"references":[{"url":"https://github.com/FreePBX/security-reporting/security/advisories/GHSA-m55x-h47x-v3gx","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2026-46510","sourceIdentifier":"security-advisories@github.com","published":"2026-05-29T14:16:31.807","lastModified":"2026-05-29T14:16:31.807","vulnStatus":"Received","cveTags":[],"descriptions":[{"lang":"en","value":"form-data-objectizer converts FormData to object. Prior to 1.0.1, form-data-objectizer walks bracket-notation form keys (e.g. name[sub]) into nested objects without filtering __proto__, constructor, or prototype. A single HTTP form field whose name starts with __proto__[...] causes the library to mutate Object.prototype, which is a prototype pollution primitive of the entire Node.js process. This vulnerability is fixed in 1.0.1."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:L","baseScore":8.2,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"HIGH","availabilityImpact":"LOW"},"exploitabilityScore":3.9,"impactScore":4.2}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-1321"}]}],"references":[{"url":"https://github.com/kaspernj/form-data-objectizer/commit/7c54b99408e6e9cd6533b7245bf197dadc2a2dbc","source":"security-advisories@github.com"},{"url":"https://github.com/kaspernj/form-data-objectizer/security/advisories/GHSA-m2hg-wjq3-28wq","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2026-47696","sourceIdentifier":"security-advisories@github.com","published":"2026-05-29T14:16:32.127","lastModified":"2026-05-29T15:16:24.103","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"WWBN AVideo is an open source video platform. In 29.0 and earlier, plugin/AuthorizeNet/processPayment.json.php credits the logged-in user's wallet based only on the attacker-controlled amount POST parameter. The endpoint contains a TODO for real Authorize.Net charging, hardcodes $paymentSuccess = true, and then calls YPTWallet::addBalance() without validating\nany Authorize.Net transaction, webhook signature, hosted payment token, nonce, or server-side payment record. This allows any logged-in user to add arbitrary funds to their own AVideo wallet when the AuthorizeNet and YPTWallet plugins are enabled."}],"metrics":{"cvssMetricV40":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":7.1,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"LOW","userInteraction":"NONE","vulnConfidentialityImpact":"NONE","vulnIntegrityImpact":"HIGH","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Secondary","description":[{"lang":"en","value":"CWE-345"}]}],"references":[{"url":"https://github.com/WWBN/AVideo/security/advisories/GHSA-9392-pj54-qqf8","source":"security-advisories@github.com"},{"url":"https://github.com/WWBN/AVideo/security/advisories/GHSA-9392-pj54-qqf8","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0"}]}},{"cve":{"id":"CVE-2026-49316","sourceIdentifier":"cve@asrg.io","published":"2026-05-29T14:16:32.480","lastModified":"2026-05-29T15:11:03.853","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Expected behavior violation in the in-vehicle network of the Indian Motorcycle Scout Bobber + Tech 2025 model year allows an adjacent-network attacker to bypass the motorcycle's anti-theft shutdown by forcing the Wireless Control Module (WCM) into the CAN bus-off state. Using a well-known CAN error-frame injection technique against a periodic WCM transmission, the attacker drives the WCM CAN controller's transmit error counter past the bus-off threshold, after which the WCM stops transmitting all messages, including the shutdown command. Peer ECUs do not interpret WCM silence as a security event and continue normal operation, allowing the motorcycle to be operated despite the immobilizer never having been unlocked. Specific protocol details have been withheld pending vendor remediation."}],"metrics":{"cvssMetricV40":[{"source":"cve@asrg.io","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:P/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":4.1,"baseSeverity":"MEDIUM","attackVector":"PHYSICAL","attackComplexity":"LOW","attackRequirements":"PRESENT","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"NONE","vulnIntegrityImpact":"NONE","vulnAvailabilityImpact":"HIGH","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"cve@asrg.io","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","baseScore":4.6,"baseSeverity":"MEDIUM","attackVector":"PHYSICAL","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":0.9,"impactScore":3.6}]},"weaknesses":[{"source":"cve@asrg.io","type":"Secondary","description":[{"lang":"en","value":"CWE-440"},{"lang":"en","value":"CWE-693"},{"lang":"en","value":"CWE-754"}]}],"references":[{"url":"https://cwe.mitre.org/data/definitions/440.html","source":"cve@asrg.io"}]}},{"cve":{"id":"CVE-2026-49317","sourceIdentifier":"cve@asrg.io","published":"2026-05-29T14:16:32.630","lastModified":"2026-05-29T15:11:03.853","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Incorrect behavior order in the Infotainment / Digital Round display of the Indian Motorcycle Scout Bobber + Tech 2025 model year allows an adjacent-network attacker to bypass the PIN entry screen. The Infotainment uses presence of Wireless Control Module (WCM) traffic during its boot window as a proxy for whether an immobilizer is fitted; if no WCM messages are observed, it skips the PIN entry screen and shows the normal user interface. An attacker who silences the WCM during the boot window — for example via a separately tracked CAN bus-off technique — can present a fully unlocked Infotainment despite the PIN never being entered. Specific timing and protocol details have been withheld pending vendor remediation."}],"metrics":{"cvssMetricV40":[{"source":"cve@asrg.io","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:P/AC:L/AT:P/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":1.0,"baseSeverity":"LOW","attackVector":"PHYSICAL","attackComplexity":"LOW","attackRequirements":"PRESENT","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"LOW","vulnIntegrityImpact":"NONE","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"cve@asrg.io","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N","baseScore":2.4,"baseSeverity":"LOW","attackVector":"PHYSICAL","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":0.9,"impactScore":1.4}]},"weaknesses":[{"source":"cve@asrg.io","type":"Secondary","description":[{"lang":"en","value":"CWE-636"},{"lang":"en","value":"CWE-696"},{"lang":"en","value":"CWE-754"}]}],"references":[{"url":"https://cwe.mitre.org/data/definitions/696.html","source":"cve@asrg.io"}]}},{"cve":{"id":"CVE-2026-49318","sourceIdentifier":"cve@asrg.io","published":"2026-05-29T14:16:32.780","lastModified":"2026-05-29T15:11:03.853","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Incorrect behavior order in the Infotainment / Digital Round display of the Indian Motorcycle Scout Bobber + Tech 2025 model year allows an adjacent-network attacker to bypass the PIN entry screen. The Infotainment uses presence of Wireless Control Module (WCM) traffic during its boot window as a proxy for whether an immobilizer is fitted; if no WCM messages are observed, it skips the PIN entry screen and shows the normal user interface. An attacker who silences the WCM during the boot window — for example via a separately tracked CAN bus-off technique — can present a fully unlocked Infotainment despite the PIN never being entered. Specific timing and protocol details have been withheld pending vendor remediation."}],"metrics":{"cvssMetricV40":[{"source":"cve@asrg.io","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:P/AC:L/AT:P/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":1.0,"baseSeverity":"LOW","attackVector":"PHYSICAL","attackComplexity":"LOW","attackRequirements":"PRESENT","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"LOW","vulnIntegrityImpact":"NONE","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"cve@asrg.io","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N","baseScore":2.4,"baseSeverity":"LOW","attackVector":"PHYSICAL","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":0.9,"impactScore":1.4}]},"weaknesses":[{"source":"cve@asrg.io","type":"Secondary","description":[{"lang":"en","value":"CWE-636"},{"lang":"en","value":"CWE-696"},{"lang":"en","value":"CWE-754"}]}],"references":[{"url":"https://cwe.mitre.org/data/definitions/696.html","source":"cve@asrg.io"}]}},{"cve":{"id":"CVE-2026-49325","sourceIdentifier":"cve@asrg.io","published":"2026-05-29T14:16:33.067","lastModified":"2026-05-29T15:11:03.853","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Improper handling of physical conditions in the bike-shutdown control of the Indian Motorcycle Scout Bobber + Tech 2025 model year allows a physical attacker with access to the Wireless Control Module (WCM) wiring harness to bypass the anti-theft shutdown. The WCM signals shutdown to a peer ECU via a falling-edge voltage transition on a dedicated wire pair. The receiving ECU does not distinguish between an active shutdown pulse and an open-circuit / disconnected condition; interrupting the relevant wires leaves the motorcycle fully operable even though the WCM never validated the rider's PIN. Specific connector details have been withheld pending vendor remediation."}],"metrics":{"cvssMetricV40":[{"source":"cve@asrg.io","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:P/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":4.1,"baseSeverity":"MEDIUM","attackVector":"PHYSICAL","attackComplexity":"LOW","attackRequirements":"PRESENT","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"NONE","vulnIntegrityImpact":"NONE","vulnAvailabilityImpact":"HIGH","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"cve@asrg.io","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","baseScore":4.6,"baseSeverity":"MEDIUM","attackVector":"PHYSICAL","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":0.9,"impactScore":3.6}]},"weaknesses":[{"source":"cve@asrg.io","type":"Secondary","description":[{"lang":"en","value":"CWE-693"},{"lang":"en","value":"CWE-754"},{"lang":"en","value":"CWE-1384"}]}],"references":[{"url":"https://cwe.mitre.org/data/definitions/1384.html","source":"cve@asrg.io"}]}},{"cve":{"id":"CVE-2026-10042","sourceIdentifier":"disclosure@vulncheck.com","published":"2026-05-29T15:16:21.843","lastModified":"2026-05-29T16:29:11.350","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"manga-image-translator contains a remote code execution vulnerability in the shared API server mode due to unsafe deserialization of untrusted pickle data in the share.py module, where the /execute/{method_name} and /simple_execute/{method_name} endpoints deserialize attacker-controlled HTTP request bodies using pickle.loads(). A remote attacker can supply a crafted pickle payload to these endpoints to execute arbitrary code in the server process, resulting in full container compromise when running in the default Docker deployment as root."}],"metrics":{"cvssMetricV40":[{"source":"disclosure@vulncheck.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":9.2,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"PRESENT","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"HIGH","vulnAvailabilityImpact":"HIGH","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"disclosure@vulncheck.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":9.8,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":5.9}]},"weaknesses":[{"source":"disclosure@vulncheck.com","type":"Secondary","description":[{"lang":"en","value":"CWE-502"}]}],"references":[{"url":"https://github.com/zyddnys/manga-image-translator/commit/d7441481a7ed3236b4e0456670a9962a8c82d94d","source":"disclosure@vulncheck.com"},{"url":"https://github.com/zyddnys/manga-image-translator/issues/1141","source":"disclosure@vulncheck.com"},{"url":"https://github.com/zyddnys/manga-image-translator/pull/1142","source":"disclosure@vulncheck.com"},{"url":"https://www.vulncheck.com/advisories/manga-image-translator-rce-via-unsafe-pickle-deserialization-in-share-model","source":"disclosure@vulncheck.com"},{"url":"https://github.com/zyddnys/manga-image-translator/issues/1141","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0"}]}},{"cve":{"id":"CVE-2026-10062","sourceIdentifier":"cna@vuldb.com","published":"2026-05-29T15:16:22.073","lastModified":"2026-05-29T15:42:56.873","vulnStatus":"Undergoing Analysis","cveTags":[{"sourceIdentifier":"cna@vuldb.com","tags":["unsupported-when-assigned"]}],"descriptions":[{"lang":"en","value":"A vulnerability was determined in TRENDnet TEW-432BRP 3.10B20. Affected by this vulnerability is the function formSetRoute of the file /goform/formSetRoute. This manipulation of the argument ip/mask/gateway causes stack-based buffer overflow. The attack is possible to be carried out remotely. The exploit has been publicly disclosed and may be utilized. The vendor explains: \"This product has been EOL for 15 years (since 2009). As the item has been EOL for such a long time, we are not able to replicate or fix any vulnerabilities.\" This vulnerability only affects products that are no longer supported by the maintainer."}],"metrics":{"cvssMetricV40":[{"source":"cna@vuldb.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":7.4,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"LOW","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"HIGH","vulnAvailabilityImpact":"HIGH","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"PROOF_OF_CONCEPT","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"cna@vuldb.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":5.9}],"cvssMetricV2":[{"source":"cna@vuldb.com","type":"Secondary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:S/C:C/I:C/A:C","baseScore":9.0,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"SINGLE","confidentialityImpact":"COMPLETE","integrityImpact":"COMPLETE","availabilityImpact":"COMPLETE"},"baseSeverity":"HIGH","exploitabilityScore":8.0,"impactScore":10.0,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"cna@vuldb.com","type":"Primary","description":[{"lang":"en","value":"CWE-119"},{"lang":"en","value":"CWE-121"}]}],"references":[{"url":"https://github.com/wudipjq/my_vuln/blob/main/TRENDnet/vuln_3/3.md","source":"cna@vuldb.com"},{"url":"https://vuldb.com/submit/814758","source":"cna@vuldb.com"},{"url":"https://vuldb.com/vuln/367148","source":"cna@vuldb.com"},{"url":"https://vuldb.com/vuln/367148/cti","source":"cna@vuldb.com"}]}},{"cve":{"id":"CVE-2026-10063","sourceIdentifier":"cna@vuldb.com","published":"2026-05-29T15:16:22.240","lastModified":"2026-05-29T15:42:56.873","vulnStatus":"Undergoing Analysis","cveTags":[{"sourceIdentifier":"cna@vuldb.com","tags":["unsupported-when-assigned"]}],"descriptions":[{"lang":"en","value":"A vulnerability was identified in TRENDnet TEW-432BRP 3.10B20. Affected by this issue is the function formWPS of the file /goform/formWPS. Such manipulation of the argument peerPin leads to stack-based buffer overflow. The attack may be performed from remote. The exploit is publicly available and might be used. The vendor explains: \"This product has been EOL for 15 years (since 2009). As the item has been EOL for such a long time, we are not able to replicate or fix any vulnerabilities.\" This vulnerability only affects products that are no longer supported by the maintainer."}],"metrics":{"cvssMetricV40":[{"source":"cna@vuldb.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":7.4,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"LOW","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"HIGH","vulnAvailabilityImpact":"HIGH","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"PROOF_OF_CONCEPT","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"cna@vuldb.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":5.9}],"cvssMetricV2":[{"source":"cna@vuldb.com","type":"Secondary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:S/C:C/I:C/A:C","baseScore":9.0,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"SINGLE","confidentialityImpact":"COMPLETE","integrityImpact":"COMPLETE","availabilityImpact":"COMPLETE"},"baseSeverity":"HIGH","exploitabilityScore":8.0,"impactScore":10.0,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"cna@vuldb.com","type":"Primary","description":[{"lang":"en","value":"CWE-119"},{"lang":"en","value":"CWE-121"}]}],"references":[{"url":"https://github.com/wudipjq/my_vuln/blob/main/TRENDnet/vuln_4/4.md","source":"cna@vuldb.com"},{"url":"https://vuldb.com/submit/814759","source":"cna@vuldb.com"},{"url":"https://vuldb.com/vuln/367149","source":"cna@vuldb.com"},{"url":"https://vuldb.com/vuln/367149/cti","source":"cna@vuldb.com"}]}},{"cve":{"id":"CVE-2026-39292","sourceIdentifier":"cve@mitre.org","published":"2026-05-29T15:16:22.483","lastModified":"2026-05-29T15:39:34.620","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Falco Solutions PHPPageBuilder v0.31.0 contains an unrestricted file upload vulnerability in the pagemanager/pagebuilder module that allows remote attackers to upload arbitrary files and achieve remote code execution. The vulnerability exists due to insufficient validation of uploaded file types and executable content."}],"metrics":{},"references":[{"url":"https://github.com/HansSchouten/PHPageBuilder","source":"cve@mitre.org"},{"url":"https://github.com/krishnadevpmelevila/CVE-2026-39292/tree/main","source":"cve@mitre.org"}]}},{"cve":{"id":"CVE-2026-41150","sourceIdentifier":"security-advisories@github.com","published":"2026-05-29T15:16:22.673","lastModified":"2026-05-29T18:17:09.160","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Mermaid is a JavaScript tool that uses Markdown-inspired text to create and modify diagrams and charts. Prior to 10.9.6 and 11.15.0, there is a denial-of-service attack when rendering gantt charts, if they use the excludes attribute to exclude all dates. mermaid.parse is unaffected, unless you then call the ganttDb.getTasks() (which is called when rendering a diagram). This vulnerability is fixed in 10.9.6 and 11.15.0."}],"metrics":{"cvssMetricV40":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:L/SC:N/SI:N/SA:L/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":5.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"PASSIVE","vulnConfidentialityImpact":"NONE","vulnIntegrityImpact":"NONE","vulnAvailabilityImpact":"LOW","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"LOW","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Secondary","description":[{"lang":"en","value":"CWE-835"}]}],"references":[{"url":"https://github.com/mermaid-js/mermaid/commit/a59ea56174712ee5430dfd5bc877cb5151f501a6","source":"security-advisories@github.com"},{"url":"https://github.com/mermaid-js/mermaid/commit/faafb5d49106dd32c367f3882505f2dd625aa30e","source":"security-advisories@github.com"},{"url":"https://github.com/mermaid-js/mermaid/releases/tag/mermaid%4011.15.0","source":"security-advisories@github.com"},{"url":"https://github.com/mermaid-js/mermaid/releases/tag/v10.9.6","source":"security-advisories@github.com"},{"url":"https://github.com/mermaid-js/mermaid/security/advisories/GHSA-6m6c-36f7-fhxh","source":"security-advisories@github.com"},{"url":"https://github.com/mermaid-js/mermaid/security/advisories/GHSA-6m6c-36f7-fhxh","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0"}]}},{"cve":{"id":"CVE-2026-41159","sourceIdentifier":"security-advisories@github.com","published":"2026-05-29T15:16:22.813","lastModified":"2026-05-29T16:25:57.843","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Mermaid is a JavaScript tool that uses Markdown-inspired text to create and modify diagrams and charts. Prior to 10.9.6 and 11.15.0,  Mermaid's default configuration allows injecting CSS that applies outside of the Mermaid diagram via the fontFamily, themeCSS, and altFontFamily configuration options. The injected CSS exploits stylis's & (scope reference) handling. :not(&) escapes the #mermaid-xxx automatic scoping, applying styles to all page elements. Global at-rules (@font-face, @keyframes, @counter-style) are also injectable as stylis hoists them to top level. This allows page defacement and DOM attribute exfiltration via CSS :has() selectors. This vulnerability is fixed in 10.9.6 and 11.15.0."}],"metrics":{"cvssMetricV40":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:L/VA:N/SC:L/SI:L/SA:L/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":5.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"PASSIVE","vulnConfidentialityImpact":"NONE","vulnIntegrityImpact":"LOW","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"LOW","subIntegrityImpact":"LOW","subAvailabilityImpact":"LOW","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-94"}]}],"references":[{"url":"https://github.com/mermaid-js/mermaid/commit/64769738d5b59211e1decb471ffbaca8afec51aahttps://github.com/mermaid-js/mermaid/commit/a9d9f0d8eb790349121508688cd338253fd80d76","source":"security-advisories@github.com"},{"url":"https://github.com/mermaid-js/mermaid/releases/tag/mermaid@11.15.0","source":"security-advisories@github.com"},{"url":"https://github.com/mermaid-js/mermaid/releases/tag/v10.9.6","source":"security-advisories@github.com"},{"url":"https://github.com/mermaid-js/mermaid/security/advisories/GHSA-87f9-hvmw-gh4p","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2026-45609","sourceIdentifier":"security-advisories@github.com","published":"2026-05-29T15:16:23.463","lastModified":"2026-05-29T15:16:23.463","vulnStatus":"Received","cveTags":[],"descriptions":[{"lang":"en","value":"mcp-security provides Security and Authorization support for Model Context Protocol in Spring AI. Prior to 0.1.9, the mcp-security framework fails to implement the mandatory SSRF mitigations outlined in the Model Context Protocol (MCP) security specifications. Specifically, it processes untrusted URLs for OAuth-related discovery and metadata without verifying if the targets are malicious or internal to the network. This only affects installations with Dynamic Client Registration (DCR) enabled This vulnerability is fixed in 0.1.9."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:N","baseScore":7.2,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":2.7}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-918"}]}],"references":[{"url":"https://github.com/spring-ai-community/mcp-security/security/advisories/GHSA-qjp4-4jvr-xqg3","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2026-4290","sourceIdentifier":"security@wordfence.com","published":"2026-05-29T15:16:24.893","lastModified":"2026-05-29T15:39:34.620","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"The WP Travel Pro plugin for WordPress is vulnerable to arbitrary user deletion via the /wp-json/wp-travel/v1/travel-guide/{user_id} REST API endpoint in all versions up to, and including, 10.6.0. This is due to the check_permission() callback unconditionally returning true and the Database::delete() method passing the user ID directly to wp_delete_user() without any role validation. This makes it possible for unauthenticated attackers to delete arbitrary user accounts, including those of administrators."}],"metrics":{"cvssMetricV31":[{"source":"security@wordfence.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H","baseScore":9.1,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":5.2}]},"weaknesses":[{"source":"security@wordfence.com","type":"Primary","description":[{"lang":"en","value":"CWE-862"}]}],"references":[{"url":"https://wptravel.io/wp-travel-pro/","source":"security@wordfence.com"},{"url":"https://www.wordfence.com/threat-intel/vulnerabilities/id/885dd550-4c80-4e36-8dae-cb47c1500ea5?source=cve","source":"security@wordfence.com"}]}},{"cve":{"id":"CVE-2018-25382","sourceIdentifier":"disclosure@vulncheck.com","published":"2026-05-29T16:16:17.187","lastModified":"2026-05-29T16:29:11.350","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Zechat 1.5 contains an SQL injection vulnerability that allows unauthenticated attackers to extract database information by injecting SQL code through the uname parameter. Attackers can send crafted requests to profile.php with UNION-based SQL injection payloads to retrieve table names, column names, and sensitive data from the information_schema database."}],"metrics":{"cvssMetricV40":[{"source":"disclosure@vulncheck.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"LOW","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"disclosure@vulncheck.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N","baseScore":8.2,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":4.2}]},"weaknesses":[{"source":"disclosure@vulncheck.com","type":"Primary","description":[{"lang":"en","value":"CWE-89"}]}],"references":[{"url":"https://bylancer.com/","source":"disclosure@vulncheck.com"},{"url":"https://bylancer.com/products/zechat-php-script/index.php","source":"disclosure@vulncheck.com"},{"url":"https://www.exploit-db.com/exploits/45523","source":"disclosure@vulncheck.com"},{"url":"https://www.vulncheck.com/advisories/zechat-sql-injection-via-uname-parameter","source":"disclosure@vulncheck.com"}]}},{"cve":{"id":"CVE-2018-25383","sourceIdentifier":"disclosure@vulncheck.com","published":"2026-05-29T16:16:17.323","lastModified":"2026-05-29T16:29:11.350","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Free MP3 CD Ripper 2.8 contains a stack-based buffer overflow vulnerability in WMA file processing that allows local attackers to bypass DEP protection via structured exception handling manipulation. Attackers can craft a malicious WMA file that triggers the overflow when loaded through the Convert function, enabling execution of arbitrary code through ROP chain gadgets and shellcode injection."}],"metrics":{"cvssMetricV40":[{"source":"disclosure@vulncheck.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":8.6,"baseSeverity":"HIGH","attackVector":"LOCAL","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"HIGH","vulnAvailabilityImpact":"HIGH","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"disclosure@vulncheck.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":8.4,"baseSeverity":"HIGH","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.5,"impactScore":5.9}]},"weaknesses":[{"source":"disclosure@vulncheck.com","type":"Primary","description":[{"lang":"en","value":"CWE-121"}]}],"references":[{"url":"http://www.commentcamarche.net/download/telecharger-34082200-free-mp3-cd-ripper","source":"disclosure@vulncheck.com"},{"url":"https://www.exploit-db.com/exploits/45565","source":"disclosure@vulncheck.com"},{"url":"https://www.vulncheck.com/advisories/free-mp3-cd-ripper-buffer-overflow-seh-dep-bypass","source":"disclosure@vulncheck.com"}]}},{"cve":{"id":"CVE-2018-25384","sourceIdentifier":"disclosure@vulncheck.com","published":"2026-05-29T16:16:17.453","lastModified":"2026-05-29T16:29:11.350","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Wikidforum 2.20 contains a cross-site scripting vulnerability that allows authenticated attackers to inject malicious scripts by submitting crafted HTML in the reply_text parameter. Attackers can post comments containing JavaScript code through the rpc.php endpoint that executes in other users' browsers when viewing forum replies."}],"metrics":{"cvssMetricV40":[{"source":"disclosure@vulncheck.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":5.1,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"ACTIVE","vulnConfidentialityImpact":"NONE","vulnIntegrityImpact":"NONE","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"LOW","subIntegrityImpact":"LOW","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"disclosure@vulncheck.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N","baseScore":5.4,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":2.3,"impactScore":2.7}]},"weaknesses":[{"source":"disclosure@vulncheck.com","type":"Primary","description":[{"lang":"en","value":"CWE-79"}]}],"references":[{"url":"https://sourceforge.net/projects/wikidforum/","source":"disclosure@vulncheck.com"},{"url":"https://sourceforge.net/projects/wikidforum/files/Wikidforum-com-ed.2.20.zip/download","source":"disclosure@vulncheck.com"},{"url":"https://www.exploit-db.com/exploits/45580","source":"disclosure@vulncheck.com"},{"url":"https://www.vulncheck.com/advisories/wikidforum-cross-site-scripting-via-reply-text-parameter","source":"disclosure@vulncheck.com"}]}},{"cve":{"id":"CVE-2018-25385","sourceIdentifier":"disclosure@vulncheck.com","published":"2026-05-29T16:16:17.587","lastModified":"2026-05-29T16:29:11.350","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"E-Registrasi Pencak Silat 18.10 contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the id_partai parameter. Attackers can send GET requests to monitor_nilai.php with crafted SQL payloads in the id_partai parameter to extract sensitive database information including admin credentials and user data."}],"metrics":{"cvssMetricV40":[{"source":"disclosure@vulncheck.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"LOW","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"disclosure@vulncheck.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N","baseScore":8.2,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":4.2}]},"weaknesses":[{"source":"disclosure@vulncheck.com","type":"Primary","description":[{"lang":"en","value":"CWE-89"}]}],"references":[{"url":"https://sourceforge.net/projects/eregistrasi-kejuaraan-silat/","source":"disclosure@vulncheck.com"},{"url":"https://sourceforge.net/projects/eregistrasi-kejuaraan-silat/files/latest/download","source":"disclosure@vulncheck.com"},{"url":"https://www.exploit-db.com/exploits/45582","source":"disclosure@vulncheck.com"},{"url":"https://www.vulncheck.com/advisories/e-registrasi-pencak-silat-sql-injection-via-id-partai","source":"disclosure@vulncheck.com"}]}},{"cve":{"id":"CVE-2018-25386","sourceIdentifier":"disclosure@vulncheck.com","published":"2026-05-29T16:16:17.720","lastModified":"2026-05-29T16:29:11.350","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"HaPe PKH 1.1 contains multiple SQL injection vulnerabilities in admin/media.php that allow attackers to manipulate database queries by injecting SQL code through the 'id' parameter. An unauthenticated attacker can exploit the desa module (module=desa&act=hapus), while authenticated users can exploit the pengurus, fasilitas, and kelompok modules (for example act=print, act=editpengurus, act=editfasilitas, and act=editkelompok). Successful exploitation allows extraction of sensitive database information including the current user, database name, and DBMS version."}],"metrics":{"cvssMetricV40":[{"source":"disclosure@vulncheck.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"LOW","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"disclosure@vulncheck.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N","baseScore":8.2,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":4.2}]},"weaknesses":[{"source":"disclosure@vulncheck.com","type":"Primary","description":[{"lang":"en","value":"CWE-89"}]}],"references":[{"url":"http://www.sitejo.id","source":"disclosure@vulncheck.com"},{"url":"https://sourceforge.net/projects/hape-pkh/files/latest/download","source":"disclosure@vulncheck.com"},{"url":"https://www.exploit-db.com/exploits/45588","source":"disclosure@vulncheck.com"},{"url":"https://www.vulncheck.com/advisories/hape-pkh-sql-injection-via-id-parameter-in-admin-media-php","source":"disclosure@vulncheck.com"}]}},{"cve":{"id":"CVE-2018-25387","sourceIdentifier":"disclosure@vulncheck.com","published":"2026-05-29T16:16:17.853","lastModified":"2026-05-29T16:29:11.350","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"HaPe PKH 1.1 contains a cross-site request forgery vulnerability that allows attackers to change administrator passwords by submitting forged requests to the user update endpoint. Attackers can craft malicious forms targeting the aksi_user.php script with parameters like id_user, password, and level to modify admin credentials without authentication."}],"metrics":{"cvssMetricV40":[{"source":"disclosure@vulncheck.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:L/SI:L/SA:L/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":6.9,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"NONE","vulnIntegrityImpact":"LOW","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"LOW","subIntegrityImpact":"LOW","subAvailabilityImpact":"LOW","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"disclosure@vulncheck.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N","baseScore":5.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":1.4}]},"weaknesses":[{"source":"disclosure@vulncheck.com","type":"Primary","description":[{"lang":"en","value":"CWE-352"}]}],"references":[{"url":"http://www.sitejo.id","source":"disclosure@vulncheck.com"},{"url":"https://sourceforge.net/projects/hape-pkh/files/latest/download","source":"disclosure@vulncheck.com"},{"url":"https://www.exploit-db.com/exploits/45591","source":"disclosure@vulncheck.com"},{"url":"https://www.vulncheck.com/advisories/hape-pkh-cross-site-request-forgery-via-aksi-user-php","source":"disclosure@vulncheck.com"}]}},{"cve":{"id":"CVE-2018-25388","sourceIdentifier":"disclosure@vulncheck.com","published":"2026-05-29T16:16:17.990","lastModified":"2026-05-29T16:29:11.350","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"HaPe PKH 1.1 contains an arbitrary file upload vulnerability that allows authenticated attackers to upload malicious files by bypassing file type validation. Attackers can upload PHP files through multiple endpoints including aksi_foto.php, aksi_user.php, and aksi_kecamatan.php to execute arbitrary code on the server."}],"metrics":{"cvssMetricV40":[{"source":"disclosure@vulncheck.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":8.7,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"LOW","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"HIGH","vulnAvailabilityImpact":"HIGH","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"disclosure@vulncheck.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":5.9}]},"weaknesses":[{"source":"disclosure@vulncheck.com","type":"Primary","description":[{"lang":"en","value":"CWE-434"}]}],"references":[{"url":"http://www.sitejo.id","source":"disclosure@vulncheck.com"},{"url":"https://sourceforge.net/projects/hape-pkh/files/latest/download","source":"disclosure@vulncheck.com"},{"url":"https://www.exploit-db.com/exploits/45593","source":"disclosure@vulncheck.com"},{"url":"https://www.vulncheck.com/advisories/hape-pkh-arbitrary-file-upload-via-aksi-foto-php","source":"disclosure@vulncheck.com"}]}},{"cve":{"id":"CVE-2018-25389","sourceIdentifier":"disclosure@vulncheck.com","published":"2026-05-29T16:16:18.117","lastModified":"2026-05-29T16:29:11.350","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"HaPe PKH 1.1 contains an SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries by injecting SQL code through the 'nama_kelompok' POST parameter sent to lap-anggota-kelompok-pdf.php. Attackers can send a crafted request with a time-based blind payload to infer and extract sensitive database information."}],"metrics":{"cvssMetricV40":[{"source":"disclosure@vulncheck.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"LOW","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"disclosure@vulncheck.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N","baseScore":8.2,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":4.2}]},"weaknesses":[{"source":"disclosure@vulncheck.com","type":"Primary","description":[{"lang":"en","value":"CWE-89"}]}],"references":[{"url":"http://www.sitejo.id","source":"disclosure@vulncheck.com"},{"url":"https://sourceforge.net/projects/hape-pkh/files/latest/download","source":"disclosure@vulncheck.com"},{"url":"https://www.exploit-db.com/exploits/45588","source":"disclosure@vulncheck.com"},{"url":"https://www.vulncheck.com/advisories/hape-pkh-sql-injection-via-nama-kelompok-parameter","source":"disclosure@vulncheck.com"}]}},{"cve":{"id":"CVE-2018-25390","sourceIdentifier":"disclosure@vulncheck.com","published":"2026-05-29T16:16:18.250","lastModified":"2026-05-29T16:29:11.350","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"HaPe PKH 1.1 contains an SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries by injecting SQL code through the 'desa' POST parameter sent to lap-peserta-perdesa-pdf.php. Attackers can send a crafted request with a time-based blind payload to infer and extract sensitive database information."}],"metrics":{"cvssMetricV40":[{"source":"disclosure@vulncheck.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"LOW","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"disclosure@vulncheck.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N","baseScore":8.2,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":4.2}]},"weaknesses":[{"source":"disclosure@vulncheck.com","type":"Primary","description":[{"lang":"en","value":"CWE-89"}]}],"references":[{"url":"http://www.sitejo.id","source":"disclosure@vulncheck.com"},{"url":"https://sourceforge.net/projects/hape-pkh/files/latest/download","source":"disclosure@vulncheck.com"},{"url":"https://www.exploit-db.com/exploits/45588","source":"disclosure@vulncheck.com"},{"url":"https://www.vulncheck.com/advisories/hape-pkh-sql-injection-via-desa-parameter","source":"disclosure@vulncheck.com"}]}},{"cve":{"id":"CVE-2018-25391","sourceIdentifier":"disclosure@vulncheck.com","published":"2026-05-29T16:16:18.380","lastModified":"2026-05-29T16:29:11.350","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"HaPe PKH 1.1 fails to enforce authorization on its record deletion endpoints, allowing unauthenticated attackers to delete arbitrary records by sending a crafted request that specifies the target record's id. The admin/modul/mod_pengurus/aksi_pengurus.php (module=pengurus&act=hapus) and admin/modul/mod_update/aksi_update.php (module=update&act=hapus) endpoints process deletions without verifying the requester's privileges, enabling removal of pengurus (administrator) and update records."}],"metrics":{"cvssMetricV40":[{"source":"disclosure@vulncheck.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":8.7,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"NONE","vulnIntegrityImpact":"HIGH","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"disclosure@vulncheck.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"HIGH","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":3.6}]},"weaknesses":[{"source":"disclosure@vulncheck.com","type":"Primary","description":[{"lang":"en","value":"CWE-862"}]}],"references":[{"url":"http://www.sitejo.id","source":"disclosure@vulncheck.com"},{"url":"https://sourceforge.net/projects/hape-pkh/files/latest/download","source":"disclosure@vulncheck.com"},{"url":"https://www.exploit-db.com/exploits/45588","source":"disclosure@vulncheck.com"},{"url":"https://www.vulncheck.com/advisories/hape-pkh-missing-authorization-allows-unauthenticated-record-deletion","source":"disclosure@vulncheck.com"}]}},{"cve":{"id":"CVE-2018-25392","sourceIdentifier":"disclosure@vulncheck.com","published":"2026-05-29T16:16:18.513","lastModified":"2026-05-29T16:29:11.350","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"MaxOn ERP Software 8.x-9.x contains an SQL injection vulnerability that allows authenticated users to execute arbitrary SQL queries through the nomor, user, and jenis parameters in the log_activity function. Attackers can send POST requests to /index.php/user/log_activity with malicious SQL code in these parameters to extract sensitive database information including version and database names."}],"metrics":{"cvssMetricV40":[{"source":"disclosure@vulncheck.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":7.1,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"LOW","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"LOW","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"disclosure@vulncheck.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:N","baseScore":7.1,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":4.2}]},"weaknesses":[{"source":"disclosure@vulncheck.com","type":"Primary","description":[{"lang":"en","value":"CWE-89"}]}],"references":[{"url":"http://demo.maxonerp.com/","source":"disclosure@vulncheck.com"},{"url":"http://www.talagasoft.com","source":"disclosure@vulncheck.com"},{"url":"https://www.exploit-db.com/exploits/45605","source":"disclosure@vulncheck.com"},{"url":"https://www.vulncheck.com/advisories/maxon-erp-software-8-x-9-x-sql-injection-via-nomor-parameter","source":"disclosure@vulncheck.com"}]}},{"cve":{"id":"CVE-2018-25393","sourceIdentifier":"disclosure@vulncheck.com","published":"2026-05-29T16:16:18.680","lastModified":"2026-05-29T16:29:11.350","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Navigate CMS 2.8.5 contains a path traversal vulnerability that allows authenticated users to download arbitrary files by injecting directory traversal sequences in the id parameter. Attackers can send GET requests to navigate_download.php with path traversal payloads ../../../cfg/globals.php to access sensitive configuration files and system files outside the intended directory."}],"metrics":{"cvssMetricV40":[{"source":"disclosure@vulncheck.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":7.1,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"LOW","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"NONE","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"disclosure@vulncheck.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":3.6}]},"weaknesses":[{"source":"disclosure@vulncheck.com","type":"Primary","description":[{"lang":"en","value":"CWE-22"}]}],"references":[{"url":"http://master.dl.sourceforge.net/project/navigatecms/releases/navigate-2.8.5r1355.zip","source":"disclosure@vulncheck.com"},{"url":"https://www.exploit-db.com/exploits/45615","source":"disclosure@vulncheck.com"},{"url":"https://www.navigatecms.com/","source":"disclosure@vulncheck.com"},{"url":"https://www.vulncheck.com/advisories/navigate-cms-path-traversal-via-navigate-download-php","source":"disclosure@vulncheck.com"}]}},{"cve":{"id":"CVE-2018-25394","sourceIdentifier":"disclosure@vulncheck.com","published":"2026-05-29T16:16:18.837","lastModified":"2026-05-29T16:29:11.350","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Kados R10 GreenBee contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the release_id parameter of boards_buttons/update_release.php. The release_id value is concatenated directly into SQL statements without sanitization, allowing attackers to send a crafted GET request with a UNION-based payload to extract sensitive database information including the current user, database name, and DBMS version."}],"metrics":{"cvssMetricV40":[{"source":"disclosure@vulncheck.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"LOW","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"disclosure@vulncheck.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N","baseScore":8.2,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":4.2}]},"weaknesses":[{"source":"disclosure@vulncheck.com","type":"Primary","description":[{"lang":"en","value":"CWE-89"}]}],"references":[{"url":"https://sourceforge.net/projects/kados/","source":"disclosure@vulncheck.com"},{"url":"https://www.exploit-db.com/exploits/45617","source":"disclosure@vulncheck.com"},{"url":"https://www.kados.info/","source":"disclosure@vulncheck.com"},{"url":"https://www.vulncheck.com/advisories/kados-r10-greenbee-sql-injection-via-update-release-php","source":"disclosure@vulncheck.com"}]}},{"cve":{"id":"CVE-2018-25395","sourceIdentifier":"disclosure@vulncheck.com","published":"2026-05-29T16:16:18.977","lastModified":"2026-05-29T16:29:11.350","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Kados R10 GreenBee contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the feature_id parameter of boards_buttons/update_feature.php. The feature_id value is concatenated directly into SQL statements without sanitization, allowing attackers to send a crafted GET request with a UNION-based payload to extract sensitive database information including the current user, database name, and DBMS version."}],"metrics":{"cvssMetricV40":[{"source":"disclosure@vulncheck.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"LOW","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"disclosure@vulncheck.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N","baseScore":8.2,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":4.2}]},"weaknesses":[{"source":"disclosure@vulncheck.com","type":"Primary","description":[{"lang":"en","value":"CWE-89"}]}],"references":[{"url":"https://sourceforge.net/projects/kados/","source":"disclosure@vulncheck.com"},{"url":"https://www.exploit-db.com/exploits/45617","source":"disclosure@vulncheck.com"},{"url":"https://www.kados.info/","source":"disclosure@vulncheck.com"},{"url":"https://www.vulncheck.com/advisories/kados-r10-greenbee-sql-injection-via-update-feature-php","source":"disclosure@vulncheck.com"}]}},{"cve":{"id":"CVE-2018-25396","sourceIdentifier":"disclosure@vulncheck.com","published":"2026-05-29T16:16:19.107","lastModified":"2026-05-29T16:16:19.107","vulnStatus":"Received","cveTags":[],"descriptions":[{"lang":"en","value":"Heatmiser Wifi Thermostat 1.7 contains a credential disclosure vulnerability that allows unauthenticated attackers to retrieve administrative credentials by accessing the networkSetup.htm page. Attackers can request the networkSetup.htm endpoint and extract plaintext username and password values from HTML form fields to gain administrative access to the thermostat."}],"metrics":{"cvssMetricV40":[{"source":"disclosure@vulncheck.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":8.7,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"NONE","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"disclosure@vulncheck.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":3.6}]},"weaknesses":[{"source":"disclosure@vulncheck.com","type":"Primary","description":[{"lang":"en","value":"CWE-256"}]}],"references":[{"url":"https://www.exploit-db.com/exploits/45623","source":"disclosure@vulncheck.com"},{"url":"https://www.vulncheck.com/advisories/heatmiser-wifi-thermostat-credential-disclosure-via-networksetup-htm","source":"disclosure@vulncheck.com"}]}},{"cve":{"id":"CVE-2018-25397","sourceIdentifier":"disclosure@vulncheck.com","published":"2026-05-29T16:16:19.237","lastModified":"2026-05-29T16:29:11.350","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"PHP-SHOP 1.0 contains a cross-site request forgery vulnerability that allows unauthenticated attackers to add administrative users by crafting malicious HTML forms. Attackers can trick authenticated administrators into visiting a page containing a hidden form that automatically submits POST requests to the users.php endpoint with parameters like name, email, password, and permissions set to admin to create unauthorized admin accounts."}],"metrics":{"cvssMetricV40":[{"source":"disclosure@vulncheck.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:L/SI:L/SA:L/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":6.9,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"NONE","vulnIntegrityImpact":"LOW","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"LOW","subIntegrityImpact":"LOW","subAvailabilityImpact":"LOW","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"disclosure@vulncheck.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N","baseScore":5.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":1.4}]},"weaknesses":[{"source":"disclosure@vulncheck.com","type":"Primary","description":[{"lang":"en","value":"CWE-352"}]}],"references":[{"url":"https://github.com/joeyrush/PHP-SHOP/archive/master.zip","source":"disclosure@vulncheck.com"},{"url":"https://www.exploit-db.com/exploits/45636","source":"disclosure@vulncheck.com"},{"url":"https://www.vulncheck.com/advisories/php-shop-cross-site-request-forgery-via-users-php","source":"disclosure@vulncheck.com"}]}},{"cve":{"id":"CVE-2018-25398","sourceIdentifier":"disclosure@vulncheck.com","published":"2026-05-29T16:16:19.367","lastModified":"2026-05-29T16:32:14.400","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"The Open ISES Project 3.30A contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the frm_passwd parameter. Attackers can send POST requests to main.php with crafted SQL payloads to extract sensitive database information including usernames, database names, and version details."}],"metrics":{"cvssMetricV40":[{"source":"disclosure@vulncheck.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"LOW","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"disclosure@vulncheck.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N","baseScore":8.2,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":4.2}]},"weaknesses":[{"source":"disclosure@vulncheck.com","type":"Primary","description":[{"lang":"en","value":"CWE-89"}]}],"references":[{"url":"http://openises.sourceforge.net/","source":"disclosure@vulncheck.com"},{"url":"https://sourceforge.net/projects/openises/files/latest/download","source":"disclosure@vulncheck.com"},{"url":"https://www.exploit-db.com/exploits/45645","source":"disclosure@vulncheck.com"},{"url":"https://www.vulncheck.com/advisories/the-open-ises-project-3-30a-sql-injection-via-main-php","source":"disclosure@vulncheck.com"}]}},{"cve":{"id":"CVE-2018-25399","sourceIdentifier":"disclosure@vulncheck.com","published":"2026-05-29T16:16:19.497","lastModified":"2026-05-29T16:32:14.400","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"The Open ISES Project 3.30A contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the tick_lat and tick_lng parameters. Attackers can send GET requests to nearby.php with crafted SQL payloads to extract sensitive database information including usernames, database names, and version details."}],"metrics":{"cvssMetricV40":[{"source":"disclosure@vulncheck.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"LOW","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"disclosure@vulncheck.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N","baseScore":8.2,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":4.2}]},"weaknesses":[{"source":"disclosure@vulncheck.com","type":"Primary","description":[{"lang":"en","value":"CWE-89"}]}],"references":[{"url":"http://openises.sourceforge.net/","source":"disclosure@vulncheck.com"},{"url":"https://sourceforge.net/projects/openises/files/latest/download","source":"disclosure@vulncheck.com"},{"url":"https://www.exploit-db.com/exploits/45645","source":"disclosure@vulncheck.com"},{"url":"https://www.vulncheck.com/advisories/the-open-ises-project-3-30a-sql-injection-via-nearby-php","source":"disclosure@vulncheck.com"}]}},{"cve":{"id":"CVE-2018-25400","sourceIdentifier":"disclosure@vulncheck.com","published":"2026-05-29T16:16:19.627","lastModified":"2026-05-29T16:32:14.400","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"The Open ISES Project 3.30A contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the 'id' parameter. Attackers can send GET requests to the ajax/form_post.php endpoint with crafted SQL payloads to extract sensitive database information including schema names and other data."}],"metrics":{"cvssMetricV40":[{"source":"disclosure@vulncheck.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"LOW","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"disclosure@vulncheck.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N","baseScore":8.2,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":4.2}]},"weaknesses":[{"source":"disclosure@vulncheck.com","type":"Primary","description":[{"lang":"en","value":"CWE-89"}]}],"references":[{"url":"http://openises.sourceforge.net/","source":"disclosure@vulncheck.com"},{"url":"https://sourceforge.net/projects/openises/files/latest/download","source":"disclosure@vulncheck.com"},{"url":"https://www.exploit-db.com/exploits/45645","source":"disclosure@vulncheck.com"},{"url":"https://www.vulncheck.com/advisories/the-open-ises-project-3-30a-sql-injection-via-form-post-php","source":"disclosure@vulncheck.com"}]}},{"cve":{"id":"CVE-2018-25401","sourceIdentifier":"disclosure@vulncheck.com","published":"2026-05-29T16:16:19.753","lastModified":"2026-05-29T16:32:14.400","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"The Open ISES Project 3.30A contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the p1 parameter. Attackers can send GET requests to sever_graph.php with crafted SQL payloads to extract sensitive database information including schema names and other data."}],"metrics":{"cvssMetricV40":[{"source":"disclosure@vulncheck.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"LOW","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"disclosure@vulncheck.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N","baseScore":8.2,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":4.2}]},"weaknesses":[{"source":"disclosure@vulncheck.com","type":"Primary","description":[{"lang":"en","value":"CWE-89"}]}],"references":[{"url":"http://openises.sourceforge.net/","source":"disclosure@vulncheck.com"},{"url":"https://sourceforge.net/projects/openises/files/latest/download","source":"disclosure@vulncheck.com"},{"url":"https://www.exploit-db.com/exploits/45645","source":"disclosure@vulncheck.com"},{"url":"https://www.vulncheck.com/advisories/the-open-ises-project-3-30a-sql-injection-via-sever-graph-php","source":"disclosure@vulncheck.com"}]}},{"cve":{"id":"CVE-2018-25402","sourceIdentifier":"disclosure@vulncheck.com","published":"2026-05-29T16:16:19.880","lastModified":"2026-05-29T16:32:14.400","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"The Open ISES Project 3.30A contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the p1 parameter. Attackers can send GET requests to inc_types_graph.php with crafted SQL payloads to extract sensitive database information including schema names and other data."}],"metrics":{"cvssMetricV40":[{"source":"disclosure@vulncheck.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"LOW","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"disclosure@vulncheck.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N","baseScore":8.2,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":4.2}]},"weaknesses":[{"source":"disclosure@vulncheck.com","type":"Primary","description":[{"lang":"en","value":"CWE-89"}]}],"references":[{"url":"http://openises.sourceforge.net/","source":"disclosure@vulncheck.com"},{"url":"https://sourceforge.net/projects/openises/files/latest/download","source":"disclosure@vulncheck.com"},{"url":"https://www.exploit-db.com/exploits/45645","source":"disclosure@vulncheck.com"},{"url":"https://www.vulncheck.com/advisories/the-open-ises-project-3-30a-sql-injection-via-inc-types-graph-php","source":"disclosure@vulncheck.com"}]}},{"cve":{"id":"CVE-2018-25403","sourceIdentifier":"disclosure@vulncheck.com","published":"2026-05-29T16:16:20.010","lastModified":"2026-05-29T16:32:14.400","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"The Open ISES Project 3.30A contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the p1 parameter. Attackers can send GET requests to city_graph.php with crafted SQL payloads to extract sensitive database information including schema names and other data."}],"metrics":{"cvssMetricV40":[{"source":"disclosure@vulncheck.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"LOW","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"disclosure@vulncheck.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N","baseScore":8.2,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":4.2}]},"weaknesses":[{"source":"disclosure@vulncheck.com","type":"Primary","description":[{"lang":"en","value":"CWE-89"}]}],"references":[{"url":"http://openises.sourceforge.net/","source":"disclosure@vulncheck.com"},{"url":"https://sourceforge.net/projects/openises/files/latest/download","source":"disclosure@vulncheck.com"},{"url":"https://www.exploit-db.com/exploits/45645","source":"disclosure@vulncheck.com"},{"url":"https://www.vulncheck.com/advisories/the-open-ises-project-3-30a-sql-injection-via-city-graph-php","source":"disclosure@vulncheck.com"}]}},{"cve":{"id":"CVE-2018-25404","sourceIdentifier":"disclosure@vulncheck.com","published":"2026-05-29T16:16:20.137","lastModified":"2026-05-29T16:32:14.400","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"The Open ISES Project 3.30A contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the ticket_id parameter. Attackers can send GET requests to add_facnote.php with crafted SQL payloads to extract sensitive database information including version details and other data."}],"metrics":{"cvssMetricV40":[{"source":"disclosure@vulncheck.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"LOW","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"disclosure@vulncheck.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N","baseScore":8.2,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":4.2}]},"weaknesses":[{"source":"disclosure@vulncheck.com","type":"Primary","description":[{"lang":"en","value":"CWE-89"}]}],"references":[{"url":"http://openises.sourceforge.net/","source":"disclosure@vulncheck.com"},{"url":"https://sourceforge.net/projects/openises/files/latest/download","source":"disclosure@vulncheck.com"},{"url":"https://www.exploit-db.com/exploits/45645","source":"disclosure@vulncheck.com"},{"url":"https://www.vulncheck.com/advisories/the-open-ises-project-3-30a-sql-injection-via-add-facnote-php","source":"disclosure@vulncheck.com"}]}},{"cve":{"id":"CVE-2026-10064","sourceIdentifier":"cna@vuldb.com","published":"2026-05-29T16:16:23.020","lastModified":"2026-05-29T16:33:43.467","vulnStatus":"Undergoing Analysis","cveTags":[{"sourceIdentifier":"cna@vuldb.com","tags":["unsupported-when-assigned"]}],"descriptions":[{"lang":"en","value":"A security flaw has been discovered in TRENDnet TEW-432BRP 3.10B20. This affects the function formSetPortTr of the file /goform/formSetPortTr. Performing a manipulation of the argument special_name results in stack-based buffer overflow. It is possible to initiate the attack remotely. The exploit has been released to the public and may be used for attacks. The vendor explains: \"This product has been EOL for 15 years (since 2009). As the item has been EOL for such a long time, we are not able to replicate or fix any vulnerabilities.\" This vulnerability only affects products that are no longer supported by the maintainer."}],"metrics":{"cvssMetricV40":[{"source":"cna@vuldb.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":2.1,"baseSeverity":"LOW","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"LOW","userInteraction":"NONE","vulnConfidentialityImpact":"LOW","vulnIntegrityImpact":"LOW","vulnAvailabilityImpact":"LOW","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"PROOF_OF_CONCEPT","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"cna@vuldb.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L","baseScore":6.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"LOW"},"exploitabilityScore":2.8,"impactScore":3.4}],"cvssMetricV2":[{"source":"cna@vuldb.com","type":"Secondary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:S/C:P/I:P/A:P","baseScore":6.5,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"SINGLE","confidentialityImpact":"PARTIAL","integrityImpact":"PARTIAL","availabilityImpact":"PARTIAL"},"baseSeverity":"MEDIUM","exploitabilityScore":8.0,"impactScore":6.4,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"cna@vuldb.com","type":"Primary","description":[{"lang":"en","value":"CWE-119"},{"lang":"en","value":"CWE-121"}]}],"references":[{"url":"https://github.com/wudipjq/my_vuln/blob/main/TRENDnet/vuln_5/5.md","source":"cna@vuldb.com"},{"url":"https://vuldb.com/submit/814760","source":"cna@vuldb.com"},{"url":"https://vuldb.com/vuln/367150","source":"cna@vuldb.com"},{"url":"https://vuldb.com/vuln/367150/cti","source":"cna@vuldb.com"}]}},{"cve":{"id":"CVE-2026-10065","sourceIdentifier":"cna@vuldb.com","published":"2026-05-29T16:16:23.210","lastModified":"2026-05-29T19:16:23.263","vulnStatus":"Deferred","cveTags":[{"sourceIdentifier":"cna@vuldb.com","tags":["unsupported-when-assigned"]}],"descriptions":[{"lang":"en","value":"A weakness has been identified in Shibby Tomato 1.28. This vulnerability affects the function get_ups_field of the file tomatodata.cgi. Executing a manipulation of the argument Date can lead to stack-based buffer overflow. It is possible to launch the attack remotely. This project is superseded by FreshTomato. This vulnerability only affects products that are no longer supported by the maintainer."}],"metrics":{"cvssMetricV40":[{"source":"cna@vuldb.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":8.7,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"LOW","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"HIGH","vulnAvailabilityImpact":"HIGH","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"cna@vuldb.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":5.9}],"cvssMetricV2":[{"source":"cna@vuldb.com","type":"Secondary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:S/C:C/I:C/A:C","baseScore":9.0,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"SINGLE","confidentialityImpact":"COMPLETE","integrityImpact":"COMPLETE","availabilityImpact":"COMPLETE"},"baseSeverity":"HIGH","exploitabilityScore":8.0,"impactScore":10.0,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"cna@vuldb.com","type":"Secondary","description":[{"lang":"en","value":"CWE-119"},{"lang":"en","value":"CWE-121"}]}],"references":[{"url":"https://gitee.com/Fengyi-Wang/CVE/issues/IJK7BC","source":"cna@vuldb.com"},{"url":"https://vuldb.com/submit/818144","source":"cna@vuldb.com"},{"url":"https://vuldb.com/vuln/367151","source":"cna@vuldb.com"},{"url":"https://vuldb.com/vuln/367151/cti","source":"cna@vuldb.com"},{"url":"https://gitee.com/Fengyi-Wang/CVE/issues/IJK7BC","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0"},{"url":"https://vuldb.com/submit/818144","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0"}]}},{"cve":{"id":"CVE-2026-10066","sourceIdentifier":"cna@vuldb.com","published":"2026-05-29T16:16:23.387","lastModified":"2026-05-29T16:29:11.350","vulnStatus":"Deferred","cveTags":[{"sourceIdentifier":"cna@vuldb.com","tags":["unsupported-when-assigned"]}],"descriptions":[{"lang":"en","value":"A security vulnerability has been detected in Shibby Tomato up to 1.28. This issue affects the function sub_9068 of the file tomatoups.cgi of the component UPS Service. The manipulation leads to stack-based buffer overflow. The attack can be initiated remotely. This project is superseded by FreshTomato. This vulnerability only affects products that are no longer supported by the maintainer."}],"metrics":{"cvssMetricV40":[{"source":"cna@vuldb.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":8.7,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"LOW","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"HIGH","vulnAvailabilityImpact":"HIGH","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"cna@vuldb.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":5.9}],"cvssMetricV2":[{"source":"cna@vuldb.com","type":"Secondary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:S/C:C/I:C/A:C","baseScore":9.0,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"SINGLE","confidentialityImpact":"COMPLETE","integrityImpact":"COMPLETE","availabilityImpact":"COMPLETE"},"baseSeverity":"HIGH","exploitabilityScore":8.0,"impactScore":10.0,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"cna@vuldb.com","type":"Primary","description":[{"lang":"en","value":"CWE-119"},{"lang":"en","value":"CWE-121"}]}],"references":[{"url":"https://gitee.com/Fengyi-Wang/CVE/issues/IJK7BD","source":"cna@vuldb.com"},{"url":"https://vuldb.com/submit/818145","source":"cna@vuldb.com"},{"url":"https://vuldb.com/vuln/367152","source":"cna@vuldb.com"},{"url":"https://vuldb.com/vuln/367152/cti","source":"cna@vuldb.com"}]}},{"cve":{"id":"CVE-2026-10067","sourceIdentifier":"cna@vuldb.com","published":"2026-05-29T16:16:23.563","lastModified":"2026-05-29T16:29:11.350","vulnStatus":"Deferred","cveTags":[{"sourceIdentifier":"cna@vuldb.com","tags":["unsupported-when-assigned"]}],"descriptions":[{"lang":"en","value":"A vulnerability was detected in Shibby Tomato 1.28. Impacted is the function sub_90F0 of the file multimon.cgi. The manipulation results in stack-based buffer overflow. The attack can be launched remotely. This project is superseded by FreshTomato. This vulnerability only affects products that are no longer supported by the maintainer."}],"metrics":{"cvssMetricV40":[{"source":"cna@vuldb.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":8.7,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"LOW","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"HIGH","vulnAvailabilityImpact":"HIGH","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"cna@vuldb.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":5.9}],"cvssMetricV2":[{"source":"cna@vuldb.com","type":"Secondary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:S/C:C/I:C/A:C","baseScore":9.0,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"SINGLE","confidentialityImpact":"COMPLETE","integrityImpact":"COMPLETE","availabilityImpact":"COMPLETE"},"baseSeverity":"HIGH","exploitabilityScore":8.0,"impactScore":10.0,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"cna@vuldb.com","type":"Primary","description":[{"lang":"en","value":"CWE-119"},{"lang":"en","value":"CWE-121"}]}],"references":[{"url":"https://gitee.com/Fengyi-Wang/CVE/issues/IJK7BE","source":"cna@vuldb.com"},{"url":"https://vuldb.com/submit/818146","source":"cna@vuldb.com"},{"url":"https://vuldb.com/vuln/367153","source":"cna@vuldb.com"},{"url":"https://vuldb.com/vuln/367153/cti","source":"cna@vuldb.com"}]}},{"cve":{"id":"CVE-2026-10068","sourceIdentifier":"cna@vuldb.com","published":"2026-05-29T16:16:23.750","lastModified":"2026-05-29T18:16:30.663","vulnStatus":"Deferred","cveTags":[{"sourceIdentifier":"cna@vuldb.com","tags":["unsupported-when-assigned"]}],"descriptions":[{"lang":"en","value":"A flaw has been found in Shibby Tomato 1.28. The affected element is the function send of the file usr/sbin/miniupnpd of the component SUBSCRIBE Call Handler. This manipulation causes server-side request forgery. The attack may be initiated remotely. This project is superseded by FreshTomato. This vulnerability only affects products that are no longer supported by the maintainer."}],"metrics":{"cvssMetricV40":[{"source":"cna@vuldb.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":6.9,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"LOW","vulnIntegrityImpact":"LOW","vulnAvailabilityImpact":"LOW","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"cna@vuldb.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L","baseScore":7.3,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"LOW"},"exploitabilityScore":3.9,"impactScore":3.4}],"cvssMetricV2":[{"source":"cna@vuldb.com","type":"Secondary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:P/I:P/A:P","baseScore":7.5,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"PARTIAL","availabilityImpact":"PARTIAL"},"baseSeverity":"HIGH","exploitabilityScore":10.0,"impactScore":6.4,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"cna@vuldb.com","type":"Secondary","description":[{"lang":"en","value":"CWE-918"}]}],"references":[{"url":"https://gitee.com/Fengyi-Wang/CVE/issues/IJD8SS","source":"cna@vuldb.com"},{"url":"https://vuldb.com/submit/818237","source":"cna@vuldb.com"},{"url":"https://vuldb.com/vuln/367154","source":"cna@vuldb.com"},{"url":"https://vuldb.com/vuln/367154/cti","source":"cna@vuldb.com"},{"url":"https://gitee.com/Fengyi-Wang/CVE/issues/IJD8SS","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0"}]}},{"cve":{"id":"CVE-2026-10069","sourceIdentifier":"cna@vuldb.com","published":"2026-05-29T16:16:23.917","lastModified":"2026-05-29T16:29:11.350","vulnStatus":"Deferred","cveTags":[{"sourceIdentifier":"cna@vuldb.com","tags":["unsupported-when-assigned"]}],"descriptions":[{"lang":"en","value":"A vulnerability has been found in Shibby Tomato 1.28. The impacted element is an unknown function of the file usr/sbin/miniupnpd. Such manipulation leads to resource consumption. The attack may be launched remotely. This project is superseded by FreshTomato. This vulnerability only affects products that are no longer supported by the maintainer."}],"metrics":{"cvssMetricV40":[{"source":"cna@vuldb.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":8.7,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"NONE","vulnIntegrityImpact":"NONE","vulnAvailabilityImpact":"HIGH","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"cna@vuldb.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":3.6}],"cvssMetricV2":[{"source":"cna@vuldb.com","type":"Secondary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:N/I:N/A:C","baseScore":7.8,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"COMPLETE"},"baseSeverity":"HIGH","exploitabilityScore":10.0,"impactScore":6.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"cna@vuldb.com","type":"Primary","description":[{"lang":"en","value":"CWE-400"},{"lang":"en","value":"CWE-404"}]}],"references":[{"url":"https://gitee.com/Fengyi-Wang/CVE/issues/IJD8SP","source":"cna@vuldb.com"},{"url":"https://vuldb.com/submit/818238","source":"cna@vuldb.com"},{"url":"https://vuldb.com/vuln/367155","source":"cna@vuldb.com"},{"url":"https://vuldb.com/vuln/367155/cti","source":"cna@vuldb.com"}]}},{"cve":{"id":"CVE-2026-10099","sourceIdentifier":"disclosure@vulncheck.com","published":"2026-05-29T16:16:24.333","lastModified":"2026-05-29T16:16:24.333","vulnStatus":"Received","cveTags":[],"descriptions":[{"lang":"en","value":"XX-Net V5.16.6 contains a WebSocket frame parsing vulnerability in the WebSocket_receive_worker routine of simple_http_server.py that allows attackers to cause corrupted application data by sending unmasked WebSocket frames. The server unconditionally reads 4 bytes as a masking key regardless of whether the MASK bit is set in the frame header, causing the first 4 bytes of payload to be consumed as a mask key and the remaining payload to be incorrectly XOR-decoded, resulting in data corruption alongside missing RSV bit, opcode, and FIN fragmentation validations."}],"metrics":{"cvssMetricV40":[{"source":"disclosure@vulncheck.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":5.1,"baseSeverity":"MEDIUM","attackVector":"LOCAL","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"NONE","vulnIntegrityImpact":"LOW","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"disclosure@vulncheck.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N","baseScore":4.0,"baseSeverity":"MEDIUM","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":2.5,"impactScore":1.4}]},"weaknesses":[{"source":"disclosure@vulncheck.com","type":"Primary","description":[{"lang":"en","value":"CWE-1286"}]}],"references":[{"url":"https://github.com/XX-net/XX-Net/commit/a68b972a84ed6e52df9f30237cf47493b9231b53","source":"disclosure@vulncheck.com"},{"url":"https://github.com/XX-net/XX-Net/issues/14169","source":"disclosure@vulncheck.com"},{"url":"https://github.com/XX-net/XX-Net/pull/14170","source":"disclosure@vulncheck.com"},{"url":"https://www.vulncheck.com/advisories/xx-net-websocket-frame-parsing-data-corruption-via-simple-http-server-py","source":"disclosure@vulncheck.com"}]}},{"cve":{"id":"CVE-2026-10101","sourceIdentifier":"secalert@redhat.com","published":"2026-05-29T16:16:24.483","lastModified":"2026-05-29T16:29:34.540","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"ACM/MCE assisted-service writes raw referenced pull-secret contents into `InfraEnv.status.conditions[].message` when pull-secret validation fails. A namespace principal with the stock `view` ClusterRole cannot directly read Secrets, but can read `InfraEnv` objects and recover the referenced Secret's `.dockerconfigjson` data from status.\n\nThis bypasses the Kubernetes/OpenShift RBAC separation between read-only namespace viewers and Secret readers. In the reproduced proof, the same ServiceAccount was denied `get` and `list` on Secrets, but recovered synthetic pull-secret `username`, `password`, `email`, and base64 `auth` fields through `InfraEnv.status`."}],"metrics":{"cvssMetricV31":[{"source":"secalert@redhat.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:L/A:N","baseScore":6.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":2.1,"impactScore":4.2}]},"weaknesses":[{"source":"secalert@redhat.com","type":"Primary","description":[{"lang":"en","value":"CWE-201"}]}],"references":[{"url":"https://access.redhat.com/security/cve/CVE-2026-10101","source":"secalert@redhat.com"},{"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2483298","source":"secalert@redhat.com"}]}},{"cve":{"id":"CVE-2026-32905","sourceIdentifier":"disclosure@vulncheck.com","published":"2026-05-29T16:16:25.093","lastModified":"2026-05-29T16:29:34.540","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"OpenClaw before 2026.5.4 contains an authorization bypass vulnerability in the bundled device-pair plugin that allows non-owner authorized chat senders to issue device-pairing bootstrap codes without proper scope validation. Attackers with chat command access can create setup codes to enroll devices with operator/node capabilities, granting persistent credentials until manual removal."}],"metrics":{"cvssMetricV40":[{"source":"disclosure@vulncheck.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":8.7,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"LOW","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"HIGH","vulnAvailabilityImpact":"LOW","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"disclosure@vulncheck.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:L","baseScore":8.3,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"LOW"},"exploitabilityScore":2.8,"impactScore":5.5}]},"weaknesses":[{"source":"disclosure@vulncheck.com","type":"Primary","description":[{"lang":"en","value":"CWE-862"}]}],"references":[{"url":"https://github.com/openclaw/openclaw/security/advisories/GHSA-xr4f-mjxj-w6w5","source":"disclosure@vulncheck.com"},{"url":"https://www.vulncheck.com/advisories/openclaw-unauthorized-device-pairing-bootstrap-code-issuance-via-chat-command","source":"disclosure@vulncheck.com"}]}},{"cve":{"id":"CVE-2026-32906","sourceIdentifier":"disclosure@vulncheck.com","published":"2026-05-29T16:16:25.220","lastModified":"2026-05-29T16:29:34.540","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"OpenClaw before 2026.5.12 contains a privilege escalation vulnerability in Slack plugin approvals that allows exec-authorized users to resolve plugin approvals through the exec approver gate. Attackers with limited exec approval permissions can bypass intended approval splits to approve plugin actions outside operator configuration."}],"metrics":{"cvssMetricV40":[{"source":"disclosure@vulncheck.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":2.3,"baseSeverity":"LOW","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"PRESENT","privilegesRequired":"LOW","userInteraction":"NONE","vulnConfidentialityImpact":"LOW","vulnIntegrityImpact":"NONE","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"disclosure@vulncheck.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N","baseScore":4.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":1.4}]},"weaknesses":[{"source":"disclosure@vulncheck.com","type":"Primary","description":[{"lang":"en","value":"CWE-863"}]}],"references":[{"url":"https://github.com/openclaw/openclaw/security/advisories/GHSA-wv26-j37q-2g7p","source":"disclosure@vulncheck.com"},{"url":"https://www.vulncheck.com/advisories/openclaw-privilege-escalation-in-slack-plugin-approvals-via-exec-approver-gate","source":"disclosure@vulncheck.com"}]}},{"cve":{"id":"CVE-2026-33384","sourceIdentifier":"cvd@cert.pl","published":"2026-05-29T16:16:25.417","lastModified":"2026-05-29T16:29:11.350","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"QuickCMS allows a user's session identifier to be set before authentication. The value of this session ID stays the same after authentication. This behaviour enables an attacker to fix a session ID\nfor a victim and later hijack the authenticated session.\n\nThis issue was fixed in a patch to version 6.8 published on 15.05.2026, deployments without this patch are still vulnerable."}],"metrics":{"cvssMetricV40":[{"source":"cvd@cert.pl","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:P/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":4.8,"baseSeverity":"MEDIUM","attackVector":"LOCAL","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"PASSIVE","vulnConfidentialityImpact":"LOW","vulnIntegrityImpact":"LOW","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}]},"weaknesses":[{"source":"cvd@cert.pl","type":"Primary","description":[{"lang":"en","value":"CWE-384"}]}],"references":[{"url":"https://cert.pl/posts/2026/05/CVE-2026-33384/","source":"cvd@cert.pl"},{"url":"https://opensolution.org/home.html","source":"cvd@cert.pl"}]}},{"cve":{"id":"CVE-2026-33386","sourceIdentifier":"cvd@cert.pl","published":"2026-05-29T16:16:25.560","lastModified":"2026-05-29T16:29:11.350","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"QuickCMS is vulnerable to Cross-Site Scripting (XSS) through its insecure HTTP-based plugin‑fetching mechanism. A malicious attacker can perform a Man‑in‑the‑Middle (MITM) attack by impersonating the opensolution.org server and serving arbitrary HTML or JavaScript at the plugin list endpoint. When a user accesses the plugin page, the malicious content is automatically fetched, rendered, and executed.\n\n\nThis issue was fixed in a patch to version 6.8 published on 15.05.2026, deployments without this patch are still vulnerable."}],"metrics":{"cvssMetricV40":[{"source":"cvd@cert.pl","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:A/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":2.3,"baseSeverity":"LOW","attackVector":"ADJACENT","attackComplexity":"LOW","attackRequirements":"PRESENT","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"NONE","vulnIntegrityImpact":"NONE","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"LOW","subIntegrityImpact":"LOW","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}]},"weaknesses":[{"source":"cvd@cert.pl","type":"Primary","description":[{"lang":"en","value":"CWE-79"}]}],"references":[{"url":"https://cert.pl/posts/2026/05/CVE-2026-33384/","source":"cvd@cert.pl"},{"url":"https://opensolution.org/home.html","source":"cvd@cert.pl"}]}},{"cve":{"id":"CVE-2026-34507","sourceIdentifier":"disclosure@vulncheck.com","published":"2026-05-29T16:16:25.950","lastModified":"2026-05-29T16:29:34.540","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"OpenClaw before 2026.4.29 contains a policy bypass vulnerability in QQBot admin commands that allows authenticated senders to skip DM-only and allowFrom policy checks. Attackers can route admin commands from unauthorized senders or contexts to execute restricted behavior that policy should have blocked."}],"metrics":{"cvssMetricV40":[{"source":"disclosure@vulncheck.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":2.3,"baseSeverity":"LOW","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"PRESENT","privilegesRequired":"LOW","userInteraction":"NONE","vulnConfidentialityImpact":"LOW","vulnIntegrityImpact":"LOW","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"disclosure@vulncheck.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N","baseScore":5.4,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":2.5}]},"weaknesses":[{"source":"disclosure@vulncheck.com","type":"Primary","description":[{"lang":"en","value":"CWE-863"}]}],"references":[{"url":"https://github.com/openclaw/openclaw/security/advisories/GHSA-w4v6-g3wm-w36c","source":"disclosure@vulncheck.com"},{"url":"https://www.vulncheck.com/advisories/openclaw-policy-bypass-in-qqbot-admin-commands-via-dm-only-and-allowfrom-checks","source":"disclosure@vulncheck.com"}]}},{"cve":{"id":"CVE-2026-35630","sourceIdentifier":"disclosure@vulncheck.com","published":"2026-05-29T16:16:26.097","lastModified":"2026-05-29T16:29:34.540","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"OpenClaw before 2026.5.18 contains an authorization bypass vulnerability in QQBot native approval buttons that fails to enforce configured approver identity. Non-approver users can click approval buttons to resolve pending exec or plugin approval requests without proper authorization."}],"metrics":{"cvssMetricV40":[{"source":"disclosure@vulncheck.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"PRESENT","privilegesRequired":"LOW","userInteraction":"PASSIVE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"HIGH","vulnAvailabilityImpact":"HIGH","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"disclosure@vulncheck.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H","baseScore":8.0,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.1,"impactScore":5.9}]},"weaknesses":[{"source":"disclosure@vulncheck.com","type":"Primary","description":[{"lang":"en","value":"CWE-862"}]}],"references":[{"url":"https://github.com/openclaw/openclaw/security/advisories/GHSA-mgq6-vr84-7m2j","source":"disclosure@vulncheck.com"},{"url":"https://www.vulncheck.com/advisories/openclaw-qqbot-missing-approver-identity-enforcement-in-native-approval-buttons","source":"disclosure@vulncheck.com"}]}},{"cve":{"id":"CVE-2026-35673","sourceIdentifier":"disclosure@vulncheck.com","published":"2026-05-29T16:16:26.230","lastModified":"2026-05-29T16:29:34.540","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"OpenClaw before 2026.4.29 contains an SSRF policy bypass vulnerability in browser debug and export routes that allows reuse of already-open blocked tabs. Attackers with access to these routes can bypass private-network SSRF policies by reusing blocked tabs to export or inspect content that should remain protected."}],"metrics":{"cvssMetricV40":[{"source":"disclosure@vulncheck.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:H/AT:P/PR:L/UI:P/VC:H/VI:L/VA:N/SC:L/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":5.9,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"HIGH","attackRequirements":"PRESENT","privilegesRequired":"LOW","userInteraction":"PASSIVE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"LOW","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"LOW","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"disclosure@vulncheck.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:L/A:N","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"LOW","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":1.3,"impactScore":4.7}]},"weaknesses":[{"source":"disclosure@vulncheck.com","type":"Primary","description":[{"lang":"en","value":"CWE-863"}]}],"references":[{"url":"https://github.com/openclaw/openclaw/security/advisories/GHSA-hcm3-8f6r-6xwg","source":"disclosure@vulncheck.com"},{"url":"https://www.vulncheck.com/advisories/openclaw-ssrf-policy-bypass-via-browser-debug-export-routes","source":"disclosure@vulncheck.com"}]}},{"cve":{"id":"CVE-2026-35674","sourceIdentifier":"disclosure@vulncheck.com","published":"2026-05-29T16:16:26.377","lastModified":"2026-05-29T16:29:34.540","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"OpenClaw before 2026.5.18 contains a scope bypass vulnerability in the Gateway chat.send route that allows scoped clients to execute privileged commands. Attackers with operator.write scope can deliver commands through inherited external routes to bypass operator.approvals and operator.admin scope requirements, enabling unauthorized plugin, config, MCP, allowlist, and ACP mutations."}],"metrics":{"cvssMetricV40":[{"source":"disclosure@vulncheck.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":8.7,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"LOW","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"HIGH","vulnAvailabilityImpact":"HIGH","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"disclosure@vulncheck.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":5.9}]},"weaknesses":[{"source":"disclosure@vulncheck.com","type":"Primary","description":[{"lang":"en","value":"CWE-863"}]}],"references":[{"url":"https://github.com/openclaw/openclaw/security/advisories/GHSA-hw9r-h9mr-4jff","source":"disclosure@vulncheck.com"},{"url":"https://www.vulncheck.com/advisories/openclaw-scope-bypass-via-inherited-chat-send-route","source":"disclosure@vulncheck.com"}]}},{"cve":{"id":"CVE-2026-36324","sourceIdentifier":"cve@mitre.org","published":"2026-05-29T16:16:26.620","lastModified":"2026-05-29T16:29:11.350","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"SourceCodester Doctor Appointment System 1.0 is vulnerable to Cross Site Scripting (XSS) due to improper handling of user supplied input in the user registration functionality in register.php."}],"metrics":{},"references":[{"url":"https://github.com/adhiyaksactf/MyCVE-Disclosures/blob/main/rems-DoctorAppointmentSystem/CVE-2026-36324/README.md","source":"cve@mitre.org"},{"url":"https://www.sourcecodester.com/php/18453/doctor-appointment-system-using-php-and-mysql-source-code.html","source":"cve@mitre.org"}]}},{"cve":{"id":"CVE-2026-39229","sourceIdentifier":"cve@mitre.org","published":"2026-05-29T16:16:26.723","lastModified":"2026-05-29T20:16:23.007","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Bolt CMS through 3.7.0 allows SQL Injection in the 'order' parameter of the content listing pages. An authenticated attacker with low-level privileges can exploit this through the OrderDirective component. This allows for the extraction of sensitive information"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":3.6}]},"weaknesses":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-89"}]}],"references":[{"url":"https://boltcms.io/","source":"cve@mitre.org"},{"url":"https://github.com/Tonoss-412/My-CVE/blob/main/CVE-2026-39229.md","source":"cve@mitre.org"},{"url":"https://github.com/bolt/bolt","source":"cve@mitre.org"}]}},{"cve":{"id":"CVE-2026-39276","sourceIdentifier":"cve@mitre.org","published":"2026-05-29T16:16:26.833","lastModified":"2026-05-29T20:16:23.160","vulnStatus":"Received","cveTags":[],"descriptions":[{"lang":"en","value":"The template upload feature in Emlog Pro v2.6.9 has a path traversal vulnerability, allowing authenticated administrators to execute arbitrary PHP code. By uploading a malicious ZIP archive containing directory traversal sequences in filenames, an attacker can overwrite default template files or directly include malicious code files in the current template."}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H","baseScore":7.2,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"HIGH","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.2,"impactScore":5.9}]},"weaknesses":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-22"}]}],"references":[{"url":"https://github.com/LING12138-sg/Emlog-v2.6.9-Vulnerability-Report","source":"cve@mitre.org"},{"url":"https://www.emlog.net/","source":"cve@mitre.org"},{"url":"https://github.com/LING12138-sg/Emlog-v2.6.9-Vulnerability-Report","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0"}]}},{"cve":{"id":"CVE-2026-44962","sourceIdentifier":"support@hackerone.com","published":"2026-05-29T16:16:27.567","lastModified":"2026-05-29T16:33:43.467","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Plesk contains an XPath injection vulnerability in the APS Application Catalog search functionality, where user-supplied input is interpolated into XPath queries without proper sanitization. This allows an authenticated, low-privileged user to execute arbitrary operating system commands on the server, resulting in local privilege escalation."}],"metrics":{"cvssMetricV31":[{"source":"support@hackerone.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H","baseScore":9.9,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.1,"impactScore":6.0}]},"weaknesses":[{"source":"support@hackerone.com","type":"Secondary","description":[{"lang":"en","value":"CWE-643"}]}],"references":[{"url":"https://support.plesk.com/hc/en-us/articles/38633651286679-Vulnerability-CVE-2026-44962-in-Plesk-s-APS-Catalog","source":"support@hackerone.com"}]}},{"cve":{"id":"CVE-2026-45662","sourceIdentifier":"security-advisories@github.com","published":"2026-05-29T16:16:28.213","lastModified":"2026-05-29T16:29:11.350","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Dokploy is a free, self-hostable Platform as a Service (PaaS). In 0.29.0 and earlier, the deleteRegistry function in Dokploy (packages/server/src/services/registry.ts) executes docker logout ${response.registryUrl} without shell escaping. In the same file, the docker login command correctly uses shEscape() to prevent command injection. This inconsistency creates a command injection vulnerability when deleting a registry with a crafted registryUrl."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":5.9}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-78"}]}],"references":[{"url":"https://github.com/Dokploy/dokploy/security/advisories/GHSA-827c-7x62-29jq","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2026-45663","sourceIdentifier":"security-advisories@github.com","published":"2026-05-29T16:16:28.347","lastModified":"2026-05-29T21:16:40.203","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Dokploy is a free, self-hostable Platform as a Service (PaaS). In 0.29.1 and earlier, a command injection vulnerability exists in the Docker file upload functionality. When an authenticated user uploads a file to a container, the destinationPath parameter is not properly sanitized and is directly interpolated into a shell command string. By including shell metacharacters such as ; or \", an attacker can escape the intended docker cp command and execute arbitrary OS commands on the Dokploy host."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H","baseScore":9.9,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.1,"impactScore":6.0}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Secondary","description":[{"lang":"en","value":"CWE-77"}]}],"references":[{"url":"https://github.com/Dokploy/dokploy/security/advisories/GHSA-9m66-74x3-5mwr","source":"security-advisories@github.com"},{"url":"https://github.com/Dokploy/dokploy/security/advisories/GHSA-9m66-74x3-5mwr","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0"}]}},{"cve":{"id":"CVE-2026-48501","sourceIdentifier":"security-advisories@github.com","published":"2026-05-29T16:16:31.497","lastModified":"2026-05-29T16:33:43.467","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"GitHub CLI (gh) is GitHub’s official command line tool. Prior to 2.93.0, GitHub CLI incorrectly includes authorization header in API requests to TUF repository mirrors via gh attestation, gh release verify, and gh release verify-asset commands. The CLI uses a shared HTTP client with an authentication layer that automatically attaches tokens to outgoing requests. This layer lacks accurate host detection and can incorrectly attribute the target host, providing it with a token it should never receive. Specifically, the host normalization logic collapses any *.github.com subdomain to github.com, so a request to tuf-repo.github.com (a GitHub Pages site, not a GitHub API endpoint) is treated as a request to github.com and receives the user's github.com token. For hosts that don't match github.com or a known GHES instance at all, the resolver falls back to GH_ENTERPRISE_TOKEN if set. The gh attestation, gh release verify and gh release verify-asset commands fetch data from several external hosts as part of their normal operation (TUF metadata from tuf-repo.github.com and tuf-repo-cdn.sigstore.dev, artifact bundles from Azure Blob Storage). Because these requests go through the same authenticated HTTP client, the token is sent to all of them. This vulnerability is fixed in 2.93.0."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N","baseScore":7.4,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"NONE"},"exploitabilityScore":2.2,"impactScore":5.2}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-863"}]}],"references":[{"url":"https://github.com/cli/cli/security/advisories/GHSA-8xvp-7hj6-mcj9","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2026-9194","sourceIdentifier":"security@wordfence.com","published":"2026-05-29T16:16:32.827","lastModified":"2026-05-29T16:16:32.827","vulnStatus":"Rejected","cveTags":[],"descriptions":[{"lang":"en","value":"Rejected reason: ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. Reason: This candidate was issued in error. Notes: All references and descriptions in this candidate have been removed to prevent accidental usage."}],"metrics":{},"references":[]}},{"cve":{"id":"CVE-2026-10070","sourceIdentifier":"cna@vuldb.com","published":"2026-05-29T18:16:30.807","lastModified":"2026-05-29T20:10:20.490","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"A vulnerability was found in macrozheng mall up to 1.0.3. This affects an unknown function of the file /admin/update/ of the component Super Admin Password Handler. Performing a manipulation results in improper authorization. Remote exploitation of the attack is possible. The vendor deleted the GitHub issue for this vulnerability without any explanation. Afterwards the vendor was contacted early about this disclosure via email but did not respond in any way."}],"metrics":{"cvssMetricV40":[{"source":"cna@vuldb.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":5.1,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"HIGH","userInteraction":"NONE","vulnConfidentialityImpact":"LOW","vulnIntegrityImpact":"LOW","vulnAvailabilityImpact":"LOW","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"cna@vuldb.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L","baseScore":4.7,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"HIGH","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"LOW"},"exploitabilityScore":1.2,"impactScore":3.4}],"cvssMetricV2":[{"source":"cna@vuldb.com","type":"Secondary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:M/C:P/I:P/A:P","baseScore":5.8,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"MULTIPLE","confidentialityImpact":"PARTIAL","integrityImpact":"PARTIAL","availabilityImpact":"PARTIAL"},"baseSeverity":"MEDIUM","exploitabilityScore":6.4,"impactScore":6.4,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"cna@vuldb.com","type":"Primary","description":[{"lang":"en","value":"CWE-266"},{"lang":"en","value":"CWE-285"}]}],"references":[{"url":"https://github.com/macrozheng/mall/","source":"cna@vuldb.com"},{"url":"https://github.com/macrozheng/mall/issues/970","source":"cna@vuldb.com"},{"url":"https://vuldb.com/submit/818384","source":"cna@vuldb.com"},{"url":"https://vuldb.com/vuln/367156","source":"cna@vuldb.com"},{"url":"https://vuldb.com/vuln/367156/cti","source":"cna@vuldb.com"}]}},{"cve":{"id":"CVE-2026-10105","sourceIdentifier":"disclosure@vulncheck.com","published":"2026-05-29T18:16:31.003","lastModified":"2026-05-29T20:25:00.760","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"agno 2.6.5 contains a SQL injection vulnerability in the ClickHouse vector database backend that allows attackers to inject arbitrary SQL expressions by supplying malicious metadata keys and values to the delete_by_metadata() method. Attackers can exploit the unsafe f-string interpolation in clickhousedb.py to delete all rows, target specific rows, or extract information through error-based or blind SQL injection techniques."}],"metrics":{"cvssMetricV40":[{"source":"disclosure@vulncheck.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":8.7,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"LOW","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"HIGH","vulnAvailabilityImpact":"LOW","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"disclosure@vulncheck.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:L","baseScore":8.3,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"LOW"},"exploitabilityScore":2.8,"impactScore":5.5}]},"weaknesses":[{"source":"disclosure@vulncheck.com","type":"Primary","description":[{"lang":"en","value":"CWE-89"}]}],"references":[{"url":"https://github.com/agno-agi/agno/issues/7866","source":"disclosure@vulncheck.com"},{"url":"https://github.com/agno-agi/agno/pull/7883","source":"disclosure@vulncheck.com"},{"url":"https://github.com/agno-agi/agno/pull/7883/changes/26a7439b803c0ccc9a58ee53572d8088a678923f","source":"disclosure@vulncheck.com"},{"url":"https://github.com/agno-agi/agno/pull/7883/changes/a0ec99305e782e68ba26f5966c53ad50b5f40132","source":"disclosure@vulncheck.com"},{"url":"https://www.vulncheck.com/advisories/agno-sql-injection-via-clickhouse-delete-by-metadata","source":"disclosure@vulncheck.com"}]}},{"cve":{"id":"CVE-2026-10107","sourceIdentifier":"disclosure@vulncheck.com","published":"2026-05-29T18:16:31.160","lastModified":"2026-05-29T20:25:00.760","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"MoviePilot v2 contains a server-side request forgery vulnerability in the image proxy endpoint that allows authenticated attackers to request arbitrary URLs by supplying a resource_token cookie and a URL whose domain matches the assembled allowlist. Attackers can bypass internal network protections because the SecurityUtils.is_safe_url function performs only domain-membership checking without blocking private, loopback, or link-local addresses, enabling enumeration of internal services such as Jellyfin, Emby, or Plex and exfiltration of data from internal network resources."}],"metrics":{"cvssMetricV40":[{"source":"disclosure@vulncheck.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:H/VI:N/VA:N/SC:H/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":7.0,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"PRESENT","privilegesRequired":"LOW","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"NONE","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"HIGH","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"disclosure@vulncheck.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N","baseScore":7.7,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":3.1,"impactScore":4.0}]},"weaknesses":[{"source":"disclosure@vulncheck.com","type":"Secondary","description":[{"lang":"en","value":"CWE-918"}]}],"references":[{"url":"https://github.com/jxxghp/MoviePilot/commit/0b7854a0af8751160b68c43c46ded48d2bd8a212","source":"disclosure@vulncheck.com"},{"url":"https://github.com/jxxghp/MoviePilot/issues/5823","source":"disclosure@vulncheck.com"},{"url":"https://github.com/jxxghp/MoviePilot/issues/5823","source":"disclosure@vulncheck.com"},{"url":"https://github.com/jxxghp/MoviePilot/issues/5823","source":"disclosure@vulncheck.com"},{"url":"https://github.com/jxxghp/MoviePilot/issues/5823","source":"disclosure@vulncheck.com"},{"url":"https://github.com/jxxghp/MoviePilot/releases/tag/v2.13.2","source":"disclosure@vulncheck.com"},{"url":"https://www.vulncheck.com/advisories/moviepilot-v2-ssrf-via-api-v1-system-img-proxy-endpoint","source":"disclosure@vulncheck.com"},{"url":"https://github.com/jxxghp/MoviePilot/issues/5823","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0"}]}},{"cve":{"id":"CVE-2026-10108","sourceIdentifier":"disclosure@vulncheck.com","published":"2026-05-29T18:16:31.310","lastModified":"2026-05-29T20:25:00.760","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"xiaomusic v0.5.7 contains an unauthenticated path traversal vulnerability in the GET /music/{file_path:path} endpoint that allows unauthenticated attackers to read arbitrary files outside the intended music directory by exploiting an incomplete path prefix check. Attackers can request files from sibling directories whose names share the music_path prefix by crafting traversal sequences, bypassing the path restriction due to the missing trailing separator in the comparison logic to retrieve arbitrary files from the server."}],"metrics":{"cvssMetricV40":[{"source":"disclosure@vulncheck.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":8.7,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"NONE","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"disclosure@vulncheck.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":3.6}]},"weaknesses":[{"source":"disclosure@vulncheck.com","type":"Primary","description":[{"lang":"en","value":"CWE-22"}]}],"references":[{"url":"https://github.com/hanxi/xiaomusic/commit/88404da7a283f2c0a796a4cd16bbb6e6aa1f4722","source":"disclosure@vulncheck.com"},{"url":"https://github.com/hanxi/xiaomusic/issues/890","source":"disclosure@vulncheck.com"},{"url":"https://github.com/hanxi/xiaomusic/pull/891","source":"disclosure@vulncheck.com"},{"url":"https://www.vulncheck.com/advisories/xiaomusic-path-traversal-via-get-music-endpoint","source":"disclosure@vulncheck.com"}]}},{"cve":{"id":"CVE-2026-43917","sourceIdentifier":"security-advisories@github.com","published":"2026-05-29T18:17:09.550","lastModified":"2026-05-29T20:25:00.760","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Dokploy is a free, self-hostable Platform as a Service (PaaS). In 0.19.0 and earlier, the protectedProcedure middleware only verifies the user is authenticated - it does NOT enforce organization scoping. Each endpoint must individually verify the resource's org matches the session's activeOrganizationId. This affects the following endpoints: allByType, killProcess, and removeDeployment in deployment.ts; delete in rollbacks.ts; create, one, update, remove, manualBackupPostgres, MySql, Mariadb, Mongo, Compose, WebServer, and listBackupFiles in backup.ts; list, one, delete, update, runManually, and restoreVolumeBackupWithLogs in volume-backups.ts; getNodes, removeWorker, addWorker, and addManager in cluster.ts; and create in mount.ts."}],"metrics":{"cvssMetricV40":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":5.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"LOW","userInteraction":"NONE","vulnConfidentialityImpact":"LOW","vulnIntegrityImpact":"LOW","vulnAvailabilityImpact":"LOW","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-639"}]}],"references":[{"url":"https://github.com/Dokploy/dokploy/security/advisories/GHSA-f8wj-5c4w-frhg","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2026-44697","sourceIdentifier":"security-advisories@github.com","published":"2026-05-29T18:17:09.697","lastModified":"2026-05-29T18:17:09.697","vulnStatus":"Received","cveTags":[],"descriptions":[{"lang":"en","value":"Klever-Go is the Go implementation of the Klever blockchain protocol. Prior to 1.7.17, a remote, unauthenticated denial-of-service vulnerability in Batch.Decompress (data/batch/batch.go) allows any peer that participates in a topic served by MultiDataInterceptor to allocate multi-gigabyte heaps on the receiving node from a sub-50 KiB gossip payload. A single packet is sufficient to OOM-kill a validator with conventional memory provisioning. Fleet-wide application affects chain liveness. This vulnerability is fixed in 1.7.17."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H","baseScore":8.6,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":4.0}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-409"},{"lang":"en","value":"CWE-770"}]}],"references":[{"url":"https://github.com/klever-io/klever-go/security/advisories/GHSA-87m7-qffr-542v","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2026-45577","sourceIdentifier":"security-advisories@github.com","published":"2026-05-29T18:17:10.007","lastModified":"2026-05-29T18:17:10.007","vulnStatus":"Received","cveTags":[],"descriptions":[{"lang":"en","value":"Neotoma provides versioned records that persist across agent runs. From 0.6.0 to before 0.11.1, Neotoma can treat public reverse-proxied requests as local when the app receives them over a loopback socket and no Bearer token is present. In affected deployments, the REST auth middleware can resolve unauthenticated requests as the local development user, making the hosted Inspector and related API surface reachable without credentials. This vulnerability is fixed in 0.11.1."}],"metrics":{"cvssMetricV40":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":6.9,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"LOW","vulnIntegrityImpact":"NONE","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-288"},{"lang":"en","value":"CWE-306"}]}],"references":[{"url":"https://github.com/markmhendrickson/neotoma/releases/tag/v0.11.1","source":"security-advisories@github.com"},{"url":"https://github.com/markmhendrickson/neotoma/security/advisories/GHSA-5cvp-p7p4-mcx9","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2026-45625","sourceIdentifier":"security-advisories@github.com","published":"2026-05-29T18:17:10.267","lastModified":"2026-05-29T20:25:00.760","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Arcane is an interface for managing Docker containers, images, networks, and volumes. Prior to 1.19.0, Arcane's huma-based REST API exposes nine endpoints under /api/customize/git-repositories and /api/git-repositories/sync for managing GitOps source repositories and their stored credentials. Eight of those endpoints (list, create, get, update, delete, test, listBranches, browseFiles) never call the checkAdmin(ctx) helper that every other admin-managed resource (container registries, environments, users, API keys, swarm, settings, system, notifications, events) uses, and the huma authentication middleware deliberately enforces only authentication, not the admin role. As a result, any logged-in user with the default user role can list, create, modify, delete, and test git repository configurations. By repointing an existing repository's URL to an attacker-controlled host while omitting the token/sshKey fields (which UpdateRepository only rewrites when explicitly supplied), the attacker causes Arcane to decrypt the legitimate PAT/SSH key on its next /test, /branches, or /files call and present it as HTTP Basic auth (or SSH key auth) to the attacker's host — producing a one-step exfiltration of plaintext Git credentials. This vulnerability is fixed in 1.19.0."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H","baseScore":9.9,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.1,"impactScore":6.0}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-862"}]}],"references":[{"url":"https://github.com/getarcaneapp/arcane/security/advisories/GHSA-7h26-hg47-p9hx","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2026-45626","sourceIdentifier":"security-advisories@github.com","published":"2026-05-29T18:17:10.483","lastModified":"2026-05-29T20:25:00.760","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Arcane is an interface for managing Docker containers, images, networks, and volumes. In 1.18.1 and earlier, GET /environments/{id}/volumes/{volumeName}/browse accepts a path query parameter that is passed to a shell command (sh -c \"find … | while …\") inside an Arcane helper container. The path sanitiser blocks ../ traversal but does not strip Bourne-shell metacharacters such as $() or backticks, and strconv.Quote only escapes Go string metacharacters, not shell substitution sequences. Any authenticated user with access to a browseable volume can execute arbitrary commands inside the helper container; command output is reflected back in the 500 error body."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L","baseScore":6.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"LOW"},"exploitabilityScore":2.8,"impactScore":3.4}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-78"}]}],"references":[{"url":"https://github.com/getarcaneapp/arcane/security/advisories/GHSA-9mvm-4gwg-v8mp","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2026-45627","sourceIdentifier":"security-advisories@github.com","published":"2026-05-29T18:17:10.647","lastModified":"2026-05-29T20:25:00.760","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Arcane is an interface for managing Docker containers, images, networks, and volumes. Prior to 1.19.0, the unauthenticated GET /api/app-images/logo endpoint reflects a user-supplied color query parameter into the body of an SVG document via strings.ReplaceAll with no escaping. The substitution lands inside a <style> element of the embedded logo.svg, allowing an attacker to close the style block and inject executable <script> content. Because the response is served as image/svg+xml and Arcane sets no Content-Security-Policy or X-Content-Type-Options headers, navigating a logged-in admin victim to a crafted URL executes attacker-controlled JavaScript in Arcane's origin and rides the victim's HttpOnly JWT cookie to fully compromise the admin account. This vulnerability is fixed in 1.19.0."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:L/A:N","baseScore":8.2,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":4.7}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-79"}]}],"references":[{"url":"https://github.com/getarcaneapp/arcane/security/advisories/GHSA-q2pj-8v84-9mh5","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2026-45628","sourceIdentifier":"security-advisories@github.com","published":"2026-05-29T18:17:10.807","lastModified":"2026-05-29T20:25:00.760","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Dokploy is a free, self-hostable Platform as a Service (PaaS). In 0.29.2 and earlier, Dokploy constructs shell commands using JavaScript template literals and executes them via child_process.exec() (which runs through /bin/sh -c). User-supplied branch names, repository URLs, and Docker credentials are interpolated directly into these commands without escaping. This requires an authenticated user with application create/edit privileges."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:N","baseScore":9.6,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"NONE"},"exploitabilityScore":3.1,"impactScore":5.8}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-20"},{"lang":"en","value":"CWE-77"}]}],"references":[{"url":"https://github.com/Dokploy/dokploy/security/advisories/GHSA-3frc-cfh9-ch2c","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2026-45629","sourceIdentifier":"security-advisories@github.com","published":"2026-05-29T18:17:10.953","lastModified":"2026-05-29T20:25:00.760","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Dokploy is a free, self-hostable Platform as a Service (PaaS). In 0.28.8 and earlier, authenticated OS command injection in the /listen-deployment WebSocket endpoint allows any organization member to execute arbitrary system commands on remote servers managed by Dokploy, leading to full server compromise."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:L","baseScore":9.9,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"LOW"},"exploitabilityScore":3.1,"impactScore":6.0}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-78"}]}],"references":[{"url":"https://github.com/Dokploy/dokploy/security/advisories/GHSA-r73h-qr3p-hf7f","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2026-45630","sourceIdentifier":"security-advisories@github.com","published":"2026-05-29T18:17:11.103","lastModified":"2026-05-29T20:25:00.760","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Dokploy is a free, self-hostable Platform as a Service (PaaS). In 0.28.8 and earlier, authenticated OS command injection in the application.updateTraefikConfig tRPC endpoint allows admin/owner users to execute arbitrary system commands on remote servers via unsanitized echo shell interpolation."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:L","baseScore":9.0,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"HIGH","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"LOW"},"exploitabilityScore":2.3,"impactScore":6.0}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-78"}]}],"references":[{"url":"https://github.com/Dokploy/dokploy/security/advisories/GHSA-p787-6gqg-cvp5","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2026-45631","sourceIdentifier":"security-advisories@github.com","published":"2026-05-29T18:17:11.243","lastModified":"2026-05-29T20:25:00.760","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Dokploy is a free, self-hostable Platform as a Service (PaaS). From 0.27.0 to before 0.29.3, a hardcoded BETTER_AUTH_SECRET fallback (\"better-auth-secret-123456789\") lets an unauthenticated attacker forge email verification JWTs, trigger auto-sign-in as admin, and execute commands on the host via the built-in SSH terminal. This vulnerability is fixed in 0.29.3."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H","baseScore":10.0,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":6.0}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-798"}]}],"references":[{"url":"https://github.com/Dokploy/dokploy/pull/4374","source":"security-advisories@github.com"},{"url":"https://github.com/Dokploy/dokploy/security/advisories/GHSA-w3gm-rc4p-9rhj","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2026-45632","sourceIdentifier":"security-advisories@github.com","published":"2026-05-29T18:17:11.373","lastModified":"2026-05-29T20:25:00.760","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Dokploy is a free, self-hostable Platform as a Service (PaaS). In 0.26.7 and earlier, the schedule router does not enforce organization/role checks. As a result, any authenticated user can create, update, run, or delete schedules belonging to other organizations if they know the scheduleId/serverId. Schedule types server and dokploy-server write and execute scripts on the host or remote servers, enabling RCE on the Dokploy host or a target server."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H","baseScore":9.9,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.1,"impactScore":6.0}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-78"},{"lang":"en","value":"CWE-269"},{"lang":"en","value":"CWE-862"}]}],"references":[{"url":"https://github.com/Dokploy/dokploy/security/advisories/GHSA-7wmr-57mg-h5q6","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2026-45633","sourceIdentifier":"security-advisories@github.com","published":"2026-05-29T18:17:11.510","lastModified":"2026-05-29T20:25:00.760","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Dokploy is a free, self-hostable Platform as a Service (PaaS). In 0.26.6 and earlier, Dokploy contains a command injection vulnerability in the /docker-container-logs WebSocket endpoint. The tail and since parameters are not validated and are directly concatenated into shell commands, allowing authenticated users to execute arbitrary commands with root privileges."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H","baseScore":9.9,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.1,"impactScore":6.0}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Secondary","description":[{"lang":"en","value":"CWE-78"}]}],"references":[{"url":"https://github.com/Dokploy/dokploy/security/advisories/GHSA-wmqj-wr9q-327p","source":"security-advisories@github.com"},{"url":"https://github.com/Dokploy/dokploy/security/advisories/GHSA-wmqj-wr9q-327p","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0"}]}},{"cve":{"id":"CVE-2026-45660","sourceIdentifier":"security-advisories@github.com","published":"2026-05-29T18:17:11.640","lastModified":"2026-05-29T18:17:11.640","vulnStatus":"Received","cveTags":[],"descriptions":[{"lang":"en","value":"Statamic is a Laravel and Git powered content management system (CMS). Prior to 5.73.22 and 6.18.1, the Glide image proxy's URL validation could be bypassed using an IP representation that wasn't normalized before the public-IP check. An unauthenticated user could cause the server to make HTTP requests to internal addresses — including loopback, private network, and cloud metadata endpoints. This affects sites that pass user-supplied URLs to Glide. Sites running PHP 8.3 or newer are not affected. This vulnerability is fixed in 5.73.22 and 6.18.1."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:L/I:L/A:N","baseScore":5.4,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":2.2,"impactScore":2.7}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-918"}]}],"references":[{"url":"https://github.com/statamic/cms/security/advisories/GHSA-pf9c-ch8r-2958","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2026-45661","sourceIdentifier":"security-advisories@github.com","published":"2026-05-29T18:17:11.780","lastModified":"2026-05-29T20:25:00.760","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Dokploy is a free, self-hostable Platform as a Service (PaaS). In 0.26.5 and earlier, a critical path traversal vulnerability exists in Dokploy v0.26.5 that allows authenticated users to write arbitrary files to the filesystem during application deployment. When combined with Dokploy's remote server deployment feature, this vulnerability enables arbitrary file write to remote server filesystems, automatic remote code execution via cron jobs, complete server compromise, data exfiltration without user interaction, and persistent backdoor installation. This vulnerability bypasses all container isolation on remote server deployments."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H","baseScore":9.9,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.1,"impactScore":6.0}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-22"},{"lang":"en","value":"CWE-35"}]}],"references":[{"url":"https://github.com/Dokploy/dokploy/security/advisories/GHSA-66v7-g3fh-47h3","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2026-45668","sourceIdentifier":"security-advisories@github.com","published":"2026-05-29T18:17:11.917","lastModified":"2026-05-29T20:16:27.260","vulnStatus":"Received","cveTags":[],"descriptions":[{"lang":"en","value":"Trilium Notes is a cross-platform, hierarchical note taking application focused on building large personal knowledge bases. Prior to 0.102.2, a malicious ZIP archive imported with safe import enabled achieves RCE via #docName path traversal and XSS by combining a payload note (type: code, mime: text/plain) containing raw HTML/JS and a trigger note (type: doc or type: launcher) with a #docName label that uses ../ path traversal to point at the payload note's API endpoint. The desktop client Electron renderer runs with nodeIntegration enabled, so an RCE is triggered once the payload is executed. This vulnerability is fixed in 0.102.2."}],"metrics":{"cvssMetricV40":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":9.3,"baseSeverity":"CRITICAL","attackVector":"LOCAL","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"ACTIVE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"HIGH","vulnAvailabilityImpact":"HIGH","subConfidentialityImpact":"HIGH","subIntegrityImpact":"HIGH","subAvailabilityImpact":"HIGH","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Secondary","description":[{"lang":"en","value":"CWE-22"},{"lang":"en","value":"CWE-79"}]}],"references":[{"url":"https://github.com/TriliumNext/Trilium/security/advisories/GHSA-9jjc-cccq-f6rh","source":"security-advisories@github.com"},{"url":"https://github.com/TriliumNext/Trilium/security/advisories/GHSA-9jjc-cccq-f6rh","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0"}]}},{"cve":{"id":"CVE-2026-47125","sourceIdentifier":"security-advisories@github.com","published":"2026-05-29T18:17:12.347","lastModified":"2026-05-29T20:25:00.760","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Arcane is an interface for managing Docker containers, images, networks, and volumes. Prior to 1.19.2, the PUT /api/environments/{id}/templates/variables endpoint, which writes the system-wide .env.global file used for variable substitution in every project's compose file, is missing an admin authorization check. Any authenticated non-admin user can call this endpoint with their bearer token or API key and overwrite the global environment variables that are merged into every project deployment. By overriding values like REGISTRY, IMAGE, DATABASE_URL, or SECRET_KEY that other users reference via ${VAR} in compose files, an attacker can redirect image pulls to attacker-controlled registries (supply-chain RCE on the Docker host), exfiltrate database credentials, or disrupt all projects. This vulnerability is fixed in 1.19.2."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":5.9}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-862"}]}],"references":[{"url":"https://github.com/getarcaneapp/arcane/security/advisories/GHSA-jpjh-jm2p-39hh","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2026-47179","sourceIdentifier":"security-advisories@github.com","published":"2026-05-29T18:17:12.500","lastModified":"2026-05-29T20:25:00.760","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Arcane is an interface for managing Docker containers, images, networks, and volumes. Prior to 1.19.4, ProjectService.GetProjectFileContent returns the contents of any Docker Compose include directive declared in a project's compose file before any path-traversal validation runs. Because ProjectService.CreateProject writes attacker-supplied compose content to disk without validating include paths, an authenticated user can create a project whose compose file declares include: ['../../../../etc/passwd'], then read the include via the project file API. The result is arbitrary read of any file readable by the Arcane backend process, including /app/data/arcane.db (the SQLite database containing every user's password hash and API key), enabling escalation to admin and, via Arcane's Docker control plane, RCE on the host. This vulnerability is fixed in 1.19.4."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N","baseScore":7.7,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":3.1,"impactScore":4.0}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-22"}]}],"references":[{"url":"https://github.com/getarcaneapp/arcane/commit/b6cbffabf61dbc3f12a28d3b5830e3c6b7e67daf","source":"security-advisories@github.com"},{"url":"https://github.com/getarcaneapp/arcane/security/advisories/GHSA-c3px-h233-h6fq","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2026-5386","sourceIdentifier":"ics-cert@hq.dhs.gov","published":"2026-05-29T18:17:12.867","lastModified":"2026-05-29T18:17:12.867","vulnStatus":"Received","cveTags":[],"descriptions":[{"lang":"en","value":"The affected KMW CCTV Security Cameras are vulnerable to a critical unauthenticated password reset. This flaw allows an attacker to remotely reset the administrator password to a known value without authentication, granting full access to the camera feeds and settings."}],"metrics":{"cvssMetricV31":[{"source":"ics-cert@hq.dhs.gov","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N","baseScore":9.1,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":5.2}]},"weaknesses":[{"source":"ics-cert@hq.dhs.gov","type":"Primary","description":[{"lang":"en","value":"CWE-620"}]}],"references":[{"url":"https://github.com/cisagov/CSAF/blob/develop/csaf_files/OT/white/2026/icsa-26-148-06.json","source":"ics-cert@hq.dhs.gov"},{"url":"https://main.kmw.ro/pub/Firmware/521_421.zip","source":"ics-cert@hq.dhs.gov"},{"url":"https://www.cisa.gov/news-events/ics-advisories/icsa-26-148-06","source":"ics-cert@hq.dhs.gov"}]}},{"cve":{"id":"CVE-2026-5768","sourceIdentifier":"ics-cert@hq.dhs.gov","published":"2026-05-29T18:17:12.997","lastModified":"2026-05-29T18:17:12.997","vulnStatus":"Received","cveTags":[],"descriptions":[{"lang":"en","value":"The Frontier X2 device allows unauthenticated BLE read/write access to critical GATT characteristics without enforcing pairing authentication or authorization. This allows attackers within BLE range to perform unauthorized control of device functions, including starting/stopping activities, triggering vibrations, causing denial-of-service conditions, and fuzzing characteristic values to induce unexpected behavior. Additionally, the Frontier X mobile application lacks proper BLE device authentication, allowing attackers to impersonate a legitimate Frontier X2 device and connect to the application. By cloning BLE advertisements and exposing expected GATT characteristics, attackers can manipulate activity states and inject fabricated health telemetry such as breathing rate, heart rate, strain, and other health-related data into the mobile application."}],"metrics":{"cvssMetricV31":[{"source":"ics-cert@hq.dhs.gov","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"ADJACENT_NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":5.9}]},"weaknesses":[{"source":"ics-cert@hq.dhs.gov","type":"Primary","description":[{"lang":"en","value":"CWE-306"}]}],"references":[{"url":"https://fourthfrontier.com/pages/contact-us","source":"ics-cert@hq.dhs.gov"},{"url":"https://github.com/cisagov/CSAF/blob/develop/csaf_files/OT/white/2026/icsma-26-148-01.json","source":"ics-cert@hq.dhs.gov"},{"url":"https://www.cisa.gov/news-events/ics-medical-advisories/icsma-26-148-01","source":"ics-cert@hq.dhs.gov"}]}},{"cve":{"id":"CVE-2026-6824","sourceIdentifier":"ics-cert@hq.dhs.gov","published":"2026-05-29T18:17:13.147","lastModified":"2026-05-29T18:17:13.147","vulnStatus":"Received","cveTags":[],"descriptions":[{"lang":"en","value":"A stored cross-site scripting (XSS) vulnerability exists in certain 1xxx series NVR devices due to insufficient sanitization of user-supplied input in specific functional modules. Attackers can inject malicious scripts, which are then persistently stored on the device backend. When administrators or users access affected pages, the stored scripts are executed in their browsers, leading to potential session hijacking, unauthorized actions, or data theft."}],"metrics":{"cvssMetricV31":[{"source":"ics-cert@hq.dhs.gov","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:H/I:H/A:H","baseScore":8.4,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"HIGH","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.7,"impactScore":6.0}]},"weaknesses":[{"source":"ics-cert@hq.dhs.gov","type":"Primary","description":[{"lang":"en","value":"CWE-79"}]}],"references":[{"url":"https://drive.google.com/file/d/1Ctxdp55UtlrQY7CSepkImM9zFgdcuCyL/view","source":"ics-cert@hq.dhs.gov"},{"url":"https://github.com/cisagov/CSAF/blob/develop/csaf_files/OT/white/2026/icsa-26-148-05.json","source":"ics-cert@hq.dhs.gov"},{"url":"https://www.cisa.gov/news-events/ics-advisories/icsa-26-148-05","source":"ics-cert@hq.dhs.gov"}]}},{"cve":{"id":"CVE-2026-7786","sourceIdentifier":"ics-cert@hq.dhs.gov","published":"2026-05-29T18:17:13.403","lastModified":"2026-05-29T18:17:13.403","vulnStatus":"Received","cveTags":[],"descriptions":[{"lang":"en","value":"Jinan USR IOT Technology Limited (PUSR) USR-W610 RS232/485 to Wi-Fi/Ethernet Converter\ndevice firmware contains plaintext administrative credentials embedded in the firmware image. These credentials can be extracted through firmware analysis and used to authenticate to device services."}],"metrics":{"cvssMetricV31":[{"source":"ics-cert@hq.dhs.gov","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":9.8,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":5.9}]},"weaknesses":[{"source":"ics-cert@hq.dhs.gov","type":"Primary","description":[{"lang":"en","value":"CWE-798"}]}],"references":[{"url":"https://github.com/cisagov/CSAF/blob/develop/csaf_files/OT/white/2026/icsa-26-148-02.json","source":"ics-cert@hq.dhs.gov"},{"url":"https://www.cisa.gov/news-events/ics-advisories/icsa-26-148-02","source":"ics-cert@hq.dhs.gov"}]}},{"cve":{"id":"CVE-2026-40425","sourceIdentifier":"ics-cert@hq.dhs.gov","published":"2026-05-29T19:16:23.673","lastModified":"2026-05-29T19:16:23.673","vulnStatus":"Received","cveTags":[],"descriptions":[{"lang":"en","value":"The administrator account for the\n\nDanelec MacGregor Voyage Data Recorder\nweb interface can directly edit sensitive files related to authentication, potentially changing the root password."}],"metrics":{"cvssMetricV40":[{"source":"ics-cert@hq.dhs.gov","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:A/AC:L/AT:N/PR:H/UI:N/VC:H/VI:L/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":6.9,"baseSeverity":"MEDIUM","attackVector":"ADJACENT","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"HIGH","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"LOW","vulnAvailabilityImpact":"LOW","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"ics-cert@hq.dhs.gov","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:U/C:H/I:L/A:L","baseScore":5.7,"baseSeverity":"MEDIUM","attackVector":"ADJACENT_NETWORK","attackComplexity":"LOW","privilegesRequired":"HIGH","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"LOW","availabilityImpact":"LOW"},"exploitabilityScore":0.9,"impactScore":4.7}]},"weaknesses":[{"source":"ics-cert@hq.dhs.gov","type":"Primary","description":[{"lang":"en","value":"CWE-552"}]}],"references":[{"url":"https://github.com/cisagov/CSAF/blob/develop/csaf_files/OT/white/2026/icsa-26-148-01.json","source":"ics-cert@hq.dhs.gov"},{"url":"https://www.cisa.gov/news-events/ics-advisories/icsa-26-148-01","source":"ics-cert@hq.dhs.gov"},{"url":"https://www.danelec.com/contact","source":"ics-cert@hq.dhs.gov"}]}},{"cve":{"id":"CVE-2026-42929","sourceIdentifier":"ics-cert@hq.dhs.gov","published":"2026-05-29T19:16:23.830","lastModified":"2026-05-29T19:16:23.830","vulnStatus":"Received","cveTags":[],"descriptions":[{"lang":"en","value":"Danelec MacGregor Voyage Data Recorder\nincludes default accounts with hard-coded credentials."}],"metrics":{"cvssMetricV40":[{"source":"ics-cert@hq.dhs.gov","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":8.7,"baseSeverity":"HIGH","attackVector":"ADJACENT","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"HIGH","vulnAvailabilityImpact":"LOW","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"ics-cert@hq.dhs.gov","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:L","baseScore":8.3,"baseSeverity":"HIGH","attackVector":"ADJACENT_NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"LOW"},"exploitabilityScore":2.8,"impactScore":5.5}]},"weaknesses":[{"source":"ics-cert@hq.dhs.gov","type":"Primary","description":[{"lang":"en","value":"CWE-798"}]}],"references":[{"url":"https://github.com/cisagov/CSAF/blob/develop/csaf_files/OT/white/2026/icsa-26-148-01.json","source":"ics-cert@hq.dhs.gov"},{"url":"https://www.cisa.gov/news-events/ics-advisories/icsa-26-148-01","source":"ics-cert@hq.dhs.gov"},{"url":"https://www.danelec.com/contact","source":"ics-cert@hq.dhs.gov"}]}},{"cve":{"id":"CVE-2026-42941","sourceIdentifier":"ics-cert@hq.dhs.gov","published":"2026-05-29T19:16:23.970","lastModified":"2026-05-29T19:16:23.970","vulnStatus":"Received","cveTags":[],"descriptions":[{"lang":"en","value":"The Danelec MacGregor Voyage Data Recorder\n\ndevice includes a default username and password, with no enforced password change."}],"metrics":{"cvssMetricV40":[{"source":"ics-cert@hq.dhs.gov","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":8.7,"baseSeverity":"HIGH","attackVector":"ADJACENT","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"HIGH","vulnAvailabilityImpact":"LOW","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"ics-cert@hq.dhs.gov","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:L","baseScore":8.3,"baseSeverity":"HIGH","attackVector":"ADJACENT_NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"LOW"},"exploitabilityScore":2.8,"impactScore":5.5}]},"weaknesses":[{"source":"ics-cert@hq.dhs.gov","type":"Primary","description":[{"lang":"en","value":"CWE-1392"}]}],"references":[{"url":"https://github.com/cisagov/CSAF/blob/develop/csaf_files/OT/white/2026/icsa-26-148-01.json","source":"ics-cert@hq.dhs.gov"},{"url":"https://www.cisa.gov/news-events/ics-advisories/icsa-26-148-01","source":"ics-cert@hq.dhs.gov"},{"url":"https://www.danelec.com/contact","source":"ics-cert@hq.dhs.gov"}]}},{"cve":{"id":"CVE-2026-42951","sourceIdentifier":"ics-cert@hq.dhs.gov","published":"2026-05-29T19:16:24.113","lastModified":"2026-05-29T19:16:24.113","vulnStatus":"Received","cveTags":[],"descriptions":[{"lang":"en","value":"An authenticated\nuser can download a backup of the Danelec MacGregor Voyage Data Recorder\n\n\ndevice which includes account data and password hashes."}],"metrics":{"cvssMetricV40":[{"source":"ics-cert@hq.dhs.gov","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:A/AC:H/AT:N/PR:L/UI:N/VC:H/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":5.9,"baseSeverity":"MEDIUM","attackVector":"ADJACENT","attackComplexity":"HIGH","attackRequirements":"NONE","privilegesRequired":"LOW","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"LOW","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"ics-cert@hq.dhs.gov","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:A/AC:H/PR:L/UI:N/S:U/C:H/I:L/A:N","baseScore":5.4,"baseSeverity":"MEDIUM","attackVector":"ADJACENT_NETWORK","attackComplexity":"HIGH","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":1.2,"impactScore":4.2}]},"weaknesses":[{"source":"ics-cert@hq.dhs.gov","type":"Primary","description":[{"lang":"en","value":"CWE-522"}]}],"references":[{"url":"https://github.com/cisagov/CSAF/blob/develop/csaf_files/OT/white/2026/icsa-26-148-01.json","source":"ics-cert@hq.dhs.gov"},{"url":"https://www.cisa.gov/news-events/ics-advisories/icsa-26-148-01","source":"ics-cert@hq.dhs.gov"},{"url":"https://www.danelec.com/contact","source":"ics-cert@hq.dhs.gov"}]}},{"cve":{"id":"CVE-2026-44518","sourceIdentifier":"security-advisories@github.com","published":"2026-05-29T19:16:24.263","lastModified":"2026-05-29T19:16:24.263","vulnStatus":"Received","cveTags":[],"descriptions":[{"lang":"en","value":"liboqs is a C-language cryptographic library that provides implementations of post-quantum cryptography algorithms. Prior to 0.16.0, an out-of-bounds read has been identified in the XMSS and XMSS^MT stateful signature verification code. When the verification function is called with a signature buffer shorter than the expected signature size for the given parameter set, the implementation does not validate the caller-supplied length and proceeds to read past the end of the buffer. The out-of-bounds bytes are consumed only as input to an internal hash computation and are not returned to the caller, so no oracle exists to leak their contents to an attacker. The primary observable effect is a possible crash (denial of service) of the verifying process if the read crosses into an unmapped memory page. This vulnerability is fixed in 0.16.0."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L","baseScore":5.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"LOW"},"exploitabilityScore":3.9,"impactScore":1.4}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-20"},{"lang":"en","value":"CWE-125"}]}],"references":[{"url":"https://github.com/open-quantum-safe/liboqs/commit/ef70dea7c85e5637f37828d75e5b9bb29dbfe513","source":"security-advisories@github.com"},{"url":"https://github.com/open-quantum-safe/liboqs/security/advisories/GHSA-wf7v-fhxj-73m2","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2026-44611","sourceIdentifier":"ics-cert@hq.dhs.gov","published":"2026-05-29T19:16:24.423","lastModified":"2026-05-29T19:16:24.423","vulnStatus":"Received","cveTags":[],"descriptions":[{"lang":"en","value":"Danelec MacGregor Voyage Data Recorder\npasswords are stored with a hashing method which limits password length and is susceptible to brute force attacks."}],"metrics":{"cvssMetricV40":[{"source":"ics-cert@hq.dhs.gov","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:A/AC:H/AT:N/PR:L/UI:N/VC:H/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":5.9,"baseSeverity":"MEDIUM","attackVector":"ADJACENT","attackComplexity":"HIGH","attackRequirements":"NONE","privilegesRequired":"LOW","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"LOW","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"ics-cert@hq.dhs.gov","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:A/AC:H/PR:L/UI:N/S:U/C:H/I:L/A:N","baseScore":5.4,"baseSeverity":"MEDIUM","attackVector":"ADJACENT_NETWORK","attackComplexity":"HIGH","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":1.2,"impactScore":4.2}]},"weaknesses":[{"source":"ics-cert@hq.dhs.gov","type":"Primary","description":[{"lang":"en","value":"CWE-916"}]}],"references":[{"url":"https://github.com/cisagov/CSAF/blob/develop/csaf_files/OT/white/2026/icsa-26-148-01.json","source":"ics-cert@hq.dhs.gov"},{"url":"https://www.cisa.gov/news-events/ics-advisories/icsa-26-148-01","source":"ics-cert@hq.dhs.gov"},{"url":"https://www.danelec.com/contact","source":"ics-cert@hq.dhs.gov"}]}},{"cve":{"id":"CVE-2026-44648","sourceIdentifier":"security-advisories@github.com","published":"2026-05-29T19:16:24.570","lastModified":"2026-05-29T20:17:38.110","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"SillyTavern is a locally installed user interface that allows users to interact with text generation large language models, image generation engines, and text-to-speech voice models. Prior to 1.18.0, SillyTavern relies on cookie-session for authentication, storing all session data (user handle, permissions) in a signed cookie. The endpoints POST /api/users/change-password and POST /api/users/recover-step2 only update the password hash in the database but do not expire current sessions. Because the session is stateless and stored entirely in the client cookie, there is no server-side mechanism to revoke a token once issued. This vulnerability is fixed in 1.18.0."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.6,"impactScore":5.9}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Secondary","description":[{"lang":"en","value":"CWE-613"}]}],"references":[{"url":"https://github.com/SillyTavern/SillyTavern/security/advisories/GHSA-wmm3-h9qj-p5v6","source":"security-advisories@github.com"},{"url":"https://github.com/SillyTavern/SillyTavern/security/advisories/GHSA-wmm3-h9qj-p5v6","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0"}]}},{"cve":{"id":"CVE-2026-44649","sourceIdentifier":"security-advisories@github.com","published":"2026-05-29T19:16:24.720","lastModified":"2026-05-29T20:17:38.110","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"SillyTavern is a locally installed user interface that allows users to interact with text generation large language models, image generation engines, and text-to-speech voice models. Prior to 1.18.0, SillyTavern accepts Remote-User (Authelia) and X-Authentik-Username (Authentik) HTTP headers to automatically log in users when SSO is configured. There is no validation that these headers originate from a trusted reverse proxy. Any network client that can reach the SillyTavern port directly can inject these headers and authenticate as any user, including administrators, without a password. This vulnerability is exploitable only when sso.autheliaAuth: true or sso.authentikAuth: true is set in config.yaml (both default to false). This vulnerability is fixed in 1.18.0."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":9.8,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":5.9}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-290"},{"lang":"en","value":"CWE-306"},{"lang":"en","value":"CWE-346"},{"lang":"en","value":"CWE-807"}]}],"references":[{"url":"https://github.com/SillyTavern/SillyTavern/security/advisories/GHSA-gxx6-h3g6-vwjh","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2026-44650","sourceIdentifier":"security-advisories@github.com","published":"2026-05-29T19:16:24.857","lastModified":"2026-05-29T20:17:38.110","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"SillyTavern is a locally installed user interface that allows users to interact with text generation large language models, image generation engines, and text-to-speech voice models. Prior to 1.18.0, POST /api/extensions/delete endpoint accepts extensionName: \".\" which bypasses sanitize-filename validation, causing the entire user extensions directory to be recursively deleted. No authentication is required in the default configuration. This vulnerability is fixed in 1.18.0."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H","baseScore":9.1,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":5.2}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Secondary","description":[{"lang":"en","value":"CWE-22"}]}],"references":[{"url":"https://github.com/SillyTavern/SillyTavern/security/advisories/GHSA-886q-f44j-h6wh","source":"security-advisories@github.com"},{"url":"https://github.com/SillyTavern/SillyTavern/security/advisories/GHSA-886q-f44j-h6wh","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0"}]}},{"cve":{"id":"CVE-2026-44651","sourceIdentifier":"security-advisories@github.com","published":"2026-05-29T19:16:24.993","lastModified":"2026-05-29T20:17:38.110","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"SillyTavern is a locally installed user interface that allows users to interact with text generation large language models, image generation engines, and text-to-speech voice models. Prior to 1.18.0, when fetch(url) throws, the code sends:\nres.status(500).send('Error occurred while trying to proxy to: ' + url + ' ' + error). The url value is attacker-controlled (req.params.url) and is not HTML-escaped before rendering. This vulnerability is fixed in 1.18.0."}],"metrics":{"cvssMetricV40":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":6.9,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"LOW","vulnIntegrityImpact":"LOW","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-79"}]}],"references":[{"url":"https://github.com/SillyTavern/SillyTavern/security/advisories/GHSA-xc4x-2452-5gc9","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2026-44652","sourceIdentifier":"security-advisories@github.com","published":"2026-05-29T19:16:25.143","lastModified":"2026-05-29T20:17:38.110","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"SillyTavern is a locally installed user interface that allows users to interact with text generation large language models, image generation engines, and text-to-speech voice models. Prior to 1.18.0, corsProxyMiddleware forwards req.params.url directly into fetch(url, ...). It only blocks circular requests to its own host and does not enforce destination allowlist or private/loopback restrictions, enabling SSRF. This vulnerability is fixed in 1.18.0."}],"metrics":{"cvssMetricV40":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":6.9,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"LOW","vulnIntegrityImpact":"NONE","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-918"}]}],"references":[{"url":"https://github.com/SillyTavern/SillyTavern/security/advisories/GHSA-ccfq-2454-f5xw","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2026-46344","sourceIdentifier":"security-advisories@github.com","published":"2026-05-29T19:16:25.350","lastModified":"2026-05-29T19:16:25.350","vulnStatus":"Received","cveTags":[],"descriptions":[{"lang":"en","value":"liboqs is a C-language cryptographic library that provides implementations of post-quantum cryptography algorithms. Prior to 0.16.0, an out-of-bounds read has been identified in the XMSS and XMSS^MT stateful signature verification code. When the verification function is called with a correctly-sized signature buffer for the declared algorithm but a public key whose OID bytes (pk[0..3]) reference a different XMSS parameter set with a larger sig_bytes, the implementation re-parses the OID from the public key inside xmss_sign_open / xmssmt_sign_open and uses the resulting (larger) sig_bytes to index the caller-supplied signature buffer. As with CVE-2026-44518, the out-of-bounds bytes are consumed only as input to an internal hash computation and are not returned to the caller, so no oracle exists to leak their contents to an attacker. The primary observable effect is a possible crash (denial of service) of the verifying process if the read crosses into an unmapped memory page. This vulnerability is fixed in 0.16.0."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L","baseScore":5.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"LOW"},"exploitabilityScore":3.9,"impactScore":1.4}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-125"}]}],"references":[{"url":"https://github.com/open-quantum-safe/liboqs/commit/077e32a94f39af02209dbbc680bf8a43b774b305","source":"security-advisories@github.com"},{"url":"https://github.com/open-quantum-safe/liboqs/security/advisories/GHSA-2wxh-55qf-c7wg","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2026-46372","sourceIdentifier":"security-advisories@github.com","published":"2026-05-29T19:16:25.483","lastModified":"2026-05-29T20:17:38.110","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"SillyTavern is a locally installed user interface that allows users to interact with text generation large language models, image generation engines, and text-to-speech voice models. Prior to 1.18.0, SillyTavern exposes /api/search/searxng, which accepts attacker-controlled baseUrl and uses it directly to build outbound server-side fetches. An authenticated low-privilege user can point baseUrl at an internal or loopback HTTP service and receive the /search response body. This vulnerability is fixed in 1.18.0."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:L/A:N","baseScore":8.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":3.1,"impactScore":4.7}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Secondary","description":[{"lang":"en","value":"CWE-918"}]}],"references":[{"url":"https://github.com/SillyTavern/SillyTavern/security/advisories/GHSA-qg89-qwwh-5f3j","source":"security-advisories@github.com"},{"url":"https://github.com/SillyTavern/SillyTavern/security/advisories/GHSA-qg89-qwwh-5f3j","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0"}]}},{"cve":{"id":"CVE-2026-47740","sourceIdentifier":"security-advisories@github.com","published":"2026-05-29T19:16:25.620","lastModified":"2026-05-29T20:17:38.110","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Shopper is a Headless e-commerce Admin Panel. Prior to 2.8.0, Multiple Filament actions on the admin Order detail and Order shipments table were callable by an authenticated low-privilege user without the permission required to mutate orders. The order detail actions cancel, mark paid, mark complete, capture payment, archive, and start processing were callable with the read-only read_orders permission and did not require edit_orders. capturePayment could trigger an actual PSP capture (real funds movement). The order shipments table actions mark delivered and edit tracking were callable with the read-only browse_orders permission. A user with read access to orders could therefore alter the lifecycle of every order in the panel and trigger real-world payment captures. This vulnerability is fixed in 2.8.0."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N","baseScore":8.1,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":5.2}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-285"},{"lang":"en","value":"CWE-862"}]}],"references":[{"url":"https://github.com/shopperlabs/shopper/pull/511","source":"security-advisories@github.com"},{"url":"https://github.com/shopperlabs/shopper/security/advisories/GHSA-f946-9qp6-vgch","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2026-47741","sourceIdentifier":"security-advisories@github.com","published":"2026-05-29T19:16:25.763","lastModified":"2026-05-29T20:17:38.110","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Shopper is a Headless e-commerce Admin Panel. Prior to 2.8.0, CreateOrderFromCartAction::execute previously created the Order row before checking and incrementing the discount's total_use counter. Under concurrent checkout pressure (Black Friday, flash sale, viral coupon), the global usage_limit was silently exceeded: orders were committed with the discount fully applied to price_amount while the counter blocked at usage_limit. The merchant had no signal that an over-redemption had occurred. This vulnerability is fixed in 2.8.0."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N","baseScore":5.9,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"HIGH","availabilityImpact":"NONE"},"exploitabilityScore":2.2,"impactScore":3.6}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Secondary","description":[{"lang":"en","value":"CWE-362"}]}],"references":[{"url":"https://github.com/shopperlabs/shopper/issues/510","source":"security-advisories@github.com"},{"url":"https://github.com/shopperlabs/shopper/pull/511","source":"security-advisories@github.com"},{"url":"https://github.com/shopperlabs/shopper/security/advisories/GHSA-9rh9-hf3w-9fgg","source":"security-advisories@github.com"},{"url":"https://github.com/shopperlabs/shopper/issues/510","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0"}]}},{"cve":{"id":"CVE-2026-47742","sourceIdentifier":"security-advisories@github.com","published":"2026-05-29T19:16:25.900","lastModified":"2026-05-29T20:17:38.110","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Shopper is a Headless e-commerce Admin Panel. Prior to 2.8.0, Sub-form Livewire components used in the product editor (Edit, Inventory, Seo, Shipping, Files) had no authorization on their store() method. Any authenticated panel user, regardless of role, could mutate any product's pricing, stock, SEO metadata, shipping dimensions, and attached media without holding edit_products. The affected components accepted the product ID as a public Livewire property without #[Locked], so an attacker could also target an arbitrary product by tampering with the wire payload from the client. This vulnerability is fixed in 2.8.0."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"HIGH","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":3.6}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-862"}]}],"references":[{"url":"https://github.com/shopperlabs/shopper/pull/511","source":"security-advisories@github.com"},{"url":"https://github.com/shopperlabs/shopper/security/advisories/GHSA-h4mp-g9c6-xwph","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2026-47744","sourceIdentifier":"security-advisories@github.com","published":"2026-05-29T19:16:26.037","lastModified":"2026-05-29T20:17:38.110","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Shopper is a Headless e-commerce Admin Panel. Prior to 2.8.0, two distinct authorization defects in the team settings allowed any authenticated panel user to take over the RBAC system. Settings/Team/Index had no mount() authorization. Any authenticated user could load the page and use its public actions to create new roles and delete other users, including administrators. Settings/Team/RolePermission gated its write actions on the read-only view_users permission. Any user holding view_users could grant themselves or any other user arbitrary permissions, including manage_users and edit_orders, effectively escalating to full panel administrator from a read-only account. Combined, these two defects allow a low-privilege authenticated user to obtain administrator privileges and remove the legitimate administrators from the panel. This vulnerability is fixed in 2.8.0."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H","baseScore":9.9,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.1,"impactScore":6.0}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-269"},{"lang":"en","value":"CWE-285"}]}],"references":[{"url":"https://github.com/shopperlabs/shopper/security/advisories/GHSA-c3qp-2ggw-xjg7","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2026-47745","sourceIdentifier":"security-advisories@github.com","published":"2026-05-29T19:16:26.177","lastModified":"2026-05-29T20:17:38.110","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Shopper is a Headless e-commerce Admin Panel. Prior to 2.8.0, the admin tables for PaymentMethods, Currencies and Carriers exposed inline toggles and per-record actions (enable, disable, edit, delete) that were rendered for any authenticated panel user without checking the corresponding per-action permission. A low-privilege user could disable every payment method on the store, disable or alter the default currency, or disable carriers. The impact is a full denial of checkout and pricing integrity loss, reachable by any authenticated user. This vulnerability is fixed in 2.8.0."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"HIGH","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":3.6}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-862"}]}],"references":[{"url":"https://github.com/shopperlabs/shopper/pull/511","source":"security-advisories@github.com"},{"url":"https://github.com/shopperlabs/shopper/security/advisories/GHSA-fxqw-97cc-7g5c","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2026-49366","sourceIdentifier":"cve@jetbrains.com","published":"2026-05-29T19:16:26.313","lastModified":"2026-05-29T20:11:15.977","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In JetBrains IntelliJ IDEA before 2026.1.1 command injection was possible via filename completion"}],"metrics":{"cvssMetricV31":[{"source":"cve@jetbrains.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","baseScore":7.8,"baseSeverity":"HIGH","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.8,"impactScore":5.9}]},"weaknesses":[{"source":"cve@jetbrains.com","type":"Primary","description":[{"lang":"en","value":"CWE-78"}]}],"references":[{"url":"https://www.jetbrains.com/privacy-security/issues-fixed/","source":"cve@jetbrains.com"}]}},{"cve":{"id":"CVE-2026-49367","sourceIdentifier":"cve@jetbrains.com","published":"2026-05-29T19:16:26.440","lastModified":"2026-05-29T20:11:15.977","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In JetBrains IntelliJ IDEA before 2026.1.1 command execution was possible via the guest user account"}],"metrics":{"cvssMetricV31":[{"source":"cve@jetbrains.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H","baseScore":8.0,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.1,"impactScore":5.9}]},"weaknesses":[{"source":"cve@jetbrains.com","type":"Primary","description":[{"lang":"en","value":"CWE-862"}]}],"references":[{"url":"https://www.jetbrains.com/privacy-security/issues-fixed/","source":"cve@jetbrains.com"}]}},{"cve":{"id":"CVE-2026-49368","sourceIdentifier":"cve@jetbrains.com","published":"2026-05-29T19:16:26.553","lastModified":"2026-05-29T20:11:15.977","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In JetBrains YouTrack before 2026.1.13162 stored XSS in project notification templates was possible"}],"metrics":{"cvssMetricV31":[{"source":"cve@jetbrains.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:N","baseScore":8.7,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"NONE"},"exploitabilityScore":2.3,"impactScore":5.8}]},"weaknesses":[{"source":"cve@jetbrains.com","type":"Primary","description":[{"lang":"en","value":"CWE-79"}]}],"references":[{"url":"https://www.jetbrains.com/privacy-security/issues-fixed/","source":"cve@jetbrains.com"}]}},{"cve":{"id":"CVE-2026-49369","sourceIdentifier":"cve@jetbrains.com","published":"2026-05-29T19:16:26.677","lastModified":"2026-05-29T20:11:15.977","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In JetBrains YouTrack before 2026.1.13162 information disclosure was possible on Users and Groups pages"}],"metrics":{"cvssMetricV31":[{"source":"cve@jetbrains.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N","baseScore":4.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":1.4}]},"weaknesses":[{"source":"cve@jetbrains.com","type":"Primary","description":[{"lang":"en","value":"CWE-863"}]}],"references":[{"url":"https://www.jetbrains.com/privacy-security/issues-fixed/","source":"cve@jetbrains.com"}]}},{"cve":{"id":"CVE-2026-49370","sourceIdentifier":"cve@jetbrains.com","published":"2026-05-29T19:16:26.793","lastModified":"2026-05-29T20:11:15.977","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In JetBrains YouTrack before 2026.1.13162 information disclosure was possible on fetchApp requests"}],"metrics":{"cvssMetricV31":[{"source":"cve@jetbrains.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:N/A:N","baseScore":3.4,"baseSeverity":"LOW","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"HIGH","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":1.7,"impactScore":1.4}]},"weaknesses":[{"source":"cve@jetbrains.com","type":"Primary","description":[{"lang":"en","value":"CWE-201"}]}],"references":[{"url":"https://www.jetbrains.com/privacy-security/issues-fixed/","source":"cve@jetbrains.com"}]}},{"cve":{"id":"CVE-2026-49371","sourceIdentifier":"cve@jetbrains.com","published":"2026-05-29T19:16:26.913","lastModified":"2026-05-29T20:11:15.977","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In JetBrains TeamCity before 2026.1.1 reflected XSS in the keyword filter was possible"}],"metrics":{"cvssMetricV31":[{"source":"cve@jetbrains.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:L/A:N","baseScore":7.1,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":4.2}]},"weaknesses":[{"source":"cve@jetbrains.com","type":"Primary","description":[{"lang":"en","value":"CWE-79"}]}],"references":[{"url":"https://www.jetbrains.com/privacy-security/issues-fixed/","source":"cve@jetbrains.com"}]}},{"cve":{"id":"CVE-2026-49372","sourceIdentifier":"cve@jetbrains.com","published":"2026-05-29T19:16:27.030","lastModified":"2026-05-29T20:11:15.977","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In JetBrains TeamCity before 2026.1,\n2025.11.5 unauthenticated SSRF via build status was possible"}],"metrics":{"cvssMetricV31":[{"source":"cve@jetbrains.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":3.6}]},"weaknesses":[{"source":"cve@jetbrains.com","type":"Primary","description":[{"lang":"en","value":"CWE-918"}]}],"references":[{"url":"https://www.jetbrains.com/privacy-security/issues-fixed/","source":"cve@jetbrains.com"}]}},{"cve":{"id":"CVE-2026-49373","sourceIdentifier":"cve@jetbrains.com","published":"2026-05-29T19:16:27.163","lastModified":"2026-05-29T20:11:15.977","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In JetBrains TeamCity before 2026.1 remote code execution was possible via Perforce connection settings"}],"metrics":{"cvssMetricV31":[{"source":"cve@jetbrains.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:N","baseScore":7.1,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":4.2}]},"weaknesses":[{"source":"cve@jetbrains.com","type":"Primary","description":[{"lang":"en","value":"CWE-88"}]}],"references":[{"url":"https://www.jetbrains.com/privacy-security/issues-fixed/","source":"cve@jetbrains.com"}]}},{"cve":{"id":"CVE-2026-49374","sourceIdentifier":"cve@jetbrains.com","published":"2026-05-29T19:16:27.310","lastModified":"2026-05-29T20:11:15.977","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In JetBrains TeamCity before 2026.1 improper permission checks exposed build configuration parameters"}],"metrics":{"cvssMetricV31":[{"source":"cve@jetbrains.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:L","baseScore":7.6,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"LOW","availabilityImpact":"LOW"},"exploitabilityScore":2.8,"impactScore":4.7}]},"weaknesses":[{"source":"cve@jetbrains.com","type":"Primary","description":[{"lang":"en","value":"CWE-862"}]}],"references":[{"url":"https://www.jetbrains.com/privacy-security/issues-fixed/","source":"cve@jetbrains.com"}]}},{"cve":{"id":"CVE-2026-49375","sourceIdentifier":"cve@jetbrains.com","published":"2026-05-29T19:16:27.423","lastModified":"2026-05-29T20:11:15.977","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In JetBrains TeamCity before 2026.1, \n2025.11.5 reflected XSS was possible on the repository download page"}],"metrics":{"cvssMetricV31":[{"source":"cve@jetbrains.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N","baseScore":6.1,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":2.7}]},"weaknesses":[{"source":"cve@jetbrains.com","type":"Primary","description":[{"lang":"en","value":"CWE-79"}]}],"references":[{"url":"https://www.jetbrains.com/privacy-security/issues-fixed/","source":"cve@jetbrains.com"}]}},{"cve":{"id":"CVE-2026-49376","sourceIdentifier":"cve@jetbrains.com","published":"2026-05-29T19:16:27.537","lastModified":"2026-05-29T20:11:15.977","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In JetBrains TeamCity before 2026.1 insufficient username validation in the SAML plugin"}],"metrics":{"cvssMetricV31":[{"source":"cve@jetbrains.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":2.5}]},"weaknesses":[{"source":"cve@jetbrains.com","type":"Primary","description":[{"lang":"en","value":"CWE-863"}]}],"references":[{"url":"https://www.jetbrains.com/privacy-security/issues-fixed/","source":"cve@jetbrains.com"}]}},{"cve":{"id":"CVE-2026-49377","sourceIdentifier":"cve@jetbrains.com","published":"2026-05-29T19:16:27.650","lastModified":"2026-05-29T20:11:15.977","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In JetBrains TeamCity before 2025.11.2 exposure of sensitive data via default agent parameters"}],"metrics":{"cvssMetricV31":[{"source":"cve@jetbrains.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N","baseScore":4.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":1.4}]},"weaknesses":[{"source":"cve@jetbrains.com","type":"Primary","description":[{"lang":"en","value":"CWE-526"}]}],"references":[{"url":"https://www.jetbrains.com/privacy-security/issues-fixed/","source":"cve@jetbrains.com"}]}},{"cve":{"id":"CVE-2026-49378","sourceIdentifier":"cve@jetbrains.com","published":"2026-05-29T19:16:27.760","lastModified":"2026-05-29T20:11:15.977","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In JetBrains TeamCity before 2026.1 credentials parameters were exposed via parameter autocompletion"}],"metrics":{"cvssMetricV31":[{"source":"cve@jetbrains.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N","baseScore":4.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":1.4}]},"weaknesses":[{"source":"cve@jetbrains.com","type":"Primary","description":[{"lang":"en","value":"CWE-862"}]}],"references":[{"url":"https://www.jetbrains.com/privacy-security/issues-fixed/","source":"cve@jetbrains.com"}]}},{"cve":{"id":"CVE-2026-49379","sourceIdentifier":"cve@jetbrains.com","published":"2026-05-29T19:16:27.880","lastModified":"2026-05-29T20:11:15.977","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In JetBrains TeamCity before 2026.1 credentials could be exposed in thread names"}],"metrics":{"cvssMetricV31":[{"source":"cve@jetbrains.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":3.6}]},"weaknesses":[{"source":"cve@jetbrains.com","type":"Primary","description":[{"lang":"en","value":"CWE-522"}]}],"references":[{"url":"https://www.jetbrains.com/privacy-security/issues-fixed/","source":"cve@jetbrains.com"}]}},{"cve":{"id":"CVE-2026-49380","sourceIdentifier":"cve@jetbrains.com","published":"2026-05-29T19:16:27.990","lastModified":"2026-05-29T20:11:15.977","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In JetBrains TeamCity before 2026.1 open redirect in the SAML plugin was possible"}],"metrics":{"cvssMetricV31":[{"source":"cve@jetbrains.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:N","baseScore":3.1,"baseSeverity":"LOW","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":1.6,"impactScore":1.4}]},"weaknesses":[{"source":"cve@jetbrains.com","type":"Primary","description":[{"lang":"en","value":"CWE-601"}]}],"references":[{"url":"https://www.jetbrains.com/privacy-security/issues-fixed/","source":"cve@jetbrains.com"}]}},{"cve":{"id":"CVE-2026-49381","sourceIdentifier":"cve@jetbrains.com","published":"2026-05-29T19:16:28.110","lastModified":"2026-05-29T20:11:15.977","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In JetBrains TeamCity before 2026.1 stored XSS on the SAML login page was possible"}],"metrics":{"cvssMetricV31":[{"source":"cve@jetbrains.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:N/A:N","baseScore":3.4,"baseSeverity":"LOW","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"HIGH","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":1.7,"impactScore":1.4}]},"weaknesses":[{"source":"cve@jetbrains.com","type":"Primary","description":[{"lang":"en","value":"CWE-79"}]}],"references":[{"url":"https://www.jetbrains.com/privacy-security/issues-fixed/","source":"cve@jetbrains.com"}]}},{"cve":{"id":"CVE-2026-49382","sourceIdentifier":"cve@jetbrains.com","published":"2026-05-29T19:16:28.223","lastModified":"2026-05-29T20:11:15.977","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In JetBrains IntelliJ IDEA before 2026.1 code execution was possible via template injection in the Copyright plugin"}],"metrics":{"cvssMetricV31":[{"source":"cve@jetbrains.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L","baseScore":4.5,"baseSeverity":"MEDIUM","attackVector":"LOCAL","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"LOW"},"exploitabilityScore":1.0,"impactScore":3.4}]},"weaknesses":[{"source":"cve@jetbrains.com","type":"Primary","description":[{"lang":"en","value":"CWE-1336"}]}],"references":[{"url":"https://www.jetbrains.com/privacy-security/issues-fixed/","source":"cve@jetbrains.com"}]}},{"cve":{"id":"CVE-2026-49383","sourceIdentifier":"cve@jetbrains.com","published":"2026-05-29T19:16:28.340","lastModified":"2026-05-29T20:11:15.977","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In JetBrains IntelliJ IDEA before 2026.1 xXE in the UI Designer form parser was possible"}],"metrics":{"cvssMetricV31":[{"source":"cve@jetbrains.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N","baseScore":3.3,"baseSeverity":"LOW","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":1.8,"impactScore":1.4}]},"weaknesses":[{"source":"cve@jetbrains.com","type":"Primary","description":[{"lang":"en","value":"CWE-611"}]}],"references":[{"url":"https://www.jetbrains.com/privacy-security/issues-fixed/","source":"cve@jetbrains.com"}]}},{"cve":{"id":"CVE-2026-49384","sourceIdentifier":"cve@jetbrains.com","published":"2026-05-29T19:16:28.453","lastModified":"2026-05-29T20:11:15.977","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In JetBrains PyCharm before 2025.3.4 stored XSS in Jupyter notebook Markdown cells was possible"}],"metrics":{"cvssMetricV31":[{"source":"cve@jetbrains.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N","baseScore":6.1,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":2.7}]},"weaknesses":[{"source":"cve@jetbrains.com","type":"Primary","description":[{"lang":"en","value":"CWE-79"}]}],"references":[{"url":"https://www.jetbrains.com/privacy-security/issues-fixed/","source":"cve@jetbrains.com"}]}},{"cve":{"id":"CVE-2026-49385","sourceIdentifier":"cve@jetbrains.com","published":"2026-05-29T19:16:28.567","lastModified":"2026-05-29T20:11:15.977","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In JetBrains YouTrack before 2026.1.13570 improper access control allowed low-privileged users to modify service accounts"}],"metrics":{"cvssMetricV31":[{"source":"cve@jetbrains.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"HIGH","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":3.6}]},"weaknesses":[{"source":"cve@jetbrains.com","type":"Primary","description":[{"lang":"en","value":"CWE-862"}]}],"references":[{"url":"https://www.jetbrains.com/privacy-security/issues-fixed/","source":"cve@jetbrains.com"}]}},{"cve":{"id":"CVE-2026-49386","sourceIdentifier":"cve@jetbrains.com","published":"2026-05-29T19:16:28.683","lastModified":"2026-05-29T20:11:15.977","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In JetBrains YouTrack before 2026.1.13570 improper access control allowed enumeration of restricted issues and articles on Planning Canvas"}],"metrics":{"cvssMetricV31":[{"source":"cve@jetbrains.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":3.6}]},"weaknesses":[{"source":"cve@jetbrains.com","type":"Primary","description":[{"lang":"en","value":"CWE-639"}]}],"references":[{"url":"https://www.jetbrains.com/privacy-security/issues-fixed/","source":"cve@jetbrains.com"}]}},{"cve":{"id":"CVE-2026-9051","sourceIdentifier":"security@ni.com","published":"2026-05-29T19:16:28.800","lastModified":"2026-05-29T19:16:28.800","vulnStatus":"Received","cveTags":[],"descriptions":[{"lang":"en","value":"There is an authentication bypass vulnerability in the NI SystemLink Enterprise Dashboard application that may allow an unauthenticated remote attacker to bypass authentication controls leading to privilege escalation or information disclosure.  Successful exploitation requires an attacker to send a specially crafted HTTP request.  This vulnerability affects NI SystemLink Enterprise 2026-04 and prior versions."}],"metrics":{"cvssMetricV40":[{"source":"security@ni.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":9.3,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"HIGH","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"security@ni.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N","baseScore":9.1,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":5.2}]},"weaknesses":[{"source":"security@ni.com","type":"Secondary","description":[{"lang":"en","value":"CWE-306"}]}],"references":[{"url":"https://www.ni.com/en/support/security/available-critical-and-security-updates-for-ni-software/2026/authentication-bypass-vulnerability-in-ni-systemlink-enterprise.html","source":"security@ni.com"}]}},{"cve":{"id":"CVE-2026-34127","sourceIdentifier":"f23511db-6c3e-4e32-a477-6aa17d310630","published":"2026-05-29T20:16:22.607","lastModified":"2026-05-29T20:25:18.070","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"A stored\ncross-site scripting (XSS) vulnerability has been identified in the web\nmanagement interface of TP-Link's TL-SG108PE v5 switch due to improper sanitation of the SYSNAM\nconfiguration parameter during configuration file import. An attacker with\nadministrator access can inject malicious script into the device configuration,\nwhich may be stored and executed in the administrator’s browser when the\naffected interface is viewed.    \n\n\n\n\n\nSuccessful\nexploitation may allow session cookie theft, unauthorized configuration\nchanges, or access to sensitive information exposed through the management\ninterface."}],"metrics":{"cvssMetricV40":[{"source":"f23511db-6c3e-4e32-a477-6aa17d310630","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:A/AC:L/AT:N/PR:H/UI:P/VC:H/VI:L/VA:H/SC:L/SI:N/SA:L/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":5.3,"baseSeverity":"MEDIUM","attackVector":"ADJACENT","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"HIGH","userInteraction":"PASSIVE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"LOW","vulnAvailabilityImpact":"HIGH","subConfidentialityImpact":"LOW","subIntegrityImpact":"NONE","subAvailabilityImpact":"LOW","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}]},"weaknesses":[{"source":"f23511db-6c3e-4e32-a477-6aa17d310630","type":"Secondary","description":[{"lang":"en","value":"CWE-79"}]}],"references":[{"url":"https://www.tp-link.com/en/support/download/tl-sg108pe/v5/#Firmware","source":"f23511db-6c3e-4e32-a477-6aa17d310630"},{"url":"https://www.tp-link.com/us/support/download/tl-sg108pe/v5/#Firmware","source":"f23511db-6c3e-4e32-a477-6aa17d310630"},{"url":"https://www.tp-link.com/us/support/faq/5110/","source":"f23511db-6c3e-4e32-a477-6aa17d310630"}]}},{"cve":{"id":"CVE-2026-42500","sourceIdentifier":"security@golang.org","published":"2026-05-29T20:16:23.627","lastModified":"2026-05-29T20:16:23.627","vulnStatus":"Received","cveTags":[],"descriptions":[{"lang":"en","value":"Decoding a paletted BMP file with an out-of-range palette index results in a panic when accessing pixels in the invalid image."}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L","baseScore":5.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"LOW"},"exploitabilityScore":3.9,"impactScore":1.4}]},"references":[{"url":"https://go.dev/cl/781500","source":"security@golang.org"},{"url":"https://go.dev/issue/79576","source":"security@golang.org"},{"url":"https://groups.google.com/g/golang-announce/c/uhYX90BlBvI","source":"security@golang.org"},{"url":"https://pkg.go.dev/vuln/GO-2026-5031","source":"security@golang.org"}]}},{"cve":{"id":"CVE-2026-44285","sourceIdentifier":"security-advisories@github.com","published":"2026-05-29T20:16:24.103","lastModified":"2026-05-29T20:23:16.083","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"FastGPT is an AI Agent building platform. Prior to 4.15.0-beta1, a Server-Side Request Forgery (SSRF) vulnerability allows an authenticated attacker to bypass the global isInternalAddress network protection and make arbitrary HTTP GET requests to internal network services. This is achieved by exploiting an incomplete fix in the dataset preview endpoint /api/core/dataset/file/getPreviewChunks when utilizing the externalFile data import type. This vulnerability is fixed in 4.15.0-beta1."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N","baseScore":7.7,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":3.1,"impactScore":4.0}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-918"}]}],"references":[{"url":"https://github.com/labring/FastGPT/security/advisories/GHSA-c65v-7vx6-f8m3","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2026-44287","sourceIdentifier":"security-advisories@github.com","published":"2026-05-29T20:16:24.243","lastModified":"2026-05-29T20:23:16.083","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"FastGPT is an AI Agent building platform. Prior to 4.15.0-beta1, the JavaScript sandbox worker at projects/code-sandbox/src/pool/worker.ts:356 blocks dynamic import() with the regex /\\bimport\\s*\\(/.test(code). JavaScript syntax accepts a block comment between import and (; the regex matches only ASCII whitespace, and the bytes /, *, *, / are not in the \\s character class. The payload import/**/(\"child_process\") parses as a syntactically valid dynamic import that the regex does not detect. Because import() is not wrapped by the safeRequire Proxy (which only proxies require), the attacker loads child_process and calls execSync - arbitrary command execution as uid=100(sandbox) inside the sandbox container. This vulnerability is fixed in 4.15.0-beta1."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L","baseScore":6.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"LOW"},"exploitabilityScore":2.8,"impactScore":3.4}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-94"},{"lang":"en","value":"CWE-184"}]}],"references":[{"url":"https://github.com/labring/FastGPT/security/advisories/GHSA-f5mq-qxm4-5mvc","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2026-44420","sourceIdentifier":"security-advisories@github.com","published":"2026-05-29T20:16:24.383","lastModified":"2026-05-29T20:22:37.383","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.26.0, a malicious RDP client can trigger a heap-buffer-overflow write in FreeRDP's server-side clipboard (cliprdr) channel by sending a CB_CLIP_CAPS PDU with a too-small capabilitySetLength. This can crash the server process (remote DoS) and may be exploitable for code execution because it corrupts heap memory. This vulnerability is fixed in 3.26.0."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":5.9}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-122"}]}],"references":[{"url":"https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-mvpx-xj7r-3p3r","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2026-44421","sourceIdentifier":"security-advisories@github.com","published":"2026-05-29T20:16:24.513","lastModified":"2026-05-29T20:22:37.383","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.26.0, a malicious RDP server can trigger a heap-buffer-overflow write in the FreeRDP client by sending crafted RDPGFX PDUs. The bug is in gdi_CacheToSurface: it validates a destination rectangle that is clamped to UINT16_MAX, but then performs the copy using the original cacheEntry->width/height. This can cause a large out-of-bounds heap write and may lead to client crashes or code execution. This bug is reachable from a malicious RDP server, but only when the client has RDPGFX enabled. This vulnerability is fixed in 3.26.0."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":5.9}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-122"}]}],"references":[{"url":"https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-p6r2-4hgm-m6ff","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2026-44422","sourceIdentifier":"security-advisories@github.com","published":"2026-05-29T20:16:24.660","lastModified":"2026-05-29T20:22:37.383","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.26.0, FreeRDP's RDPEAR NDR parser accepts one non-null NDR pointer ref-id for multiple logical pointer fields without tracking the pointed object's expected NDR type or ownership. When the same ref-id is reused across two pointer fields, the parser assigns the same heap object to both output fields. The generic destructor later walks each field independently and destroys/frees both pointers. This causes a malicious-server-triggerable heap use-after-free / double-free in the FreeRDP client's RDPEAR authentication-redirection path. This vulnerability is fixed in 3.26.0."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.6,"impactScore":5.9}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-415"},{"lang":"en","value":"CWE-416"}]}],"references":[{"url":"https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-j9q5-7g8m-jc9v","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2026-44640","sourceIdentifier":"security-advisories@github.com","published":"2026-05-29T20:16:24.983","lastModified":"2026-05-29T22:16:23.613","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"NanoMQ MQTT Broker (NanoMQ) is an all-around Edge Messaging Platform. Prior to 0.24.14, aio->prov_data is stored as nni_quic_conn* during dialing, but read as ex_quic_conn* during dialer close. This type confusion causes invalid object interpretation and leads to close-path hang/crash behavior. This vulnerability is fixed in 0.24.14."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L","baseScore":4.5,"baseSeverity":"MEDIUM","attackVector":"LOCAL","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"LOW"},"exploitabilityScore":1.0,"impactScore":3.4}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Secondary","description":[{"lang":"en","value":"CWE-843"}]}],"references":[{"url":"https://github.com/nanomq/nanomq/releases/tag/0.24.14","source":"security-advisories@github.com"},{"url":"https://github.com/nanomq/nanomq/security/advisories/GHSA-9fgw-v323-jmjj","source":"security-advisories@github.com"},{"url":"https://github.com/nanomq/nanomq/security/advisories/GHSA-9fgw-v323-jmjj","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0"}]}},{"cve":{"id":"CVE-2026-45149","sourceIdentifier":"security-advisories@github.com","published":"2026-05-29T20:16:25.550","lastModified":"2026-05-29T20:16:25.550","vulnStatus":"Received","cveTags":[],"descriptions":[{"lang":"en","value":"The brace-expansion library generates arbitrary strings containing a common prefix and suffix. From 5.0.0 to before 5.0.6, the max option was being applied too late. When expanding a single large numeric range like {1..10000000}, the sequence generation loop generates all 10 million intermediate elements before the max limit is applied With max=10, the output is correctly limited to 10 items, but the process still allocates ~505 MB and spends ~800ms building the full intermediate array. This vulnerability is fixed in 5.0.6."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":3.6}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-400"}]}],"references":[{"url":"https://github.com/juliangruber/brace-expansion/security/advisories/GHSA-jxxr-4gwj-5jf2","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2026-45151","sourceIdentifier":"security-advisories@github.com","published":"2026-05-29T20:16:25.700","lastModified":"2026-05-29T20:21:38.773","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"NanoMQ MQTT Broker (NanoMQ) is an all-around Edge Messaging Platform. In 0.24.8 and earlier, quic_stream_recv can dereference a null substream pointer when a substream is in reopen state. The code finishes the AIO with error but does not return before locking c->mtx."}],"metrics":{"cvssMetricV40":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":2.9,"baseSeverity":"LOW","attackVector":"NETWORK","attackComplexity":"HIGH","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"NONE","vulnIntegrityImpact":"NONE","vulnAvailabilityImpact":"LOW","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"PROOF_OF_CONCEPT","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-476"}]}],"references":[{"url":"https://github.com/nanomq/nanomq/security/advisories/GHSA-9qhf-wgp4-p7w5","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2026-45294","sourceIdentifier":"security-advisories@github.com","published":"2026-05-29T20:16:25.833","lastModified":"2026-05-29T20:21:38.773","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"FreeScout is a free help desk and shared inbox built with PHP's Laravel framework. Prior to 1.8.219, the password reset endpoint returns visually distinct responses depending on whether the submitted email address belongs to an existing user account, allowing unauthenticated attackers to enumerate valid helpdesk agent email addresses. This vulnerability is fixed in 1.8.219."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N","baseScore":5.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":1.4}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-203"},{"lang":"en","value":"CWE-204"}]}],"references":[{"url":"https://github.com/freescout-help-desk/freescout/security/advisories/GHSA-jvmv-2qcp-7855","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2026-45324","sourceIdentifier":"security-advisories@github.com","published":"2026-05-29T20:16:25.977","lastModified":"2026-05-29T20:21:38.773","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Rizin is a UNIX-like reverse engineering framework and command-line toolset. There is a double free in librz/core/cmd/cmd_search.c:byte_pattern_search() due wrong pointer ownership declared. This vulnerability is fixed by commit 045fff363b42b8a6dda8ad5229c29ec3267e7dbe."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:P/AC:H/PR:L/UI:R/S:C/C:N/I:L/A:L","baseScore":3.3,"baseSeverity":"LOW","attackVector":"PHYSICAL","attackComplexity":"HIGH","privilegesRequired":"LOW","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"NONE","integrityImpact":"LOW","availabilityImpact":"LOW"},"exploitabilityScore":0.3,"impactScore":2.7}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-415"}]}],"references":[{"url":"https://github.com/rizinorg/rizin/commit/045fff363b42b8a6dda8ad5229c29ec3267e7dbe","source":"security-advisories@github.com"},{"url":"https://github.com/rizinorg/rizin/security/advisories/GHSA-2377-chx7-xf7c","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2026-45352","sourceIdentifier":"security-advisories@github.com","published":"2026-05-29T20:16:26.140","lastModified":"2026-05-29T20:23:08.683","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"cpp-httplib is a C++11 single-file header-only cross platform HTTP/HTTPS library. Prior to 0.43.4, negative chunk-size in chunked Transfer-Encoding causes unbounded memory allocation and process crash. The ChunkedDecoder::read_payload function in cpp-httplib (httplib.h) parses the chunk-size field of HTTP chunked transfer encoding using std::strtoul(). Per the C standard (§7.22.1.4), strtoul silently accepts a leading minus sign, performing unsigned wrap-around: strtoul(\"-2\", …, 16) returns ULONG_MAX − 1 (0xFFFFFFFFFFFFFFFE). The library's only guard (line 12833) rejects ULONG_MAX (the result of \"-1\"), but any other negative value such as \"-2\" passes validation. The resulting near-maximum value is stored in chunk_remaining and controls how many bytes the server's read loop consumes from the network. This vulnerability is fixed in 0.43.4."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L","baseScore":5.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"LOW"},"exploitabilityScore":3.9,"impactScore":1.4}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-20"},{"lang":"en","value":"CWE-770"},{"lang":"en","value":"CWE-1285"}]}],"references":[{"url":"https://github.com/yhirose/cpp-httplib/security/advisories/GHSA-h6wq-j5mv-f3q8","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2026-45372","sourceIdentifier":"security-advisories@github.com","published":"2026-05-29T20:16:26.473","lastModified":"2026-05-29T20:23:08.683","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"cpp-httplib is a C++11 single-file header-only cross platform HTTP/HTTPS library. Prior to 0.44.0, when cpp-httplib's server parses an incoming request, it applies percent-decoding to every header value except Location and Referer. The validity check (is_field_value) is run before decoding, so encoded %0D%0A passes the check and is then expanded to a literal \\r\\n byte pair inside the stored header value. This vulnerability is fixed in 0.44.0."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:H/A:L","baseScore":9.9,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"HIGH","availabilityImpact":"LOW"},"exploitabilityScore":3.9,"impactScore":5.3}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-93"},{"lang":"en","value":"CWE-444"}]}],"references":[{"url":"https://github.com/yhirose/cpp-httplib/security/advisories/GHSA-xjxg-64p4-vj4m","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2026-45613","sourceIdentifier":"security-advisories@github.com","published":"2026-05-29T20:16:26.890","lastModified":"2026-05-29T20:21:38.773","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Rizin is a UNIX-like reverse engineering framework and command-line toolset. There is a heap-buffer-overflow in librz/bin/format/omf/omf.c. This vulnerability is fixed by commit e6d0937c8a083e23ed76ccfb9f631cdc50c7af47."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N","baseScore":3.3,"baseSeverity":"LOW","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":1.8,"impactScore":1.4}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-125"}]}],"references":[{"url":"https://github.com/rizinorg/rizin/commit/e6d0937c8a083e23ed76ccfb9f631cdc50c7af47","source":"security-advisories@github.com"},{"url":"https://github.com/rizinorg/rizin/security/advisories/GHSA-wprr-wrcw-mw6v","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2026-45697","sourceIdentifier":"security-advisories@github.com","published":"2026-05-29T20:16:27.393","lastModified":"2026-05-29T20:21:38.773","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Formie is a Craft CMS plugin for creating forms. Prior to 2.2.20 and 3.1.24, unauthenticated users could submit crafted values into Hidden fields (with Default value → Custom) that were evaluated as Twig during submission handling, which could lead to serious compromise of the Craft site (depending on template/sandbox behavior). This vulnerability is fixed in 2.2.20 and 3.1.24."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":9.8,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":5.9}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-94"},{"lang":"en","value":"CWE-693"},{"lang":"en","value":"CWE-1336"}]}],"references":[{"url":"https://github.com/verbb/formie/commit/f690d5623163ce2a95da305238d6367575486ee3","source":"security-advisories@github.com"},{"url":"https://github.com/verbb/formie/releases/tag/2.2.20","source":"security-advisories@github.com"},{"url":"https://github.com/verbb/formie/releases/tag/3.1.24","source":"security-advisories@github.com"},{"url":"https://github.com/verbb/formie/security/advisories/GHSA-x7m9-mwc2-g6w2","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2026-45700","sourceIdentifier":"security-advisories@github.com","published":"2026-05-29T20:16:27.533","lastModified":"2026-05-29T20:22:37.383","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.26.0, FreeRDP's planar bitmap decoder has an out-of-bounds heap write when decoding RLE planar data. In libfreerdp/codec/planar.c, freerdp_bitmap_decompress_planar() validates the X destination coordinate nXDst against the caller-provided destination stride (nDstStep) even when it is writing into the internal temp buffer pTempData. An attacker can bypass the check with a large nDstStep and a large nXDst, causing planar_decompress_plane_rle() to write past the end of pTempData. This vulnerability is fixed in 3.26.0."}],"metrics":{"cvssMetricV40":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":7.7,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"PRESENT","privilegesRequired":"NONE","userInteraction":"PASSIVE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"HIGH","vulnAvailabilityImpact":"HIGH","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-787"}]}],"references":[{"url":"https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-mpxh-8fq3-x8mh","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2026-46384","sourceIdentifier":"security-advisories@github.com","published":"2026-05-29T20:16:27.847","lastModified":"2026-05-29T20:21:38.773","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"iskorotkov/avro is a fast Go Avro codec. Prior to 2.33.0, several Avro decoder paths read attacker-controlled 64-bit values from the wire format and either narrowed them to platform-sized int before bounds-checking, or summed them with overflow-prone signed-int arithmetic. On 32-bit targets (GOARCH=386, arm, mips, wasm, etc.), the truncation paths can silently bypass byte-slice limits, select the wrong union branch, or hit the OCF negative-make panic via wrap. Three sub-issues are not 32-bit-specific: cumulative-size arithmetic overflow in arrayDecoder.Decode / mapDecoder.Decode / mapDecoderUnmarshaler.Decode (wraps at math.MaxInt64 on amd64 / arm64 and bypasses MaxSliceAllocSize / MaxMapAllocSize), math.MinInt negation in block-header handling, and make([]byte, size) with a negative size in OCF block reads — all three panic or bypass caps on any platform, giving an attacker a denial-of-service primitive there. This vulnerability is fixed in 2.33.0."}],"metrics":{"cvssMetricV40":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":8.7,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"NONE","vulnIntegrityImpact":"NONE","vulnAvailabilityImpact":"HIGH","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-190"}]}],"references":[{"url":"https://github.com/iskorotkov/avro/security/advisories/GHSA-mc57-h6j3-3hmv","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2026-46385","sourceIdentifier":"security-advisories@github.com","published":"2026-05-29T20:16:27.990","lastModified":"2026-05-29T20:21:38.773","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"iskorotkov/avro is a fast Go Avro codec. Prior to 2.33.0, the Avro array and map decoders looped over an attacker-controlled block-count value without checking the underlying reader's error state inside the loop body. Reader.ReadBlockHeader returns the count as a Go int, which is 64-bit on amd64 / arm64 targets — so a producer can declare a block of up to math.MaxInt64 (~9.2 × 10¹⁸) elements followed by EOF (or any truncated payload), and the decoder will attempt that many no-op iterations before propagating the error. The realistic ceiling is \"indefinite until the worker is killed externally\" — a single hostile payload pins a CPU core until the process is OOM-killed, deadline-cancelled, or terminated. Remote, unauthenticated denial-of-service. This vulnerability is fixed in 2.33.0."}],"metrics":{"cvssMetricV40":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":8.7,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"NONE","vulnIntegrityImpact":"NONE","vulnAvailabilityImpact":"HIGH","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-400"}]}],"references":[{"url":"https://github.com/iskorotkov/avro/security/advisories/GHSA-w8j3-pq8g-8m7w","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2026-46527","sourceIdentifier":"security-advisories@github.com","published":"2026-05-29T20:16:28.137","lastModified":"2026-05-29T20:23:08.683","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"cpp-httplib is a C++11 single-file header-only cross platform HTTP/HTTPS library. Prior to 0.44.0, When the server has called Server::set_trusted_proxies() with a non-empty trusted-proxy list, an attacker can send an HTTP request that includes an X-Forwarded-For header whose value parses to no valid IP segments. The code path then executes get_client_ip(), which calls front() on an empty std::vector—undefined behavior in C++. On typical implementations this manifests as abnormal process termination (denial of service). With Sanitizers enabled, you get an explicit runtime diagnostic. This vulnerability is fixed in 0.44.0."}],"metrics":{"cvssMetricV40":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":8.7,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"NONE","vulnIntegrityImpact":"NONE","vulnAvailabilityImpact":"HIGH","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-476"}]}],"references":[{"url":"https://github.com/yhirose/cpp-httplib/security/advisories/GHSA-hg3g-vrg8-578g","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2026-46599","sourceIdentifier":"security@golang.org","published":"2026-05-29T20:16:28.280","lastModified":"2026-05-29T20:16:28.280","vulnStatus":"Received","cveTags":[],"descriptions":[{"lang":"en","value":"The TIFF decoder does not place a limit on the size of PackBits-compressed data. A maliciously-crafted image can exploit this to cause a small image (both in terms of pixel width/height and encoded size) to make the decoder decode large amounts of compressed data."}],"metrics":{},"references":[{"url":"https://go.dev/cl/759960","source":"security@golang.org"},{"url":"https://go.dev/issue/79577","source":"security@golang.org"},{"url":"https://groups.google.com/g/golang-announce/c/uhYX90BlBvI","source":"security@golang.org"},{"url":"https://pkg.go.dev/vuln/GO-2026-5032","source":"security@golang.org"}]}},{"cve":{"id":"CVE-2026-47123","sourceIdentifier":"security-advisories@github.com","published":"2026-05-29T20:16:28.380","lastModified":"2026-05-29T20:21:38.773","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"FreeScout is a free help desk and shared inbox built with PHP's Laravel framework. Prior to 1.8.220, the email processing pipeline in FreeScout's FetchEmails command has two code paths for identifying agent (user) replies based on In-Reply-To / References headers. The notification reply path (notify-{thread_id}-{user_id}-...) extracts thread_id and user_id directly from the Message-ID without HMAC verification. An external attacker who can spoof the From address of a helpdesk agent can inject messages that FreeScout processes as legitimate agent replies — which are then automatically forwarded to customers via the legitimate SMTP server. This vulnerability is fixed in 1.8.220."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:L/I:H/A:N","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"HIGH","availabilityImpact":"NONE"},"exploitabilityScore":2.2,"impactScore":4.7}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-290"},{"lang":"en","value":"CWE-345"}]}],"references":[{"url":"https://github.com/freescout-help-desk/freescout/commit/d902f19038213c6a376947d269b00440908e88a0","source":"security-advisories@github.com"},{"url":"https://github.com/freescout-help-desk/freescout/security/advisories/GHSA-6r38-6mcf-2ww3","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2026-47266","sourceIdentifier":"security-advisories@github.com","published":"2026-05-29T20:16:28.520","lastModified":"2026-05-29T20:21:38.773","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Formie is a Craft CMS plugin for creating forms. Prior to 2.2.21 and 3.1.26, unauthenticated users could modify existing submissions by posting a known or guessed submission ID to formie/submissions/save-submission. This vulnerability is fixed in 2.2.21 and 3.1.26."}],"metrics":{"cvssMetricV40":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":8.7,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"NONE","vulnIntegrityImpact":"HIGH","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-639"}]}],"references":[{"url":"https://github.com/verbb/formie/releases/tag/2.2.21","source":"security-advisories@github.com"},{"url":"https://github.com/verbb/formie/releases/tag/3.1.26","source":"security-advisories@github.com"},{"url":"https://github.com/verbb/formie/security/advisories/GHSA-pgxq-p76c-x9cg","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2026-48555","sourceIdentifier":"disclosure@vulncheck.com","published":"2026-05-29T20:16:28.817","lastModified":"2026-05-29T20:21:38.773","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Spatie Laravel Media Library before version 11.23.0 contains a server-side request forgery vulnerability that allows remote attackers to cause the server to issue arbitrary outbound HTTP requests by passing user-controlled URLs to the addMediaFromUrl() method in InteractsWithMedia.php."}],"metrics":{"cvssMetricV40":[{"source":"disclosure@vulncheck.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:N/SC:L/SI:L/SA:L/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":5.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"LOW","userInteraction":"NONE","vulnConfidentialityImpact":"NONE","vulnIntegrityImpact":"LOW","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"LOW","subIntegrityImpact":"LOW","subAvailabilityImpact":"LOW","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"disclosure@vulncheck.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:L","baseScore":7.4,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"LOW"},"exploitabilityScore":3.1,"impactScore":3.7}]},"weaknesses":[{"source":"disclosure@vulncheck.com","type":"Primary","description":[{"lang":"en","value":"CWE-918"}]}],"references":[{"url":"https://github.com/spatie/laravel-medialibrary/commit/608ea03703d3887c46434f5dda6af56de6346aba","source":"disclosure@vulncheck.com"},{"url":"https://github.com/spatie/laravel-medialibrary/pull/3939","source":"disclosure@vulncheck.com"},{"url":"https://github.com/spatie/laravel-medialibrary/releases/tag/11.23.0","source":"disclosure@vulncheck.com"},{"url":"https://www.vulncheck.com/advisories/spatie-laravel-media-library-ssrf-via-addmediafromurl","source":"disclosure@vulncheck.com"}]}},{"cve":{"id":"CVE-2026-48557","sourceIdentifier":"disclosure@vulncheck.com","published":"2026-05-29T20:16:28.957","lastModified":"2026-05-29T20:21:38.773","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Spatie Laravel Media Library before version 11.23.0 contains a file upload restriction bypass in FileAdder::defaultSanitizer(). The sanitizer checks only the final filename suffix, allowing double-extension filenames such as shell.php.jpg to bypass the blocklist, with pathinfo() preserving inner .php stems in saved filenames. The blocklist also omits executable extensions including .php6, .shtml, and .htaccess. The double-extension bypass requires a legacy Apache AddHandler configuration to achieve PHP execution; the incomplete blocklist bypass does not."}],"metrics":{"cvssMetricV40":[{"source":"disclosure@vulncheck.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":8.7,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"LOW","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"HIGH","vulnAvailabilityImpact":"HIGH","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"disclosure@vulncheck.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":5.9}]},"weaknesses":[{"source":"disclosure@vulncheck.com","type":"Primary","description":[{"lang":"en","value":"CWE-184"}]}],"references":[{"url":"https://github.com/spatie/laravel-medialibrary/commit/608ea03703d3887c46434f5dda6af56de6346aba","source":"disclosure@vulncheck.com"},{"url":"https://github.com/spatie/laravel-medialibrary/pull/3939","source":"disclosure@vulncheck.com"},{"url":"https://github.com/spatie/laravel-medialibrary/releases/tag/11.23.0","source":"disclosure@vulncheck.com"},{"url":"https://www.vulncheck.com/advisories/spatie-laravel-media-library-file-upload-restriction-bypass-via-fileadder-php","source":"disclosure@vulncheck.com"}]}},{"cve":{"id":"CVE-2026-48810","sourceIdentifier":"security-advisories@github.com","published":"2026-05-29T20:16:29.083","lastModified":"2026-05-29T20:21:38.773","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"FreeScout is a free help desk and shared inbox built with PHP's Laravel framework. Prior to 1.8.221, while investigating the ThreadPolicy::delete issue reported previously, the same missing mailbox membership check was found in the sibling ThreadPolicy::edit method. A user with the PERM_EDIT_CONVERSATIONS permission who created a message or internal note in Mailbox A can rewrite that thread's body after an administrator removes them from Mailbox A, because the policy checks only authorship and a global permission flag — not current mailbox membership. This vulnerability is fixed in 1.8.221."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N","baseScore":4.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":1.4}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-285"}]}],"references":[{"url":"https://github.com/freescout-help-desk/freescout/security/advisories/GHSA-3w38-h42v-3h6w","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2026-48811","sourceIdentifier":"security-advisories@github.com","published":"2026-05-29T20:16:29.233","lastModified":"2026-05-29T20:21:38.773","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"FreeScout is a free help desk and shared inbox built with PHP's Laravel framework. Prior to 1.8.221, FreeScout allows a non-admin user to permanently delete an internal note (private thread) from any conversation, even after that user's access to the mailbox containing the conversation has been revoked. The ThreadPolicy::delete authorization policy does not verify mailbox membership, so a former team member retains destructive write access to notes they created. This vulnerability is fixed in 1.8.221."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N","baseScore":4.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":1.4}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-862"}]}],"references":[{"url":"https://github.com/freescout-help-desk/freescout/security/advisories/GHSA-9vx8-gx3p-9mh6","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2026-4387","sourceIdentifier":"ebf2cdfb-f390-4894-8ec9-f81bf1c57e6b","published":"2026-05-29T20:16:30.650","lastModified":"2026-05-29T20:16:30.650","vulnStatus":"Received","cveTags":[],"descriptions":[{"lang":"en","value":"StrongDM Desktop Application before 23.74.0 (Desktop Client before 53.77.0) on Microsoft Windows stores authentication state, including a JSON Web Token and asymmetric key material, in cleartext in a per-user state file located at C:\\Users\\<username>\\.sdm\\state.kv. The file is protected only by default user-level NTFS permissions.\n\n\n\nExploitation requires local read access to the affected user's profile directory and additional deployment and execution conditions on the target host.\n\n\n\nThe condition was reported through coordinated disclosure by Hope Walker (SpecterOps)."}],"metrics":{"cvssMetricV40":[{"source":"ebf2cdfb-f390-4894-8ec9-f81bf1c57e6b","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:L/VI:N/VA:N/SC:L/SI:L/SA:L/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":2.0,"baseSeverity":"LOW","attackVector":"LOCAL","attackComplexity":"LOW","attackRequirements":"PRESENT","privilegesRequired":"LOW","userInteraction":"NONE","vulnConfidentialityImpact":"LOW","vulnIntegrityImpact":"NONE","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"LOW","subIntegrityImpact":"LOW","subAvailabilityImpact":"LOW","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}]},"weaknesses":[{"source":"ebf2cdfb-f390-4894-8ec9-f81bf1c57e6b","type":"Secondary","description":[{"lang":"en","value":"CWE-312"},{"lang":"en","value":"CWE-522"}]}],"references":[{"url":"https://security.strongdm.com/?tcuUid=56fde839-9388-4361-8d3b-9baa7b2de2ed","source":"ebf2cdfb-f390-4894-8ec9-f81bf1c57e6b"}]}},{"cve":{"id":"CVE-2026-9831","sourceIdentifier":"1c053176-eef3-4d6a-ae0b-24728c86587b","published":"2026-05-29T22:16:23.980","lastModified":"2026-05-29T22:16:23.980","vulnStatus":"Received","cveTags":[],"descriptions":[{"lang":"en","value":"A race condition in the shared Extreme Platform\nONE IAM Gateway API-key authentication path could, under specific\nhigh-concurrency traffic conditions, intermittently allow requests\nauthenticated with an Extreme Platform ONE /IAM-issued API key to receive\nresponse data for another tenant. The issue was observed through ExtremeCloud\nIQ/XIQ API endpoints and validated against both XIQ/XAPI and Extreme Platform ONE\n/Common Services API paths. XIQ-native tokens and standard OAuth/Bearer JWT\nauthentication were not affected."}],"metrics":{"cvssMetricV31":[{"source":"1c053176-eef3-4d6a-ae0b-24728c86587b","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N","baseScore":6.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":1.8,"impactScore":4.0}]},"weaknesses":[{"source":"1c053176-eef3-4d6a-ae0b-24728c86587b","type":"Secondary","description":[{"lang":"en","value":"CWE-362"},{"lang":"en","value":"CWE-488"}]}],"references":[{"url":"https://community.extremenetworks.com/t5/security-advisories-formerly/sa-2026-048-extremecloud-iq-cross-tenant-data-exposure-via/ba-p/121851","source":"1c053176-eef3-4d6a-ae0b-24728c86587b"}]}}]}