6.1
MEDIUM
CVE-2019-10219
"Validexenter Hibernate-Validator Remote Code Execution (RCE) via HTML Comment XSS"
Description

A vulnerability was found in Hibernate-Validator. The SafeHtml validator annotation fails to properly sanitize payloads consisting of potentially malicious code in HTML comments and instructions. This vulnerability can result in an XSS attack.

INFO

Published Date :

Nov. 8, 2019, 3:15 p.m.

Last Modified :

Nov. 7, 2023, 3:02 a.m.

Remotely Exploitable :

Yes !

Impact Score :

2.7

Exploitability Score :

2.8
Public PoC/Exploit Available at Github

CVE-2019-10219 has a 1 public PoC/Exploit available at Github. Go to the Public Exploits tab to see the list.

Affected Products

The following products are affected by CVE-2019-10219 vulnerability. Even if cvefeed.io is aware of the exact versions of the products that are affected, the information is not represented in the table below.

ID Vendor Product Action
1 Oracle zfs_storage_appliance_kit
2 Oracle hospitality_suite8
3 Oracle business_intelligence
4 Oracle weblogic_server
5 Oracle communications_webrtc_session_controller
6 Oracle access_manager
7 Oracle peoplesoft_enterprise_peopletools
8 Oracle agile_engineering_data_management
9 Oracle hospitality_opera_5_property_services
10 Oracle jdk
11 Oracle commerce_guided_search
12 Oracle communications_pricing_design_center
13 Oracle data_integrator
14 Oracle nosql_database
15 Oracle retail_customer_management_and_segmentation_foundation
16 Oracle communications_cloud_native_core_network_repository_function
17 Oracle primavera_unifier
18 Oracle application_testing_suite
19 Oracle enterprise_manager_ops_center
20 Oracle goldengate_application_adapters
21 Oracle real_user_experience_insight
22 Oracle retail_predictive_application_server
23 Oracle timesten_in-memory_database
24 Oracle communications_cloud_native_core_unified_data_repository
25 Oracle hospitality_cruise_shipboard_property_management_system
26 Oracle mysql_workbench
27 Oracle solaris
28 Oracle vm_virtualbox
29 Oracle flexcube_investor_servicing
30 Oracle hospitality_reporting_and_analytics
31 Oracle e-business_suite
32 Oracle communications_convergence
33 Oracle database_server
34 Oracle retail_back_office
35 Oracle retail_xstore_point_of_service
36 Oracle fusion_middleware_mapviewer
37 Oracle primavera_p6_enterprise_project_portfolio_management
38 Oracle communications_cloud_native_core_policy
39 Oracle communications_billing_and_revenue_management
40 Oracle essbase
41 Oracle business_process_management_suite
42 Oracle webcenter_portal
43 Oracle http_server
44 Oracle flexcube_private_banking
45 Oracle retail_merchandising_system
46 Oracle agile_plm
47 Oracle banking_platform
48 Oracle communications_instant_messaging_server
49 Oracle communications_interactive_session_recorder
50 Oracle communications_offline_mediation_controller
51 Oracle communications_services_gatekeeper
52 Oracle communications_unified_inventory_management
53 Oracle documaker
54 Oracle insurance_policy_administration_j2ee
55 Oracle communications_diameter_signaling_route
56 Oracle sd-wan_edge
57 Oracle communications_application_session_controller
58 Oracle utilities_framework
59 Oracle communications_messaging_server
60 Oracle communications_cloud_native_core_automated_test_suite
61 Oracle commerce_platform
62 Oracle communications_convergent_charging_controller
63 Oracle communications_network_charging_and_control
64 Oracle insurance_policy_administration
65 Oracle insurance_rules_palette
66 Oracle jd_edwards_enterpriseone_orchestrator
67 Oracle primavera_gateway
68 Oracle retail_service_backbone
69 Oracle secure_backup
70 Oracle instantis_enterprisetrack
71 Oracle retail_order_broker
72 Oracle fusion_middleware
73 Oracle communications_design_studio
74 Oracle communications_network_integrity
75 Oracle enterprise_manager_base_platform
76 Oracle financial_services_analytical_applications_infrastructure
77 Oracle rapid_planning
78 Oracle real-time_decision_server
79 Oracle graalvm
80 Oracle communications_messaging_server
81 Oracle communications_cloud_native_core_network_function_cloud_native_environment
82 Oracle communications_billing_and_revenue_management_elastic_charging_engine
83 Oracle communications_cloud_native_core_binding_support_function
84 Oracle bi_publisher
85 Oracle mysql_server
86 Oracle demantra_demand_management
87 Oracle mysql_cluster
88 Oracle clinical
89 Oracle enterprise_data_quality
90 Oracle oss_support_tools
91 Oracle retail_integration_bus
92 Oracle application_performance_management
93 Oracle communications_operations_monitor
94 Oracle agile_product_lifecycle_analytics
95 Oracle agile_product_lifecycle_management_integration_pack
96 Oracle airlines_data_model
97 Oracle application_express
98 Oracle argus_analytics
99 Oracle argus_insight
100 Oracle argus_safety
101 Oracle banking_apis
102 Oracle banking_deposits_and_lines_of_credit_servicing
103 Oracle banking_digital_experience
104 Oracle banking_enterprise_default_management
105 Oracle banking_enterprise_default_managment
106 Oracle banking_loans_servicing
107 Oracle banking_party_management
108 Oracle big_data_spatial_and_graph
109 Oracle business_activity_monitoring
110 Oracle communications_calendar_server
111 Oracle communications_cloud_native_core_console
112 Oracle communications_cloud_native_core_security_edge_protection_proxy
113 Oracle communications_cloud_native_core_service_communication_proxy
114 Oracle communications_contacts_server
115 Oracle communications_converged_application_server_-_service_controller
116 Oracle communications_data_model
117 Oracle communications_eagle_application_processor
118 Oracle communications_metasolv_solution
119 Oracle communications_service_broker
120 Oracle communications_session_border_controller
121 Oracle enterprise_communications_broker
122 Oracle enterprise_session_border_controller
123 Oracle essbase_administration_services
124 Oracle financial_services_behavior_detection_platform
125 Oracle financial_services_enterprise_case_management
126 Oracle financial_services_foreign_account_tax_compliance_act_management
127 Oracle financial_services_model_management_and_governance
128 Oracle financial_services_trade-based_anti_money_laundering
129 Oracle goldengate
130 Oracle graph_server_and_client
131 Oracle health_sciences_clinical_development_analytics
132 Oracle health_sciences_inform_crf_submit
133 Oracle health_sciences_information_manager
134 Oracle healthcare_data_repository
135 Oracle healthcare_foundation
136 Oracle healthcare_translational_research
137 Oracle hyperion_financial_management
138 Oracle hyperion_ilearning
139 Oracle hyperion_infrastructure_technology
140 Oracle insurance_data_gateway
141 Oracle insurance_insbridge_rating_and_underwriting
142 Oracle java_se
143 Oracle managed_file_transfer
144 Oracle mysql_connectors
145 Oracle peoplesoft_enterprise_cs_sa_integration_pack
146 Oracle peoplesoft_enterprise_people_tools
147 Oracle policy_automation
148 Oracle primavera_analytics
149 Oracle primavera_data_warehouse
150 Oracle primavera_p6_professional_project_management
151 Oracle primavera_portfolio_management
152 Oracle rest_data_services
153 Oracle retail_allocation
154 Oracle retail_analytics
155 Oracle retail_assortment_planning
156 Oracle retail_central_office
157 Oracle retail_customer_insights
158 Oracle retail_eftlink
159 Oracle retail_extract_transform_and_load
160 Oracle retail_financial_integration
161 Oracle retail_fiscal_management
162 Oracle retail_invoice_matching
163 Oracle retail_order_management_system
164 Oracle retail_point-of-sale
165 Oracle retail_price_management
166 Oracle retail_returns_management
167 Oracle retail_size_profile_optimization
168 Oracle sd-wan_aware
169 Oracle siebel_applications
170 Oracle spatial_studio
171 Oracle thesaurus_management_system
172 Oracle utilities_testing_accelerator
173 Oracle zfs_storage_application_integration_engineering_software
174 Oracle fujitsu_m10-1_firmware
175 Oracle fujitsu_m10-4_firmware
176 Oracle fujitsu_m10-4s_firmware
177 Oracle fujitsu_m12-1_firmware
178 Oracle fujitsu_m12-2_firmware
179 Oracle fujitsu_m12-2s_firmware
1 Redhat jboss_data_grid
2 Redhat jboss_enterprise_application_platform
3 Redhat single_sign-on
4 Redhat fuse
5 Redhat openshift_application_runtimes
6 Redhat hibernate_validator
1 Netapp active_iq_unified_manager
2 Netapp management_services_for_element_software_and_netapp_hci
3 Netapp snapcenter_plug-in
4 Netapp element
References to Advisories, Solutions, and Tools

Here, you will find a curated list of external links that provide in-depth information, practical solutions, and valuable tools related to CVE-2019-10219.

URL Resource
https://access.redhat.com/errata/RHSA-2020:0159 Third Party Advisory
https://access.redhat.com/errata/RHSA-2020:0160 Third Party Advisory
https://access.redhat.com/errata/RHSA-2020:0161 Third Party Advisory
https://access.redhat.com/errata/RHSA-2020:0164 Third Party Advisory
https://access.redhat.com/errata/RHSA-2020:0445 Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-10219 Issue Tracking Third Party Advisory
https://lists.apache.org/thread.html/r4f8b4e2541be4234946e40d55859273a7eec0f4901e8080ce2406fe6%40%3Cnotifications.accumulo.apache.org%3E
https://lists.apache.org/thread.html/r4f92d7f7682dcff92722fa947f9e6f8ba2227c5dc3e11ba09114897d%40%3Cnotifications.accumulo.apache.org%3E
https://lists.apache.org/thread.html/r87b7e2d22982b4ca9f88f5f4f22a19b394d2662415b233582ed22ebf%40%3Cnotifications.accumulo.apache.org%3E
https://lists.apache.org/thread.html/rb8dca19a4e52b60dab0ab21e2ff9968d78f4b84e4033824db1dd24b4%40%3Cpluto-scm.portals.apache.org%3E
https://lists.apache.org/thread.html/rd418deda6f0ebe658c2015f43a14d03acb8b8c2c093c5bf6b880cd7c%40%3Cpluto-dev.portals.apache.org%3E
https://lists.apache.org/thread.html/rf9c17c3efc4a376a96e9e2777eee6acf0bec28e2200e4b35da62de4a%40%3Cpluto-dev.portals.apache.org%3E
https://security.netapp.com/advisory/ntap-20220210-0024/ Third Party Advisory
https://www.oracle.com/security-alerts/cpujan2022.html Third Party Advisory

We scan GitHub repositories to detect new proof-of-concept exploits. Following list is a collection of public exploits and proof-of-concepts, which have been published on GitHub (sorted by the most recently updated).

None

SCSS Mustache

Updated: 8 months, 1 week ago
0 stars 0 fork 0 watcher
Born at : March 11, 2024, 8:53 a.m. This repo has been linked 52 different CVEs too.

Results are limited to the first 15 repositories due to potential performance issues.

The following list is the news that have been mention CVE-2019-10219 vulnerability anywhere in the article.

The following table lists the changes that have been made to the CVE-2019-10219 vulnerability over time.

Vulnerability history details can be useful for understanding the evolution of a vulnerability, and for identifying the most recent changes that may impact the vulnerability's severity, exploitability, or other characteristics.

  • CVE Modified by [email protected]

    May. 14, 2024

    Action Type Old Value New Value
  • CVE Modified by [email protected]

    Nov. 07, 2023

    Action Type Old Value New Value
    Added Reference Red Hat, Inc. https://lists.apache.org/thread.html/r87b7e2d22982b4ca9f88f5f4f22a19b394d2662415b233582ed22ebf%40%3Cnotifications.accumulo.apache.org%3E [No types assigned]
    Added Reference Red Hat, Inc. https://lists.apache.org/thread.html/r4f8b4e2541be4234946e40d55859273a7eec0f4901e8080ce2406fe6%40%3Cnotifications.accumulo.apache.org%3E [No types assigned]
    Added Reference Red Hat, Inc. https://lists.apache.org/thread.html/r4f92d7f7682dcff92722fa947f9e6f8ba2227c5dc3e11ba09114897d%40%3Cnotifications.accumulo.apache.org%3E [No types assigned]
    Added Reference Red Hat, Inc. https://lists.apache.org/thread.html/rf9c17c3efc4a376a96e9e2777eee6acf0bec28e2200e4b35da62de4a%40%3Cpluto-dev.portals.apache.org%3E [No types assigned]
    Added Reference Red Hat, Inc. https://lists.apache.org/thread.html/rd418deda6f0ebe658c2015f43a14d03acb8b8c2c093c5bf6b880cd7c%40%3Cpluto-dev.portals.apache.org%3E [No types assigned]
    Added Reference Red Hat, Inc. https://lists.apache.org/thread.html/rb8dca19a4e52b60dab0ab21e2ff9968d78f4b84e4033824db1dd24b4%40%3Cpluto-scm.portals.apache.org%3E [No types assigned]
    Removed Reference Red Hat, Inc. https://lists.apache.org/thread.html/r87b7e2d22982b4ca9f88f5f4f22a19b394d2662415b233582ed22ebf@%3Cnotifications.accumulo.apache.org%3E
    Removed Reference Red Hat, Inc. https://lists.apache.org/thread.html/r4f8b4e2541be4234946e40d55859273a7eec0f4901e8080ce2406fe6@%3Cnotifications.accumulo.apache.org%3E
    Removed Reference Red Hat, Inc. https://lists.apache.org/thread.html/r4f92d7f7682dcff92722fa947f9e6f8ba2227c5dc3e11ba09114897d@%3Cnotifications.accumulo.apache.org%3E
    Removed Reference Red Hat, Inc. https://lists.apache.org/thread.html/rb8dca19a4e52b60dab0ab21e2ff9968d78f4b84e4033824db1dd24b4@%3Cpluto-scm.portals.apache.org%3E
    Removed Reference Red Hat, Inc. https://lists.apache.org/thread.html/rd418deda6f0ebe658c2015f43a14d03acb8b8c2c093c5bf6b880cd7c@%3Cpluto-dev.portals.apache.org%3E
    Removed Reference Red Hat, Inc. https://lists.apache.org/thread.html/rf9c17c3efc4a376a96e9e2777eee6acf0bec28e2200e4b35da62de4a@%3Cpluto-dev.portals.apache.org%3E
  • CPE Deprecation Remap by [email protected]

    Sep. 12, 2022

    Action Type Old Value New Value
    Changed CPE Configuration OR *cpe:2.3:a:oracle:banking_enterprise_default_managment:2.10.0:*:*:*:*:*:*:* OR *cpe:2.3:a:oracle:banking_enterprise_default_management:2.10.0:*:*:*:*:*:*:*
  • CPE Deprecation Remap by [email protected]

    Sep. 12, 2022

    Action Type Old Value New Value
    Changed CPE Configuration OR *cpe:2.3:a:oracle:banking_enterprise_default_managment:2.7.1:*:*:*:*:*:*:* OR *cpe:2.3:a:oracle:banking_enterprise_default_management:2.7.1:*:*:*:*:*:*:*
  • CPE Deprecation Remap by [email protected]

    Sep. 12, 2022

    Action Type Old Value New Value
    Changed CPE Configuration OR *cpe:2.3:a:oracle:banking_enterprise_default_managment:2.7.0:*:*:*:*:*:*:* OR *cpe:2.3:a:oracle:banking_enterprise_default_management:2.7.0:*:*:*:*:*:*:*
  • CPE Deprecation Remap by [email protected]

    Sep. 12, 2022

    Action Type Old Value New Value
    Changed CPE Configuration OR *cpe:2.3:a:oracle:banking_enterprise_default_managment:2.6.2:*:*:*:*:*:*:* OR *cpe:2.3:a:oracle:banking_enterprise_default_management:2.6.2:*:*:*:*:*:*:*
  • CPE Deprecation Remap by [email protected]

    Sep. 12, 2022

    Action Type Old Value New Value
    Changed CPE Configuration OR *cpe:2.3:a:oracle:banking_enterprise_default_managment:2.12.0:*:*:*:*:*:*:* OR *cpe:2.3:a:oracle:banking_enterprise_default_management:2.12.0:*:*:*:*:*:*:*
  • CPE Deprecation Remap by [email protected]

    Sep. 12, 2022

    Action Type Old Value New Value
    Changed CPE Configuration OR *cpe:2.3:a:oracle:banking_deposit_and_lines_of_credit_servicing:2.12.0:*:*:*:*:*:*:* OR *cpe:2.3:a:oracle:banking_deposits_and_lines_of_credit_servicing:2.12.0:*:*:*:*:*:*:*
  • CPE Deprecation Remap by [email protected]

    May. 23, 2022

    Action Type Old Value New Value
    Changed CPE Configuration OR *cpe:2.3:a:oracle:java_se:11.0.13:*:*:*:*:*:*:* OR *cpe:2.3:a:oracle:jdk:11.0.13:*:*:*:*:*:*:*
  • Modified Analysis by [email protected]

    Feb. 20, 2022

    Action Type Old Value New Value
    Changed Reference Type https://security.netapp.com/advisory/ntap-20220210-0024/ No Types Assigned https://security.netapp.com/advisory/ntap-20220210-0024/ Third Party Advisory
    Changed Reference Type https://www.oracle.com/security-alerts/cpujan2022.html No Types Assigned https://www.oracle.com/security-alerts/cpujan2022.html Third Party Advisory
    Changed CPE Configuration AND OR *cpe:2.3:a:redhat:jboss_enterprise_application_platform:7.2:*:*:*:*:*:*:* *cpe:2.3:a:redhat:jboss_enterprise_application_platform:7.3:*:*:*:*:*:*:* *cpe:2.3:a:redhat:jboss_enterprise_application_platform:7.4:*:*:*:*:*:*:* OR cpe:2.3:o:redhat:enterprise_linux:6.0:*:*:*:*:*:*:* cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:* cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:* OR *cpe:2.3:a:redhat:fuse:1.0:*:*:*:*:*:*:* *cpe:2.3:a:redhat:jboss_data_grid:-:*:*:*:text-only:*:*:* *cpe:2.3:a:redhat:jboss_enterprise_application_platform:-:*:*:*:text-only:*:*:* *cpe:2.3:a:redhat:openshift_application_runtimes:-:*:*:*:text-only:*:*:* *cpe:2.3:a:redhat:single_sign-on:-:*:*:*:text-only:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:a:redhat:jboss_enterprise_application_platform:7.2:*:*:*:*:*:*:* *cpe:2.3:a:redhat:jboss_enterprise_application_platform:7.3:*:*:*:*:*:*:* OR cpe:2.3:o:redhat:enterprise_linux:6.0:*:*:*:*:*:*:*
    Added CPE Configuration OR *cpe:2.3:a:netapp:active_iq_unified_manager:-:*:*:*:*:linux:*:* *cpe:2.3:a:netapp:active_iq_unified_manager:-:*:*:*:*:vmware_vsphere:*:* *cpe:2.3:a:netapp:active_iq_unified_manager:-:*:*:*:*:windows:*:* *cpe:2.3:a:netapp:management_services_for_element_software_and_netapp_hci:-:*:*:*:*:*:*:* *cpe:2.3:a:netapp:snapcenter_plug-in:-:*:*:*:*:vmware_vsphere:*:* *cpe:2.3:o:netapp:element:-:*:*:*:*:vcenter_server:*:*
    Added CPE Configuration OR *cpe:2.3:a:oracle:access_manager:11.1.2.3.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:access_manager:12.2.1.3.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:access_manager:12.2.1.4.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:agile_engineering_data_management:6.2.1.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:agile_plm:9.3.3:*:*:*:*:*:*:* *cpe:2.3:a:oracle:agile_plm:9.3.6:*:*:*:*:*:*:* *cpe:2.3:a:oracle:agile_product_lifecycle_analytics:3.6.1:*:*:*:*:*:*:* *cpe:2.3:a:oracle:agile_product_lifecycle_management_integration_pack:3.6:*:*:*:*:e-business_suite:*:* *cpe:2.3:a:oracle:airlines_data_model:12.1.1.0.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:airlines_data_model:12.2.0.1.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:application_express:21.1.4:*:*:*:*:*:*:* *cpe:2.3:a:oracle:application_performance_management:13.4.1.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:application_performance_management:13.5.1.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:application_testing_suite:13.3.0.1:*:*:*:*:*:*:* *cpe:2.3:a:oracle:argus_analytics:8.2.1:*:*:*:*:*:*:* *cpe:2.3:a:oracle:argus_analytics:8.2.2:*:*:*:*:*:*:* *cpe:2.3:a:oracle:argus_analytics:8.2.3:*:*:*:*:*:*:* *cpe:2.3:a:oracle:argus_analytics:8.21:*:*:*:*:*:*:* *cpe:2.3:a:oracle:argus_insight:8.2.1:*:*:*:*:*:*:* *cpe:2.3:a:oracle:argus_insight:8.2.2:*:*:*:*:*:*:* *cpe:2.3:a:oracle:argus_insight:8.2.3:*:*:*:*:*:*:* *cpe:2.3:a:oracle:argus_safety:8.2.1:*:*:*:*:*:*:* *cpe:2.3:a:oracle:argus_safety:8.2.2:*:*:*:*:*:*:* *cpe:2.3:a:oracle:argus_safety:8.2.3:*:*:*:*:*:*:* *cpe:2.3:a:oracle:banking_apis:18.1:*:*:*:*:*:*:* *cpe:2.3:a:oracle:banking_apis:18.2:*:*:*:*:*:*:* *cpe:2.3:a:oracle:banking_apis:18.3:*:*:*:*:*:*:* *cpe:2.3:a:oracle:banking_apis:19.1:*:*:*:*:*:*:* *cpe:2.3:a:oracle:banking_apis:19.2:*:*:*:*:*:*:* *cpe:2.3:a:oracle:banking_apis:20.1:*:*:*:*:*:*:* *cpe:2.3:a:oracle:banking_apis:21.1:*:*:*:*:*:*:* *cpe:2.3:a:oracle:banking_deposit_and_lines_of_credit_servicing:2.12.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:banking_digital_experience:17.2:*:*:*:*:*:*:* *cpe:2.3:a:oracle:banking_digital_experience:18.1:*:*:*:*:*:*:* *cpe:2.3:a:oracle:banking_digital_experience:18.3:*:*:*:*:*:*:* *cpe:2.3:a:oracle:banking_digital_experience:19.1:*:*:*:*:*:*:* *cpe:2.3:a:oracle:banking_digital_experience:19.2:*:*:*:*:*:*:* *cpe:2.3:a:oracle:banking_digital_experience:20.1:*:*:*:*:*:*:* *cpe:2.3:a:oracle:banking_digital_experience:21.1:*:*:*:*:*:*:* *cpe:2.3:a:oracle:banking_enterprise_default_managment:*:*:*:*:*:*:*:* versions from (including) 2.3.0 up to (including) 2.4.0 *cpe:2.3:a:oracle:banking_enterprise_default_managment:2.6.2:*:*:*:*:*:*:* *cpe:2.3:a:oracle:banking_enterprise_default_managment:2.7.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:banking_enterprise_default_managment:2.7.1:*:*:*:*:*:*:* *cpe:2.3:a:oracle:banking_enterprise_default_managment:2.10.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:banking_enterprise_default_managment:2.12.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:banking_loans_servicing:2.12.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:banking_party_management:2.7.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:banking_platform:*:*:*:*:*:*:*:* versions from (including) 2.3.0 up to (including) 2.4.1 *cpe:2.3:a:oracle:banking_platform:2.6.2:*:*:*:*:*:*:* *cpe:2.3:a:oracle:banking_platform:2.7.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:banking_platform:2.7.1:*:*:*:*:*:*:* *cpe:2.3:a:oracle:bi_publisher:5.5.0.0.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:bi_publisher:11.1.1.9.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:bi_publisher:12.2.1.3.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:bi_publisher:12.2.1.4.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:big_data_spatial_and_graph:23.1:*:*:*:*:*:*:* *cpe:2.3:a:oracle:business_activity_monitoring:12.2.1.4.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:business_intelligence:5.5.0.0.0:*:*:*:enterprise:*:*:* *cpe:2.3:a:oracle:business_intelligence:5.9.0.0.0:*:*:*:enterprise:*:*:* *cpe:2.3:a:oracle:business_intelligence:12.2.1.3.0:*:*:*:enterprise:*:*:* *cpe:2.3:a:oracle:business_intelligence:12.2.1.4.0:*:*:*:enterprise:*:*:* *cpe:2.3:a:oracle:business_process_management_suite:12.2.1.3.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:business_process_management_suite:12.2.1.4.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:clinical:5.2.1:*:*:*:*:*:*:* *cpe:2.3:a:oracle:clinical:5.2.2:*:*:*:*:*:*:* *cpe:2.3:a:oracle:commerce_guided_search:11.3.2:*:*:*:*:*:*:* *cpe:2.3:a:oracle:commerce_platform:*:*:*:*:*:*:*:* versions from (including) 11.3.0 up to (including) 11.3.2 *cpe:2.3:a:oracle:communications_application_session_controller:3.9.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:communications_billing_and_revenue_management:12.0.0.3:*:*:*:*:*:*:* *cpe:2.3:a:oracle:communications_billing_and_revenue_management:12.0.0.4:*:*:*:*:*:*:* *cpe:2.3:a:oracle:communications_billing_and_revenue_management_elastic_charging_engine:11.3:*:*:*:*:*:*:* *cpe:2.3:a:oracle:communications_billing_and_revenue_management_elastic_charging_engine:12.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:communications_calendar_server:8.0.0.5.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:communications_calendar_server:8.0.0.6.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:communications_cloud_native_core_automated_test_suite:1.8.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:communications_cloud_native_core_binding_support_function:1.9.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:communications_cloud_native_core_binding_support_function:1.10.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:communications_cloud_native_core_console:1.7.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:1.9.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:1.14.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:communications_cloud_native_core_policy:1.14.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:1.5.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:1.6.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:1.15.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:1.14.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:1.14.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:communications_contacts_server:8.0.0.3.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:communications_converged_application_server_-_service_controller:6.2:*:*:*:*:*:*:* *cpe:2.3:a:oracle:communications_convergence:3.0.2.2.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:communications_convergent_charging_controller:6.0.1.0.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:communications_convergent_charging_controller:*:*:*:*:*:*:*:* versions from (including) 12.0.1.0.0 up to (including) 12.0.4.0.0 *cpe:2.3:a:oracle:communications_data_model:11.3.2.1.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:communications_data_model:11.3.2.2.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:communications_data_model:11.3.2.3.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:communications_data_model:12.1.0.1.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:communications_data_model:12.1.2.0.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:communications_design_studio:7.3.4:*:*:*:*:*:*:* *cpe:2.3:a:oracle:communications_design_studio:7.3.5:*:*:*:*:*:*:* *cpe:2.3:a:oracle:communications_design_studio:7.4.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:communications_design_studio:7.4.1:*:*:*:*:*:*:* *cpe:2.3:a:oracle:communications_design_studio:7.4.2:*:*:*:*:*:*:* *cpe:2.3:a:oracle:communications_diameter_signaling_route:*:*:*:*:*:*:*:* versions from (including) 8.0.0.0 up to (including) 8.5.1.0 *cpe:2.3:a:oracle:communications_eagle_application_processor:*:*:*:*:*:*:*:* versions from (including) 16.1 up to (including) 16.4 *cpe:2.3:a:oracle:communications_instant_messaging_server:10.0.1.5.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:communications_interactive_session_recorder:6.3:*:*:*:*:*:*:* *cpe:2.3:a:oracle:communications_interactive_session_recorder:6.4:*:*:*:*:*:*:* *cpe:2.3:a:oracle:communications_messaging_server:8.1:*:*:*:*:*:*:* *cpe:2.3:a:oracle:communications_metasolv_solution:6.3.1:*:*:*:*:*:*:* *cpe:2.3:a:oracle:communications_network_charging_and_control:6.0.1.0.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:communications_network_charging_and_control:*:*:*:*:*:*:*:* versions from (including) 12.0.1.0.0 up to (including) 12.0.4.0.0 *cpe:2.3:a:oracle:communications_network_integrity:7.3.5:*:*:*:*:*:*:* *cpe:2.3:a:oracle:communications_network_integrity:7.3.6:*:*:*:*:*:*:* *cpe:2.3:a:oracle:communications_offline_mediation_controller:12.0.0.3:*:*:*:*:*:*:* *cpe:2.3:a:oracle:communications_operations_monitor:3.4:*:*:*:*:*:*:* *cpe:2.3:a:oracle:communications_operations_monitor:4.2:*:*:*:*:*:*:* *cpe:2.3:a:oracle:communications_operations_monitor:4.3:*:*:*:*:*:*:* *cpe:2.3:a:oracle:communications_operations_monitor:4.4:*:*:*:*:*:*:* *cpe:2.3:a:oracle:communications_operations_monitor:5.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:communications_pricing_design_center:12.0.0.3.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:communications_pricing_design_center:12.0.0.4.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:communications_service_broker:6.2:*:*:*:*:*:*:* *cpe:2.3:a:oracle:communications_services_gatekeeper:7.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:communications_session_border_controller:8.2:*:*:*:*:*:*:* *cpe:2.3:a:oracle:communications_session_border_controller:8.3:*:*:*:*:*:*:* *cpe:2.3:a:oracle:communications_session_border_controller:8.4:*:*:*:*:*:*:* *cpe:2.3:a:oracle:communications_session_border_controller:9.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:communications_unified_inventory_management:7.3.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:communications_unified_inventory_management:7.3.4:*:*:*:*:*:*:* *cpe:2.3:a:oracle:communications_unified_inventory_management:7.3.5:*:*:*:*:*:*:* *cpe:2.3:a:oracle:communications_unified_inventory_management:7.4.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:communications_unified_inventory_management:7.4.1:*:*:*:*:*:*:* *cpe:2.3:a:oracle:communications_unified_inventory_management:7.4.2:*:*:*:*:*:*:* *cpe:2.3:a:oracle:communications_unified_inventory_management:7.5.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:communications_webrtc_session_controller:7.2.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:communications_webrtc_session_controller:7.2.1:*:*:*:*:*:*:* *cpe:2.3:a:oracle:data_integrator:12.2.1.3.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:data_integrator:12.2.1.4.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:database_server:12.1.0.1:*:*:*:*:*:*:* *cpe:2.3:a:oracle:database_server:12.1.0.2:*:*:*:*:*:*:* *cpe:2.3:a:oracle:database_server:19c:*:*:*:*:*:*:* *cpe:2.3:a:oracle:database_server:21c:*:*:*:*:*:*:* *cpe:2.3:a:oracle:demantra_demand_management:*:*:*:*:*:*:*:* versions from (including) 12.2.6 up to (including) 12.2.11 *cpe:2.3:a:oracle:documaker:*:*:*:*:*:*:*:* versions from (including) 12.6.0 up to (including) 12.6.4 *cpe:2.3:a:oracle:e-business_suite:*:*:*:*:*:*:*:* versions from (including) 12.2.3 up to (including) 12.2.11 *cpe:2.3:a:oracle:enterprise_communications_broker:3.3:*:*:*:*:*:*:* *cpe:2.3:a:oracle:enterprise_data_quality:12.2.1.3.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:enterprise_data_quality:12.2.1.4.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:enterprise_manager_base_platform:13.4.0.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:enterprise_manager_base_platform:13.5.0.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:enterprise_manager_ops_center:12.4.0.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:enterprise_session_border_controller:8.4:*:*:*:*:*:*:* *cpe:2.3:a:oracle:enterprise_session_border_controller:9.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:essbase:*:*:*:*:*:*:*:* versions up to (excluding) 11.1.2.4.47 *cpe:2.3:a:oracle:essbase:11.1.2.4.47:*:*:*:*:*:*:* *cpe:2.3:a:oracle:essbase:*:*:*:*:*:*:*:* versions from (including) 21.0 up to (excluding) 21.3 *cpe:2.3:a:oracle:essbase_administration_services:*:*:*:*:*:*:*:* versions up to (excluding) 11.1.2.4.47 *cpe:2.3:a:oracle:essbase_administration_services:11.1.2.4.47:*:*:*:*:*:*:* *cpe:2.3:a:oracle:financial_services_analytical_applications_infrastructure:7.3.3:*:*:*:*:*:*:* *cpe:2.3:a:oracle:financial_services_analytical_applications_infrastructure:*:*:*:*:*:*:*:* versions from (including) 8.0.7 up to (including) 8.1.1 *cpe:2.3:a:oracle:financial_services_behavior_detection_platform:8.0.7:*:*:*:*:*:*:* *cpe:2.3:a:oracle:financial_services_behavior_detection_platform:8.0.8:*:*:*:*:*:*:* *cpe:2.3:a:oracle:financial_services_behavior_detection_platform:8.0.11:*:*:*:*:*:*:* *cpe:2.3:a:oracle:financial_services_enterprise_case_management:8.0.7:*:*:*:*:*:*:* *cpe:2.3:a:oracle:financial_services_enterprise_case_management:8.0.8:*:*:*:*:*:*:* *cpe:2.3:a:oracle:financial_services_enterprise_case_management:8.0.11:*:*:*:*:*:*:* *cpe:2.3:a:oracle:financial_services_foreign_account_tax_compliance_act_management:8.0.7:*:*:*:*:*:*:* *cpe:2.3:a:oracle:financial_services_foreign_account_tax_compliance_act_management:8.0.8:*:*:*:*:*:*:* *cpe:2.3:a:oracle:financial_services_foreign_account_tax_compliance_act_management:8.0.11:*:*:*:*:*:*:* *cpe:2.3:a:oracle:financial_services_model_management_and_governance:*:*:*:*:*:*:*:* versions from (including) 8.0.8 up to (including) 8.1.1 *cpe:2.3:a:oracle:financial_services_trade-based_anti_money_laundering:8.0.7:*:*:*:enterprise:*:*:* *cpe:2.3:a:oracle:financial_services_trade-based_anti_money_laundering:8.0.8:*:*:*:enterprise:*:*:* *cpe:2.3:a:oracle:flexcube_investor_servicing:12.0.4:*:*:*:*:*:*:* *cpe:2.3:a:oracle:flexcube_investor_servicing:12.1.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:flexcube_investor_servicing:12.3.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:flexcube_investor_servicing:12.4.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:flexcube_investor_servicing:14.4.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:flexcube_investor_servicing:14.5.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:flexcube_private_banking:12.0.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:flexcube_private_banking:12.1.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:fusion_middleware:12.2.1.3.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:fusion_middleware:12.2.1.4.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:fusion_middleware_mapviewer:12.2.1.4.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:goldengate:*:*:*:*:*:*:*:* versions up to (excluding) 12.3.0.1 *cpe:2.3:a:oracle:goldengate:*:*:*:*:*:*:*:* versions from (including) 19.0.0 up to (excluding) 19.1.0.0.220118 *cpe:2.3:a:oracle:goldengate:*:*:*:*:*:*:*:* versions from (including) 21.0.0 up to (excluding) 21.5.0.0.220118 *cpe:2.3:a:oracle:goldengate_application_adapters:19.1.0.0.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:graalvm:20.3.4:*:*:*:enterprise:*:*:* *cpe:2.3:a:oracle:graalvm:21.3.0:*:*:*:enterprise:*:*:* *cpe:2.3:a:oracle:graph_server_and_client:*:*:*:*:*:*:*:* versions up to (excluding) 21.4 *cpe:2.3:a:oracle:health_sciences_clinical_development_analytics:4.0.1:*:*:*:*:*:*:* *cpe:2.3:a:oracle:health_sciences_inform_crf_submit:6.2.1:*:*:*:*:*:*:* *cpe:2.3:a:oracle:health_sciences_information_manager:3.0.2:*:*:*:*:*:*:* *cpe:2.3:a:oracle:health_sciences_information_manager:3.0.3:*:*:*:*:*:*:* *cpe:2.3:a:oracle:healthcare_data_repository:7.0.2:*:*:*:*:*:*:* *cpe:2.3:a:oracle:healthcare_data_repository:8.1.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:healthcare_data_repository:8.1.1:*:*:*:*:*:*:* *cpe:2.3:a:oracle:healthcare_foundation:*:*:*:*:*:*:*:* versions from (including) 7.3.0.0 up to (including) 7.3.0.2 *cpe:2.3:a:oracle:healthcare_foundation:*:*:*:*:*:*:*:* versions from (including) 8.0.0 up to (including) 8.0.2 *cpe:2.3:a:oracle:healthcare_foundation:8.1.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:healthcare_foundation:8.1.1:*:*:*:*:*:*:* *cpe:2.3:a:oracle:healthcare_translational_research:4.1.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:hospitality_cruise_shipboard_property_management_system:20.1.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:hospitality_opera_5_property_services:5.6:*:*:*:*:*:*:* *cpe:2.3:a:oracle:hospitality_reporting_and_analytics:9.1.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:hospitality_suite8:8.10.2:*:*:*:*:*:*:* *cpe:2.3:a:oracle:hospitality_suite8:8.11.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:hospitality_suite8:8.12.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:hospitality_suite8:8.13.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:hospitality_suite8:8.14.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:http_server:12.2.1.3.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:http_server:12.2.1.4.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:hyperion_financial_management:11.1.2.4:*:*:*:*:*:*:* *cpe:2.3:a:oracle:hyperion_financial_management:11.2.6.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:hyperion_ilearning:6.2:*:*:*:*:*:*:* *cpe:2.3:a:oracle:hyperion_ilearning:6.3:*:*:*:*:*:*:* *cpe:2.3:a:oracle:hyperion_infrastructure_technology:11.2.7.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:instantis_enterprisetrack:17.1:*:*:*:*:*:*:* *cpe:2.3:a:oracle:instantis_enterprisetrack:17.2:*:*:*:*:*:*:* *cpe:2.3:a:oracle:instantis_enterprisetrack:17.3:*:*:*:*:*:*:* *cpe:2.3:a:oracle:insurance_data_gateway:11.0.2:*:*:*:*:*:*:* *cpe:2.3:a:oracle:insurance_data_gateway:11.1.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:insurance_data_gateway:11.2.7:*:*:*:*:*:*:* *cpe:2.3:a:oracle:insurance_data_gateway:11.3.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:insurance_data_gateway:11.3.1:*:*:*:*:*:*:* *cpe:2.3:a:oracle:insurance_insbridge_rating_and_underwriting:5.2.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:insurance_insbridge_rating_and_underwriting:*:*:*:*:*:*:*:* versions from (including) 5.4.0 up to (including) 5.6.0 *cpe:2.3:a:oracle:insurance_policy_administration:11.0.2:*:*:*:*:*:*:* *cpe:2.3:a:oracle:insurance_policy_administration:11.1.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:insurance_policy_administration:11.2.7:*:*:*:*:*:*:* *cpe:2.3:a:oracle:insurance_policy_administration:11.3.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:insurance_policy_administration:11.3.1:*:*:*:*:*:*:* *cpe:2.3:a:oracle:insurance_policy_administration_j2ee:10.2.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:insurance_policy_administration_j2ee:10.2.4:*:*:*:*:*:*:* *cpe:2.3:a:oracle:insurance_policy_administration_j2ee:11.0.2:*:*:*:*:*:*:* *cpe:2.3:a:oracle:insurance_policy_administration_j2ee:*:*:*:*:*:*:*:* versions from (including) 11.1.0 up to (including) 11.3.0 *cpe:2.3:a:oracle:insurance_rules_palette:10.2.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:insurance_rules_palette:10.2.4:*:*:*:*:*:*:* *cpe:2.3:a:oracle:insurance_rules_palette:11.0.2:*:*:*:*:*:*:* *cpe:2.3:a:oracle:insurance_rules_palette:*:*:*:*:*:*:*:* versions from (including) 11.1.0 up to (including) 11.3.0 *cpe:2.3:a:oracle:insurance_rules_palette:11.3.1:*:*:*:*:*:*:* *cpe:2.3:a:oracle:java_se:7u321:*:*:*:*:*:*:* *cpe:2.3:a:oracle:java_se:8u311:*:*:*:*:*:*:* *cpe:2.3:a:oracle:java_se:11.0.13:*:*:*:*:*:*:* *cpe:2.3:a:oracle:java_se:17.1:*:*:*:*:*:*:* *cpe:2.3:a:oracle:jd_edwards_enterpriseone_orchestrator:*:*:*:*:*:*:*:* versions up to (excluding) 9.2.6.1 *cpe:2.3:a:oracle:managed_file_transfer:12.2.1.3.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:managed_file_transfer:12.2.1.4.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:mysql_cluster:*:*:*:*:*:*:*:* versions up to (excluding) 7.4.34 *cpe:2.3:a:oracle:mysql_cluster:*:*:*:*:*:*:*:* versions from (including) 7.5.0 up to (excluding) 7.5.24 *cpe:2.3:a:oracle:mysql_cluster:*:*:*:*:*:*:*:* versions from (including) 7.6.0 up to (excluding) 7.6.20 *cpe:2.3:a:oracle:mysql_cluster:*:*:*:*:*:*:*:* versions from (including) 8.0.0 up to (excluding) 8.0.27 *cpe:2.3:a:oracle:mysql_connectors:*:*:*:*:*:*:*:* versions up to (excluding) 8.0.27 *cpe:2.3:a:oracle:mysql_connectors:8.0.27:*:*:*:*:*:*:* *cpe:2.3:a:oracle:mysql_server:*:*:*:*:*:*:*:* versions up to (excluding) 5.7.36 *cpe:2.3:a:oracle:mysql_server:5.7.36:*:*:*:*:*:*:* *cpe:2.3:a:oracle:mysql_server:*:*:*:*:*:*:*:* versions from (including) 8.0.0 up to (excluding) 8.0.27 *cpe:2.3:a:oracle:mysql_workbench:*:*:*:*:*:*:*:* versions up to (excluding) 8.0.27 *cpe:2.3:a:oracle:nosql_database:*:*:*:*:*:*:*:* versions up to (excluding) 21.1.12 *cpe:2.3:a:oracle:oss_support_tools:*:*:*:*:*:*:*:* versions up to (excluding) 2.12.42 *cpe:2.3:a:oracle:peoplesoft_enterprise_cs_sa_integration_pack:9.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:peoplesoft_enterprise_cs_sa_integration_pack:9.2:*:*:*:*:*:*:* *cpe:2.3:a:oracle:peoplesoft_enterprise_people_tools:8.57:*:*:*:*:*:*:* *cpe:2.3:a:oracle:peoplesoft_enterprise_people_tools:8.58:*:*:*:*:*:*:* *cpe:2.3:a:oracle:peoplesoft_enterprise_people_tools:8.59:*:*:*:*:*:*:* *cpe:2.3:a:oracle:peoplesoft_enterprise_peopletools:8.57:*:*:*:*:*:*:* *cpe:2.3:a:oracle:peoplesoft_enterprise_peopletools:8.58:*:*:*:*:*:*:* *cpe:2.3:a:oracle:policy_automation:10.4.7:*:*:*:*:*:*:* *cpe:2.3:a:oracle:policy_automation:*:*:*:*:*:*:*:* versions from (including) 12.2.0 up to (including) 12.2.24 *cpe:2.3:a:oracle:primavera_analytics:18.8.3.3:*:*:*:*:*:*:* *cpe:2.3:a:oracle:primavera_analytics:19.12.11.1:*:*:*:*:*:*:* *cpe:2.3:a:oracle:primavera_analytics:20.12.12.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:primavera_data_warehouse:18.8.3.3:*:*:*:*:*:*:* *cpe:2.3:a:oracle:primavera_data_warehouse:19.12.11.1:*:*:*:*:*:*:* *cpe:2.3:a:oracle:primavera_data_warehouse:20.12.12.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:primavera_gateway:*:*:*:*:*:*:*:* versions from (including) 17.12.0 up to (including) 17.12.11 *cpe:2.3:a:oracle:primavera_gateway:*:*:*:*:*:*:*:* versions from (including) 18.8.0 up to (including) 18.8.13 *cpe:2.3:a:oracle:primavera_gateway:*:*:*:*:*:*:*:* versions from (including) 19.12.0 up to (including) 19.12.12 *cpe:2.3:a:oracle:primavera_gateway:*:*:*:*:*:*:*:* versions from (including) 20.12.0 up to (including) 20.12.7 *cpe:2.3:a:oracle:primavera_gateway:21.12.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:primavera_p6_enterprise_project_portfolio_management:*:*:*:*:*:*:*:* versions from (including) 17.12.0.0 up to (including) 17.12.0.0-17.12.20.0 *cpe:2.3:a:oracle:primavera_p6_enterprise_project_portfolio_management:*:*:*:*:*:*:*:* versions from (including) 18.8.0.0 up to (including) 18.8.24.0 *cpe:2.3:a:oracle:primavera_p6_enterprise_project_portfolio_management:*:*:*:*:*:*:*:* versions from (including) 19.12.0.0 up to (including) 19.12.18.0 *cpe:2.3:a:oracle:primavera_p6_enterprise_project_portfolio_management:*:*:*:*:*:*:*:* versions from (including) 20.12.0.0 up to (including) 20.12.12.0 *cpe:2.3:a:oracle:primavera_p6_enterprise_project_portfolio_management:21.12.0.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:primavera_p6_professional_project_management:*:*:*:*:*:*:*:* versions from (including) 17.12.0.0 up to (including) 17.12.20.0 *cpe:2.3:a:oracle:primavera_p6_professional_project_management:*:*:*:*:*:*:*:* versions from (including) 18.8.0.0 up to (including) 18.8.24.0 *cpe:2.3:a:oracle:primavera_p6_professional_project_management:*:*:*:*:*:*:*:* versions from (including) 19.12.0.0 up to (including) 19.12.17.0 *cpe:2.3:a:oracle:primavera_p6_professional_project_management:*:*:*:*:*:*:*:* versions from (including) 20.12.0.0 up to (including) 20.12.9.0 *cpe:2.3:a:oracle:primavera_portfolio_management:*:*:*:*:*:*:*:* versions from (including) 18.0.0.0 up to (including) 18.0.3.0 *cpe:2.3:a:oracle:primavera_portfolio_management:*:*:*:*:*:*:*:* versions from (including) 19.0.0.0 up to (including) 19.0.1.2 *cpe:2.3:a:oracle:primavera_portfolio_management:20.0.0.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:primavera_portfolio_management:20.0.0.1:*:*:*:*:*:*:* *cpe:2.3:a:oracle:primavera_unifier:*:*:*:*:*:*:*:* versions from (including) 17.7 up to (including) 17.12 *cpe:2.3:a:oracle:primavera_unifier:18.8:*:*:*:*:*:*:* *cpe:2.3:a:oracle:primavera_unifier:19.12:*:*:*:*:*:*:* *cpe:2.3:a:oracle:primavera_unifier:20.12:*:*:*:*:*:*:* *cpe:2.3:a:oracle:primavera_unifier:21.12:*:*:*:*:*:*:* *cpe:2.3:a:oracle:rapid_planning:*:*:*:*:*:*:*:* versions from (including) 12.2.6 up to (including) 12.2.11 *cpe:2.3:a:oracle:real-time_decision_server:3.2.0.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:real_user_experience_insight:13.4.1.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:real_user_experience_insight:13.5.1.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:rest_data_services:21.2.4:*:*:*:-:*:*:* *cpe:2.3:a:oracle:retail_allocation:14.1.3.2:*:*:*:*:*:*:* *cpe:2.3:a:oracle:retail_allocation:15.0.3.1:*:*:*:*:*:*:* *cpe:2.3:a:oracle:retail_allocation:16.0.3:*:*:*:*:*:*:* *cpe:2.3:a:oracle:retail_allocation:19.0.1:*:*:*:*:*:*:* *cpe:2.3:a:oracle:retail_analytics:*:*:*:*:*:*:*:* versions from (including) 16.0.0 up to (including) 16.0.2 *cpe:2.3:a:oracle:retail_assortment_planning:16.0.3:*:*:*:*:*:*:* *cpe:2.3:a:oracle:retail_back_office:14.1:*:*:*:*:*:*:* *cpe:2.3:a:oracle:retail_central_office:14.1:*:*:*:*:*:*:* *cpe:2.3:a:oracle:retail_customer_insights:*:*:*:*:*:*:*:* versions from (including) 16.0.0 up to (including) 16.0.2 *cpe:2.3:a:oracle:retail_customer_management_and_segmentation_foundation:*:*:*:*:*:*:*:* versions from (including) 16.0 up to (including) 19.0 *cpe:2.3:a:oracle:retail_eftlink:16.0.3:*:*:*:*:*:*:* *cpe:2.3:a:oracle:retail_eftlink:17.0.2:*:*:*:*:*:*:* *cpe:2.3:a:oracle:retail_eftlink:18.0.1:*:*:*:*:*:*:* *cpe:2.3:a:oracle:retail_eftlink:19.0.1:*:*:*:*:*:*:* *cpe:2.3:a:oracle:retail_eftlink:20.0.1:*:*:*:*:*:*:* *cpe:2.3:a:oracle:retail_extract_transform_and_load:13.2.8:*:*:*:*:*:*:* *cpe:2.3:a:oracle:retail_financial_integration:14.1.3.2:*:*:*:*:*:*:* *cpe:2.3:a:oracle:retail_financial_integration:15.0.3.1:*:*:*:*:*:*:* *cpe:2.3:a:oracle:retail_financial_integration:16.0.3:*:*:*:*:*:*:* *cpe:2.3:a:oracle:retail_financial_integration:19.0.1:*:*:*:*:*:*:* *cpe:2.3:a:oracle:retail_fiscal_management:14.2:*:*:*:*:*:*:* *cpe:2.3:a:oracle:retail_integration_bus:13.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:retail_integration_bus:14.1.3.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:retail_integration_bus:14.1.3.2:*:*:*:*:*:*:* *cpe:2.3:a:oracle:retail_integration_bus:15.0.3.1:*:*:*:*:*:*:* *cpe:2.3:a:oracle:retail_integration_bus:*:*:*:*:*:*:*:* versions from (including) 16.0.1 up to (including) 16.0.3 *cpe:2.3:a:oracle:retail_integration_bus:19.0.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:retail_integration_bus:19.0.1:*:*:*:*:*:*:* *cpe:2.3:a:oracle:retail_invoice_matching:15.0.3:*:*:*:*:*:*:* *cpe:2.3:a:oracle:retail_invoice_matching:16.0.3:*:*:*:*:*:*:* *cpe:2.3:a:oracle:retail_merchandising_system:19.0.1:*:*:*:*:*:*:* *cpe:2.3:a:oracle:retail_order_broker:16.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:retail_order_broker:18.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:retail_order_broker:19.1:*:*:*:*:*:*:* *cpe:2.3:a:oracle:retail_order_management_system:19.5:*:*:*:*:*:*:* *cpe:2.3:a:oracle:retail_point-of-sale:14.1:*:*:*:*:*:*:* *cpe:2.3:a:oracle:retail_predictive_application_server:14.1.3:*:*:*:*:*:*:* *cpe:2.3:a:oracle:retail_predictive_application_server:14.1.3.46:*:*:*:*:*:*:* *cpe:2.3:a:oracle:retail_predictive_application_server:15.0.3:*:*:*:*:*:*:* *cpe:2.3:a:oracle:retail_predictive_application_server:15.0.3.115:*:*:*:*:*:*:* *cpe:2.3:a:oracle:retail_predictive_application_server:16.0.3:*:*:*:*:*:*:* *cpe:2.3:a:oracle:retail_predictive_application_server:16.0.3.240:*:*:*:*:*:*:* *cpe:2.3:a:oracle:retail_price_management:13.2:*:*:*:*:*:*:* *cpe:2.3:a:oracle:retail_price_management:14.0.4:*:*:*:*:*:*:* *cpe:2.3:a:oracle:retail_price_management:14.1:*:*:*:*:*:*:* *cpe:2.3:a:oracle:retail_price_management:14.1.3:*:*:*:*:*:*:* *cpe:2.3:a:oracle:retail_price_management:15.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:retail_price_management:15.0.3:*:*:*:*:*:*:* *cpe:2.3:a:oracle:retail_price_management:16.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:retail_price_management:16.0.3:*:*:*:*:*:*:* *cpe:2.3:a:oracle:retail_returns_management:14.1:*:*:*:*:*:*:* *cpe:2.3:a:oracle:retail_service_backbone:14.1.3.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:retail_service_backbone:14.1.3.2:*:*:*:*:*:*:* *cpe:2.3:a:oracle:retail_service_backbone:15.0.3.1:*:*:*:*:*:*:* *cpe:2.3:a:oracle:retail_service_backbone:*:*:*:*:*:*:*:* versions from (including) 16.0.1 up to (including) 16.0.3 *cpe:2.3:a:oracle:retail_service_backbone:19.0.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:retail_service_backbone:19.0.1:*:*:*:*:*:*:* *cpe:2.3:a:oracle:retail_size_profile_optimization:16.0.3:*:*:*:*:*:*:* *cpe:2.3:a:oracle:retail_xstore_point_of_service:17.0.4:*:*:*:*:*:*:* *cpe:2.3:a:oracle:retail_xstore_point_of_service:18.0.3:*:*:*:*:*:*:* *cpe:2.3:a:oracle:retail_xstore_point_of_service:19.0.2:*:*:*:*:*:*:* *cpe:2.3:a:oracle:retail_xstore_point_of_service:20.0.1:*:*:*:*:*:*:* *cpe:2.3:a:oracle:sd-wan_aware:8.2:*:*:*:*:*:*:* *cpe:2.3:a:oracle:sd-wan_edge:9.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:sd-wan_edge:9.1:*:*:*:*:*:*:* *cpe:2.3:a:oracle:secure_backup:18.1.0.1.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:siebel_applications:*:*:*:*:*:*:*:* versions up to (excluding) 21.12 *cpe:2.3:a:oracle:spatial_studio:21.2.1:*:*:*:*:*:*:* *cpe:2.3:a:oracle:thesaurus_management_system:5.2.3:*:*:*:*:*:*:* *cpe:2.3:a:oracle:thesaurus_management_system:5.3.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:thesaurus_management_system:5.3.1:*:*:*:*:*:*:* *cpe:2.3:a:oracle:timesten_in-memory_database:*:*:*:*:*:*:*:* versions up to (excluding) 11.2.2.8.27 *cpe:2.3:a:oracle:timesten_in-memory_database:*:*:*:*:*:*:*:* versions from (including) 21.0.0 up to (excluding) 21.1.1.1.0 *cpe:2.3:a:oracle:utilities_framework:4.2.0.2.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:utilities_framework:4.2.0.3.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:utilities_framework:*:*:*:*:*:*:*:* versions from (including) 4.3.0.1.0 up to (including) 4.3.0.6.0 *cpe:2.3:a:oracle:utilities_framework:4.4.0.0.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:utilities_framework:4.4.0.2.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:utilities_framework:4.4.0.3.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:utilities_testing_accelerator:6.0.0.1.1:*:*:*:*:*:*:* *cpe:2.3:a:oracle:utilities_testing_accelerator:6.0.0.2.2:*:*:*:*:*:*:* *cpe:2.3:a:oracle:utilities_testing_accelerator:6.0.0.3.1:*:*:*:*:*:*:* *cpe:2.3:a:oracle:vm_virtualbox:*:*:*:*:*:*:*:* versions up to (excluding) 6.1.32 *cpe:2.3:a:oracle:webcenter_portal:12.2.1.3.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:webcenter_portal:12.2.1.4.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:weblogic_server:12.1.3.0.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:weblogic_server:12.2.1.3.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:weblogic_server:12.2.1.4.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:weblogic_server:14.1.1.0.0:*:*:*:*:*:*:* *cpe:2.3:a:oracle:zfs_storage_appliance_kit:8.8:*:*:*:*:*:*:* *cpe:2.3:a:oracle:zfs_storage_application_integration_engineering_software:1.3.3:*:*:*:*:*:*:* *cpe:2.3:o:oracle:communications_messaging_server:8.1:*:*:*:*:*:*:* *cpe:2.3:o:oracle:solaris:10:*:*:*:*:*:*:* *cpe:2.3:o:oracle:solaris:11:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:oracle:fujitsu_m10-1_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:oracle:fujitsu_m10-1:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:oracle:fujitsu_m10-4_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:oracle:fujitsu_m10-4:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:oracle:fujitsu_m10-4s_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:oracle:fujitsu_m10-4s:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:oracle:fujitsu_m12-1_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:oracle:fujitsu_m12-1:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:oracle:fujitsu_m12-2_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:oracle:fujitsu_m12-2:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:oracle:fujitsu_m12-2s_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:oracle:fujitsu_m12-2s:-:*:*:*:*:*:*:*
  • CVE Modified by [email protected]

    Feb. 10, 2022

    Action Type Old Value New Value
    Added Reference https://security.netapp.com/advisory/ntap-20220210-0024/ [No Types Assigned]
  • CVE Modified by [email protected]

    Feb. 07, 2022

    Action Type Old Value New Value
    Added Reference https://www.oracle.com/security-alerts/cpujan2022.html [No Types Assigned]
  • Reanalysis by [email protected]

    Sep. 09, 2021

    Action Type Old Value New Value
    Changed CPE Configuration OR *cpe:2.3:a:hibernate:hibernate-validator:*:*:*:*:*:*:*:* versions up to (excluding) 6.0.18 *cpe:2.3:a:hibernate:hibernate-validator:6.1.0:alpha1:*:*:*:*:*:* *cpe:2.3:a:hibernate:hibernate-validator:6.1.0:alpha2:*:*:*:*:*:* *cpe:2.3:a:hibernate:hibernate-validator:6.1.0:alpha3:*:*:*:*:*:* *cpe:2.3:a:hibernate:hibernate-validator:6.1.0:alpha4:*:*:*:*:*:* *cpe:2.3:a:hibernate:hibernate-validator:6.1.0:alpha5:*:*:*:*:*:* *cpe:2.3:a:hibernate:hibernate-validator:6.1.0:alpha6:*:*:*:*:*:* OR *cpe:2.3:a:redhat:hibernate_validator:*:*:*:*:*:*:*:* versions up to (excluding) 6.0.18 *cpe:2.3:a:redhat:hibernate_validator:6.1.0:alpha1:*:*:*:*:*:* *cpe:2.3:a:redhat:hibernate_validator:6.1.0:alpha2:*:*:*:*:*:* *cpe:2.3:a:redhat:hibernate_validator:6.1.0:alpha3:*:*:*:*:*:* *cpe:2.3:a:redhat:hibernate_validator:6.1.0:alpha4:*:*:*:*:*:* *cpe:2.3:a:redhat:hibernate_validator:6.1.0:alpha5:*:*:*:*:*:* *cpe:2.3:a:redhat:hibernate_validator:6.1.0:alpha6:*:*:*:*:*:*
  • Reanalysis by [email protected]

    Aug. 03, 2021

    Action Type Old Value New Value
    Changed CPE Configuration OR *cpe:2.3:a:hibernate:hibernate-validator:*:*:*:*:*:*:*:* versions up to (excluding) 6.0.18 *cpe:2.3:a:hibernate:hibernate-validator:*:*:*:*:*:*:*:* versions from (including) 6.0.19 up to (including) 6.0.22 *cpe:2.3:a:hibernate:hibernate-validator:6.1.0:alpha1:*:*:*:*:*:* *cpe:2.3:a:hibernate:hibernate-validator:6.1.0:alpha2:*:*:*:*:*:* *cpe:2.3:a:hibernate:hibernate-validator:6.1.0:alpha3:*:*:*:*:*:* *cpe:2.3:a:hibernate:hibernate-validator:6.1.0:alpha4:*:*:*:*:*:* *cpe:2.3:a:hibernate:hibernate-validator:6.1.0:alpha5:*:*:*:*:*:* *cpe:2.3:a:hibernate:hibernate-validator:6.1.0:alpha6:*:*:*:*:*:* OR *cpe:2.3:a:hibernate:hibernate-validator:*:*:*:*:*:*:*:* versions up to (excluding) 6.0.18 *cpe:2.3:a:hibernate:hibernate-validator:6.1.0:alpha1:*:*:*:*:*:* *cpe:2.3:a:hibernate:hibernate-validator:6.1.0:alpha2:*:*:*:*:*:* *cpe:2.3:a:hibernate:hibernate-validator:6.1.0:alpha3:*:*:*:*:*:* *cpe:2.3:a:hibernate:hibernate-validator:6.1.0:alpha4:*:*:*:*:*:* *cpe:2.3:a:hibernate:hibernate-validator:6.1.0:alpha5:*:*:*:*:*:* *cpe:2.3:a:hibernate:hibernate-validator:6.1.0:alpha6:*:*:*:*:*:*
  • Modified Analysis by [email protected]

    Aug. 03, 2021

    Action Type Old Value New Value
    Changed Reference Type https://access.redhat.com/errata/RHSA-2020:0159 No Types Assigned https://access.redhat.com/errata/RHSA-2020:0159 Third Party Advisory
    Changed Reference Type https://access.redhat.com/errata/RHSA-2020:0160 No Types Assigned https://access.redhat.com/errata/RHSA-2020:0160 Third Party Advisory
    Changed Reference Type https://access.redhat.com/errata/RHSA-2020:0161 No Types Assigned https://access.redhat.com/errata/RHSA-2020:0161 Third Party Advisory
    Changed Reference Type https://access.redhat.com/errata/RHSA-2020:0164 No Types Assigned https://access.redhat.com/errata/RHSA-2020:0164 Third Party Advisory
    Changed Reference Type https://access.redhat.com/errata/RHSA-2020:0445 No Types Assigned https://access.redhat.com/errata/RHSA-2020:0445 Third Party Advisory
    Changed Reference Type https://lists.apache.org/thread.html/r4f8b4e2541be4234946e40d55859273a7eec0f4901e8080ce2406fe6@%3Cnotifications.accumulo.apache.org%3E No Types Assigned https://lists.apache.org/thread.html/r4f8b4e2541be4234946e40d55859273a7eec0f4901e8080ce2406fe6@%3Cnotifications.accumulo.apache.org%3E Mailing List, Third Party Advisory
    Changed Reference Type https://lists.apache.org/thread.html/r4f92d7f7682dcff92722fa947f9e6f8ba2227c5dc3e11ba09114897d@%3Cnotifications.accumulo.apache.org%3E No Types Assigned https://lists.apache.org/thread.html/r4f92d7f7682dcff92722fa947f9e6f8ba2227c5dc3e11ba09114897d@%3Cnotifications.accumulo.apache.org%3E Mailing List, Third Party Advisory
    Changed Reference Type https://lists.apache.org/thread.html/r87b7e2d22982b4ca9f88f5f4f22a19b394d2662415b233582ed22ebf@%3Cnotifications.accumulo.apache.org%3E No Types Assigned https://lists.apache.org/thread.html/r87b7e2d22982b4ca9f88f5f4f22a19b394d2662415b233582ed22ebf@%3Cnotifications.accumulo.apache.org%3E Mailing List, Third Party Advisory
    Changed Reference Type https://lists.apache.org/thread.html/rb8dca19a4e52b60dab0ab21e2ff9968d78f4b84e4033824db1dd24b4@%3Cpluto-scm.portals.apache.org%3E No Types Assigned https://lists.apache.org/thread.html/rb8dca19a4e52b60dab0ab21e2ff9968d78f4b84e4033824db1dd24b4@%3Cpluto-scm.portals.apache.org%3E Mailing List, Third Party Advisory
    Changed Reference Type https://lists.apache.org/thread.html/rd418deda6f0ebe658c2015f43a14d03acb8b8c2c093c5bf6b880cd7c@%3Cpluto-dev.portals.apache.org%3E No Types Assigned https://lists.apache.org/thread.html/rd418deda6f0ebe658c2015f43a14d03acb8b8c2c093c5bf6b880cd7c@%3Cpluto-dev.portals.apache.org%3E Mailing List, Third Party Advisory
    Changed Reference Type https://lists.apache.org/thread.html/rf9c17c3efc4a376a96e9e2777eee6acf0bec28e2200e4b35da62de4a@%3Cpluto-dev.portals.apache.org%3E No Types Assigned https://lists.apache.org/thread.html/rf9c17c3efc4a376a96e9e2777eee6acf0bec28e2200e4b35da62de4a@%3Cpluto-dev.portals.apache.org%3E Mailing List, Third Party Advisory
    Changed CPE Configuration OR *cpe:2.3:a:hibernate:hibernate-validator:-:*:*:*:*:*:*:* OR *cpe:2.3:a:hibernate:hibernate-validator:*:*:*:*:*:*:*:* versions up to (excluding) 6.0.18 *cpe:2.3:a:hibernate:hibernate-validator:*:*:*:*:*:*:*:* versions from (including) 6.0.19 up to (including) 6.0.22 *cpe:2.3:a:hibernate:hibernate-validator:6.1.0:alpha1:*:*:*:*:*:* *cpe:2.3:a:hibernate:hibernate-validator:6.1.0:alpha2:*:*:*:*:*:* *cpe:2.3:a:hibernate:hibernate-validator:6.1.0:alpha3:*:*:*:*:*:* *cpe:2.3:a:hibernate:hibernate-validator:6.1.0:alpha4:*:*:*:*:*:* *cpe:2.3:a:hibernate:hibernate-validator:6.1.0:alpha5:*:*:*:*:*:* *cpe:2.3:a:hibernate:hibernate-validator:6.1.0:alpha6:*:*:*:*:*:*
    Changed CPE Configuration OR *cpe:2.3:a:redhat:jboss_data_grid:7.0:*:*:*:*:*:*:* *cpe:2.3:a:redhat:jboss_enterprise_application_platform:7.0.0:*:*:*:*:*:*:* *cpe:2.3:a:redhat:single_sign-on:7.0:*:*:*:*:*:*:* AND OR *cpe:2.3:a:redhat:jboss_enterprise_application_platform:7.2:*:*:*:*:*:*:* *cpe:2.3:a:redhat:jboss_enterprise_application_platform:7.3:*:*:*:*:*:*:* *cpe:2.3:a:redhat:jboss_enterprise_application_platform:7.4:*:*:*:*:*:*:* OR cpe:2.3:o:redhat:enterprise_linux:6.0:*:*:*:*:*:*:* cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:* cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*
  • CVE Modified by [email protected]

    Jul. 14, 2021

    Action Type Old Value New Value
    Added Reference https://lists.apache.org/thread.html/rb8dca19a4e52b60dab0ab21e2ff9968d78f4b84e4033824db1dd24b4@%3Cpluto-scm.portals.apache.org%3E [No Types Assigned]
    Added Reference https://lists.apache.org/thread.html/rd418deda6f0ebe658c2015f43a14d03acb8b8c2c093c5bf6b880cd7c@%3Cpluto-dev.portals.apache.org%3E [No Types Assigned]
    Added Reference https://lists.apache.org/thread.html/rf9c17c3efc4a376a96e9e2777eee6acf0bec28e2200e4b35da62de4a@%3Cpluto-dev.portals.apache.org%3E [No Types Assigned]
  • CVE Modified by [email protected]

    Feb. 06, 2020

    Action Type Old Value New Value
    Added Reference https://access.redhat.com/errata/RHSA-2020:0445 [No Types Assigned]
  • CVE Modified by [email protected]

    Jan. 21, 2020

    Action Type Old Value New Value
    Added Reference https://access.redhat.com/errata/RHSA-2020:0160 [No Types Assigned]
    Added Reference https://access.redhat.com/errata/RHSA-2020:0161 [No Types Assigned]
    Added Reference https://access.redhat.com/errata/RHSA-2020:0159 [No Types Assigned]
  • CVE Modified by [email protected]

    Jan. 21, 2020

    Action Type Old Value New Value
    Added Reference https://access.redhat.com/errata/RHSA-2020:0164 [No Types Assigned]
  • CVE Modified by [email protected]

    Jan. 09, 2020

    Action Type Old Value New Value
    Added Reference https://lists.apache.org/thread.html/r4f8b4e2541be4234946e40d55859273a7eec0f4901e8080ce2406fe6@%3Cnotifications.accumulo.apache.org%3E [No Types Assigned]
    Added Reference https://lists.apache.org/thread.html/r4f92d7f7682dcff92722fa947f9e6f8ba2227c5dc3e11ba09114897d@%3Cnotifications.accumulo.apache.org%3E [No Types Assigned]
  • CVE Modified by [email protected]

    Jan. 08, 2020

    Action Type Old Value New Value
    Added Reference https://lists.apache.org/thread.html/r87b7e2d22982b4ca9f88f5f4f22a19b394d2662415b233582ed22ebf@%3Cnotifications.accumulo.apache.org%3E [No Types Assigned]
  • Initial Analysis by [email protected]

    Nov. 13, 2019

    Action Type Old Value New Value
    Added CVSS V2 Metadata Victim must voluntarily interact with attack mechanism
    Added CVSS V2 NIST (AV:N/AC:M/Au:N/C:N/I:P/A:N)
    Added CVSS V3.1 NIST AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
    Changed Reference Type https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-10219 No Types Assigned https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-10219 Issue Tracking, Third Party Advisory
    Added CWE NIST CWE-79
    Added CPE Configuration OR *cpe:2.3:a:hibernate:hibernate-validator:-:*:*:*:*:*:*:*
    Added CPE Configuration OR *cpe:2.3:a:redhat:jboss_data_grid:7.0:*:*:*:*:*:*:* *cpe:2.3:a:redhat:jboss_enterprise_application_platform:7.0.0:*:*:*:*:*:*:* *cpe:2.3:a:redhat:single_sign-on:7.0:*:*:*:*:*:*:*
EPSS is a daily estimate of the probability of exploitation activity being observed over the next 30 days. Following chart shows the EPSS score history of the vulnerability.
CWE - Common Weakness Enumeration

While CVE identifies specific instances of vulnerabilities, CWE categorizes the common flaws or weaknesses that can lead to vulnerabilities. CVE-2019-10219 is associated with the following CWEs:

Common Attack Pattern Enumeration and Classification (CAPEC)

Common Attack Pattern Enumeration and Classification (CAPEC) stores attack patterns, which are descriptions of the common attributes and approaches employed by adversaries to exploit the CVE-2019-10219 weaknesses.

Exploit Prediction

EPSS is a daily estimate of the probability of exploitation activity being observed over the next 30 days.

0.23 }} 0.00%

score

0.61818

percentile

CVSS31 - Vulnerability Scoring System
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability