Vulnerability CVE-2015-9251 - CERT Civis.Net

Vulnerability Name:

CVE-2015-9251 (CCN-138029)

Assigned:

2015-06-27

Published:

2015-06-27

Updated:

2021-01-08

Summary:

jQuery before 3.0.0 is vulnerable to Cross-site Scripting (XSS) attacks when a cross-domain Ajax request is performed without the dataType option, causing text/javascript responses to be executed.

CVSS v3 Severity:

6.1 Medium (CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N)
5.8 Medium (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N/E:H/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): Required
Scope:	Scope (S): Changed
Impact Metrics:	Confidentiality (C): Low Integrity (I): Low Availibility (A): None

6.1 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N)
5.8 Medium (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N/E:H/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): Required
Scope:	Scope (S): Changed
Impact Metrics:	Confidentiality (C): Low Integrity (I): Low Availibility (A): None

6.1 Medium (REDHAT CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N)
5.8 Medium (REDHAT Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N/E:H/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): Required
Scope:	Scope (S): Changed
Impact Metrics:	Confidentiality (C): Low Integrity (I): Low Availibility (A): None

CVSS v2 Severity:

4.3 Medium (CVSS v2 Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Medium Authentication (Au): None
Impact Metrics:	Confidentiality (C): None Integrity (I): Partial Availibility (A): None

5.5 Medium (CCN CVSS v2 Vector: AV:N/AC:L/Au:S/C:P/I:P/A:N)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Athentication (Au): Single_Instance
Impact Metrics:	Confidentiality (C): Partial Integrity (I): Partial Availibility (A): None

4.3 Medium (REDHAT CVSS v2 Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Medium Authentication (Au): None
Impact Metrics:	Confidentiality (C): None Integrity (I): Partial Availibility (A): None

Vulnerability Type:

Vulnerability Consequences:

Cross-Site Scripting

References:

Source: MITRE
Type: CNA
CVE-2015-9251

Source: SUSE
Type: UNKNOWN
openSUSE-SU-2020:0395

Source: MISC
Type: UNKNOWN
http://packetstormsecurity.com/files/152787/dotCMS-5.1.1-Vulnerable-Dependencies.html

Source: MISC
Type: UNKNOWN
http://packetstormsecurity.com/files/153237/RetireJS-CORS-Issue-Script-Execution.html

Source: MISC
Type: UNKNOWN
http://packetstormsecurity.com/files/156743/OctoberCMS-Insecure-Dependencies.html

Source: FULLDISC
Type: UNKNOWN
20190510 dotCMS v5.1.1 Vulnerabilities

Source: FULLDISC
Type: UNKNOWN
20190510 dotCMS v5.1.1 HTML Injection & XSS Vulnerability

Source: FULLDISC
Type: UNKNOWN
20190510 Re: dotCMS v5.1.1 HTML Injection & XSS Vulnerability

Source: CCN
Type: IBM Security Bulletin 0739849 (Cloud Private)
A Security Vulnerability affects IBM Cloud Private (CVE-2015-9251)

Source: CCN
Type: IBM Security Bulletin 874666 (BigFix Platform)
BigFix Platform 9.5.x affected by multiple vulnerabilities (CVE-2019-4013, CVE-2018-5407, CVE-2012-5883, CVE-2012-6708, CVE-2015-9251)

Source: CCN
Type: IBM Security Bulletin 967469 (Security Privileged Identity Manager)
IBM Security Privileged Identity Manager is affected by multiple security vulnerabilities

Source: CCN
Type: Oracle CPUApr2019
Oracle Critical Patch Update Advisory - April 2019

Source: CCN
Type: Oracle CPUJan2019
Oracle Critical Patch Update Advisory - January 2019

Source: CCN
Type: Oracle CPUJul2019
Oracle Critical Patch Update Advisory - July 2019

Source: CCN
Type: Oracle CPUOct2018
Oracle Critical Patch Update Advisory - October 2018

Source: CONFIRM
Type: Patch
http://www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.html

Source: CCN
Type: Oracle CPUOct2019
Oracle Critical Patch Update Advisory - October 2019

Source: BID
Type: Third Party Advisory, VDB Entry
105658

Source: CCN
Type: BID-105658
JQuery CVE-2015-9251 Cross Site Scripting Vulnerability

Source: REDHAT
Type: UNKNOWN
RHSA-2020:0481

Source: REDHAT
Type: UNKNOWN
RHSA-2020:0729

Source: XF
Type: UNKNOWN
jquery-cve20159251-xss(138029)

Source: MISC
Type: Patch, Third Party Advisory
https://github.com/jquery/jquery/commit/f60729f3903d17917dc351f3ac87794de379b0cc

Source: CCN
Type: jquery GIT Repository
Inadequate/dangerous jQuery behavior for 3rd party text/javascript responses #2432

Source: MISC
Type: Issue Tracking, Patch, Third Party Advisory
https://github.com/jquery/jquery/issues/2432

Source: MISC
Type: Issue Tracking, Patch, Third Party Advisory
https://github.com/jquery/jquery/pull/2588

Source: MISC
Type: Patch, Third Party Advisory
https://github.com/jquery/jquery/pull/2588/commits/c254d308a7d3f1eac4d0b42837804cfffcba4bb2

Source: MISC
Type: Third Party Advisory, US Government Resource
https://ics-cert.us-cert.gov/advisories/ICSA-18-212-04

Source: CONFIRM
Type: UNKNOWN
https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA44601

Source: MLIST
Type: UNKNOWN
[flink-dev] 20190811 Apache flink 1.7.2 security issues

Source: MLIST
Type: UNKNOWN
[flink-user] 20190813 Apache flink 1.7.2 security issues

Source: MLIST
Type: UNKNOWN
[drill-dev] 20191021 [jira] [Created] (DRILL-7416) Updates required to dependencies to resolve potential security vulnerabilities

Source: MLIST
Type: UNKNOWN
[flink-user] 20190813 Re: Apache flink 1.7.2 security issues

Source: MLIST
Type: UNKNOWN
[flink-user] 20190811 Apache flink 1.7.2 security issues

Source: MLIST
Type: UNKNOWN
[drill-dev] 20191017 Dependencies used by Drill contain known vulnerabilities

Source: MLIST
Type: UNKNOWN
[roller-commits] 20190820 [jira] [Created] (ROL-2150) Fix Js security vulnerabilities detected using retire js

Source: MLIST
Type: UNKNOWN
[drill-issues] 20191021 [jira] [Created] (DRILL-7416) Updates required to dependencies to resolve potential security vulnerabilities

Source: BUGTRAQ
Type: UNKNOWN
20190509 dotCMS v5.1.1 Vulnerabilities

Source: CONFIRM
Type: UNKNOWN
https://security.netapp.com/advisory/ntap-20210108-0004/

Source: MISC
Type: Patch, Third Party Advisory
https://snyk.io/vuln/npm:jquery:20150627

Source: MISC
Type: Third Party Advisory
https://sw.aveva.com/hubfs/assets-2018/pdf/security-bulletin/SecurityBulletin_LFSec126.pdf

Source: CCN
Type: IBM Security Bulletin 878200 (BigFix Platform)
BigFix Platform 9.2.x affected by multiple vulnerabilities (CVE-2017-1231, CVE-2018-5407, CVE-2012-5883, CVE-2012-6708, CVE-2015-9251)

Source: CCN
Type: IBM Security Bulletin 6113428 (Business Process Manager Standard)
Multiple security vulnerabilities in Swagger UI affect IBM Business Automation Workflow and IBM Business Process Manager (BPM)

Source: CCN
Type: IBM Security Bulletin 6249135 (Rational Team Concert)
Cross-site Scripting and Vulnerable library - JQuery v1.11.1 affects IBM Engineering Workflow Management

Source: CCN
Type: IBM Security Bulletin 6333027 (Security Identity Manager Virtual Appliance)
Multiple security vulnerabilities have been fixed in IBM Security Identity Manager Virtual Appliance

Source: CCN
Type: IBM Security Bulletin 6336251 (Security Secret Server)
Multiple Vulnerabilities Have Been Identified In IBM Security Verify Privilege Manager previously known as IBM Security Privilege Manager

Source: CCN
Type: IBM Security Bulletin 6336361 (Security Secret Server)
Multiple Vulnerabilities Have Been Identified In IBM Security Verify Privilege Vault previously known as IBM Security Secret Server

Source: CCN
Type: IBM Security Bulletin 6347588 (Security Guardium)
IBM Security Guardium is affected by multiple vulnerabilities

Source: CCN
Type: IBM Security Bulletin 6396524 (API Connect)
IBM API Connect V5 is vulnerable to cross-site scripting in jQuery (CVE-2015-9251)

Source: CCN
Type: IBM Security Bulletin 6413705 (Security QRadar Analyst Workflow)
IBM Security QRadar Analyst Workflow add on to IBM QRadar SIEM is vulnerable to using components with known vulnerabilities

Source: CCN
Type: IBM Security Bulletin 6416391 (Spectrum Symphony)
Multiple vulnerability issues affect IBM Spectrum Symphony 7.3.1

Source: CCN
Type: IBM Security Bulletin 6416393 (Spectrum Conductor)
Multiple vulnerability issues affect IBM Spectrum Conductor 2.5.0

Source: CCN
Type: IBM Security Bulletin 6437211 (InfoSphere Information Server)
A cross-site scripting vulnerability in JQuery affects IBM InfoSphere Information Server

Source: CCN
Type: IBM Security Bulletin 6449664 (QRadar SIEM)
IBM QRadar SIEM is vulnerable to using components with known vulnerabilities

Source: CCN
Type: IBM Security Bulletin 6473141 (Rational Collaborative Lifecycle Management)
Multiple vulnerabilites affect IBM Jazz Foundation and IBM Engineering products.

Source: CCN
Type: IBM Security Bulletin 6474843 (QRadar SIEM)
IBM QRadar SIEM is vulnerable to Using Components with Known Vulnerabilities

Source: CCN
Type: IBM Security Bulletin 6551876 (Cloud Pak for Security)
Cloud Pak for Security uses packages that are vulnerable to multiple CVEs

Source: CCN
Type: IBM Security Bulletin 6565389 (WebSphere Service Registry and Repository)
Multiple vulnerabilities in WebSphere Service Registry and Repository in packages such as Apache Struts and Node.js

Source: CCN
Type: IBM Security Bulletin 6574037 (Process Mining)
Vulnerability in jQuery affects IBM Process Mining (Multiple CVEs)

Source: CCN
Type: IBM Security Bulletin 6582695 (Cloud Transformation Advisor)
IBM Cloud Transformation Advisor is vulnerable to multiple vulnerabilities

Source: CCN
Type: IBM Security Bulletin 6610351 (Watson Speech Services Cartridge for Cloud Pak for Data)
IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data is vulnerable to cross-site scripting in jQuery (CVE-2015-9251).

Source: CCN
Type: IBM Security Bulletin 6830243 (QRadar User Behavior Analytics)
Multiple vulnerabilities in Spark affecting IBM QRadar User Behavior Analytics

Source: CCN
Type: IBM Security Bulletin 6831351 (API Connect)
API Connect is vulnerable to JQuery Cross-Site Scripting (XSS) and other vulnerabilities (CVE-2012-6708, CVE-2015-9251, CVE-2019-11358, CVE-2020-11022, CVE-2020-11023)

Source: CCN
Type: IBM Security Bulletin 6833292 (CICS TX Standard)
IBM CICS TX Standard is vulnerable to multiple vulnerabilities in jQuery.

Source: CCN
Type: IBM Security Bulletin 6833296 (CICS TX Advanced)
IBM CICS TX Advanced is vulnerable to multiple vulnerabilities in jQuery.

Source: CCN
Type: IBM Security Bulletin 6852773 (Tivoli Network Manager IP Edition)
jQuery included in ITNM is vulnerable to Cross-site Scripting (XSS) attacks (multiple vulnerabilities)

Source: CCN
Type: IBM Security Bulletin 6964844 (WebSphere eXtreme Scale)
Multiple vulnerabilities in IBM WebSphere eXtreme Scale Liberty Deployment.

Source: CCN
Type: IBM Security Bulletin 6967012 (Cloud Pak for Watson AIOps)
Multiple Vulnerabilities in CloudPak for Watson AIOPs

Source: CCN
Type: IBM Security Bulletin 6983274 (Cognos Command Center)
IBM Cognos Command Center is affected by multiple vulnerabilities

Source: CCN
Type: IBM Security Bulletin 6984699 (MobileFirst Foundation)
Multiple vulnerabilities found on thirdparty libraries used by IBM MobileFirst Platform

Source: CCN
Type: IBM Security Bulletin 6984763 (MobileFirst Foundation)
Multiple vulnerabilities found in third party libraries used by IBM MobileFirst Platform

Source: CCN
Type: IBM Security Bulletin 6985613 (Engineering Workflow Management)
IBM Engineering Workflow Management (EWM) vulnerabilities CVE-2020-28500, CVE-2021-23337, CVE-2020-8203

Source: CCN
Type: IBM Security Bulletin 6988629 (InfoSphere Information Server)
IBM InfoSphere Information Server is affected by multiple vulnerabilities in JQuery, Node.js and Swagger UI

Source: CCN
Type: IBM Security Bulletin 6997593 (Security Directory Server)
Multiple Security Vulnerabilities have been fixed in IBM Security Directory Server, IBM Security Directory Suite and IBM Security Verify Directory.

Source: CCN
Type: Oracle CPUApr2020
Oracle Critical Patch Update Advisory - April 2020

Source: N/A
Type: UNKNOWN
N/A

Source: MISC
Type: UNKNOWN
https://www.oracle.com/security-alerts/cpujan2020.html

Source: CCN
Type: Oracle CPUJul2020
Oracle Critical Patch Update Advisory - July 2020

Source: MISC
Type: UNKNOWN
https://www.oracle.com/security-alerts/cpujul2020.html

Source: CCN
Type: Oracle CPUOct2020
Oracle Critical Patch Update Advisory - October 2020

Source: MISC
Type: UNKNOWN
https://www.oracle.com/security-alerts/cpuoct2020.html

Source: MISC
Type: Patch
https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html

Source: CONFIRM
Type: Patch
https://www.oracle.com/technetwork/security-advisory/cpujan2019-5072801.html

Source: MISC
Type: UNKNOWN
https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html

Source: MISC
Type: UNKNOWN
https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html

Source: CONFIRM
Type: UNKNOWN
https://www.tenable.com/security/tns-2019-08

Source: CCN
Type: WhiteSource Vulnerability Database
CVE-2015-9251

Vulnerable Configuration:

Configuration 1:

cpe:/a:jquery:jquery:*:*:*:*:*:*:*:* (Version < 3.0.0)

Configuration 2:

cpe:/a:oracle:hospitality_materials_control:18.1:*:*:*:*:*:*:*

OR cpe:/a:oracle:endeca_information_discovery_studio:3.1.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:siebel_ui_framework:18.10:*:*:*:*:*:*:*

OR cpe:/a:oracle:siebel_ui_framework:18.11:*:*:*:*:*:*:*

OR cpe:/a:oracle:agile_product_lifecycle_management_for_process:6.2.0.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:agile_product_lifecycle_management_for_process:6.2.1.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:retail_workforce_management:1.60.9:*:*:*:*:*:*:*

OR cpe:/a:oracle:retail_workforce_management:1.64.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:peoplesoft_enterprise_peopletools:8.55:*:*:*:*:*:*:*

OR cpe:/a:oracle:healthcare_foundation:7.2:*:*:*:*:*:*:*

OR cpe:/a:oracle:business_process_management_suite:11.1.1.9.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:communications_webrtc_session_controller:*:*:*:*:*:*:*:* (Version < 7.2)

OR cpe:/a:oracle:communications_converged_application_server:*:*:*:*:*:*:*:* (Version < 7.0.0.1)

OR cpe:/a:oracle:jd_edwards_enterpriseone_tools:9.2:*:*:*:*:*:*:*

OR cpe:/a:oracle:fusion_middleware_mapviewer:12.2.1.3.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:jdeveloper:11.1.1.9.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:financial_services_market_risk_measurement_and_management:8.0.5:*:*:*:*:*:*:*

OR cpe:/a:oracle:financial_services_market_risk_measurement_and_management:8.0.6:*:*:*:*:*:*:*

OR cpe:/a:oracle:financial_services_analytical_applications_infrastructure:*:*:*:*:*:*:*:* (Version >= 7.3.3 and <= 7.3.5)

OR cpe:/a:oracle:financial_services_analytical_applications_infrastructure:*:*:*:*:*:*:*:* (Version >= 8.0.0 and <= 8.0.7)

OR cpe:/a:oracle:primavera_gateway:17.12:*:*:*:*:*:*:*

OR cpe:/a:oracle:banking_platform:2.6.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:webcenter_sites:11.1.1.8.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:healthcare_translational_research:3.1.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:primavera_unifier:*:*:*:*:*:*:*:* (Version >= 17.1 and <= 17.12)

OR cpe:/a:oracle:primavera_unifier:18.8:*:*:*:*:*:*:*

OR cpe:/a:oracle:banking_platform:2.6.1:*:*:*:*:*:*:*

OR cpe:/a:oracle:banking_platform:2.6.2:*:*:*:*:*:*:*

OR cpe:/a:oracle:hospitality_guest_access:4.2.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:hospitality_guest_access:4.2.1:*:*:*:*:*:*:*

OR cpe:/a:oracle:communications_services_gatekeeper:*:*:*:*:*:*:*:* (Version < 6.1.0.4.0)

OR cpe:/a:oracle:utilities_framework:*:*:*:*:*:*:*:* (Version >= 4.3.0.1 and <= 4.3.0.4)

OR cpe:/a:oracle:retail_customer_insights:16.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:retail_sales_audit:15.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:insurance_insbridge_rating_and_underwriting:5.5:*:*:*:*:*:*:*

OR cpe:/a:oracle:healthcare_foundation:7.1:*:*:*:*:*:*:*

OR cpe:/a:oracle:enterprise_manager_ops_center:12.2.2:*:*:*:*:*:*:*

OR cpe:/a:oracle:enterprise_manager_ops_center:12.3.3:*:*:*:*:*:*:*

OR cpe:/a:oracle:real-time_scheduler:2.3.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:utilities_mobile_workforce_management:2.3.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:financial_services_reconciliation_framework:8.0.6:*:*:*:*:*:*:*

OR cpe:/a:oracle:financial_services_profitability_management:*:*:*:*:*:*:*:* (Version >= 8.0.4 and <= 8.0.6)

OR cpe:/a:oracle:financial_services_data_integration_hub:*:*:*:*:*:*:*:* (Version >= 8.0.5 and <= 8.0.7)

OR cpe:/a:oracle:financial_services_asset_liability_management:*:*:*:*:*:*:*:* (Version >= 8.0.4 and <= 8.0.7)

OR cpe:/a:oracle:communications_interactive_session_recorder:6.2:*:*:*:*:*:*:*

OR cpe:/a:oracle:agile_product_lifecycle_management_for_process:6.2.3.1:*:*:*:*:*:*:*

OR cpe:/a:oracle:retail_customer_insights:15.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:insurance_insbridge_rating_and_underwriting:5.2:*:*:*:*:*:*:*

OR cpe:/a:oracle:insurance_insbridge_rating_and_underwriting:5.4:*:*:*:*:*:*:*

OR cpe:/a:oracle:weblogic_server:12.1.3.0.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:weblogic_server:12.2.1.3:*:*:*:*:*:*:*

OR cpe:/a:oracle:retail_invoice_matching:15.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:oss_support_tools:19.1:*:*:*:*:*:*:*

OR cpe:/a:oracle:hospitality_reporting_and_analytics:9.1.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:financial_services_reconciliation_framework:8.0.5:*:*:*:*:*:*:*

OR cpe:/a:oracle:financial_services_hedge_management_and_ifrs_valuations:*:*:*:*:*:*:*:* (Version >= 8.0.4 and <= 8.0.7)

OR cpe:/a:oracle:financial_services_funds_transfer_pricing:*:*:*:*:*:*:*:* (Version >= 8.0.4 and <= 8.0.7)

OR cpe:/a:oracle:communications_interactive_session_recorder:6.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:communications_interactive_session_recorder:6.1:*:*:*:*:*:*:*

OR cpe:/a:oracle:primavera_gateway:15.2:*:*:*:*:*:*:*

OR cpe:/a:oracle:primavera_gateway:16.2:*:*:*:*:*:*:*

OR cpe:/a:oracle:endeca_information_discovery_studio:3.2.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:service_bus:12.1.3.0.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:service_bus:12.2.1.3.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:primavera_unifier:16.1:*:*:*:*:*:*:*

OR cpe:/a:oracle:primavera_unifier:16.2:*:*:*:*:*:*:*

OR cpe:/a:oracle:agile_product_lifecycle_management_for_process:6.2.2.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:agile_product_lifecycle_management_for_process:6.2.3.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:peoplesoft_enterprise_peopletools:8.56:*:*:*:*:*:*:*

OR cpe:/a:oracle:peoplesoft_enterprise_peopletools:8.57:*:*:*:*:*:*:*

OR cpe:/a:oracle:business_process_management_suite:12.1.3.0.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:business_process_management_suite:12.2.1.3.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:hospitality_cruise_fleet_management:9.0.11:*:*:*:*:*:*:*

OR cpe:/a:oracle:retail_allocation:15.0.2:*:*:*:*:*:*:*

OR cpe:/a:oracle:jdeveloper:12.1.3.0.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:jdeveloper:12.2.1.3.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:financial_services_loan_loss_forecasting_and_provisioning:*:*:*:*:*:*:*:* (Version >= 8.0.2 and <= 8.0.7)

OR cpe:/a:oracle:financial_services_liquidity_risk_management:*:*:*:*:*:*:*:* (Version >= 8.0.2 and <= 8.0.6)

OR cpe:/a:oracle:enterprise_operations_monitor:3.4:*:*:*:*:*:*:*

OR cpe:/a:oracle:enterprise_operations_monitor:4.0:*:*:*:*:*:*:*

Configuration RedHat 1:

cpe:/o:redhat:enterprise_linux:7:*:*:*:*:*:*:*

Configuration RedHat 2:

cpe:/o:redhat:enterprise_linux:7::client:*:*:*:*:*

Configuration RedHat 3:

cpe:/o:redhat:enterprise_linux:7::computenode:*:*:*:*:*

Configuration RedHat 4:

cpe:/o:redhat:enterprise_linux:7::server:*:*:*:*:*

Configuration RedHat 5:

cpe:/o:redhat:enterprise_linux:7::workstation:*:*:*:*:*

Configuration RedHat 6:

cpe:/a:redhat:enterprise_linux:8:*:*:*:*:*:*:*

Configuration RedHat 7:

cpe:/a:redhat:enterprise_linux:8::appstream:*:*:*:*:*

Configuration CCN 1:

cpe:/a:jquery:jquery:2.2.4:*:*:*:*:*:*:*

AND

cpe:/a:ibm:websphere_service_registry_and_repository:8.5:*:*:*:*:*:*:*

OR cpe:/a:ibm:infosphere_information_server:11.5:*:*:*:*:*:*:*

OR cpe:/a:oracle:webcenter_sites:11.1.1.8.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:weblogic_server:12.1.3.0.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:jd_edwards_enterpriseone_tools:9.2:*:*:*:*:*:*:*

OR cpe:/a:oracle:business_intelligence:11.1.1.9.0::~~enterprise~~~:*:*:*:*:*

OR cpe:/a:oracle:peoplesoft_enterprise_peopletools:8.55:*:*:*:*:*:*:*

OR cpe:/a:ibm:rational_collaborative_lifecycle_management:6.0.2:*:*:*:*:*:*:*

OR cpe:/a:ibm:api_connect:5.0.0.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:bigfix_platform:9.5:*:*:*:*:*:*:*

OR cpe:/a:ibm:websphere_extreme_scale:8.6.1.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:jdeveloper:11.1.1.9.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:jdeveloper:12.1.3.0.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:enterprise_manager_ops_center:12.2.2:*:*:*:*:*:*:*

OR cpe:/a:oracle:retail_customer_insights:15.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:retail_customer_insights:16.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:primavera_unifier:16.1:*:*:*:*:*:*:*

OR cpe:/a:oracle:primavera_unifier:16.2:*:*:*:*:*:*:*

OR cpe:/a:oracle:primavera_gateway:15.2:*:*:*:*:*:*:*

OR cpe:/a:oracle:primavera_gateway:16.2:*:*:*:*:*:*:*

OR cpe:/a:oracle:financial_services_data_integration_hub:8.0.5:*:*:*:*:*:*:*

OR cpe:/a:oracle:weblogic_server:12.2.1.3.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:communications_webrtc_session_controller:7.1:*:*:*:*:*:*:*

OR cpe:/a:oracle:hospitality_guest_access:4.2.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:hospitality_guest_access:4.2.1:*:*:*:*:*:*:*

OR cpe:/a:oracle:peoplesoft_enterprise_peopletools:8.56:*:*:*:*:*:*:*

OR cpe:/a:oracle:business_process_management_suite:11.1.1.9.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:business_process_management_suite:12.1.3.0.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:retail_workforce_management:1.64.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:real-time_scheduler:2.3.0.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:service_bus:12.1.3.0.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:financial_services_analytical_applications_infrastructure:7.3.5:*:*:*:*:*:*:*

OR cpe:/a:oracle:financial_services_market_risk_measurement_and_management:8.0.5:*:*:*:*:*:*:*

OR cpe:/a:ibm:infosphere_information_server:11.7:*:*:*:*:*:*:*

OR cpe:/a:oracle:retail_invoice_matching:15.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:utilities_framework:4.3.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:banking_platform:2.6:*:*:*:*:*:*:*

OR cpe:/a:oracle:enterprise_manager_ops_center:12.3.3:*:*:*:*:*:*:*

OR cpe:/a:ibm:qradar_security_information_and_event_manager:7.3:*:*:*:*:*:*:*

OR cpe:/a:oracle:primavera_unifier:17.12:*:*:*:*:*:*:*

OR cpe:/a:oracle:fusion_middleware_mapviewer:12.2.1.3:*:*:*:*:*:*:*

OR cpe:/a:oracle:business_process_management_suite:12.2.1.3.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:jdeveloper:12.2.1.3.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:banking_platform:2.6.1:*:*:*:*:*:*:*

OR cpe:/a:oracle:banking_platform:2.6.2:*:*:*:*:*:*:*

OR cpe:/a:ibm:rational_team_concert:6.0.6:*:*:*:*:*:*:*

OR cpe:/a:oracle:primavera_unifier:18.8:*:*:*:*:*:*:*

OR cpe:/a:oracle:primavera_gateway:17.12:*:*:*:*:*:*:*

OR cpe:/a:oracle:communications_application_session_controller:3.7.1:*:*:*:*:*:*:*

OR cpe:/a:oracle:hospitality_materials_control:18.1:*:*:*:*:*:*:*

OR cpe:/a:oracle:retail_sales_audit:15.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:business_intelligence:12.2.1.4.0::~~enterprise~~~:*:*:*:*:*

OR cpe:/a:oracle:peoplesoft_enterprise_peopletools:8.57:*:*:*:*:*:*:*

OR cpe:/a:oracle:service_bus:12.2.1.3.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:healthcare_translational_research:3.1.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:cloud_private:3.1.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:retail_workforce_management:1.60.9:*:*:*:*:*:*:*

OR cpe:/a:oracle:hospitality_reporting_and_analytics:9.1.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:healthcare_foundation:7.1:*:*:*:*:*:*:*

OR cpe:/a:oracle:healthcare_foundation:7.2:*:*:*:*:*:*:*

OR cpe:/a:oracle:oss_support_tools:19.1:*:*:*:*:*:*:*

OR cpe:/a:oracle:agile_product_lifecycle_management_for_process:6.2.0.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:communications_converged_application_server:7.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:insurance_insbridge_rating_and_underwriting:5.2:*:*:*:*:*:*:*

OR cpe:/a:oracle:insurance_insbridge_rating_and_underwriting:5.4:*:*:*:*:*:*:*

OR cpe:/a:oracle:insurance_insbridge_rating_and_underwriting:5.5:*:*:*:*:*:*:*

OR cpe:/a:oracle:financial_services_analytical_applications_infrastructure:8.0.7:*:*:*:*:*:*:*

OR cpe:/a:ibm:qradar_security_information_and_event_manager:7.3.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:security_privileged_identity_manager:2.1.1:*:*:*:*:*:*:*

OR cpe:/a:ibm:cognos_command_center:10.2.4.1:*:*:*:*:*:*:*

OR cpe:/a:ibm:bigfix_platform:9.5.11:*:*:*:*:*:*:*

OR cpe:/a:oracle:communications_interactive_session_recorder:6.1:*:*:*:*:*:*:*

OR cpe:/a:oracle:communications_interactive_session_recorder:6.2:*:*:*:*:*:*:*

OR cpe:/a:oracle:communications_interactive_session_recorder:6.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:communications_application_session_controller:3.8.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:financial_services_market_risk_measurement_and_management:8.0.6:*:*:*:*:*:*:*

OR cpe:/a:oracle:retail_customer_management_and_segmentation_foundation:18.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:retail_allocation:15.0.2:*:*:*:*:*:*:*

OR cpe:/a:oracle:enterprise_operations_monitor:3.4:*:*:*:*:*:*:*

OR cpe:/a:oracle:enterprise_operations_monitor:4.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:financial_services_profitability_management:8.0.6:*:*:*:*:*:*:*

OR cpe:/a:oracle:financial_services_funds_transfer_pricing:8.0.7:*:*:*:*:*:*:*

OR cpe:/a:oracle:financial_services_asset_liability_management:8.0.7:*:*:*:*:*:*:*

OR cpe:/a:oracle:financial_services_analytical_applications_reconciliation_framework:8.0.5:*:*:*:*:*:*:*

OR cpe:/a:oracle:financial_services_analytical_applications_reconciliation_framework:8.0.6:*:*:*:*:*:*:*

OR cpe:/a:oracle:utilities_mobile_workforce_management:2.3.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:financial_services_hedge_management_and_ifrs_valuations:8.0.7:*:*:*:*:*:*:*

OR cpe:/a:oracle:financial_services_loan_loss_forecasting_and_provisioning:8.0.7:*:*:*:*:*:*:*

OR cpe:/a:ibm:security_directory_server:6.4.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:cloud_transformation_advisor:2.0.1:*:*:*:*:*:*:*

OR cpe:/a:ibm:security_secret_server:10.8:*:*:*:*:*:*:*

OR cpe:/a:ibm:security_guardium:11.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:business_process_manager:8.5.6.2:*:*:*:standard:*:*:*

OR cpe:/a:ibm:business_process_manager:8.5.6.1:*:*:*:standard:*:*:*

OR cpe:/a:ibm:security_guardium:11.1:*:*:*:*:*:*:*

OR cpe:/a:oracle:knowledge:8.6.3:*:*:*:*:*:*:*

OR cpe:/a:ibm:rational_collaborative_lifecycle_management:7.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:qradar_security_information_and_event_manager:7.4:-:*:*:*:*:*:*

OR cpe:/a:ibm:security_identity_manager_virtual_appliance:7.0.2:*:*:*:*:*:*:*

OR cpe:/a:ibm:rational_team_concert:7.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:security_identity_manager_virtual_appliance:7.0.1:*:*:*:*:*:*:*

OR cpe:/a:ibm:api_connect:10.0.0.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:qradar_security_information_and_event_manager:7.4.0:-:*:*:*:*:*:*

OR cpe:/a:ibm:api_connect:5.0.8.10:*:*:*:*:*:*:*

OR cpe:/a:ibm:engineering_workflow_management:7.0.1:*:*:*:*:*:*:*

OR cpe:/a:ibm:engineering_workflow_management:7.0.2:*:*:*:*:*:*:*

OR cpe:/a:ibm:api_connect:10.0.1.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:qradar_security_information_and_event_manager:7.4.3:-:*:*:*:*:*:*

OR cpe:/a:ibm:qradar_security_information_and_event_manager:7.3.3:p8:*:*:*:*:*:*

OR cpe:/a:ibm:cloud_pak_for_security:1.7.2.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:cics_tx:11.1:*:*:*:standard:*:*:*

OR cpe:/a:ibm:cics_tx:11.1:*:*:*:advanced:*:*:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:org.opensuse.security:def:20159251	V	CVE-2015-9251	2023-06-22
oval:org.opensuse.security:def:7660	P	libruby2_5-2_5-2.5.9-150000.4.26.1 on GA media (Moderate)	2023-06-12
oval:org.opensuse.security:def:52004	P	Security update for net-snmp (Moderate)	2023-01-12
oval:org.opensuse.security:def:51975	P	Security update for curl (Important)	2022-12-21
oval:org.opensuse.security:def:787	P	Security update for slurm (Important)	2022-09-29
oval:org.opensuse.security:def:4756	P	Security update for compat-openssl098 (Important)	2022-08-16
oval:org.opensuse.security:def:3070	P	freeradius-server-3.0.19-1.48 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3136	P	libXext6-1.3.2-4.3.1 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3231	P	libpcsclite1-1.8.10-7.6.3 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3213	P	libmusicbrainz4-2.1.5-27.79 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3225	P	libopus0-1.1-3.1 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3122	P	lcms2-2.7-9.7.1 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3228	P	libpango-1_0-0-1.40.1-9.5 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3204	P	liblouis-data-2.6.4-6.6.1 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3110	P	jakarta-taglibs-standard-1.1.1-255.2 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3174	P	libgc1-7.2d-5.1 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3163	P	libcroco-0_6-3-0.6.11-12.3.1 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3227	P	libotr5-4.0.0-9.1 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3115	P	java-1_8_0-openjdk-1.8.0.222-27.35.2 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3155	P	libarchive13-3.1.2-26.3.1 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:94700	P	libruby2_5-2_5-2.5.9-150000.4.23.1 on GA media (Moderate)	2022-06-22
oval:org.opensuse.security:def:5276	P	Security update for openssl-1_0_0 (Important)	2022-06-16
oval:org.opensuse.security:def:193	P	libruby2_5-2_5-2.5.9-4.17.1 on GA media (Moderate)	2022-06-13
oval:org.opensuse.security:def:4618	P	Security update for the Linux Kernel (Live Patch 19 for SLE 12 SP5) (Important)	2022-06-06
oval:org.opensuse.security:def:4613	P	Security update for the Linux Kernel (Live Patch 20 for SLE 12 SP5) (Important)	2022-05-23
oval:org.opensuse.security:def:4611	P	Security update for the Linux Kernel (Live Patch 27 for SLE 12 SP5) (Important)	2022-05-21
oval:org.opensuse.security:def:4606	P	Security update for the Linux Kernel (Live Patch 21 for SLE 12 SP5) (Important)	2022-05-21
oval:org.opensuse.security:def:5251	P	Security update for unrar (Moderate)	2022-05-19
oval:org.opensuse.security:def:1803	P	Security update for the Linux Kernel (Important)	2022-05-16
oval:org.opensuse.security:def:1802	P	Security update for pidgin (Important)	2022-05-16
oval:org.opensuse.security:def:4601	P	Security update for the Linux Kernel (Live Patch 19 for SLE 12 SP5) (Important)	2022-05-10
oval:org.opensuse.security:def:4598	P	Security update for the Linux Kernel (Live Patch 22 for SLE 12 SP5) (Important)	2022-05-10
oval:org.opensuse.security:def:4593	P	Security update for the Linux Kernel (Live Patch 20 for SLE 12 SP5) (Important)	2022-05-09
oval:org.opensuse.security:def:4594	P	Security update for the Linux Kernel (Live Patch 24 for SLE 12 SP5) (Important)	2022-05-09
oval:org.opensuse.security:def:4733	P	Security update for the Linux Kernel (Important)	2022-04-26
oval:org.opensuse.security:def:4590	P	Security update for the Linux Kernel (Live Patch 26 for SLE 12 SP5) (Important)	2022-04-25
oval:org.opensuse.security:def:4579	P	Security update for the Linux Kernel (Live Patch 23 for SLE 12 SP5) (Important)	2022-04-20
oval:org.opensuse.security:def:4566	P	Security update for the Linux Kernel (Live Patch 17 for SLE 12 SP5) (Important)	2022-04-13
oval:org.opensuse.security:def:1797	P	Security update for the Linux Kernel (Important)	2022-04-13
oval:org.opensuse.security:def:4703	P	Security update for the Linux Kernel (Live Patch 21 for SLE 12 SP5) (Important)	2022-03-29
oval:org.opensuse.security:def:4708	P	Security update for the Linux Kernel (Live Patch 23 for SLE 12 SP5) (Important)	2022-03-29
oval:org.opensuse.security:def:1819	P	Security update for MozillaThunderbird (Important)	2022-03-21
oval:org.opensuse.security:def:1818	P	Security update for libreoffice (Moderate)	2022-03-17
oval:org.opensuse.security:def:4740	P	Security update for the Linux RT Kernel (Critical)	2022-02-22
oval:org.opensuse.security:def:1813	P	Security update for strongswan (Important)	2022-02-18
oval:org.opensuse.security:def:93843	P	(Important)	2022-02-18
oval:org.opensuse.security:def:4680	P	Security update for the Linux Kernel (Live Patch 18 for SLE 12 SP5) (Critical)	2022-02-16
oval:org.opensuse.security:def:4663	P	Security update for the Linux Kernel (Live Patch 21 for SLE 12 SP5) (Important)	2022-02-01
oval:org.opensuse.security:def:1806	P	Security update for MozillaThunderbird (Important)	2022-01-26
oval:org.opensuse.security:def:4742	P	Security update for the Linux Kernel (Important)	2022-01-17
oval:org.opensuse.security:def:1815	P	Security update for MozillaThunderbird (Important)	2022-01-12
oval:org.opensuse.security:def:1794	P	Security update for gegl (Important)	2021-12-31
oval:org.opensuse.security:def:1793	P	Security update for gegl (Important)	2021-12-31
oval:org.opensuse.security:def:1792	P	Security update for MozillaThunderbird (Important)	2021-12-22
oval:org.opensuse.security:def:69774	P	Security update for log4j (Important)	2021-12-17
oval:org.opensuse.security:def:4545	P	Security update for the Linux Kernel (Live Patch 17 for SLE 12 SP5) (Important)	2021-12-14
oval:org.opensuse.security:def:4538	P	Security update for the Linux Kernel (Live Patch 24 for SLE 12 SP5) (Important)	2021-12-14
oval:org.opensuse.security:def:64594	P	Security update for python-Pygments (Important)	2021-10-20
oval:org.opensuse.security:def:4494	P	Security update for the Linux Kernel (Live Patch 22 for SLE 12 SP5) (Important)	2021-10-12
oval:org.opensuse.security:def:68354	P	Security update for the Linux Kernel (Live Patch 1 for SLE 15 SP3) (Important)	2021-09-16
oval:org.opensuse.security:def:4480	P	Security update for the Linux Kernel (Live Patch 10 for SLE 12 SP5) (Important)	2021-09-16
oval:org.opensuse.security:def:1122	P	Security update for jetty-minimal (Moderate)	2021-08-25
oval:org.opensuse.security:def:4468	P	Security update for the Linux Kernel (Live Patch 18 for SLE 12 SP5) (Important)	2021-08-17
oval:org.opensuse.security:def:4476	P	Security update for the Linux Kernel (Live Patch 10 for SLE 12 SP5) (Important)	2021-08-17
oval:org.opensuse.security:def:48325	P	tomcat-9.0.21-3.13.2 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48310	P	squid-4.8-2.17 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48309	P	squashfs-4.3-6.2 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:63485	P	libgstreamer-1_0-0-32bit-1.16.2-1.53 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:62786	P	libgxps-devel-0.3.0-4.3.29 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:62811	P	librsvg-devel-2.46.5-3.3.1 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:100969	P	libruby2_5-2_5-2.5.9-4.17.1 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:62211	P	libruby2_5-2_5-2.5.9-4.17.1 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:71810	P	emacs-25.3-3.6.51 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:71952	P	libruby2_5-2_5-2.5.9-4.17.1 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:62783	P	libexif-devel-0.6.22-5.6.1 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:62989	P	apache-commons-compress-1.19-1.63 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:62779	P	libcdio16-0.94-6.9.2 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:72481	P	imlib2-loaders-1.4.10-1.28 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:4463	P	Security update for the Linux Kernel (Live Patch 7 for SLE 12 SP5) (Important)	2021-07-27
oval:org.opensuse.security:def:4450	P	Security update for the Linux Kernel (Live Patch 20 for SLE 12 SP5) (Important)	2021-07-27
oval:org.opensuse.security:def:64536	P	Security update for cryptctl (Important)	2021-06-23
oval:org.opensuse.security:def:69879	P	Security update for cryptctl (Important)	2021-06-23
oval:org.opensuse.security:def:69128	P	Security update for apache2 (Important)	2021-06-22
oval:org.opensuse.security:def:51590	P	Security update for apache2 (Important)	2021-06-17
oval:org.opensuse.security:def:48780	P	java-1_7_0-openjdk-plugin-1.6.1-2.3.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48643	P	vsftpd-3.0.2-31.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48447	P	iputils-s20121221-2.17 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:2461	P	libpskc-devel-2.6.2-1.15 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:64706	P	Security update for libX11 (Important)	2021-06-08
oval:org.opensuse.security:def:2457	P	libmwaw-0_3-3-0.3.13-2.25 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48873	P	libtag1-32bit-1.9.1-1.265 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:4413	P	Security update for the Linux Kernel (Live Patch 13 for SLE 12 SP5) (Important)	2021-05-25
oval:org.opensuse.security:def:4723	P	Security update for the Linux Kernel (Important)	2021-05-14
oval:org.opensuse.security:def:51555	P	Security update for cups (Important)	2021-04-30
oval:org.opensuse.security:def:51869	P	Security update for spamassassin (Important)	2021-04-12
oval:org.opensuse.security:def:49461	P	Security update for nodejs12 (Important)	2021-02-26
oval:org.opensuse.security:def:51721	P	Security update for the Linux Kernel (Live Patch 33 for SLE 12 SP3) (Important)	2021-02-10
oval:org.opensuse.security:def:51153	P	Security update for the Linux Kernel (Live Patch 38 for SLE 12 SP2) (Important)	2021-02-10
oval:org.opensuse.security:def:74648	P	Security update for go1.14 (Moderate)	2021-01-26
oval:org.opensuse.security:def:66431	P	Security update for python3 (Important)	2020-12-23
oval:org.opensuse.security:def:4370	P	Security update for the Linux Kernel (Live Patch 9 for SLE 12 SP5) (Important)	2020-12-07
oval:org.opensuse.security:def:72365	P	ibus-chewing-1.6.1-1.53 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:3869	P	cracklib-devel-2.9.0-7.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:100556	P	libruby2_5-2_5-2.5.8-4.11.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:63632	P	libproxy1-config-gnome3-0.4.15-2.42 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:61876	P	libruby2_5-2_5-2.5.8-4.11.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:71617	P	libruby2_5-2_5-2.5.8-4.11.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:63282	P	libspice-server-devel-0.14.2-1.58 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:116780	P	libruby2_5-2_5-2.5.8-4.11.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:49024	P	libosip2-3.5.0-20.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:71694	P	ppc64-diag-2.7.6-1.53 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:3882	P	evince-devel-3.20.2-6.27.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:107222	P	libruby2_5-2_5-2.5.8-4.11.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:4899	P	Security update for xen (Important)	2020-12-02
oval:org.opensuse.security:def:4840	P	Security update for squid (Moderate)	2020-12-02
oval:org.opensuse.security:def:4872	P	Security update for memcached (Moderate)	2020-12-02
oval:org.opensuse.security:def:4886	P	Security update for postgresql10 and postgresql12 (Moderate)	2020-12-02
oval:org.opensuse.security:def:4354	P	Security update for the Linux Kernel (Live Patch 18 for SLE 15) (Important)	2020-12-02
oval:org.opensuse.security:def:4815	P	Security update for openwsman (Important)	2020-12-02
oval:org.opensuse.security:def:5422	P	Recommended update for ruby2.5 (Important)	2020-12-02
oval:org.opensuse.security:def:5568	P	Recommended update for ruby2.5 (Important)	2020-12-02
oval:org.opensuse.security:def:4879	P	Security update for virglrenderer (Important)	2020-12-02
oval:org.opensuse.security:def:5394	P	Security update for systemd (Important)	2020-12-02
oval:org.opensuse.security:def:4346	P	Security update for the Linux Kernel (Live Patch 10 for SLE 15) (Important)	2020-12-02
oval:org.opensuse.security:def:4746	P	Security update for xen (Important)	2020-12-02
oval:org.opensuse.security:def:5537	P	Security update for u-boot (Important)	2020-12-02
oval:org.opensuse.security:def:50392	P	Recommended update for sles12sp3-docker-image, sles12sp4-image, system-user-root (Important)	2020-12-01
oval:org.opensuse.security:def:52064	P	Security update for java-1_8_0-ibm (Moderate)	2020-12-01
oval:org.opensuse.security:def:53742	P	Recommended update for ruby2.5 (Important)	2020-12-01
oval:org.opensuse.security:def:50917	P	Security update for jasper (Low)	2020-12-01
oval:org.opensuse.security:def:63861	P	Security update for procps (Important)	2020-12-01
oval:org.opensuse.security:def:52171	P	Security update for libX11 (Important)	2020-12-01
oval:org.opensuse.security:def:53525	P	Security update for dovecot23 (Important)	2020-12-01
oval:org.opensuse.security:def:50881	P	Security update for libsolv, libzypp, zypper (Moderate)	2020-12-01
oval:org.opensuse.security:def:51278	P	Security update for vino (Moderate)	2020-12-01
oval:org.opensuse.security:def:68457	P	Recommended update for ruby2.5 (Important)	2020-12-01
oval:org.opensuse.security:def:50758	P	Security update for libcroco (Low)	2020-12-01
oval:org.opensuse.security:def:52392	P	Security update for ldb (Moderate)	2020-12-01
oval:org.opensuse.security:def:50897	P	Recommended update for ruby2.5 (Important)	2020-12-01
oval:org.opensuse.security:def:50233	P	kernel-default-extra on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:52112	P	Security update for java-11-openjdk (Important)	2020-12-01
oval:org.opensuse.security:def:73214	P	libruby2_5-2_5 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50870	P	Security update for wicked (Important)	2020-12-01
oval:org.opensuse.security:def:49174	P	libidn-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:52203	P	Security update for slurm (Moderate)	2020-12-01
oval:org.opensuse.security:def:73096	P	graphviz on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:65110	P	Recommended update for ruby2.5 (Important)	2020-12-01
oval:org.opensuse.security:def:51041	P	Security update for containerd, docker, docker-runc, go, go1.11, go1.12, golang-github-docker-libnetwork (Important)	2020-12-01
oval:org.opensuse.security:def:49564	P	libndp-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49331	P	shim on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:52311	P	Security update for openssl-1_1 (Moderate)	2020-12-01
oval:org.opensuse.security:def:74781	P	Recommended update for ruby2.5 (Important)	2020-12-01
oval:org.opensuse.security:def:49647	P	libSDL-1_2-0 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50133	P	tomcat on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:53668	P	Security update for samba (Moderate)	2020-12-01
oval:org.opensuse.security:def:50880	P	Security update for sudo (Important)	2020-12-01
oval:org.opensuse.security:def:49396	P	cups-pk-helper on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:52314	P	Recommended update for ruby2.5 (Important)	2020-12-01
oval:org.opensuse.security:def:51425	P	Security update for gdb (Moderate)	2020-12-01
oval:org.opensuse.security:def:64327	P	libgd3 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49492	P	vino on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49245	P	libtidy5 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:52136	P	Security update for unbound (Important)	2020-12-01
oval:org.opensuse.security:def:50840	P	Security update for freetype2 (Important)	2020-12-01
oval:org.opensuse.security:def:49628	P	gdk-pixbuf-query-loaders-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49982	P	stunnel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:65781	P	Recommended update for ruby2.5 (Important)	2020-12-01
oval:org.opensuse.security:def:50976	P	Security update for libqt5-qtbase (Important)	2020-12-01
oval:org.opensuse.security:def:50729	P	Security update for xen (Important)	2020-12-01
oval:org.opensuse.security:def:50781	P	Security update for webkit2gtk3 (Important)	2020-12-01
oval:org.opensuse.security:def:51320	P	Security update for MozillaFirefox (Important)	2020-12-01
oval:org.opensuse.security:def:64326	P	libgcrypt-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:65020	P	Security update for curl (Moderate)	2020-12-01
oval:org.opensuse.security:def:50803	P	Security update for grub2 (Important)	2020-12-01
oval:org.opensuse.security:def:53597	P	Recommended update for ruby2.5 (Important)	2020-12-01
oval:org.opensuse.security:def:49775	P	build on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:64434	P	perl-HTML-Parser on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50902	P	Security update for icu (Important)	2020-12-01
oval:org.opensuse.security:def:69025	P	Security update for jasper (Moderate)	2020-12-01
oval:org.opensuse.security:def:50636	P	Security update for java-11-openjdk (Important)	2020-12-01
oval:org.opensuse.security:def:52275	P	Security update for slurm (Important)	2020-12-01
oval:org.opensuse.security:def:52252	P	Security update for zeromq (Moderate)	2020-12-01
oval:org.opensuse.security:def:50759	P	Security update for vim (Moderate)	2020-12-01
oval:org.opensuse.security:def:64190	P	cluster-md-kmp-default on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:66523	P	libruby2_5-2_5 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49627	P	gd on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:52249	P	Security update for ImageMagick (Moderate)	2020-12-01
oval:org.opensuse.security:def:49228	P	libruby2_5-2_5 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50903	P	Security update for glibc (Important)	2020-12-01
oval:org.opensuse.security:def:51449	P	Security update for ImageMagick (Moderate)	2020-12-01
oval:org.opensuse.security:def:65691	P	Security update for tigervnc (Critical)	2020-12-01
oval:com.redhat.rhsa:def:20204670	P	RHSA-2020:4670: idm:DL1 and idm:client security, bug fix, and enhancement update (Moderate)	2020-11-04
oval:com.redhat.rhsa:def:20204847	P	RHSA-2020:4847: pki-core:10.6 and pki-deps:10.6 security, bug fix, and enhancement update (Moderate)	2020-11-04
oval:com.redhat.rhsa:def:20203936	P	RHSA-2020:3936: ipa security, bug fix, and enhancement update (Moderate)	2020-09-29
oval:org.opensuse.security:def:110443	P	Recommended update for ruby2.5 (Important)	2020-03-28
oval:org.opensuse.security:def:91171	P	Recommended update for ruby2.5 (Important)	2020-03-20
oval:org.opensuse.security:def:104106	P	Recommended update for ruby2.5 (Important)	2020-03-20
oval:org.opensuse.security:def:104826	P	Recommended update for ruby2.5 (Important)	2020-03-20
oval:org.opensuse.security:def:97416	P	Recommended update for ruby2.5 (Important)	2020-03-20
oval:org.opensuse.security:def:90451	P	Recommended update for ruby2.5 (Important)	2020-03-20
oval:org.opensuse.security:def:98136	P	Recommended update for ruby2.5 (Important)	2020-03-20
oval:org.opensuse.security:def:75532	P	Recommended update for ruby2.5 (Important)	2020-03-20
oval:com.ubuntu.xenial:def:201592510000000	V	CVE-2015-9251 on Ubuntu 16.04 LTS (xenial) - low.	2018-01-18
oval:com.ubuntu.artful:def:20159251000	V	CVE-2015-9251 on Ubuntu 17.10 (artful) - low.	2018-01-18
oval:com.ubuntu.xenial:def:20159251000	V	CVE-2015-9251 on Ubuntu 16.04 LTS (xenial) - low.	2018-01-18
oval:com.ubuntu.bionic:def:20159251000	V	CVE-2015-9251 on Ubuntu 18.04 LTS (bionic) - low.	2018-01-18
oval:com.ubuntu.cosmic:def:201592510000000	V	CVE-2015-9251 on Ubuntu 18.10 (cosmic) - low.	2018-01-18
oval:com.ubuntu.cosmic:def:20159251000	V	CVE-2015-9251 on Ubuntu 18.10 (cosmic) - low.	2018-01-18
oval:com.ubuntu.bionic:def:201592510000000	V	CVE-2015-9251 on Ubuntu 18.04 LTS (bionic) - low.	2018-01-18
oval:com.ubuntu.trusty:def:20159251000	V	CVE-2015-9251 on Ubuntu 14.04 LTS (trusty) - low.	2018-01-18