Vulnerability Name:

CVE-2018-7160 (CCN-143447)

Assigned:2018-03-21
Published:2018-03-21
Updated:2022-08-16
Summary:The Node.js inspector, in 6.x and later is vulnerable to a DNS rebinding attack which could be exploited to perform remote code execution. An attack is possible from malicious websites open in a web browser on the same computer, or another computer with network access to the computer running the Node.js process. A malicious website could use a DNS rebinding attack to trick the web browser to bypass same-origin-policy checks and to allow HTTP connections to localhost or to hosts on the local network. If a Node.js process with the debug port active is running on localhost or on a host on the local network, the malicious website could connect to it as a debugger, and get full code execution access.
CVSS v3 Severity:8.8 High (CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H)
7.7 High (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): Required
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): High
Integrity (I): High
Availibility (A): High
5.8 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:L/A:L)
5.1 Medium (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:L/A:L/E:U/RL:O/RC:C)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): High
Privileges Required (PR): None
User Interaction (UI): Required
Scope:Scope (S): Changed
Impact Metrics:Confidentiality (C): Low
Integrity (I): Low
Availibility (A): Low
CVSS v2 Severity:6.8 Medium (CVSS v2 Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Medium
Authentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): Partial
Availibility (A): Partial
4.6 Medium (CCN CVSS v2 Vector: AV:N/AC:H/Au:S/C:P/I:P/A:P)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): High
Athentication (Au): Single_Instance
Impact Metrics:Confidentiality (C): Partial
Integrity (I): Partial
Availibility (A): Partial
Vulnerability Type:CWE-290
Vulnerability Consequences:Bypass Security
References:Source: MITRE
Type: CNA
CVE-2018-7160

Source: CCN
Type: IBM Security Bulletin 0715995 (i)
Multiple Vulnerabilities in Node.js affect IBM i

Source: CCN
Type: IBM Security Bulletin 718897 (Cloud Private)
Multiple Security Vulnerabilities affect IBM Cloud Private and IBM Cloud Private Cloud Foundry (CVE-2018-7158, CVE-2018-7159, CVE-2018-7160)

Source: CCN
Type: IBM Security Bulletin 738991 (QRadar SIEM)
Node.js as used in IBM QRadar Packet Capture is susceptible to multiple vulnerabilities

Source: CCN
Type: IBM Security Bulletin 843434 (API Connect)
IBM API Connect has addressed multiple vulnerabilities in Developer Portal's dependencies - Cumulative list from June 28, 2018 to December 13, 2018

Source: CCN
Type: IBM Security Bulletin 2011860 (SDK for Node.js)
Security vulnerabilities in IBM SDK for Node.js affect IBM SDK for Node.js in IBM Cloud (CVE-2018-7158, CVE-2018-7159, CVE-2018-7160)

Source: XF
Type: UNKNOWN
nodejs-inspector-cve20187160-sec-bypass(143447)

Source: CCN
Type: Node.js Blog, 2018-03-21
March 2018 Security Releases

Source: CONFIRM
Type: Vendor Advisory
https://nodejs.org/en/blog/vulnerability/march-2018-security-releases/

Source: CCN
Type: Node.js Blog, 2022-09-23
September 22nd 2022 Security Releases

Source: CONFIRM
Type: Third Party Advisory
https://support.f5.com/csp/article/K63025104?utm_source=f5support&utm_medium=RSS

Source: CCN
Type: IBM Security Bulletin 733002 (Integration Bus)
Multiple vulnerabilities in Node.js affect IBM Integration Bus & IBM App Connect Enterprise V11

Source: CCN
Type: IBM Security Bulletin 735757 (API Connect)
IBM API Connect is affected by multiple third-party vulnerabilities (Node.js, nghttp2, Linux, Intel CPU, Android)

Source: CCN
Type: IBM Security Bulletin 0740011 (Planning Analytics Local)
IBM Planning Analytics Local is affected by multiple Node.js vulnerabilities

Source: CCN
Type: IBM Security Bulletin 2016866 (Business Automation Workflow)
Security vulnerabilities in IBM SDK for Node.js might affect the configuration editor used by IBM Business Automation Workflow and Business Process Manager (BPM)

Source: N/A
Type: Third Party Advisory
N/A

Vulnerable Configuration:Configuration 1:
  • cpe:/a:nodejs:node.js:*:*:*:*:lts:*:*:* (Version >= 6.9.0 and < 6.14.0)
  • OR cpe:/a:nodejs:node.js:*:*:*:*:lts:*:*:* (Version >= 8.9.0 and < 8.11.0)
  • OR cpe:/a:nodejs:node.js:*:*:*:*:-:*:*:* (Version >= 6.0.0 and <= 6.8.1)
  • OR cpe:/a:nodejs:node.js:*:*:*:*:-:*:*:* (Version >= 8.0.0 and <= 8.8.1)
  • OR cpe:/a:nodejs:node.js:*:*:*:*:-:*:*:* (Version >= 9.0.0 and < 9.10.0)

    • Configuration CCN 1:
  • cpe:/a:nodejs:node.js:14.0:*:*:*:*:*:*:*
  • AND
  • cpe:/a:ibm:sdk:*:*:*:*:node.js:*:*:*
  • OR cpe:/a:ibm:api_connect:5.0.0.0:*:*:*:*:*:*:*
  • OR cpe:/a:nodejs:node.js:*:*:*:*:-:*:*:*
  • OR cpe:/a:ibm:planning_analytics_local:2.0:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:api_connect:5.0.8.0:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:business_automation_workflow:18.0.0.0:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:qradar_security_information_and_event_manager:7.2:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:qradar_security_information_and_event_manager:7.3:*:*:*:*:*:*:*
  • OR cpe:/o:ibm:i:-:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:business_automation_workflow:8.5.5:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:business_automation_workflow:8.5.6:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:business_automation_workflow:8.5.6.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:business_automation_workflow:8.5.6.2:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:business_automation_workflow:8.5.7:CF201606:*:*:*:*:*:*
  • OR cpe:/a:ibm:business_automation_workflow:8.5.7:CF201609:*:*:*:*:*:*
  • OR cpe:/a:ibm:business_automation_workflow:8.5.7:CF201612:*:*:*:*:*:*
  • OR cpe:/a:ibm:business_automation_workflow:8.5.7:CF201703:*:*:*:*:*:*
  • OR cpe:/a:ibm:business_automation_workflow:8.5.7:CF201706:*:*:*:*:*:*
  • OR cpe:/a:ibm:business_automation_workflow:8.5.7:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:business_automation_workflow:8.6.0:CF201712:*:*:*:*:*:*
  • OR cpe:/a:ibm:business_automation_workflow:8.6.0:CF201803:*:*:*:*:*:*
  • OR cpe:/a:ibm:business_automation_workflow:8.6:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:cloud_private:2.1.0:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:api_connect:5.0.8.4:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:integration_bus:10.0.0:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:integration_bus:10.0.0.14:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:app_connect:11:*:*:*:enterprise:*:*:*
  • OR cpe:/a:ibm:app_connect:11.0.0.0:*:*:*:enterprise:*:*:*
  • OR cpe:/a:ibm:app_connect:11.0.0.2:*:*:*:enterprise:*:*:*
  • OR cpe:/a:ibm:integration_bus:10.0.0.0:*:*:*:*:*:*:*

    • * Denotes that component is vulnerable
    Oval Definitions
    Definition IDClassTitleLast Modified
    oval:org.opensuse.security:def:20187160
    V
    		CVE-2018-7160
    2022-09-02
    oval:org.opensuse.security:def:94261
    P
    		 (Important)
    2022-07-14
    oval:org.opensuse.security:def:94259
    P
    		 (Important)
    2022-07-12
    oval:org.opensuse.security:def:1682
    P
    		Security update for apache2 (Important) (in QA)
    2022-06-14
    oval:org.opensuse.security:def:1681
    P
    		Security update for qemu (Important) (in QA)
    2022-06-13
    oval:org.opensuse.security:def:1673
    P
    		Security update for postgresql14 (Important)
    2022-06-01
    oval:org.opensuse.security:def:1095
    P
    		Security update for wavpack (Moderate)
    2022-03-28
    oval:org.opensuse.security:def:1094
    P
    		Security update for libqt5-qtbase (Important)
    2022-03-15
    oval:org.opensuse.security:def:1691
    P
    		Security update for mariadb (Important)
    2022-03-04
    oval:org.opensuse.security:def:1689
    P
    		Security update for python-Twisted (Important)
    2022-02-18
    oval:org.opensuse.security:def:38668
    P
    		Security update for MozillaFirefox (Important) (in QA)
    2022-01-17
    oval:org.opensuse.security:def:32286
    P
    		Security update for MozillaFirefox (Important) (in QA)
    2022-01-14
    oval:org.opensuse.security:def:1086
    P
    		Security update for openexr (Important)
    2022-01-12
    oval:org.opensuse.security:def:58073
    P
    		Security update for log4j (Important)
    2021-12-17
    oval:org.opensuse.security:def:33753
    P
    		Security update for MozillaFirefox (Important)
    2021-12-12
    oval:org.opensuse.security:def:33060
    P
    		Security update for MozillaFirefox (Important)
    2021-12-12
    oval:org.opensuse.security:def:30159
    P
    		Security update for mozilla-nss (Important)
    2021-12-06
    oval:org.opensuse.security:def:58049
    P
    		Security update for webkit2gtk3 (Important)
    2021-11-23
    oval:org.opensuse.security:def:33742
    P
    		Security update for postgresql10 (Important)
    2021-11-22
    oval:org.opensuse.security:def:33037
    P
    		Security update for tomcat (Important)
    2021-11-03
    oval:org.opensuse.security:def:35273
    P
    		Security update for util-linux (Moderate)
    2021-10-20
    oval:org.opensuse.security:def:29429
    P
    		Security update for libqt5-qtbase (Important)
    2021-09-30
    oval:org.opensuse.security:def:38717
    P
    		Security update for atftp (Moderate)
    2021-09-29
    oval:org.opensuse.security:def:66930
    P
    		Security update for ffmpeg (Important)
    2021-09-23
    oval:org.opensuse.security:def:71348
    P
    		mozilla-nspr-32bit-4.20-3.3.2 on GA media (Moderate)
    2021-09-21
    oval:org.opensuse.security:def:71349
    P
    		mutt-1.10.1-3.3.4 on GA media (Moderate)
    2021-09-21
    oval:org.opensuse.security:def:66928
    P
    		Security update for grafana-piechart-panel (Moderate)
    2021-09-21
    oval:org.opensuse.security:def:64761
    P
    		Security update for java-11-openjdk (Important)
    2021-09-03
    oval:org.opensuse.security:def:64762
    P
    		Security update for apache2 (Important)
    2021-09-03
    oval:org.opensuse.security:def:29417
    P
    		Security update for libesmtp (Important)
    2021-09-02
    oval:org.opensuse.security:def:29418
    P
    		Security update for file (Important)
    2021-09-02
    oval:org.opensuse.security:def:30120
    P
    		Security update for bind (Moderate)
    2021-08-30
    oval:org.opensuse.security:def:57999
    P
    		Security update for aspell (Important)
    2021-08-25
    oval:org.opensuse.security:def:70284
    P
    		Security update for mariadb (Moderate)
    2021-08-25
    oval:org.opensuse.security:def:34514
    P
    		Security update for qemu (Moderate)
    2021-08-23
    oval:org.opensuse.security:def:47607
    P
    		fetchmail-6.3.26-12.3 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:14235
    P
    		libicu-doc-52.1-7.1 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:48308
    P
    		spice-vdagent-0.16.0-8.5.15 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:47608
    P
    		file-5.22-10.6.1 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:47752
    P
    		libopenjp2-7-2.1.0-4.9.1 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:13989
    P
    		opensc-0.13.0-1.107 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:47622
    P
    		glibc-2.22-15.3 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:47944
    P
    		alsa-1.0.27.2-15.1 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:48169
    P
    		libpcre1-32bit-8.39-8.3.1 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:14315
    P
    		libxml2-2-2.9.4-45.1 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:47615
    P
    		gdk-pixbuf-lang-2.34.0-19.17.1 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:14123
    P
    		dovecot22-2.2.30.2-14.2 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:48068
    P
    		libQt5WebKit5-5.6.2-1.31 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:48316
    P
    		sysconfig-0.84.0-13.1 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:47617
    P
    		gdm-3.10.0.1-54.6.3 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:14260
    P
    		libmysqlclient18-10.0.30-28.1 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:47630
    P
    		groff-1.22.2-5.287 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:47945
    P
    		ant-1.9.4-3.3.1 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:14057
    P
    		wireshark-1.12.13-31.1 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:47616
    P
    		gdk-pixbuf-loader-rsvg-2.40.20-5.6.1 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:47743
    P
    		libmpfr4-3.1.2-7.1 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:14988
    P
    		libexempi3-2.2.1-5.7.1 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:48076
    P
    		libXfixes3-32bit-5.0.1-7.1 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:48317
    P
    		syslog-service-2.0-778.1 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:14328
    P
    		mutt-1.6.0-54.1 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:14142
    P
    		gdm-3.10.0.1-52.5 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:48160
    P
    		libopenssl-1_0_0-devel-1.0.2p-3.11.1 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:13959
    P
    		libsqlite3-0-3.8.10.2-3.1 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:47631
    P
    		grub2-2.02-11.8 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:13967
    P
    		libtiff5-32bit-4.0.6-26.3 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:47751
    P
    		libnm-glib-vpn1-1.0.12-13.6.1 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:14966
    P
    		libXtst6-1.2.2-7.1 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:48077
    P
    		libXfont1-1.5.1-11.3.12 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:14304
    P
    		libusbmuxd4-1.0.10-2.3 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:14105
    P
    		cpio-2.11-35.1 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:47936
    P
    		zypper-1.13.45-21.23.4 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:48168
    P
    		libpcap1-1.8.1-10.3.1 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:100972
    P
    		libsha1detectcoll-devel-1.0.3-2.18 on GA media (Moderate)
    2021-08-09
    oval:org.opensuse.security:def:100974
    P
    		libsndfile-devel-1.0.28-5.5.1 on GA media (Moderate)
    2021-08-09
    oval:org.opensuse.security:def:38199
    P
    		Security update for kvm (Important)
    2021-08-06
    oval:org.opensuse.security:def:31224
    P
    		Security update for the Linux Kernel (Live Patch 39 for SLE 12 SP3) (Important)
    2021-07-21
    oval:org.opensuse.security:def:57968
    P
    		Security update for the Linux Kernel (Live Patch 37 for SLE 12 SP3) (Important)
    2021-07-21
    oval:org.opensuse.security:def:30222
    P
    		Security update for MozillaFirefox (Important)
    2021-07-16
    oval:org.opensuse.security:def:68008
    P
    		Security update for the Linux Kernel (Live Patch 22 for SLE 15 SP1) (Important)
    2021-07-14
    oval:org.opensuse.security:def:68009
    P
    		Security update for the Linux Kernel (Live Patch 19 for SLE 15 SP1) (Important)
    2021-07-14
    oval:org.opensuse.security:def:66838
    P
    		Security update for wireshark (Important)
    2021-06-22
    oval:org.opensuse.security:def:66836
    P
    		Security update for gupnp (Important)
    2021-06-18
    oval:org.opensuse.security:def:32949
    P
    		Security update for webkit2gtk3 (Important)
    2021-06-17
    oval:org.opensuse.security:def:48531
    P
    		libotr5-4.0.0-9.1 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:48835
    P
    		gegl-0_2-0.2.0-14.3 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:48614
    P
    		res-signingkeys-3.0.18-26.1 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:48676
    P
    		gnome-shell-calendar-3.10.4-22.13 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:48773
    P
    		gd-32bit-2.1.0-12.1 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:48733
    P
    		libgadu3-1.11.4-1.12 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:48843
    P
    		imobiledevice-tools-1.2.0-7.31 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:48615
    P
    		rpcbind-0.2.3-21.4 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:48522
    P
    		libmodplug1-0.8.8.4-13.63 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:48677
    P
    		java-1_7_0-openjdk-plugin-1.5.1-1.13 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:48741
    P
    		libproxy1-networkmanager-32bit-0.4.11-11.6 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:48844
    P
    		java-1_7_0-openjdk-plugin-1.6.2-2.8.3 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:48764
    P
    		bash-lang-4.3-78.39 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:48530
    P
    		libopenssl-devel-1.0.2j-55.1 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:48606
    P
    		python-imaging-1.1.7-21.8 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:48742
    P
    		libqt4-sql-mysql-32bit-4.8.6-4.1 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:48668
    P
    		empathy-3.10.3-1.131 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:48772
    P
    		gcc48-gij-32bit-4.8.5-30.1 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:57930
    P
    		Security update for the Linux Kernel (Live Patch 32 for SLE 12 SP3) (Important)
    2021-06-04
    oval:org.opensuse.security:def:33657
    P
    		Security update for djvulibre (Important)
    2021-05-31
    oval:org.opensuse.security:def:31180
    P
    		Security update for djvulibre (Important)
    2021-05-31
    oval:org.opensuse.security:def:73619
    P
    		Security update for dtc (Low)
    2021-05-13
    oval:org.opensuse.security:def:34430
    P
    		Security update for xen (Important)
    2021-05-12
    oval:org.opensuse.security:def:30071
    P
    		Security update for cups (Important)
    2021-04-30
    oval:org.opensuse.security:def:33899
    P
    		Security update for permissions (Important)
    2021-04-29
    oval:org.opensuse.security:def:34418
    P
    		Security update for curl (Moderate)
    2021-04-28
    oval:org.opensuse.security:def:34419
    P
    		Security update for libnettle (Important)
    2021-04-28
    oval:org.opensuse.security:def:31159
    P
    		Security update for the Linux Kernel (Live Patch 37 for SLE 12 SP3) (Important)
    2021-04-28
    oval:org.opensuse.security:def:30178
    P
    		Security update for the Linux Kernel (Live Patch 39 for SLE 12 SP2) (Important)
    2021-04-12
    oval:org.opensuse.security:def:32892
    P
    		Security update for fwupdate (Important)
    2021-04-08
    oval:org.opensuse.security:def:33104
    P
    		Security update for tar (Low)
    2021-03-29
    oval:org.opensuse.security:def:64674
    P
    		Security update for python3 (Moderate)
    2021-03-24
    oval:org.opensuse.security:def:64675
    P
    		Security update for zstd (Moderate)
    2021-03-24
    oval:org.opensuse.security:def:68109
    P
    		Security update for the Linux Kernel (Live Patch 17 for SLE 15 SP1) (Important)
    2021-03-17
    oval:org.opensuse.security:def:68108
    P
    		Security update for the Linux Kernel (Live Patch 18 for SLE 15 SP1) (Important)
    2021-03-17
    oval:org.opensuse.security:def:28955
    P
    		Security update for the Linux Kernel (Live Patch 38 for SLE 12 SP2) (Important)
    2021-03-17
    oval:org.opensuse.security:def:32275
    P
    		Security update for the Linux Kernel (Live Patch 37 for SLE 12 SP3) (Important)
    2021-03-17
    oval:org.opensuse.security:def:32274
    P
    		Security update for glib2 (Important)
    2021-03-16
    oval:org.opensuse.security:def:34650
    P
    		Security update for the Linux Kernel (Important)
    2021-03-09
    oval:org.opensuse.security:def:33781
    P
    		Security update for openssl-1_1 (Moderate)
    2021-03-09
    oval:org.opensuse.security:def:38449
    P
    		Security update for salt (Critical)
    2021-02-26
    oval:org.opensuse.security:def:38609
    P
    		Security update for ImageMagick (Moderate)
    2021-02-23
    oval:org.opensuse.security:def:30016
    P
    		Security update for the Linux Kernel (Live Patch 37 for SLE 12 SP2) (Important)
    2021-02-10
    oval:org.opensuse.security:def:32998
    P
    		Security update for python-urllib3 (Moderate)
    2021-02-03
    oval:org.opensuse.security:def:73621
    P
    		Security update for dnsmasq (Important)
    2021-01-19
    oval:org.opensuse.security:def:57099
    P
    		Security update for java-1_8_0-ibm (Moderate)
    2021-01-05
    oval:org.opensuse.security:def:70286
    P
    		Security update for dovecot23 (Important)
    2021-01-05
    oval:org.opensuse.security:def:63401
    P
    		nodejs8-8.15.1-3.14.1 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:2303
    P
    		nodejs8-8.11.1-1.19 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:35911
    P
    		gstreamer-0_10-plugins-base-0.10.35-5.15.8 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:117198
    P
    		nodejs8-8.17.0-8.1 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:90089
    P
    		nodejs8-8.15.1-3.14.1 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:2321
    P
    		nodejs8-8.17.0-8.1 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:103744
    P
    		nodejs8-8.15.1-3.14.1 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:63408
    P
    		nodejs10-10.19.0-1.18.1 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:2311
    P
    		nodejs10-10.15.2-1.6.1 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:35952
    P
    		libgnomesu-1.0.0-307.10.1 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:63392
    P
    		nodejs8-8.11.1-1.19 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:107638
    P
    		nodejs10-10.19.0-1.18.1 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:63410
    P
    		nodejs8-8.17.0-8.1 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:71461
    P
    		cpp7-7.5.0+r278197-4.16.2 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:2312
    P
    		nodejs8-8.15.1-3.14.1 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:63400
    P
    		nodejs10-10.15.2-1.6.1 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:107640
    P
    		nodejs8-8.17.0-8.1 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:117196
    P
    		nodejs10-10.19.0-1.18.1 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:90088
    P
    		nodejs10-10.15.2-1.6.1 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:71462
    P
    		cracklib-2.9.6-9.3 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:2319
    P
    		nodejs10-10.19.0-1.18.1 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:103743
    P
    		nodejs10-10.15.2-1.6.1 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:30773
    P
    		Security update for automake
    2020-12-01
    oval:org.opensuse.security:def:38756
    P
    		ntp on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:73503
    P
    		graphviz-perl on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:30897
    P
    		Security update for Mozilla Firefox (Important)
    2020-12-01
    oval:org.opensuse.security:def:56548
    P
    		Security update for xen (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:38301
    P
    		libicu-doc on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:28994
    P
    		Security update for conntrack-tools (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:70179
    P
    		log4j12-javadoc on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:28559
    P
    		Security update for gtk2
    2020-12-01
    oval:org.opensuse.security:def:34163
    P
    		Security update for openssl (Important)
    2020-12-01
    oval:org.opensuse.security:def:29863
    P
    		Security update for the Linux Kernel (Important)
    2020-12-01
    oval:org.opensuse.security:def:35229
    P
    		Security update for libmspack (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:50132
    P
    		nodejs8 on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:28265
    P
    		Security update for mercurial (Important)
    2020-12-01
    oval:org.opensuse.security:def:34806
    P
    		Security update for apache2 (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:31071
    P
    		Security update for the Linux Kernel (Important)
    2020-12-01
    oval:org.opensuse.security:def:34949
    P
    		Security update for Mozilla Firefox (Important)
    2020-12-01
    oval:org.opensuse.security:def:33427
    P
    		Security update for Samba
    2020-12-01
    oval:org.opensuse.security:def:32592
    P
    		perl-32bit on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:28852
    P
    		Security update for xen (Important)
    2020-12-01
    oval:org.opensuse.security:def:34271
    P
    		Security update for puppet (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:50069
    P
    		libfpm_pb0 on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:33428
    P
    		Security update for clamav, clamav-db, clamav-debuginfo, clamav-debugsource
    2020-12-01
    oval:org.opensuse.security:def:30626
    P
    		Security update for Xen and libvirt
    2020-12-01
    oval:org.opensuse.security:def:35114
    P
    		Security update for the Linux Kernel (Important)
    2020-12-01
    oval:org.opensuse.security:def:50122
    P
    		nodejs10 on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:38062
    P
    		shadow on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:57656
    P
    		Security update for xscreensaver (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:29693
    P
    		Security update for expat (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:31900
    P
    		Security update for Mozilla Firefox (Important)
    2020-12-01
    oval:org.opensuse.security:def:28343
    P
    		Security update for php53 (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:70181
    P
    		ncurses-devel-32bit on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:33439
    P
    		Security update for ethereal and wireshark
    2020-12-01
    oval:org.opensuse.security:def:29720
    P
    		Security update for Mozilla Firefox
    2020-12-01
    oval:org.opensuse.security:def:35163
    P
    		Security update for krb5 (Important)
    2020-12-01
    oval:org.opensuse.security:def:30860
    P
    		Security update for e2fsprogs (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:38784
    P
    		python-pyOpenSSL on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:39466
    P
    		Security update for php5 (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:56688
    P
    		Security update for netatalk (Important)
    2020-12-01
    oval:org.opensuse.security:def:38359
    P
    		libqpdf18 on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:29011
    P
    		Security update for graphviz (Low)
    2020-12-01
    oval:org.opensuse.security:def:32363
    P
    		Security update for sudo (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:28616
    P
    		Security update for xorg-x11-libXext
    2020-12-01
    oval:org.opensuse.security:def:34202
    P
    		Security update for perl-Archive-Zip (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:30408
    P
    		Security update for xorg-x11-libX11 (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:30420
    P
    		Security update for xorg-x11-libXpm (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:34896
    P
    		Security update for cyrus-imapd (Low)
    2020-12-01
    oval:org.opensuse.security:def:31120
    P
    		Security update for krb5
    2020-12-01
    oval:org.opensuse.security:def:50076
    P
    		libsaml-devel on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:57205
    P
    		Security update for pidgin
    2020-12-01
    oval:org.opensuse.security:def:50123
    P
    		nodejs8 on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:32649
    P
    		dbus-1-glib on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:28906
    P
    		Security update for flash-player (Important)
    2020-12-01
    oval:org.opensuse.security:def:31862
    P
    		Security update for curl (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:29501
    P
    		Security update for ImageMagick (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:34056
    P
    		Security update for libvorbis (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:30716
    P
    		Security update for MozillaFirefox (Important)
    2020-12-01
    oval:org.opensuse.security:def:56526
    P
    		Security update for the Linux Kernel (Important)
    2020-12-01
    oval:org.opensuse.security:def:57764
    P
    		libXRes1 on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:50060
    P
    		graphviz-tcl on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:30409
    P
    		Security update for xorg-x11-libX11 (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:28474
    P
    		Security update for xorg-x11-server (Important)
    2020-12-01
    oval:org.opensuse.security:def:39508
    P
    		Security update for nodejs6 (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:37966
    P
    		libssh2-1 on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:33521
    P
    		Security update for strongswan
    2020-12-01
    oval:org.opensuse.security:def:29777
    P
    		Security update for GnuTLS
    2020-12-01
    oval:org.opensuse.security:def:35202
    P
    		Security update for PostgreSQL 9.1
    2020-12-01
    oval:org.opensuse.security:def:73501
    P
    		glibc-devel-32bit on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:29729
    P
    		Security update for Mozilla Firefox (Important)
    2020-12-01
    oval:org.opensuse.security:def:34749
    P
    		Security update for MozillaFirefox (Important)
    2020-12-01
    oval:org.opensuse.security:def:31015
    P
    		Security update for java-1_7_0-ibm (Important)
    2020-12-01
    oval:org.opensuse.security:def:57856
    P
    		libssh2-1 on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:38828
    P
    		xlockmore on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:56926
    P
    		Security update for ovmf (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:29055
    P
    		Security update for bind (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:50078
    P
    		libspice-server-devel on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:37967
    P
    		libssh4 on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:32498
    P
    		cups on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:28700
    P
    		Security update for gnutls (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:34227
    P
    		Security update for php5 (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:34909
    P
    		Security update for dnsmasq (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:50130
    P
    		nodejs10 on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:56525
    P
    		Security update for bluez (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:33810
    P
    		Security update for ghostscript-library (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:30494
    P
    		Security update for Mozilla Firefox
    2020-12-01
    oval:org.opensuse.security:def:35055
    P
    		Security update for java-1_6_0-ibm (Important)
    2020-12-01
    oval:org.opensuse.security:def:28264
    P
    		Security update for mercurial (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:37978
    P
    		libvdpau1 on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:57371
    P
    		Security update for gdk2 (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:28276
    P
    		Security update for mysql (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:32736
    P
    		libvirt on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:50068
    P
    		libecpg6 on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:29633
    P
    		Security update for clamav (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:34114
    P
    		Security update for nagios (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:50114
    P
    		nodejs8 on GA media (Moderate)
    2020-12-01
    oval:com.ubuntu.bionic:def:201871600000000
    V
    		CVE-2018-7160 on Ubuntu 18.04 LTS (bionic) - medium.
    2018-05-17
    oval:com.ubuntu.artful:def:20187160000
    V
    		CVE-2018-7160 on Ubuntu 17.10 (artful) - untriaged.
    2018-05-17
    oval:com.ubuntu.xenial:def:20187160000
    V
    		CVE-2018-7160 on Ubuntu 16.04 LTS (xenial) - medium.
    2018-05-17
    oval:com.ubuntu.xenial:def:201871600000000
    V
    		CVE-2018-7160 on Ubuntu 16.04 LTS (xenial) - medium.
    2018-05-17
    oval:com.ubuntu.bionic:def:20187160000
    V
    		CVE-2018-7160 on Ubuntu 18.04 LTS (bionic) - medium.
    2018-05-17
    oval:com.ubuntu.disco:def:201871600000000
    V
    		CVE-2018-7160 on Ubuntu 19.04 (disco) - medium.
    2018-05-17
    oval:com.ubuntu.cosmic:def:20187160000
    V
    		CVE-2018-7160 on Ubuntu 18.10 (cosmic) - medium.
    2018-05-17
    oval:com.ubuntu.cosmic:def:201871600000000
    V
    		CVE-2018-7160 on Ubuntu 18.10 (cosmic) - medium.
    2018-05-17
    oval:com.ubuntu.trusty:def:20187160000
    V
    		CVE-2018-7160 on Ubuntu 14.04 LTS (trusty) - medium.
    2018-05-17
    oval:org.opensuse.security:def:80708
    P
    		Security update for nodejs6 (Moderate)
    2018-05-09
    BACK
    nodejs node.js *
    nodejs node.js *
    nodejs node.js *
    nodejs node.js *
    nodejs node.js *
    nodejs node.js 14.0
    ibm sdk *
    ibm api connect 5.0.0.0
    nodejs node.js *
    ibm planning analytics local 2.0
    ibm api connect 5.0.8.0
    ibm business automation workflow 18.0.0.0
    ibm qradar security information and event manager 7.2
    ibm qradar security information and event manager 7.3
    ibm i -
    ibm business automation workflow 8.5.5
    ibm business automation workflow 8.5.6
    ibm business automation workflow 8.5.6.1
    ibm business automation workflow 8.5.6.2
    ibm business automation workflow 8.5.7 CF201606
    ibm business automation workflow 8.5.7 CF201609
    ibm business automation workflow 8.5.7 CF201612
    ibm business automation workflow 8.5.7 CF201703
    ibm business automation workflow 8.5.7 CF201706
    ibm business automation workflow 8.5.7
    ibm business automation workflow 8.6.0 CF201712
    ibm business automation workflow 8.6.0 CF201803
    ibm business automation workflow 8.6
    ibm cloud private 2.1.0
    ibm api connect 5.0.8.4
    ibm integration bus 10.0.0
    ibm integration bus 10.0.0.14
    ibm app connect 11
    ibm app connect 11.0.0.0
    ibm app connect 11.0.0.2
    ibm integration bus 10.0.0.0