Vulnerability CVE-2020-11022 - CERT Civis.Net

Vulnerability Name:

CVE-2020-11022 (CCN-181349)

Assigned:

2020-04-23

Published:

2020-04-23

Updated:

2022-07-25

Summary:

In jQuery versions greater than or equal to 1.2 and before 3.5.0, passing HTML from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.

CVSS v3 Severity:

6.1 Medium (CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N)
5.8 Medium (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N/E:H/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): Required
Scope:	Scope (S): Changed
Impact Metrics:	Confidentiality (C): Low Integrity (I): Low Availibility (A): None

6.1 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N)
5.8 Medium (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N/E:H/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): Required
Scope:	Scope (S): Changed
Impact Metrics:	Confidentiality (C): Low Integrity (I): Low Availibility (A): None

6.1 Medium (REDHAT CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N)
5.8 Medium (REDHAT Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N/E:H/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): Required
Scope:	Scope (S): Changed
Impact Metrics:	Confidentiality (C): Low Integrity (I): Low Availibility (A): None

CVSS v2 Severity:

4.3 Medium (CVSS v2 Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Medium Authentication (Au): None
Impact Metrics:	Confidentiality (C): None Integrity (I): Partial Availibility (A): None

5.5 Medium (CCN CVSS v2 Vector: AV:N/AC:L/Au:S/C:P/I:P/A:N)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Athentication (Au): Single_Instance
Impact Metrics:	Confidentiality (C): Partial Integrity (I): Partial Availibility (A): None

Vulnerability Type:

Vulnerability Consequences:

Cross-Site Scripting

References:

Source: MITRE
Type: CNA
CVE-2020-11022

Source: SUSE
Type: Broken Link
openSUSE-SU-2020:1060

Source: SUSE
Type: Broken Link
openSUSE-SU-2020:1106

Source: SUSE
Type: Broken Link
openSUSE-SU-2020:1888

Source: MISC
Type: Exploit, Third Party Advisory, VDB Entry
http://packetstormsecurity.com/files/162159/jQuery-1.2-Cross-Site-Scripting.html

Source: MISC
Type: Release Notes, Vendor Advisory
https://blog.jquery.com/2020/04/10/jquery-3-5-0-released/

Source: XF
Type: UNKNOWN
jquery-cve202011022-xss(181349)

Source: MISC
Type: Patch, Third Party Advisory
https://github.com/jquery/jquery/commit/1d61fd9407e6fbe82fe55cb0b938307aa0791f77

Source: CCN
Type: jQuery GIT Repository
Potential XSS vulnerability in jQuery.htmlPrefilter and related methods

Source: CONFIRM
Type: Mitigation, Third Party Advisory
https://github.com/jquery/jquery/security/advisories/GHSA-gxr4-xjj5-5px2

Source: MISC
Type: Mitigation, Vendor Advisory
https://jquery.com/upgrade-guide/3.5/

Source: MLIST
Type: Mailing List, Third Party Advisory
[flink-issues] 20211031 [jira] [Updated] (FLINK-20014) Resolve CVE-2020-11022 and CVE-2020-11023 in scala-compiler

Source: MLIST
Type: Mailing List, Third Party Advisory
[flink-issues] 20201129 [jira] [Commented] (FLINK-20014) Resolve CVE-2020-11022 and CVE-2020-11023 in scala-compiler

Source: MLIST
Type: Mailing List, Third Party Advisory
[flink-issues] 20210429 [jira] [Commented] (FLINK-20014) Resolve CVE-2020-11022 and CVE-2020-11023 in scala-compiler

Source: MLIST
Type: Mailing List, Third Party Advisory
[flink-issues] 20210209 [jira] [Comment Edited] (FLINK-20014) Resolve CVE-2020-11022 and CVE-2020-11023 in scala-compiler

Source: MLIST
Type: Mailing List, Third Party Advisory
[flink-issues] 20201105 [jira] [Created] (FLINK-20014) Resolve CVE-2020-11022 and CVE-2020-11023 in scala-compiler

Source: MLIST
Type: Mailing List, Third Party Advisory
[flink-issues] 20210209 [jira] [Commented] (FLINK-20014) Resolve CVE-2020-11022 and CVE-2020-11023 in scala-compiler

Source: MLIST
Type: Mailing List, Third Party Advisory
[flink-dev] 20201105 [jira] [Created] (FLINK-20014) Resolve CVE-2020-11022 and CVE-2020-11023 in scala-compiler

Source: MLIST
Type: Mailing List, Third Party Advisory
[airflow-commits] 20200820 [GitHub] [airflow] breser opened a new issue #10429: jquery dependency needs to be updated to 3.5.0 or newer

Source: MLIST
Type: Mailing List, Third Party Advisory
[flink-issues] 20210429 [jira] [Updated] (FLINK-20014) Resolve CVE-2020-11022 and CVE-2020-11023 in scala-compiler

Source: MLIST
Type: Mailing List, Third Party Advisory
[flink-issues] 20210422 [jira] [Commented] (FLINK-20014) Resolve CVE-2020-11022 and CVE-2020-11023 in scala-compiler

Source: MLIST
Type: Mailing List, Third Party Advisory
[flink-issues] 20210422 [jira] [Updated] (FLINK-20014) Resolve CVE-2020-11022 and CVE-2020-11023 in scala-compiler

Source: MLIST
Type: Mailing List, Third Party Advisory
[debian-lts-announce] 20210326 [SECURITY] [DLA 2608-1] jquery security update

Source: FEDORA
Type: Third Party Advisory
FEDORA-2020-0b32a59b54

Source: FEDORA
Type: Third Party Advisory
FEDORA-2020-36d2db5f51

Source: FEDORA
Type: Third Party Advisory
FEDORA-2020-fe94df8c34

Source: FEDORA
Type: Third Party Advisory
FEDORA-2020-fbb94073a1

Source: FEDORA
Type: Third Party Advisory
FEDORA-2020-11be4b36d4

Source: CCN
Type: Packet Storm Security [04-14-2021]
jQuery 1.2 Cross Site Scripting

Source: CCN
Type: Ubuntu CVE Tracker
CVE-2020-11022

Source: GENTOO
Type: Third Party Advisory
GLSA-202007-03

Source: CONFIRM
Type: Third Party Advisory
https://security.netapp.com/advisory/ntap-20200511-0006/

Source: DEBIAN
Type: Third Party Advisory
DSA-4693

Source: CONFIRM
Type: Third Party Advisory
https://www.drupal.org/sa-core-2020-002

Source: EXPLOIT-DB
Type: EXPLOIT
Offensive Security Exploit Database [04-14-2021]

Source: CCN
Type: IBM Security Bulletin 6217392 (API Connect)
IBM API Connect is impacted by vulnerabilities in Drupal (CVE-2020-11022 CVE-2020-11023)

Source: CCN
Type: IBM Security Bulletin 6241532 (Tivoli Netcool Impact)
IBM Tivoli Netcool Impact is affected by jQuery vulnerabilities (CVE-2020-11022, CVE-2020-11023)

Source: CCN
Type: IBM Security Bulletin 6242104 (License Metric Tool)
Vulnerabilities in jQuery affect IBM License Metric Tool v9.

Source: CCN
Type: IBM Security Bulletin 6254788 (Planning Analytics)
IBM Planning Analytics Workspace is affected by security vulnerabilities

Source: CCN
Type: IBM Security Bulletin 6257859 (QRadar Network Packet Capture)
JQuery as used by IBM QRadar Network Packet Capture is vulnerable to Cross Site Scripting (XSS) (CVE-2020-11023, CVE-2020-11022)

Source: CCN
Type: IBM Security Bulletin 6258085 (WIoTP MessageGateway)
Multiple vulnerabilities in jQuery affect IBM WIoTP MessageGateway (CVE-2020-11023, CVE-2020-11022)

Source: CCN
Type: IBM Security Bulletin 6258213 (License Metric Tool)
Security vulnerability has been identified in BigFix Platform shipped with IBM License Metric Tool.

Source: CCN
Type: IBM Security Bulletin 6326835 (Business Automation Workflow)
Cross Site Scripting vulnerabilities in jQuery might affect IBM Business Automation Workflow and IBM Business Process Manager (BPM) - CVE-2020-7656, CVE-2020-11022, CVE-2020-11023

Source: CCN
Type: IBM Security Bulletin 6332181 (Kenexa LCMS Premier)
IBM Kenexa LCMS Premier On Premise - [All] jQuery (Publicly disclosed vulnerability) CVE-2020-11023, CVE-2020-11022

Source: CCN
Type: IBM Security Bulletin 6335281 (Data Risk Manager)
IBM Data Risk Manager is affected by multiple vulnerabilities

Source: CCN
Type: IBM Security Bulletin 6343835 (MobileFirst Platform Foundation)
Multiple Vulnerabilities in jQuery fixed in Mobile Foundation ( CVE-2020-11023, CVE-2020-11022)

Source: CCN
Type: IBM Security Bulletin 6344075 (QRadar SIEM)
IBM QRadar SIEM is vulnerable to Using Components with Known Vulnerabilities

Source: CCN
Type: IBM Security Bulletin 6344081 (QRadar Incident Forensics)
IBM QRadar Incident Forensics is vulnerable to using component with known vulnerabilities

Source: CCN
Type: IBM Security Bulletin 6344085 (DataQuant for z/OS)
Steps to update DataQuant Wrokstation ans DataQuant WebSphere plugins.

Source: CCN
Type: IBM Security Bulletin 6357529 (QRadar Packet Capture)
JQuery as used in IBM Security QRadar Packet Capture is vulnerable to Cross Site Scripting (XSS) (CVE-2020-11023, CVE-2020-11022)

Source: CCN
Type: IBM Security Bulletin 6367943 (Spectrum Protect Plus)
Vulnerabilities in jQuery, Spring, Dom4j, MongoDB, Linux Kernel, Targetcli-fb, Jackson, Node.js, and Apache Commons affect IBM Spectrum Protect Plus

Source: CCN
Type: IBM Security Bulletin 6377828 (Emptoris Program Management)
jQuery Vulnerabilities Affect IBM Emptoris Program Management (CVE-2020-11023, CVE-2020-11022)

Source: CCN
Type: IBM Security Bulletin 6377832 (Emptoris Strategic Supply Management)
jQuery Vulnerabilities Affect IBM Emptoris Strategic Supply Management Platform (CVE-2020-11023, CVE-2020-11022)

Source: CCN
Type: IBM Security Bulletin 6377836 (Emptoris Contract Management)
jQuery Vulnerabilities Affect IBM Emptoris Contract Management (CVE-2020-11023, CVE-2020-11022)

Source: CCN
Type: IBM Security Bulletin 6377838 (Emptoris Sourcing)
jQuery Vulnerabilities Affect IBM Emptoris Sourcing (CVE-2020-11023, CVE-2020-11022)

Source: CCN
Type: IBM Security Bulletin 6377840 (Emptoris Spend Analysis)
jQuery Vulnerabilities Affect IBM Emptoris Spend Analysis (CVE-2020-11023, CVE-2020-11022)

Source: CCN
Type: IBM Security Bulletin 6413705 (Security QRadar Analyst Workflow)
IBM Security QRadar Analyst Workflow add on to IBM QRadar SIEM is vulnerable to using components with known vulnerabilities

Source: CCN
Type: IBM Security Bulletin 6414351 (Security Verify Information Queue)
IBM Security Verify Information Queue uses a Node.js package with known vulnerabilities (CVE-2020-11023, CVE-2020-11022)

Source: CCN
Type: IBM Security Bulletin 6416391 (Spectrum Symphony)
Multiple vulnerability issues affect IBM Spectrum Symphony 7.3.1

Source: CCN
Type: IBM Security Bulletin 6416393 (Spectrum Conductor)
Multiple vulnerability issues affect IBM Spectrum Conductor 2.5.0

Source: CCN
Type: IBM Security Bulletin 6435075 (Kenexa LMS)
IBM Kenexa LMS On Premise -[All] jQuery (Publicly disclosed vulnerability) - CVE-2020-11023, CVE-2020-11022

Source: CCN
Type: IBM Security Bulletin 6449664 (QRadar SIEM)
IBM QRadar SIEM is vulnerable to using components with known vulnerabilities

Source: CCN
Type: IBM Security Bulletin 6454587 (Security Identity Manager)
Security vulnerabilities have been fixed in IBM Security Identity Manager Virtual Appliance

Source: CCN
Type: IBM Security Bulletin 6455993 (Rational License Key Server)
IBM License Key Server Administration and Reporting Tool is impacted by multiple vulnerabilities in jQuery, Bootstrap and AngularJS

Source: CCN
Type: IBM Security Bulletin 6473141 (Rational Collaborative Lifecycle Management)
Multiple vulnerabilites affect IBM Jazz Foundation and IBM Engineering products.

Source: CCN
Type: IBM Security Bulletin 6474843 (QRadar SIEM)
IBM QRadar SIEM is vulnerable to Using Components with Known Vulnerabilities

Source: CCN
Type: IBM Security Bulletin 6490381 (Aspera Console)
IBM Aspera Webapps are vulnerable to cross-site scripting (CVE-2020-11022, CVE-2020-11023).

Source: CCN
Type: IBM Security Bulletin 6507095 (Planning Analytics)
IBM Planning Analytics Workspace is affected by security vulnerabilities

Source: CCN
Type: IBM Security Bulletin 6520510 (Cognos Analytics)
IBM Cognos Analytics has addressed multiple vulnerabilities

Source: CCN
Type: IBM Security Bulletin 6525182 (Spectrum Copy Data Management)
Vulnerabilities in Jackson, jQuery, and Dom4j affect IBM Spectrum Copy Data Management

Source: CCN
Type: IBM Security Bulletin 6551876 (Cloud Pak for Security)
Cloud Pak for Security uses packages that are vulnerable to multiple CVEs

Source: CCN
Type: IBM Security Bulletin 6565389 (WebSphere Service Registry and Repository)
Multiple vulnerabilities in WebSphere Service Registry and Repository in packages such as Apache Struts and Node.js

Source: CCN
Type: IBM Security Bulletin 6574037 (Process Mining)
Vulnerability in jQuery affects IBM Process Mining (Multiple CVEs)

Source: CCN
Type: IBM Security Bulletin 6579917 (Robotic Process Automation)
Multiple Vulnerabilities may affect IBM Robotic Process Automation

Source: CCN
Type: IBM Security Bulletin 6579971 (Business Automation Workflow)
Cross-site scripting vulnerabilities in jQuery may affect IBM Business Automation Workflow and IBM Business Process Manager (BPM) - CVE-2020-11022, CVE-2020-11023

Source: CCN
Type: IBM Security Bulletin 6582695 (Cloud Transformation Advisor)
IBM Cloud Transformation Advisor is vulnerable to multiple vulnerabilities

Source: CCN
Type: IBM Security Bulletin 6596915 (Cloud Pak for Business Automation)
Multiple security vulnerabilities are addressed with IBM Cloud Pak for Business Automation iFixes for May 2022

Source: CCN
Type: IBM Security Bulletin 6603057 (InfoSphere Information Server)
Multiple cross-site scripting vulnerabilities in JQuery affect IBM InfoSphere Information Server

Source: CCN
Type: IBM Security Bulletin 6610363 (Watson Speech Services Cartridge for Cloud Pak for Data)
IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data is vulnerable to cross-site scripting in jQuery (CVE-2020-11022).

Source: CCN
Type: IBM Security Bulletin 6830017 (QRadar Pulse App)
QRadar Pulse application add on to IBM QRadar SIEM is vulnerable to using components with known vulnerabilities

Source: CCN
Type: IBM Security Bulletin 6831351 (API Connect)
API Connect is vulnerable to JQuery Cross-Site Scripting (XSS) and other vulnerabilities (CVE-2012-6708, CVE-2015-9251, CVE-2019-11358, CVE-2020-11022, CVE-2020-11023)

Source: CCN
Type: IBM Security Bulletin 6833292 (CICS TX Standard)
IBM CICS TX Standard is vulnerable to multiple vulnerabilities in jQuery.

Source: CCN
Type: IBM Security Bulletin 6833296 (CICS TX Advanced)
IBM CICS TX Advanced is vulnerable to multiple vulnerabilities in jQuery.

Source: CCN
Type: IBM Security Bulletin 6841803 (Cognos Controller)
IBM Cognos Controller has addressed multiple vulnerabilities

Source: CCN
Type: IBM Security Bulletin 6852773 (Tivoli Network Manager IP Edition)
jQuery included in ITNM is vulnerable to Cross-site Scripting (XSS) attacks (multiple vulnerabilities)

Source: CCN
Type: IBM Security Bulletin 6963091 (Sterling B2B Integrator)
EBICS Client of IBM Sterling B2B Interator vulnerable to multiple issues due to jQuery

Source: CCN
Type: IBM Security Bulletin 6964844 (WebSphere eXtreme Scale)
Multiple vulnerabilities in IBM WebSphere eXtreme Scale Liberty Deployment.

Source: CCN
Type: IBM Security Bulletin 6967012 (Cloud Pak for Watson AIOps)
Multiple Vulnerabilities in CloudPak for Watson AIOPs

Source: CCN
Type: IBM Security Bulletin 6982841 (Netcool Operations Insight)
Netcool Operations Insight v1.6.8 addresses multiple security vulnerabilities.

Source: CCN
Type: IBM Security Bulletin 6983274 (Cognos Command Center)
IBM Cognos Command Center is affected by multiple vulnerabilities

Source: CCN
Type: IBM Security Bulletin 6984699 (MobileFirst Foundation)
Multiple vulnerabilities found on thirdparty libraries used by IBM MobileFirst Platform

Source: CCN
Type: IBM Security Bulletin 6984763 (MobileFirst Foundation)
Multiple vulnerabilities found in third party libraries used by IBM MobileFirst Platform

Source: CCN
Type: IBM Security Bulletin 6985613 (Engineering Workflow Management)
IBM Engineering Workflow Management (EWM) vulnerabilities CVE-2020-28500, CVE-2021-23337, CVE-2020-8203

Source: CCN
Type: IBM Security Bulletin 6988629 (InfoSphere Information Server)
IBM InfoSphere Information Server is affected by multiple vulnerabilities in JQuery, Node.js and Swagger UI

Source: CCN
Type: IBM Security Bulletin 6997593 (Security Directory Server)
Multiple Security Vulnerabilities have been fixed in IBM Security Directory Server, IBM Security Directory Suite and IBM Security Verify Directory.

Source: N/A
Type: Patch, Third Party Advisory
N/A

Source: CCN
Type: Oracle Critical Patch Update Advisory - April 2021
Oracle Critical Patch Update Advisory - April 2021

Source: MISC
Type: Patch, Third Party Advisory
https://www.oracle.com/security-alerts/cpuApr2021.html

Source: CCN
Type: Oracle CPUApr2022
Oracle Critical Patch Update Advisory - April 2022

Source: MISC
Type: Patch, Third Party Advisory
https://www.oracle.com/security-alerts/cpuapr2022.html

Source: CCN
Type: Oracle CPUJan2021
Oracle Critical Patch Update Advisory - January 2021

Source: MISC
Type: Third Party Advisory
https://www.oracle.com/security-alerts/cpujan2021.html

Source: CCN
Type: Oracle CPUJan2022
Oracle Critical Patch Update Advisory - January 2022

Source: MISC
Type: Patch, Third Party Advisory
https://www.oracle.com/security-alerts/cpujan2022.html

Source: CCN
Type: Oracle CPUJul2020
Oracle Critical Patch Update Advisory - July 2020

Source: MISC
Type: Third Party Advisory
https://www.oracle.com/security-alerts/cpujul2020.html

Source: CCN
Type: Oracle CPUJul2021
Oracle Critical Patch Update Advisory - July 2021

Source: CCN
Type: Oracle CPUJul2022
Oracle Critical Patch Update Advisory - July 2022

Source: N/A
Type: UNKNOWN
N/A

Source: CCN
Type: Oracle CPUOct2020
Oracle Critical Patch Update Advisory - October 2020

Source: MISC
Type: Third Party Advisory
https://www.oracle.com/security-alerts/cpuoct2020.html

Source: CCN
Type: Oracle CPUOct2021
Oracle Critical Patch Update Advisory - October 2021

Source: MISC
Type: Patch, Third Party Advisory
https://www.oracle.com/security-alerts/cpuoct2021.html

Source: CONFIRM
Type: Third Party Advisory
https://www.tenable.com/security/tns-2020-10

Source: CONFIRM
Type: Third Party Advisory
https://www.tenable.com/security/tns-2020-11

Source: CONFIRM
Type: Third Party Advisory
https://www.tenable.com/security/tns-2021-02

Source: CONFIRM
Type: Third Party Advisory
https://www.tenable.com/security/tns-2021-10

Source: CCN
Type: WhiteSource Vulnerability Database
CVE-2020-11022

Vulnerable Configuration:

Configuration 1:

cpe:/a:jquery:jquery:*:*:*:*:*:*:*:* (Version >= 1.2 and < 3.5.0)

Configuration 2:

cpe:/a:drupal:drupal:*:*:*:*:*:*:*:* (Version >= 7.0 and < 7.70)

OR cpe:/a:drupal:drupal:*:*:*:*:*:*:*:* (Version >= 8.7.0 and < 8.7.14)

OR cpe:/a:drupal:drupal:*:*:*:*:*:*:*:* (Version >= 8.8.0 and < 8.8.6)

Configuration 3:

cpe:/o:debian:debian_linux:9.0:*:*:*:*:*:*:*

Configuration 4:

cpe:/o:fedoraproject:fedora:31:*:*:*:*:*:*:*

OR cpe:/o:fedoraproject:fedora:32:*:*:*:*:*:*:*

OR cpe:/o:fedoraproject:fedora:33:*:*:*:*:*:*:*

Configuration 5:

cpe:/a:oracle:weblogic_server:12.1.3.0.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:jdeveloper:11.1.1.9.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:retail_back_office:14.1:*:*:*:*:*:*:*

OR cpe:/a:oracle:retail_back_office:14.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:peoplesoft_enterprise_peopletools:8.56:*:*:*:*:*:*:*

OR cpe:/a:oracle:weblogic_server:10.3.6.0.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:communications_webrtc_session_controller:7.2:*:*:*:*:*:*:*

OR cpe:/a:oracle:weblogic_server:12.2.1.3.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:agile_product_lifecycle_management_for_process:6.2.0.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:peoplesoft_enterprise_peopletools:8.57:*:*:*:*:*:*:*

OR cpe:/a:oracle:application_testing_suite:13.3.0.1:*:*:*:*:*:*:*

OR cpe:/a:oracle:retail_returns_management:14.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:retail_returns_management:14.1:*:*:*:*:*:*:*

OR cpe:/a:oracle:jdeveloper:12.2.1.3.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:policy_automation_connector_for_siebel:10.4.6:*:*:*:*:*:*:*

OR cpe:/a:oracle:financial_services_market_risk_measurement_and_management:8.0.6:*:*:*:*:*:*:*

OR cpe:/a:oracle:hospitality_materials_control:18.1:*:*:*:*:*:*:*

OR cpe:/a:oracle:banking_digital_experience:18.2:*:*:*:*:*:*:*

OR cpe:/a:oracle:banking_digital_experience:18.3:*:*:*:*:*:*:*

OR cpe:/a:oracle:banking_digital_experience:19.1:*:*:*:*:*:*:*

OR cpe:/a:oracle:banking_digital_experience:18.1:*:*:*:*:*:*:*

OR cpe:/a:oracle:weblogic_server:12.2.1.4.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:financial_services_hedge_management_and_ifrs_valuations:*:*:*:*:*:*:*:* (Version >= 8.0.6 and <= 8.0.8)

OR cpe:/a:oracle:financial_services_loan_loss_forecasting_and_provisioning:*:*:*:*:*:*:*:* (Version >= 8.0.6 and <= 8.0.8)

OR cpe:/a:oracle:financial_services_asset_liability_management:8.0.7:*:*:*:*:*:*:*

OR cpe:/a:oracle:financial_services_asset_liability_management:8.0.6:*:*:*:*:*:*:*

OR cpe:/a:oracle:financial_services_profitability_management:8.0.7:*:*:*:*:*:*:*

OR cpe:/a:oracle:financial_services_profitability_management:8.0.6:*:*:*:*:*:*:*

OR cpe:/a:oracle:financial_services_funds_transfer_pricing:8.0.7:*:*:*:*:*:*:*

OR cpe:/a:oracle:financial_services_funds_transfer_pricing:8.0.6:*:*:*:*:*:*:*

OR cpe:/a:oracle:financial_services_price_creation_and_discovery:8.0.7:*:*:*:*:*:*:*

OR cpe:/a:oracle:peoplesoft_enterprise_peopletools:8.58:*:*:*:*:*:*:*

OR cpe:/a:oracle:financial_services_liquidity_risk_management:8.0.6:*:*:*:*:*:*:*

OR cpe:/a:oracle:financial_services_liquidity_risk_measurement_and_management:8.0.8:*:*:*:*:*:*:*

OR cpe:/a:oracle:financial_services_liquidity_risk_measurement_and_management:8.0.7:*:*:*:*:*:*:*

OR cpe:/a:oracle:financial_services_balance_sheet_planning:8.0.8:*:*:*:*:*:*:*

OR cpe:/a:oracle:weblogic_server:14.1.1.0.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:financial_services_analytical_applications_infrastructure:*:*:*:*:*:*:*:* (Version >= 8.0.6.0.0 and <= 8.1.0.0.0)

OR cpe:/a:oracle:retail_customer_management_and_segmentation_foundation:19.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:healthcare_foundation:7.2.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:healthcare_foundation:7.2.1:*:*:*:*:*:*:*

OR cpe:/a:oracle:healthcare_foundation:7.3.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:healthcare_foundation:7.1.1:*:*:*:*:*:*:*

OR cpe:/a:oracle:communications_billing_and_revenue_management:12.0.0.3.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:communications_billing_and_revenue_management:7.5.0.23.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:financial_services_data_governance_for_us_regulatory_reporting:*:*:*:*:*:*:*:* (Version >= 8.0.6 and <= 8.0.9)

OR cpe:/a:oracle:hospitality_simphony:*:*:*:*:*:*:*:* (Version >= 19.1.0 and <= 19.1.2)

OR cpe:/a:oracle:banking_digital_experience:19.2:*:*:*:*:*:*:*

OR cpe:/a:oracle:financial_services_basel_regulatory_capital_internal_ratings_based_approach:*:*:*:*:*:*:*:* (Version >= 8.0.6 and <= 8.0.8)

OR cpe:/a:oracle:insurance_data_foundation:*:*:*:*:*:*:*:* (Version >= 8.0.6 and <= 8.1.0)

OR cpe:/a:oracle:financial_services_price_creation_and_discovery:8.0.6:*:*:*:*:*:*:*

OR cpe:/a:oracle:financial_services_profitability_management:8.1.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:banking_digital_experience:20.1:*:*:*:*:*:*:*

OR cpe:/a:oracle:policy_automation:*:*:*:*:*:*:*:* (Version >= 12.2.0 and <= 12.2.20)

OR cpe:/a:oracle:financial_services_analytical_applications_reconciliation_framework:*:*:*:*:*:*:*:* (Version >= 8.0.6 and <= 8.0.8)

OR cpe:/a:oracle:financial_services_loan_loss_forecasting_and_provisioning:8.1.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:financial_services_basel_regulatory_capital_internal_ratings_based_approach:8.1.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:siebel_ui_framework:20.8:*:*:*:*:*:*:*

OR cpe:/a:oracle:communications_application_session_controller:3.8m0:*:*:*:*:*:*:*

OR cpe:/a:oracle:financial_services_institutional_performance_analytics:8.1.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:communications_diameter_signaling_router_idih::*:*:*:*:*:*:*:* (Version >= 8.0.0 and <= 8.2.2)

OR cpe:/a:oracle:financial_services_institutional_performance_analytics:8.0.6:*:*:*:*:*:*:*

OR cpe:/a:oracle:financial_services_data_foundation:*:*:*:*:*:*:*:* (Version >= 8.0.6 and <= 8.1.0)

OR cpe:/a:oracle:insurance_insbridge_rating_and_underwriting:*:*:*:*:*:*:*:* (Version >= 5.0.0.0 and <= 5.6.0.0)

OR cpe:/a:oracle:financial_services_liquidity_risk_measurement_and_management:8.1.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:financial_services_institutional_performance_analytics:8.0.7:*:*:*:*:*:*:*

OR cpe:/a:oracle:financial_services_basel_regulatory_capital_basic:8.1.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:financial_services_regulatory_reporting_for_us_federal_reserve:*:*:*:*:*:*:*:* (Version >= 8.0.6 and <= 8.0.9)

OR cpe:/a:oracle:financial_services_regulatory_reporting_for_european_banking_authority:*:*:*:*:*:*:*:* (Version >= 8.0.6 and <= 8.1.0)

OR cpe:/a:oracle:policy_automation_for_mobile_devices:*:*:*:*:*:*:*:* (Version >= 12.2.0 and <= 12.2.20)

OR cpe:/a:oracle:insurance_allocation_manager_for_enterprise_profitability:8.0.8:*:*:*:*:*:*:*

OR cpe:/a:oracle:insurance_insbridge_rating_and_underwriting:5.6.1.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:hospitality_simphony:18.1:*:*:*:*:*:*:*

OR cpe:/a:oracle:financial_services_data_integration_hub:8.0.6:*:*:*:*:*:*:*

OR cpe:/a:oracle:financial_services_data_integration_hub:8.1.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:insurance_accounting_analyzer:8.0.9:*:*:*:*:*:*:*

OR cpe:/a:oracle:financial_services_basel_regulatory_capital_basic:*:*:*:*:*:*:*:* (Version >= 8.0.6 and <= 8.0.8)

OR cpe:/a:oracle:financial_services_hedge_management_and_ifrs_valuations:8.1.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:financial_services_analytical_applications_reconciliation_framework:8.1.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:insurance_allocation_manager_for_enterprise_profitability:8.1.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:hospitality_simphony:18.2:*:*:*:*:*:*:*

OR cpe:/a:oracle:financial_services_asset_liability_management:8.1.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:enterprise_manager_ops_center:12.4.0.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:enterprise_session_border_controller:8.4:*:*:*:*:*:*:*

OR cpe:/a:oracle:financial_services_market_risk_measurement_and_management:8.0.8:*:*:*:*:*:*:*

OR cpe:/a:oracle:jdeveloper:12.2.1.4.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:financial_services_funds_transfer_pricing:8.1.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:financial_services_data_integration_hub:8.0.7:*:*:*:*:*:*:*

OR cpe:/a:oracle:communications_services_gatekeeper:7.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:communications_eagle_application_processor:*:*:*:*:*:*:*:* (Version >= 16.1.0 and <= 16.4.0)

OR cpe:/a:oracle:blockchain_platform:*:*:*:*:*:*:*:* (Version < 21.1.2)

OR cpe:/a:oracle:storagetek_acsls:8.5.1:*:*:*:*:*:*:*

Configuration 6:

cpe:/a:netapp:snap_creator_framework:-:*:*:*:*:*:*:*

OR cpe:/a:netapp:snapcenter:-:*:*:*:*:*:*:*

OR cpe:/a:netapp:oncommand_insight:-:*:*:*:*:*:*:*

OR cpe:/a:netapp:oncommand_system_manager:*:*:*:*:*:*:*:* (Version >= 3.0 and <= 3.1.3)

OR cpe:/a:netapp:max_data:-:*:*:*:*:*:*:*

Configuration 7:

cpe:/o:netapp:h300s_firmware:-:*:*:*:*:*:*:*

AND

cpe:/h:netapp:h300s:-:*:*:*:*:*:*:*

Configuration 8:

cpe:/o:netapp:h500s_firmware:-:*:*:*:*:*:*:*

AND

cpe:/h:netapp:h500s:-:*:*:*:*:*:*:*

Configuration 9:

cpe:/o:netapp:h700s_firmware:-:*:*:*:*:*:*:*

AND

cpe:/h:netapp:h700s:-:*:*:*:*:*:*:*

Configuration 10:

cpe:/o:netapp:h300e_firmware:-:*:*:*:*:*:*:*

AND

cpe:/h:netapp:h300e:-:*:*:*:*:*:*:*

Configuration 11:

cpe:/o:netapp:h500e_firmware:-:*:*:*:*:*:*:*

AND

cpe:/h:netapp:h500e:-:*:*:*:*:*:*:*

Configuration 12:

cpe:/o:netapp:h700e_firmware:-:*:*:*:*:*:*:*

AND

cpe:/h:netapp:h700e:-:*:*:*:*:*:*:*

Configuration 13:

cpe:/o:netapp:h410s_firmware:-:*:*:*:*:*:*:*

AND

cpe:/h:netapp:h410s:-:*:*:*:*:*:*:*

Configuration 14:

cpe:/o:netapp:h410c_firmware:-:*:*:*:*:*:*:*

AND

cpe:/h:netapp:h410c:-:*:*:*:*:*:*:*

Configuration 15:

cpe:/o:opensuse:leap:15.1:*:*:*:*:*:*:*

OR cpe:/o:opensuse:leap:15.2:*:*:*:*:*:*:*

Configuration 16:

cpe:/a:tenable:log_correlation_engine:*:*:*:*:*:*:*:* (Version < 6.0.9)

Configuration 17:

cpe:/a:oracle:weblogic_server:12.1.3.0.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:agile_product_lifecycle_management_for_process:6.2.0.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:jdeveloper:11.1.1.9.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:retail_back_office:14.1:*:*:*:*:*:*:*

OR cpe:/a:oracle:retail_back_office:14.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:peoplesoft_enterprise_peopletools:8.56:*:*:*:*:*:*:*

OR cpe:/a:oracle:weblogic_server:10.3.6.0.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:communications_webrtc_session_controller:7.2:*:*:*:*:*:*:*

OR cpe:/a:oracle:weblogic_server:12.2.1.3.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:financial_services_asset_liability_management:8.0.6:*:*:*:*:*:*:*

OR cpe:/a:oracle:financial_services_asset_liability_management:8.0.7:*:*:*:*:*:*:*

OR cpe:/a:oracle:financial_services_funds_transfer_pricing:8.0.6:*:*:*:*:*:*:*

OR cpe:/a:oracle:financial_services_funds_transfer_pricing:8.0.7:*:*:*:*:*:*:*

OR cpe:/a:oracle:financial_services_hedge_management_and_ifrs_valuations:*:*:*:*:*:*:*:* (Version >= 8.0.6 and <= 8.0.8)

OR cpe:/a:oracle:financial_services_loan_loss_forecasting_and_provisioning:*:*:*:*:*:*:*:* (Version >= 8.0.6 and <= 8.0.8)

OR cpe:/a:oracle:financial_services_market_risk_measurement_and_management:8.0.6:*:*:*:*:*:*:*

OR cpe:/a:oracle:financial_services_price_creation_and_discovery:8.0.7:*:*:*:*:*:*:*

OR cpe:/a:oracle:financial_services_profitability_management:8.0.6:*:*:*:*:*:*:*

OR cpe:/a:oracle:financial_services_profitability_management:8.0.7:*:*:*:*:*:*:*

OR cpe:/a:oracle:hospitality_materials_control:18.1:*:*:*:*:*:*:*

OR cpe:/a:oracle:jdeveloper:12.2.1.3.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:peoplesoft_enterprise_peopletools:8.57:*:*:*:*:*:*:*

OR cpe:/a:oracle:peoplesoft_enterprise_peopletools:8.58:*:*:*:*:*:*:*

OR cpe:/a:oracle:policy_automation_connector_for_siebel:10.4.6:*:*:*:*:*:*:*

OR cpe:/a:oracle:retail_returns_management:14.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:retail_returns_management:14.1:*:*:*:*:*:*:*

OR cpe:/a:oracle:weblogic_server:12.2.1.4.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:communications_application_session_controller:3.8m0:*:*:*:*:*:*:*

OR cpe:/a:oracle:communications_billing_and_revenue_management:7.5.0.23.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:communications_billing_and_revenue_management:12.0.0.3.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:communications_diameter_signaling_router_idih::*:*:*:*:*:*:*:* (Version >= 8.0.0 and <= 8.2.2)

OR cpe:/a:oracle:financial_services_analytical_applications_infrastructure:*:*:*:*:*:*:*:* (Version >= 8.0.6 and <= 8.1.0)

OR cpe:/a:oracle:financial_services_analytical_applications_reconciliation_framework:*:*:*:*:*:*:*:* (Version >= 8.0.6 and <= 8.0.8)

OR cpe:/a:oracle:financial_services_balance_sheet_planning:8.0.8:*:*:*:*:*:*:*

OR cpe:/a:oracle:financial_services_basel_regulatory_capital_basic:8.1.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:financial_services_basel_regulatory_capital_internal_ratings_based_approach:*:*:*:*:*:*:*:* (Version >= 8.0.6 and <= 8.0.8)

OR cpe:/a:oracle:financial_services_basel_regulatory_capital_internal_ratings_based_approach:8.1.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:financial_services_data_foundation:*:*:*:*:*:*:*:* (Version >= 8.0.6 and <= 8.1.0)

OR cpe:/a:oracle:financial_services_data_governance_for_us_regulatory_reporting:*:*:*:*:*:*:*:* (Version >= 8.0.6 and <= 8.0.9)

OR cpe:/a:oracle:financial_services_institutional_performance_analytics:8.0.6:*:*:*:*:*:*:*

OR cpe:/a:oracle:financial_services_institutional_performance_analytics:8.0.7:*:*:*:*:*:*:*

OR cpe:/a:oracle:financial_services_institutional_performance_analytics:8.1.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:financial_services_liquidity_risk_management:8.0.6:*:*:*:*:*:*:*

OR cpe:/a:oracle:financial_services_liquidity_risk_measurement_and_management:8.0.7:*:*:*:*:*:*:*

OR cpe:/a:oracle:financial_services_liquidity_risk_measurement_and_management:8.0.8:*:*:*:*:*:*:*

OR cpe:/a:oracle:financial_services_liquidity_risk_measurement_and_management:8.1.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:financial_services_loan_loss_forecasting_and_provisioning:8.1.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:financial_services_price_creation_and_discovery:8.0.6:*:*:*:*:*:*:*

OR cpe:/a:oracle:financial_services_profitability_management:8.1.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:financial_services_regulatory_reporting_for_european_banking_authority:*:*:*:*:*:*:*:* (Version >= 8.0.6 and <= 8.1.0)

OR cpe:/a:oracle:financial_services_regulatory_reporting_for_us_federal_reserve:*:*:*:*:*:*:*:* (Version >= 8.0.6 and <= 8.0.9)

OR cpe:/a:oracle:healthcare_foundation:7.1.1:*:*:*:*:*:*:*

OR cpe:/a:oracle:healthcare_foundation:7.2.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:healthcare_foundation:7.2.1:*:*:*:*:*:*:*

OR cpe:/a:oracle:healthcare_foundation:7.3.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:insurance_allocation_manager_for_enterprise_profitability:8.0.8:*:*:*:*:*:*:*

OR cpe:/a:oracle:insurance_insbridge_rating_and_underwriting:*:*:*:*:*:*:*:* (Version >= 5.0.0.0 and <= 5.6.0.0)

OR cpe:/a:oracle:insurance_insbridge_rating_and_underwriting:5.6.1.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:policy_automation:*:*:*:*:*:*:*:* (Version >= 12.2.0 and <= 12.2.20)

OR cpe:/a:oracle:policy_automation_for_mobile_devices:*:*:*:*:*:*:*:* (Version >= 12.2.0 and <= 12.2.20)

OR cpe:/a:oracle:retail_customer_management_and_segmentation_foundation:19.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:siebel_ui_framework:20.8:*:*:*:*:*:*:*

OR cpe:/a:oracle:weblogic_server:14.1.1.0.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:banking_digital_experience:*:*:*:*:*:*:*:* (Version >= 18.1 and <= 20.1)

OR cpe:/a:oracle:enterprise_manager_ops_center:12.4.0.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:enterprise_session_border_controller:8.4:*:*:*:*:*:*:*

OR cpe:/a:oracle:financial_services_analytical_applications_reconciliation_framework:8.1.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:financial_services_asset_liability_management:8.1.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:financial_services_basel_regulatory_capital_basic:*:*:*:*:*:*:*:* (Version >= 8.0.6 and <= 8.0.8)

OR cpe:/a:oracle:financial_services_data_integration_hub:8.0.6:*:*:*:*:*:*:*

OR cpe:/a:oracle:financial_services_data_integration_hub:8.0.7:*:*:*:*:*:*:*

OR cpe:/a:oracle:financial_services_data_integration_hub:8.1.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:financial_services_funds_transfer_pricing:8.1.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:financial_services_hedge_management_and_ifrs_valuations:8.1.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:financial_services_market_risk_measurement_and_management:8.0.8:*:*:*:*:*:*:*

OR cpe:/a:oracle:hospitality_simphony:18.1:*:*:*:*:*:*:*

OR cpe:/a:oracle:hospitality_simphony:18.2:*:*:*:*:*:*:*

OR cpe:/a:oracle:hospitality_simphony:19.1.0-19.1.2:*:*:*:*:*:*:*

OR cpe:/a:oracle:insurance_accounting_analyzer:8.0.9:*:*:*:*:*:*:*

OR cpe:/a:oracle:insurance_allocation_manager_for_enterprise_profitability:8.1.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:insurance_data_foundation:8.0.6-8.1.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:jdeveloper:12.2.1.4.0:*:*:*:*:*:*:*

Configuration RedHat 1:

cpe:/o:redhat:enterprise_linux:7:*:*:*:*:*:*:*

Configuration RedHat 2:

cpe:/o:redhat:enterprise_linux:7::client:*:*:*:*:*

Configuration RedHat 3:

cpe:/o:redhat:enterprise_linux:7::computenode:*:*:*:*:*

Configuration RedHat 4:

cpe:/o:redhat:enterprise_linux:7::server:*:*:*:*:*

Configuration RedHat 5:

cpe:/o:redhat:enterprise_linux:7::workstation:*:*:*:*:*

Configuration RedHat 6:

cpe:/a:redhat:enterprise_linux:8:*:*:*:*:*:*:*

Configuration RedHat 7:

cpe:/a:redhat:enterprise_linux:8::appstream:*:*:*:*:*

Configuration CCN 1:

cpe:/a:jquery:jquery:1.2:*:*:*:*:*:*:*

AND

cpe:/a:ibm:business_process_manager:8.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:business_process_manager:8.5:*:*:*:*:*:*:*

OR cpe:/a:ibm:websphere_service_registry_and_repository:8.5:*:*:*:*:*:*:*

OR cpe:/a:ibm:license_metric_tool:9.2:*:*:*:*:*:*:*

OR cpe:/a:oracle:weblogic_server:10.3.6.0.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:weblogic_server:12.1.3.0.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:business_intelligence:11.1.1.9.0::~~enterprise~~~:*:*:*:*:*

OR cpe:/a:ibm:rational_collaborative_lifecycle_management:6.0.2:*:*:*:*:*:*:*

OR cpe:/a:ibm:api_connect:5.0.0.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:websphere_extreme_scale:8.6.1.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:jdeveloper:11.1.1.9.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:emptoris_sourcing:10.1.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:emptoris_sourcing:10.1.1:*:*:*:*:*:*:*

OR cpe:/a:ibm:emptoris_contract_management:10.1.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:primavera_unifier:16.1:*:*:*:*:*:*:*

OR cpe:/a:oracle:primavera_unifier:16.2:*:*:*:*:*:*:*

OR cpe:/a:ibm:emptoris_spend_analysis:10.1.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:emptoris_spend_analysis:10.1.1:*:*:*:*:*:*:*

OR cpe:/a:ibm:emptoris_sourcing:10.1.3:*:*:*:*:*:*:*

OR cpe:/a:oracle:weblogic_server:12.2.1.3.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:communications_webrtc_session_controller:7.2:*:*:*:*:*:*:*

OR cpe:/a:oracle:retail_back_office:14.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:retail_back_office:14.1:*:*:*:*:*:*:*

OR cpe:/a:oracle:agile_plm_framework:9.3.6:*:*:*:*:*:*:*

OR cpe:/a:oracle:peoplesoft_enterprise_peopletools:8.56:*:*:*:*:*:*:*

OR cpe:/a:oracle:retail_returns_management:14.1:*:*:*:*:*:*:*

OR cpe:/a:oracle:peoplesoft_enterprise_scm_purchasing:9.2:*:*:*:*:*:*:*

OR cpe:/a:ibm:business_process_manager:8.6.0.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:business_process_manager:8.6:*:*:*:*:*:*:*

OR cpe:/a:oracle:business_intelligence:12.2.1.3.0::~~enterprise~~~:*:*:*:*:*

OR cpe:/a:ibm:infosphere_information_server:11.7:*:*:*:*:*:*:*

OR cpe:/a:ibm:spectrum_protect_plus:10.1.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:webcenter_sites:12.2.1.3.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:business_automation_workflow:18.0.0.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:qradar_security_information_and_event_manager:7.3:*:*:*:*:*:*:*

OR cpe:/a:oracle:primavera_unifier:17.12:*:*:*:*:*:*:*

OR cpe:/a:oracle:retail_returns_management:14.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:policy_automation_connector_for_siebel:10.4.6:*:*:*:*:*:*:*

OR cpe:/a:oracle:jdeveloper:12.2.1.3.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:business_automation_workflow:18.0.0.1:*:*:*:*:*:*:*

OR cpe:/a:oracle:primavera_unifier:18.8:*:*:*:*:*:*:*

OR cpe:/a:oracle:hospitality_materials_control:18.1:*:*:*:*:*:*:*

OR cpe:/a:oracle:business_intelligence:12.2.1.4.0::~~enterprise~~~:*:*:*:*:*

OR cpe:/a:oracle:peoplesoft_enterprise_peopletools:8.57:*:*:*:*:*:*:*

OR cpe:/a:ibm:api_connect:2018.4.1:*:*:*:*:*:*:*

OR cpe:/a:ibm:emptoris_contract_management:10.1.1:*:*:*:*:*:*:*

OR cpe:/a:ibm:emptoris_contract_management:10.1.3:*:*:*:*:*:*:*

OR cpe:/a:oracle:agile_product_lifecycle_management_for_process:6.2.0.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:application_testing_suite:13.3.0.1:*:*:*:*:*:*:*

OR cpe:/a:ibm:qradar_network_packet_capture:7.3.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:qradar_security_information_and_event_manager:7.3.0:*:*:*:*:*:*:*

OR cpe:/o:canonical:ubuntu:16.04::~~lts~~~:*:*:*:*:*

OR cpe:/o:canonical:ubuntu:18.04::~~lts~~~:*:*:*:*:*

OR cpe:/a:ibm:sterling_b2b_integrator:6.0.0.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:cognos_command_center:10.2.4.1:*:*:*:*:*:*:*

OR cpe:/a:ibm:business_automation_workflow:19.0.0.1:*:*:*:*:*:*:*

OR cpe:/a:ibm:rational_license_key_server:8.1.6:*:*:*:*:*:*:*

OR cpe:/a:ibm:cognos_controller:10.4.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:communications_operations_monitor:3.4:*:*:*:*:*:*:*

OR cpe:/a:oracle:financial_services_market_risk_measurement_and_management:8.0.6:*:*:*:*:*:*:*

OR cpe:/a:oracle:financial_services_market_risk_measurement_and_management:8.0.8:*:*:*:*:*:*:*

OR cpe:/a:oracle:financial_services_liquidity_risk_measurement_and_management:8.0.8:*:*:*:*:*:*:*

OR cpe:/a:oracle:insurance_allocation_manager_for_enterprise_profitability:8.0.8:*:*:*:*:*:*:*

OR cpe:/a:ibm:kenexa_lms:6.1:*:*:*:*:*:*:*

OR cpe:/a:ibm:emptoris_spend_analysis:10.1.3:*:*:*:*:*:*:*

OR cpe:/a:ibm:cognos_controller:10.4.1:*:*:*:*:*:*:*

OR cpe:/a:ibm:security_directory_server:6.4.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:tivoli_netcool/impact:7.1.0.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:api_connect:2018.4.1.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:cloud_transformation_advisor:2.0.1:*:*:*:*:*:*:*

OR cpe:/a:ibm:iot_messagesight:2.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:iot_messagesight:5.0.0.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:business_automation_workflow:19.0.0.3:*:*:*:*:*:*:*

OR cpe:/a:ibm:business_process_manager:8.5.0.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:aspera_console:3.4.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:aspera_shares:1.9.14:*:*:*:*:*:*:*

OR cpe:/a:ibm:mobilefirst_platform_foundation:7.1.0.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:mobilefirst_platform_foundation:8.0.0.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:dataquant:2.1:*:*:*:z/os:*:*:*

OR cpe:/a:ibm:dataquant:2.1:*:*:*:*:*:*:*

OR cpe:/a:ibm:rational_license_key_server:8.1.6.2:*:*:*:*:*:*:*

OR cpe:/a:ibm:data_risk_manager:2.0.6:*:*:*:*:*:*:*

OR cpe:/a:ibm:rational_collaborative_lifecycle_management:7.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:qradar_security_information_and_event_manager:7.4:-:*:*:*:*:*:*

OR cpe:/a:ibm:emptoris_program_management:10.1.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:emptoris_program_management:10.1.1:*:*:*:*:*:*:*

OR cpe:/a:ibm:emptoris_program_management:10.1.3:*:*:*:*:*:*:*

OR cpe:/a:ibm:api_connect:5.0.8.8:*:*:*:*:*:*:*

OR cpe:/a:ibm:emptoris_strategic_supply_management:10.1.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:emptoris_strategic_supply_management:10.1.1:*:*:*:*:*:*:*

OR cpe:/a:ibm:emptoris_strategic_supply_management:10.1.3:*:*:*:*:*:*:*

OR cpe:/a:ibm:api_connect:2018.4.1.11:*:*:*:*:*:*:*

OR cpe:/a:ibm:business_automation_workflow:18.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:business_automation_workflow:19.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:business_automation_workflow:20.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:security_identity_manager_virtual_appliance:7.0.2:*:*:*:*:*:*:*

OR cpe:/a:ibm:rational_license_key_server:8.1.6.1:*:*:*:*:*:*:*

OR cpe:/a:ibm:rational_license_key_server:8.1.6.3:*:*:*:*:*:*:*

OR cpe:/a:ibm:rational_license_key_server:8.1.6.4:*:*:*:*:*:*:*

OR cpe:/a:ibm:planning_analytics:2.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:spectrum_protect_plus:10.1.6:*:*:*:*:*:*:*

OR cpe:/a:ibm:qradar_network_packet_capture:7.3.3:-:*:*:*:*:*:*

OR cpe:/a:ibm:security_identity_manager_virtual_appliance:7.0.1:*:*:*:*:*:*:*

OR cpe:/a:ibm:api_connect:10.0.0.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:qradar_incident_forensics:7.3.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:qradar_security_information_and_event_manager:7.3.3:p4:*:*:*:*:*:*

OR cpe:/a:ibm:qradar_security_information_and_event_manager:7.4.0:-:*:*:*:*:*:*

OR cpe:/a:ibm:qradar_security_information_and_event_manager:7.4.1:-:*:*:*:*:*:*

OR cpe:/o:canonical:ubuntu:12.04::~~esm~~~:*:*:*:*:*

OR cpe:/o:canonical:ubuntu:14.04::~~esm~~~:*:*:*:*:*

OR cpe:/o:canonical:ubuntu:20.04::~~lts~~~:*:*:*:*:*

OR cpe:/o:canonical:ubuntu:20.10:*:*:*:*:*:*:*

OR cpe:/a:ibm:rational_license_key_server:8.1.6.5:*:*:*:*:*:*:*

OR cpe:/a:ibm:cognos_controller:10.4.2:*:*:*:*:*:*:*

OR cpe:/a:ibm:business_automation_workflow:20.0.0.1:*:*:*:*:*:*:*

OR cpe:/a:ibm:sterling_b2b_integrator:6.1.0.0:*:*:*:standard:*:*:*

OR cpe:/a:ibm:business_automation_workflow:20.0.0.2:*:*:*:*:*:*:*

OR cpe:/a:ibm:engineering_workflow_management:7.0.1:*:*:*:*:*:*:*

OR cpe:/a:ibm:engineering_workflow_management:7.0.2:*:*:*:*:*:*:*

OR cpe:/a:ibm:api_connect:10.0.1.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:security_verify_information_queue:1.0.6:*:*:*:*:*:*:*

OR cpe:/a:ibm:security_verify_information_queue:1.0.7:*:*:*:*:*:*:*

OR cpe:/a:ibm:security_identity_manager:7.0.2:*:*:*:*:*:*:*

OR cpe:/a:ibm:planning_analytics:2.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:qradar_security_information_and_event_manager:7.4.3:-:*:*:*:*:*:*

OR cpe:/a:ibm:qradar_security_information_and_event_manager:7.3.3:p8:*:*:*:*:*:*

OR cpe:/a:ibm:business_automation_workflow:21.0.2:*:*:*:*:*:*:*

OR cpe:/a:ibm:cloud_pak_for_security:1.7.2.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:cognos_analytics:11.2.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:cognos_analytics:11.1.7:-:*:*:*:*:*:*

OR cpe:/a:ibm:planning_analytics:2.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:spectrum_copy_data_management:2.2.13:*:*:*:*:*:*:*

OR cpe:/a:ibm:business_automation_workflow:21.0.3:*:*:*:*:*:*:*

OR cpe:/a:ibm:cloud_pak_for_business_automation:18.0.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:cloud_pak_for_business_automation:18.0.2:*:*:*:*:*:*:*

OR cpe:/a:ibm:cloud_pak_for_business_automation:19.0.1:*:*:*:*:*:*:*

OR cpe:/a:ibm:cloud_pak_for_business_automation:19.0.3:*:*:*:*:*:*:*

OR cpe:/a:ibm:cloud_pak_for_business_automation:20.0.1:*:*:*:*:*:*:*

OR cpe:/a:ibm:cloud_pak_for_business_automation:20.0.3:*:*:*:*:*:*:*

OR cpe:/a:ibm:cloud_pak_for_business_automation:21.0.1:-:*:*:*:*:*:*

OR cpe:/a:ibm:cloud_pak_for_business_automation:21.0.2:-:*:*:*:*:*:*

OR cpe:/a:ibm:cloud_pak_for_business_automation:21.0.3:-:*:*:*:*:*:*

OR cpe:/a:ibm:business_automation_workflow:21.0.1:*:*:*:traditional:*:*:*

OR cpe:/a:ibm:robotic_process_automation:21.0.1:*:*:*:*:*:*:*

OR cpe:/a:ibm:cics_tx:11.1:*:*:*:standard:*:*:*

OR cpe:/a:ibm:cics_tx:11.1:*:*:*:advanced:*:*:*

OR cpe:/a:ibm:sterling_b2b_integrator:6.0.3.7:*:*:*:standard:*:*:*

OR cpe:/a:ibm:sterling_b2b_integrator:6.1.2.1:*:*:*:standard:*:*:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:org.opensuse.security:def:202011022	V	CVE-2020-11022	2023-06-22
oval:org.opensuse.security:def:8067	P	testng-7.4.0-150200.3.7.1 on GA media (Moderate)	2023-06-20
oval:org.opensuse.security:def:112039	P	cacti-1.2.18-1.2 on GA media (Moderate)	2022-01-17
oval:org.opensuse.security:def:64813	P	Security update for brotli (Moderate)	2021-12-06
oval:org.opensuse.security:def:67343	P	Security update for the Linux Kernel (Important)	2021-12-06
oval:org.opensuse.security:def:67345	P	Recommended update for php7 (Moderate)	2021-12-06
oval:org.opensuse.security:def:64806	P	Security update for python-sqlparse (Moderate)	2021-12-01
oval:org.opensuse.security:def:64607	P	Security update for salt (Moderate)	2021-10-27
oval:org.opensuse.security:def:74387	P	Security update for ffmpeg (Moderate)	2021-10-26
oval:org.opensuse.security:def:105594	P	cacti-1.2.18-1.2 on GA media (Moderate)	2021-10-01
oval:org.opensuse.security:def:63208	P	guestfs-data-1.38.0-3.52 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:64755	P	Security update for spectre-meltdown-checker (Moderate)	2021-08-27
oval:org.opensuse.security:def:64562	P	Security update for dbus-1 (Moderate)	2021-08-23
oval:org.opensuse.security:def:63058	P	libnss_slurm2-20.11.5-2.1 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:63420	P	djvulibre-3.5.27-9.28 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:63501	P	libxslt1-32bit-1.1.32-3.8.24 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:63005	P	dpkg-1.19.0.4-2.30 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:63002	P	cups-ddk-2.2.7-3.26.1 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:63030	P	pam-devel-32bit-1.3.0-6.29.1 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:62779	P	libcdio16-0.94-6.9.2 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:62998	P	cpp10-10.2.1+git583-1.3.4 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:64546	P	Security update for systemd (Moderate)	2021-07-20
oval:org.opensuse.security:def:64545	P	Security update for the Linux Kernel (Important)	2021-07-14
oval:org.opensuse.security:def:63558	P	openconnect-7.08-4.26 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:64699	P	Security update for lz4 (Important)	2021-06-01
oval:org.opensuse.security:def:64698	P	Security update for gstreamer, gstreamer-plugins-bad, gstreamer-plugins-base, gstreamer-plugins-good, gstreamer-plugins-ugly (Important)	2021-06-01
oval:org.opensuse.security:def:64495	P	Security update for the Linux Kernel (Important)	2021-05-12
oval:org.opensuse.security:def:64653	P	Security update for postgresql12 (Moderate)	2021-02-22
oval:org.opensuse.security:def:74673	P	Security update for the Linux Kernel (Important)	2021-02-09
oval:org.opensuse.security:def:64453	P	Security update for python3 (Important)	2020-12-23
oval:org.opensuse.security:def:64447	P	Security update for the Linux Kernel (Important)	2020-12-10
oval:org.opensuse.security:def:63624	P	libavcodec-devel-3.4.2-9.2 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:62602	P	rtkit-0.11+git.20130926-1.34 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:63260	P	dpdk-19.11.1-1.3 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:62578	P	libraptor-devel-2.0.15-1.42 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:62579	P	librsvg-devel-2.42.3-1.49 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:63398	P	jakarta-commons-fileupload-1.1.1-2.82 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:63704	P	Security update for ghostscript (Important)	2020-12-01
oval:org.opensuse.security:def:64908	P	Security update for ucode-intel (Important)	2020-12-01
oval:org.opensuse.security:def:64191	P	corosync on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:26488	P	Security update for cacti, cacti-spine (Moderate)	2020-12-01
oval:org.opensuse.security:def:64085	P	Security update for freetype2 (Important)	2020-12-01
oval:org.opensuse.security:def:65997	P	Security update for postgresql10 and postgresql12 (Moderate)	2020-12-01
oval:org.opensuse.security:def:64233	P	cups on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25815	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:25244	P	Security update for log4j (Important)	2020-12-01
oval:org.opensuse.security:def:64293	P	libHX-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:67444	P	Security update for SUSE Manager Server 4.1 (Moderate)	2020-12-01
oval:org.opensuse.security:def:25669	P	Security update for gcc10 (Moderate)	2020-12-01
oval:org.opensuse.security:def:25042	P	Security update for mariadb-100 (Moderate)	2020-12-01
oval:org.opensuse.security:def:64409	P	libyaml-0-2 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:75020	P	Security update for ark (Moderate)	2020-12-01
oval:org.opensuse.security:def:63857	P	Security update for curl (Important)	2020-12-01
oval:org.opensuse.security:def:25757	P	Security update for flash-player (Moderate)	2020-12-01
oval:org.opensuse.security:def:25117	P	Security update for java-1_8_0-ibm (Important)	2020-12-01
oval:org.opensuse.security:def:64351	P	libmspack-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:66084	P	Security update for SUSE Manager Proxy 4.0 (Moderate)	2020-12-01
oval:org.opensuse.security:def:64245	P	elfutils on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25466	P	Security update for libxml2 (Low)	2020-12-01
oval:org.opensuse.security:def:63851	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:64966	P	Security update for libvpx (Important)	2020-12-01
oval:org.opensuse.security:def:75000	P	Security update for cacti, cacti-spine (Moderate)	2020-12-01
oval:org.opensuse.security:def:26453	P	Security update for kauth (Moderate)	2020-12-01
oval:org.opensuse.security:def:63784	P	Security update for nmap (Important)	2020-12-01
oval:org.opensuse.security:def:64925	P	Security update for libarchive (Moderate)	2020-12-01
oval:org.opensuse.security:def:25325	P	Security update for freetype2 (Important)	2020-12-01
oval:org.opensuse.security:def:64335	P	libjansson-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:66089	P	Security update for SUSE Manager Server 4.0 (Important)	2020-12-01
oval:org.opensuse.security:def:63951	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:74547	P	Security update for sarg (Moderate)	2020-12-01
oval:org.opensuse.security:def:64004	P	Security update for log4j (Important)	2020-12-01
oval:org.opensuse.security:def:25771	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:75153	P	Security update for otrs (Moderate)	2020-12-01
oval:org.opensuse.security:def:25616	P	Security update for less (Moderate)	2020-12-01
oval:org.opensuse.security:def:65992	P	Security update for opencv (Moderate)	2020-12-01
oval:org.opensuse.security:def:64080	P	Security update for perl-DBI (Important)	2020-12-01
oval:org.opensuse.security:def:65078	P	Security update for perl-DBI (Moderate)	2020-12-01
oval:org.opensuse.security:def:67442	P	Security update for SUSE Manager Proxy 4.1 (Moderate)	2020-12-01
oval:org.opensuse.security:def:25053	P	Security update for libunwind (Moderate)	2020-12-01
oval:org.opensuse.security:def:74513	P	Security update for cacti, cacti-spine (Moderate)	2020-12-01
oval:org.opensuse.security:def:64111	P	Security update for MozillaFirefox (Important)	2020-12-01
oval:org.opensuse.security:def:74867	P	Security update for ghostscript (Important)	2020-12-01
oval:org.opensuse.security:def:25382	P	Security update for squid (Critical)	2020-12-01
oval:org.opensuse.security:def:110297	P	Security update for otrs (Moderate)	2020-11-09
oval:org.opensuse.security:def:96386	P	Security update for otrs (Moderate)	2020-11-09
oval:org.opensuse.security:def:109733	P	Security update for otrs (Moderate)	2020-11-09
oval:org.opensuse.security:def:93548	P	Security update for otrs (Moderate)	2020-11-09
oval:org.opensuse.security:def:110848	P	Security update for otrs (Moderate)	2020-11-09
oval:org.opensuse.security:def:100261	P	Security update for otrs (Moderate)	2020-11-09
oval:org.opensuse.security:def:103076	P	Security update for otrs (Moderate)	2020-11-09
oval:com.redhat.rhsa:def:20204670	P	RHSA-2020:4670: idm:DL1 and idm:client security, bug fix, and enhancement update (Moderate)	2020-11-04
oval:com.redhat.rhsa:def:20204847	P	RHSA-2020:4847: pki-core:10.6 and pki-deps:10.6 security, bug fix, and enhancement update (Moderate)	2020-11-04
oval:com.redhat.rhsa:def:20203936	P	RHSA-2020:3936: ipa security, bug fix, and enhancement update (Moderate)	2020-09-29
oval:org.opensuse.security:def:91679	P	Security update for SUSE Manager Proxy 4.0 (Moderate)	2020-09-16
oval:org.opensuse.security:def:91684	P	Security update for SUSE Manager Server 4.0 (Important)	2020-09-16
oval:org.opensuse.security:def:95967	P	Security update for SUSE Manager Proxy 4.1 (Moderate)	2020-08-28
oval:org.opensuse.security:def:95971	P	Security update for SUSE Manager Server 4.1 (Moderate)	2020-08-28
oval:org.opensuse.security:def:100210	P	Security update for cacti, cacti-spine (Moderate)	2020-07-27
oval:org.opensuse.security:def:93497	P	Security update for cacti, cacti-spine (Moderate)	2020-07-27
oval:org.opensuse.security:def:110695	P	Security update for cacti, cacti-spine (Moderate)	2020-07-25
oval:org.opensuse.security:def:110137	P	Security update for cacti, cacti-spine (Moderate)	2020-07-25