Vulnerability Name: CVE-2021-45105 (CCN-215647) Assigned: 2021-12-17 Published: 2021-12-17 Updated: 2022-10-06 Summary: Apache Log4j2 versions 2.0-alpha1 through 2.16.0 (excluding 2.12.3 and 2.3.1) did not protect from uncontrolled recursion from self-referential lookups. This allows an attacker with control over Thread Context Map data to cause a denial of service when a crafted string is interpreted. This issue was fixed in Log4j 2.17.0, 2.12.3, and 2.3.1. CVSS v3 Severity: 5.9 Medium (CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H 5.2 Medium (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C Exploitability Metrics: Attack Vector (AV): NetworkAttack Complexity (AC): HighPrivileges Required (PR): NoneUser Interaction (UI): NoneScope: Scope (S): UnchangedImpact Metrics: Confidentiality (C): NoneIntegrity (I): NoneAvailibility (A): High
7.5 High (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 6.5 Medium (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C Exploitability Metrics: Attack Vector (AV): NetworkAttack Complexity (AC): LowPrivileges Required (PR): NoneUser Interaction (UI): NoneScope: Scope (S): UnchangedImpact Metrics: Confidentiality (C): NoneIntegrity (I): NoneAvailibility (A): High
CVSS v2 Severity: 4.3 Medium (CVSS v2 Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P Exploitability Metrics: Access Vector (AV): NetworkAccess Complexity (AC): MediumAuthentication (Au): NoneImpact Metrics: Confidentiality (C): NoneIntegrity (I): NoneAvailibility (A): Partial
7.8 High (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:C Exploitability Metrics: Access Vector (AV): NetworkAccess Complexity (AC): LowAthentication (Au): NoneImpact Metrics: Confidentiality (C): NoneIntegrity (I): NoneAvailibility (A): Complete
Vulnerability Type: CWE-20 CWE-674 Vulnerability Consequences: Denial of Service References: Source: MITRECVE-2021-45105 [oss-security] 20211218 CVE-2021-45105: Apache Log4j2 does not always protect from infinite recursion in lookup evaluation https://cert-portal.siemens.com/productcert/pdf/ssa-479842.pdf https://cert-portal.siemens.com/productcert/pdf/ssa-501673.pdf apache-cve202145105-dos(215647) Apache Log4j Security Vulnerabilities https://logging.apache.org/log4j/2.x/security.html https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2021-0032 https://security.netapp.com/advisory/ntap-20211218-0001/ Vulnerabilities in Apache Log4j Library Affecting Cisco Products: December 2021 20211210 Vulnerabilities in Apache Log4j Library Affecting Cisco Products: December 2021 DSA-5024 Multiple vulnerabilities in Apache Log4j affects some features of IBM Db2 (CVE-2021-45046, CVE-2021-45105) IBM Planning Analytics 2.0: Apache Log4j Vulnerabilities (CVE-2021-45046 & CVE-2021-45105) DS8000 Hardware Management Console is vulnerable to Apache Log44j (CVE-2021-45105 and CVE-2021-45046) Vulnerability in Apache Log4j affects IBM Cloud Private (CVE-2021-45105) Vulnerabilities in Apache Log4j affect IBM App Connect Enterprise V11, V12 (CVE-2021-45105) Vulnerabilities in Apache Log4j affect IBM App Connect for Manufacturing 2.0 (CVE-2021-45105) Vulnerabilities in Apache Log4j affects SPSS Collaboration and Deployment Services IBM Jazz for Service Management is vulnerable to a Apache Log4j vulnerabilities(CVE-2021-45105, CVE-2021-45046) Apache Log4j Vulnerabilities Affect IBM Sterling Connect:Direct File Agent (CVE-2021-45046, CVE-2021-45105) Apache Log4j Vulnerability Affects IBM Sterling Control Center (CVE-2021-45105) IBM OpenPages with Watson has addressed multiple security vulnerabilities in Apache Log4j (CVE-2021-45105, CVE-2021-45046) Vulnerability in Apache Log4j affects IBM SPSS Analytic Server (CVE-2021-45105 and CVE-2021-45046) Vulnerabilities in Apache Log4j impact IBM Cloud Application Business Insights (CVE-2021-45105, CVE-2021-45046) Vulnerability in Apache Log4j affects IBM Event Streams (CVE-2021-45105, CVE-2021-45046) Apache Log4j vulnerabilities impacts IBM Sterling Connect:Direct Web Services (CVE-2021-45105, CVE-2021-45046) Vulnerabilities in Apache Log4j affect IBM Spectrum Control (CVE-2021-45105, CVE-2021-45046) Vulnerability in Apache Log4j (CVE-2021-45105) affects IBM Workload Scheduler 9.5 IBM Security Guardium is vulnerable to a denial of service vulnerability in Apache log4j2 component (CVE-2021-45105 & CVE-2021-45046) Multiple Remote Attack Vulnerabilities in Apache Log4j affect IBM Common Licensing's License Key Server (LKS) Administration And Reporting Tool (ART) and its Agent IBM SPSS Statistics is vulnerable to denial of service due to Apache Log4j (CVE-2021-45105) and arbitrary code execution due to Apache Log4j (CVE-2021-45046) Apache Log4j vulnerabilities, CVE-2021-45105 (affecting v2.16) and CVE-2021-45046 (affecting v2.15), affect IBM SPSS Statistics Desktop Apache Log4j vulnerabilities, CVE-2021-45105 (affecting v2.16) and CVE-2021-45046 (affecting v2.15), affect IBM SPSS Statistics Server Apache Log4j vulnerabilities, CVE-2021-45105 (affecting v2.16) and CVE-2021-45046 (affecting v2.15), affect IBM SPSS Statistics Subscription BM SPSS Modeler is vulnerable to denial of service due to Apache Log4j (CVE-2021-45105) and arbitrary code execution due to Apache Log4j (CVE-2021-45046) Vulnerabilities in Apache Log4j affect IBM Spectrum Protect Operations Center (CVE-2021-45105, CVE-2021-45046) Multiple vulnerabilities in IBM SANnav software used by IBM b-type SAN directors and switches (CVE-2021-45105 and CV-2021-45046) A vulnerability in Apache Log4j affects IBM Db2 Web Query for i (CVE-2021-45105) Vulnerability in Apache Log4j affects IBM Guardium Data Encryption (GDE) (CVE-2021-45105 and CVE-2021-45046) Vulnerabilities in Apache Log4j impact IBM Spectrum Protect Plus (CVE-2021-45105, CVE-2021-45046) Vulnerabilities in Apache Log4j affect IBM Spectrum Protect Plus Container Backup and Restore for Kubernetes and OpenShift (CVE-2021-45105, CVE-2021-45046) Vulnerabilities in Apache Log4j affect IBM Spectrum Copy Data Management (CVE-2021-45105, CVE-2021-45046) Vulnerabilities in Apache Log4j affect IBM Spectrum Protect for Space Management (CVE-2021-45105, CVE-2021-45046) Vulnerabilities in Apache Log4j affect IBM Spectrum Protect Snapshot on Windows (CVE-2021-45105 and CVE-2021-45046) Vulnerabilities in Apache Log4j affect IBM Spectrum Protect Snapshot for VMware (CVE-2021-45105 and CVE-2021-45046) Apache Log4j Vulnerability Affects IBM Sterling B2B Integrator (CVE-2021-45105, CVE-2021-45046) Apache Log4j Vulnerability Affects IBM Sterling File Gateway (CVE-2021-45105, CVE-2021-45046) Multiple vulnerabilities in Apache Log4j impact IBM Spectrum Scale (CVE-2021-45105, CVE-2021-45046) Multiple vulnerabilities in Apache Log4j impact IBM Elastic Storage System (CVE-2021-45105, CVE-2021-45046) Multiple vulnerabilities in Apache Log4j impact IBM Spectrum Scale for IBM Elastic Storage Server (CVE-2021-45105,CVE-2021-45046) IBM i2 Analyze and IBM i2 Analyst's Notebook Premium are affected by Apache Log4j Vulnerabilities (CVE-2021-45105 and CVE-2021-45046) Apache Log4j vulnerabilities impact IBM Sterling Connect:Direct for UNIX (CVE-2021-45105, CVE-2021-45046) Multiple vulnerabilities in Apache Log4j impact IBM Sterling Secure Proxy (CVE-2021-45105, CVE-2021-45046) Multiple Vulnerabilities in Apache Log4j impact IBM Sterling External Authentication Server (CVE-2021-45105, CVE-2021-45046) Apache Log4j vulnerabilities impact IBM Sterling Connect:Direct for Microsoft Windows (CVE-2021-45105, CVE-2021-45046) Multiple vulnerabilities in Apache log4j affect IBM WebSphere Application Server (CVE-2021-45105, CVE-2021-44832) IBM Watson Discovery for IBM Cloud Pak for Data affected by vulnerability in Apache Log4j Apache Log4j vulnerability impacts IBM Sterling Partner Engagement Manager (CVE-2021-45105, CVE-2021-45046) Apache Log4j vulnerabilities impact IBM Sterling Connect:Direct for z/OS (CVE-2021-45105, CVE-2021-45046) Vulnerabilities in Apache Log4j impacts IBM Spectrum Protect Backup-Archive Client and IBM Spectrum Protect for Virtual Environments (CVE-2021-45105, CVE-2021-45046) Multiple vulnerabilities affect IBM Tivoli Monitoring Installed WebSphere Application Server including Log4j Vulnerability in Apache Log4j (CVE-2021-45105) affects the IBM Performance Management product Multiple vulnerabilities in Apache Log4j affect IBM Tivoli Netcool Impact (CVE-2021-45105, CVE-2021-45046) IBM Cognos Analytics: Apache Log4j vulnerabilities (CVE-2021-45105, CVE-2021-44832) IBM Security SOAR is vulnerable to denial of service and arbitrary code execution due to Apache Log4j (CVE-2021-45105 and CVE-2021-45046). IBM MQ Blockchain bridge dependencies are vulnerable to issues in Apache Log4j (CVE-2021-45105 & CVE-2021-44832) Apache Log4j vulnerabilities impact z/Transaction Processing Facility (z/TPF) and TPF Operations Server (CVE-2021-45105, CVE-2021-45046) Multiple vulnerabilities in Apache Log4j affect the IBM WebSphere Application Server and IBM Security Guardium Key Lifecycle Manager (CVE-2021-4104, CVE-2021-45046, CVE-2021-45105 and CVE-2021-44832) Multiple vulnerabilities in Apache Log4j addressed in IBM Spectrum Symphony Log4j as used in IBM QRadar User Behavior Analytics add on to IBM QRadar SIEM is vulnerable to denial of service. (CVE-2021-45105) Multiple Security Vulnerabilities Affect IBM Cloud Transformation Advisor Novalink is vulnerable to denial of service and arbitrary code execution due to Apache Log4j (CVE-2021-45105 and CVE-2021-45046) Operations Dashboard is vulnerable to Log4j CVE-2021-45105 IBM Engineering Lifecycle Management products are vulnerable to arbitrary code execution due to Apache Log4j (CVE-2021-44832, CVE-2021-45046, ) and denial of service due to Apache Log4j (CVE-2021-45105) Vulnerabilities in Apache Log4j affect IBM Spectrum Archive Enterprise Edition (CVE-2021-45105, CVE-2021-45046) Due to use of Apache Log4j, IBM StoredIQ for Legal is vulnerable to arbitrary code execution (CVE-2021-44228, CVE-2021-45046) and denial of service (CVE-2021-45105) Due to use of Apache Log4j, IBM Watson Explorer is vulnerable to arbitrary code execution (CVE-2021-44832, CVE-2021-45046) and denial of service (CVE-2021-45105) IBM Business Automation Workflow is vulnerable to denial of service and arbitrary code execution due to Apache Log4j (CVE-2021-45105 and CVE-2021-45046) IBM Engineering Systems Design Rhapsody (Rhapsody) is vulnerable to arbitrary code execution due to Apache Log4j (CVE-2021-44832, CVE-2021-45046, ) and denial of service due to Apache Log4j (CVE-2021-45105) Due to Apache Log4j, IBM WebSphere Automation for IBM Cloud Pak for Watson AIOps is vulnerable to arbitrary code execution (CVE-2021-45046) and denial of service (CVE-2021-45105) Vulnerability in Apache Log4j affects IBM Data Risk Manager (CVE-2021-45105, CVE-2021-45046) IBM Engineering Requirements Management DOORS is vulnerable to arbitrary code execution due to Apache Log4j (CVE-2021-44832, CVE-2021-45046, ) and denial of service due to Apache Log4j (CVE-2021-45105) IBM Cognos Controller 10.4.2 IF17: Apache Log4j vulnerability (CVE-2021-45105 & CVE-2021-44832) IBM Engineering Lifecycle Optimization - Publishing is vulnerable to arbitrary code execution due to Apache Log4j (CVE-2021-44832, CVE-2021-45046, ) and denial of service due to Apache Log4j (CVE-2021-45105) Vulnerabilities in Apache Log4j affects IBm Edge Application Manager (CVE-2021-45105 and CVE-2021-45046) Vulnerabilities in Apache Log4j may affect Cram Social Program Management (CVE-2021-44832 , CVE-2021-45105) Vulnerability in Apache Log4j affects Content Collector for Email (CVE-2021-45105) Vulnerability in Apache Log4j affects Content Collector for File Systems (CVE-2021-45105) Vulnerability in Apache Log4j affects Content Collector for IBM Connections (CVE-2021-45105) Vulnerability in Apache Log4j affects Content Collector for Microsoft SharePoint (CVE-2021-45105) IBM Db2 Warehouse is vulnerable to denial of service and arbitrary code execution due to Apache Log4j (CVE-2021-45105 and CVE-2021-45046) Crypto Hardware Initialization and Maintenance is vulnerable to denial of service and arbitrary code execution due to Apache Log4j (CVE-2021-45105, CVE-2021-45046) Cloud Pak for Security is vulnerable to denial of service and arbitrary code execution due to Apache Log4j (CVE-2021-45105 and CVE-2021-45046) IBM App Connect Enterprise Certified Container is vulnerable to arbitrary code execution due to Apache Log4j (CVE-2021-45046) and denial of service due to Apache Log4j (CVE-2021-45105) IBM Telco Network Cloud Manager - Performance is vulnerable to denial of service and arbitrary code execution due to Apache Log4j (CVE-2021-45105 and CVE-2021-45046) IBM Security Access Manager for Enterprise Single Sign-On is vulnerable to denial of service and arbitrary code execution due to Apache Log4j (CVE-2021-45105 and CVE-2021-45046) Due to use of Apache Log4j, IBM Cloud PAK for Watson AI Ops is vulnerable to arbitrary code execution (CVE-2021-45046) and denial of service (CVE-2021-45105) Due to use of Apache Log4j, IBM Robotic Process Automation with Automation Anywhere is vulnerable to arbitrary code execution (CVE-2021-45046) and denial of service (CVE-2021-45105) IBM Rational Software Architect RealTime Edition (RSA RT) is is vulnerable to arbitrary code execution and denial of service due to Apache Log4j (CVE-2021-44228, CVE-2021-45046 and CVE-2021-45105) A vulnerability in Apache log4j (CVE-2021-45105) affects IBM Operations Analytics Predictive Insights Automation Assets in IBM Cloud Pak for Integration is vulnerable to denial of service due to Apache Log4j (CVE-2021-45105) IBM TRIRIGA Connector for Esri ArcGIS Indoors a component of IBM TRIRIGA Portfolio Data Manager is vulnerable to denial of service and arbitrary code execution due to Apache Log4j (CVE-2021-45105 and CVE-2021-45046) API Connect is vulnerable to denial of service and arbitrary code execution due to Apache Log4j (CVE-2021-45105, CVE-2021-45046 and CVE-2021-44832) Due to the use of Apache Log4j, IBM Spectrum Conductor is vulnerable to arbitrary code execution (CVE-2021-44832 and CVE-2021-45046) and denial of service (CVE-2021-45105) IBM Disconnected Log Collector is vulnerable to denial of service and arbitrary code execution due to Apache Log4j (CVE-2021-45105 and CVE-2021-45046) IBM Integrated Analytics System is vulnerable to denial of service and arbitrary code execution due to Apache Log4j (CVE-2021-45105, CVE-2021-45046) IBM Cloud Pak for Data System 2.0 (ICPDS 2.0 ) is vulnerable to denial of service and arbitrary code execution due to Apache Log4j (CVE-2021-45105, CVE-2021-45046) IBM Operations Analytics Predictive Insights is vulnerable to denial of service and arbitrary code execution due to Apache Log4j (CVE-2021-45105, CVE-2021-45046) IBM InfoSphere Information Server is vulnerable to denial of service and arbitrary code execution due to Apache Log4j (CVE-2021-45105, CVE-2021-45046) IBM Netcool Agile Service Manager is vulnerable to arbitrary code execution and denial of service due to Apache Log4j (CVE-2021-44832, CVE-2021-45046, CVE-2021-45105) IBM Security Guardium Insights is vulnerable to denial of service and arbitrary code execution due to Apache Log4j (CVE-2021-45105, CVE-2021-45046) IBM Observability by Instana and IBM Observability with Instana - Server and Agents are vulnerable to denial of service and arbitrary code execution due to Apache Log4j (CVE-2021-45105, CVE-2021-45046) IBM Cloud Pak for Automationis vulnerable to denial of service and arbitrary code execution due to Apache Log4j (CVE-2021-45105 and CVE-2021-45046) BM Db2 On Openshift and IBM Db2 and Db2 Warehouse on Cloud Pak for Data is vulnerable to denial of service and arbitrary code execution due to Apache Log4j (CVE-2021-45105 and CVE-2021-45046) IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data is vulnerable to denial of service and arbitrary code execution due to Apache Log4j (CVE-2021-45105 and CVE-2021-45046) IBM Tivoli Netcool/OMNIbus Common Integration Libraries is vulnerable to arbitrary code execution and denial of service due to Apache Log4j (CVE-2021-44228, CVE-2021-45046, CVE-2021-45105) IBM Watson Studio Premium Add On in Cloud Pak for Data is vulnerable to denial of service and arbitrary code execution due to Apache Log4j (CVE-2021-45105, CVE-2021-45046) IBM Watson Studio in Cloud Pak for Data is vulnerable to denial of service and arbitrary code execution due to Apache Log4j (CVE-2021-45105, CVE-2021-45046) IBM Watson Machine Learning in Cloud Pak for Data is vulnerable to denial of service and arbitrary code execution due to Apache Log4j (CVE-2021-45105, CVE-2021-45046) IBM Cloud Pak for Data is vulnerable to denial of service and arbitrary code execution due to Apache Log4j (CVE-2021-45105, CVE-2021-45046) IBM Decision Optimization for Cloud Pak for Data is vulnerable to denial of service due to Apache Log4j (CVE-2021-45105) and arbitrary code execution due to Apache Log4j (CVE-2021-45046) IBM Tivoli Network Manager IP Edition is vulnerable to denial of service and arbitrary code execution due to Apache Log4j (CVE-2021-45105 and CVE-2021-45046) IBM Watson Assistant for IBM Cloud Pak for Data is vulnerable to denial of service and arbitrary code execution due to Apache Log4j (CVE-2021-45105 and CVE-2021-45046) Vulnerability inApache Log4j - CVE-2021-4105 may affect IBM Watson Assistant for IBM Cloud Pak for Data IBM Data Virtualization on Cloud Pak for Data is vulnerable to arbitrary code execution (CVE-2021-45046) and denial of service (CVE-2021-45105) due to Apache Log4j IBM Sterling Configure, Price, Quote is vulnerable to denial of service and arbitrary code execution due to Apache Log4j (CVE-2021-45105 and CVE-2021-45046) Tivoli Netcool/Omnibus installation contains vulnerable Apache Log4j code (CVE-2021-44832, CVE-2021-45046, CVE-2021-45105) IBM Data Management Platform for EDB Postgres Enterprise is vulnerable to arbitrary code execution due to Apache Log4j (CVE-2021-45105, CVE-2021-45046) IBM Data Management Platform for EDB Postgres Standard is vulnerable to denial of service and arbitrary code execution due to Apache Log4j (CVE-2021-45105, CVE-2021-45046) Netcool Operations Insight is vulnerable to arbitrary code execution and denial of service due to Apache Log4j (CVE-2021-45046, CVE-2021-45105) Financial Transaction Manager is vulnerable to arbitrary code execution (CVE-2021-45046) and denial of service (CVE-2021-45105) IBM OpenPages for Cloud Pak for Data is vulnerable to denial of service and arbitrary code execution due to Apache Log4j (CVE-2021-45105 and CVE-2021-45046) IBM Cloud Pak for Multicloud Management is vulnerable to denial of service and arbitrary code execution due to Apache Log4j (CVE-2021-45105 and CVE-2021-45046) IBM Cloud Pak for Network Automation is vulnerable to denial of service and arbitrary code execution due to Apache Log4j (CVE-2021-45105 and CVE-2021-45046) IBM Operational Decision Manager is vulnerable to denial of service and arbitrary code execution due to Apache Log4j (CVE-2021-45105 and CVE-2021-45046) . Due to use of Apache Log4j, IBM Content Navigator is vulnerable to arbitrary code execution (CVE-2021-45046) and denial of service (CVE-2021-45105) Cloudera Data Platform Private Cloud Base with IBM products have log messages vulnerable to arbitrary code execution, denial of service, remote code execution, and SQL injection due to Apache Log4j vulnerabilities IBM Db2 Big SQL is vulnerable to arbitrary code execution and denial of service due to Apache Log4j (CVE-2021-45046, CVE-2021-45105) Watson Knowledge Catalog InstaScan is vulnerable to denial of service and arbitrary code execution due to Apache Log4j (CVE-2021-45105, CVE-2021-45046) IBM Informix Dynamic Server in Cloud Pak for Data is vulnerable to denial of service and arbitrary code execution due to Apache Log4j (CVE-2021-45105, CVE-2021-45046) IBM Informix Dynamic Server is vulnerable to denial of service (CVE-2021-45105) and remote code execution (CVE-2021-45046) due to Apache Log4j IBM PureData System for Operational Analytics is vulnerable to arbitrary code execution, remote code execution and denial of service due to Apache Log4j (CVE-2021-44228, CVE-2021-45046, CVE-2021-45105) IBM Cloud Pak for Data System 1.0 is vulnerable to denial of service due to Apache Log4j (CVE-2021-45105) IBM StoredIQ for Legal is vulnerable to denial of service and remote code execution due to Apache log4j ( CVE-2021-44228, CVE-2021-45105) IBM Analytic Accelerator Framework for Communication Service Providers & IBM Customer and Network Analytics for Communications Service Providers and Datasets Impacted by Log4j Vulnerabilities (CVE-2021-45046, CVE-2021-45105) StoredIQ is vulnerable to denial of service and remote code execution in Apache Log4j (CVE-2021-44228, CVE-2021-45046). Vulnerabilities from log4j-core-2.16.0.jar affect IBM Operations Analytics - Log Analysis (CVE-2021-44832, CVE-2021-45105) Enterprise Content Management System Monitor is vulnerable to denial of service and arbitrary code execution due to Apache Log4j (CVE-2021-45105 and CVE-2021-45046) Multiple security vulnerabilities found in open source code that is shipped with IBM Security Verify Governance, Identity Manager virtual appliance component Hortonworks DataFlow product has log messages vulnerable to arbitrary code execution, denial of service, and remote code execution due to Apache Log4j vulnerabilities [CVE-2021-44228], [CVE-2021-45105], and [CVE-2021-45046] Apache log4j security vulnerability as it relates to IBM Maximo Scheduler Optimization - Apache Log4j - [CVE-2021-45105] (affecting v2.16) and [CVE-2021-45046] (affecting v2.15) Apache Log4j is vulnerable to CVE-2021-45105 and CVE-2021-45046 used in IBM Maximo Application Suite - Monitor Component Vulnerabilities from log4j-core-2.16.0.jar affect IBM Operations Analytics - Log Analysis VU#930724 https://www.oracle.com/security-alerts/cpuapr2022.html Oracle Critical Patch Update Advisory - January 2022 https://www.oracle.com/security-alerts/cpujan2022.html N/A Apache Log4j StrSubstitutor Uncontrolled Recursion Denial-of-Service Vulnerability https://www.zerodayinitiative.com/advisories/ZDI-21-1541/ Vulnerable Configuration: Configuration 1 :cpe:/a:apache:log4j:*:*:*:*:*:*:*:* (Version >= 2.0 and < 2.3.1)OR cpe:/a:apache:log4j:*:*:*:*:*:*:*:* (Version >= 2.4 and < 2.12.3) OR cpe:/a:apache:log4j:*:*:*:*:*:*:*:* (Version >= 2.13.0 and <= 2.16.0) Configuration 2 :cpe:/a:netapp:cloud_manager:-:*:*:*:*:*:*:* Configuration 3 :cpe:/o:debian:debian_linux:10.0:*:*:*:*:*:*:* OR cpe:/o:debian:debian_linux:11.0:*:*:*:*:*:*:* Configuration 4 :cpe:/a:sonicwall:network_security_manager:*:*:*:*:saas:*:*:* (Version >= 2.0 and < 3.0)OR cpe:/a:sonicwall:network_security_manager:*:*:*:*:on-premises:*:*:* (Version >= 2.0 and < 3.0) OR cpe:/a:sonicwall:email_security:*:*:*:*:*:*:*:* (Version <= 10.0.12) OR cpe:/a:sonicwall:web_application_firewall:*:*:*:*:*:*:*:* (Version >= 3.0.0 and < 3.1.0) Configuration 5 :cpe:/o:sonicwall:6bk1602-0aa12-0tp0_firmware:*:*:*:*:*:*:*:* (Version < 2.7.0)AND cpe:/h:sonicwall:6bk1602-0aa12-0tp0:-:*:*:*:*:*:*:* Configuration 6 :cpe:/o:sonicwall:6bk1602-0aa22-0tp0_firmware:*:*:*:*:*:*:*:* (Version < 2.7.0)AND cpe:/h:sonicwall:6bk1602-0aa22-0tp0:-:*:*:*:*:*:*:* Configuration 7 :cpe:/o:sonicwall:6bk1602-0aa32-0tp0_firmware:*:*:*:*:*:*:*:* (Version < 2.7.0)AND cpe:/h:sonicwall:6bk1602-0aa32-0tp0:-:*:*:*:*:*:*:* Configuration 8 :cpe:/o:sonicwall:6bk1602-0aa42-0tp0_firmware:*:*:*:*:*:*:*:* (Version < 2.7.0)AND cpe:/h:sonicwall:6bk1602-0aa42-0tp0:-:*:*:*:*:*:*:* Configuration 9 :cpe:/o:sonicwall:6bk1602-0aa52-0tp0_firmware:*:*:*:*:*:*:*:* (Version < 2.7.0)AND cpe:/h:sonicwall:6bk1602-0aa52-0tp0:-:*:*:*:*:*:*:* Configuration 10 :cpe:/a:oracle:e-business_suite:12.2:*:*:*:*:*:*:* OR cpe:/a:oracle:retail_back_office:14.1:*:*:*:*:*:*:* OR cpe:/a:oracle:weblogic_server:12.2.1.3.0:*:*:*:*:*:*:* OR cpe:/a:oracle:webcenter_portal:12.2.1.3.0:*:*:*:*:*:*:* OR cpe:/a:oracle:webcenter_sites:12.2.1.3.0:*:*:*:*:*:*:* OR cpe:/a:oracle:managed_file_transfer:12.2.1.3.0:*:*:*:*:*:*:* OR cpe:/a:oracle:retail_order_broker:16.0:*:*:*:*:*:*:* OR cpe:/a:oracle:retail_integration_bus:14.1.3:*:*:*:*:*:*:* OR cpe:/a:oracle:retail_returns_management:14.1:*:*:*:*:*:*:* OR cpe:/a:oracle:retail_central_office:14.1:*:*:*:*:*:*:* OR cpe:/a:oracle:primavera_unifier:18.8:*:*:*:*:*:*:* OR cpe:/a:oracle:retail_point-of-service:14.1:*:*:*:*:*:*:* OR cpe:/a:oracle:instantis_enterprisetrack:17.1:*:*:*:*:*:*:* OR cpe:/a:oracle:instantis_enterprisetrack:17.2:*:*:*:*:*:*:* OR cpe:/a:oracle:instantis_enterprisetrack:17.3:*:*:*:*:*:*:* OR cpe:/a:oracle:weblogic_server:12.2.1.4.0:*:*:*:*:*:*:* OR cpe:/a:oracle:business_intelligence:5.5.0.0.0:*:*:*:enterprise:*:*:* OR cpe:/a:oracle:primavera_unifier:19.12:*:*:*:*:*:*:* OR cpe:/a:oracle:communications_unified_inventory_management:7.3.5:*:*:*:*:*:*:* OR cpe:/a:oracle:webcenter_sites:12.2.1.4.0:*:*:*:*:*:*:* OR cpe:/a:oracle:identity_management_suite:12.2.1.3.0:*:*:*:*:*:*:* OR cpe:/a:oracle:data_integrator:12.2.1.3.0:*:*:*:*:*:*:* OR cpe:/a:oracle:flexcube_universal_banking:*:*:*:*:*:*:*:* (Version >= 14.0.0 and <= 14.3.0) OR cpe:/a:oracle:banking_platform:2.6.2:*:*:*:*:*:*:* OR cpe:/a:oracle:peoplesoft_enterprise_peopletools:8.58:*:*:*:*:*:*:* OR cpe:/a:oracle:utilities_framework:4.4.0.0.0:*:*:*:*:*:*:* OR cpe:/a:oracle:agile_plm:9.3.6:*:*:*:*:*:*:* OR cpe:/a:oracle:webcenter_portal:12.2.1.4.0:*:*:*:*:*:*:* OR cpe:/a:oracle:weblogic_server:14.1.1.0.0:*:*:*:*:*:*:* OR cpe:/a:oracle:communications_services_gatekeeper:7.0:*:*:*:*:*:*:* OR cpe:/a:oracle:retail_service_backbone:14.1.3:*:*:*:*:*:*:* OR cpe:/a:oracle:primavera_unifier:20.12:*:*:*:*:*:*:* OR cpe:/a:oracle:managed_file_transfer:12.2.1.4.0:*:*:*:*:*:*:* OR cpe:/a:oracle:retail_order_broker:18.0:*:*:*:*:*:*:* OR cpe:/a:oracle:communications_interactive_session_recorder:6.3:*:*:*:*:*:*:* OR cpe:/a:oracle:communications_interactive_session_recorder:6.4:*:*:*:*:*:*:* OR cpe:/a:oracle:retail_service_backbone:15.0.3.1:*:*:*:*:*:*:* OR cpe:/a:oracle:retail_service_backbone:14.1.3.2:*:*:*:*:*:*:* OR cpe:/a:oracle:primavera_gateway:*:*:*:*:*:*:*:* (Version >= 17.12.0 and <= 17.12.11) OR cpe:/a:oracle:retail_price_management:14.1.3.0:*:*:*:*:*:*:* OR cpe:/a:oracle:retail_price_management:15.0.3.0:*:*:*:*:*:*:* OR cpe:/a:oracle:retail_price_management:16.0.3.0:*:*:*:*:*:*:* OR cpe:/a:oracle:retail_order_broker:19.1:*:*:*:*:*:*:* OR cpe:/a:oracle:primavera_gateway:*:*:*:*:*:*:*:* (Version >= 20.12.0 and <= 20.12.7) OR cpe:/a:oracle:communications_ip_service_activator:7.4.0:*:*:*:*:*:*:* OR cpe:/a:oracle:communications_performance_intelligence_center:10.4.0.3:*:*:*:*:*:*:* OR cpe:/a:oracle:communications_evolved_communications_application_server:7.1:*:*:*:*:*:*:* OR cpe:/a:oracle:communications_unified_inventory_management:7.4.1:*:*:*:*:*:*:* OR cpe:/a:oracle:communications_network_integrity:7.3.6:*:*:*:*:*:*:* OR cpe:/a:oracle:jdeveloper:12.2.1.4.0:*:*:*:*:*:*:* OR cpe:/a:oracle:data_integrator:12.2.1.4.0:*:*:*:*:*:*:* OR cpe:/a:oracle:banking_platform:2.7.1:*:*:*:*:*:*:* OR cpe:/a:oracle:enterprise_manager_ops_center:12.4.0.0:*:*:*:*:*:*:* OR cpe:/a:oracle:enterprise_manager_for_peoplesoft:13.4.1.1:*:*:*:*:*:*:* OR cpe:/a:oracle:enterprise_manager_base_platform:13.5.0.0:*:*:*:*:*:*:* OR cpe:/a:oracle:enterprise_manager_base_platform:13.4.0.0:*:*:*:*:*:*:* OR cpe:/a:oracle:peoplesoft_enterprise_peopletools:8.59:*:*:*:*:*:*:* OR cpe:/a:oracle:insurance_insbridge_rating_and_underwriting:5.6.1.0:*:*:*:*:*:*:* OR cpe:/a:oracle:agile_engineering_data_management:6.2.1.0:*:*:*:*:*:*:* OR cpe:/a:oracle:retail_merchandising_system:16.0.3:*:*:*:*:*:*:* OR cpe:/a:oracle:utilities_framework:4.4.0.2.0:*:*:*:*:*:*:* OR cpe:/a:oracle:utilities_framework:4.4.0.3.0:*:*:*:*:*:*:* OR cpe:/a:oracle:utilities_framework:*:*:*:*:*:*:*:* (Version >= 4.3.0.1.0 and <= 4.3.0.6.0) OR cpe:/a:oracle:retail_service_backbone:19.0.1.0:*:*:*:*:*:*:* OR cpe:/a:oracle:retail_integration_bus:14.1.3.2:*:*:*:*:*:*:* OR cpe:/a:oracle:retail_eftlink:16.0.3:*:*:*:*:*:*:* OR cpe:/a:oracle:retail_eftlink:17.0.2:*:*:*:*:*:*:* OR cpe:/a:oracle:retail_eftlink:18.0.1:*:*:*:*:*:*:* OR cpe:/a:oracle:retail_eftlink:19.0.1:*:*:*:*:*:*:* OR cpe:/a:oracle:retail_integration_bus:15.0.3.1:*:*:*:*:*:*:* OR cpe:/a:oracle:financial_services_model_management_and_governance:8.1.0.0.0:*:*:*:*:*:*:* OR cpe:/a:oracle:financial_services_model_management_and_governance:8.0.8.0.0:*:*:*:*:*:*:* OR cpe:/a:oracle:financial_services_analytical_applications_infrastructure:*:*:*:*:*:*:*:* (Version >= 8.0.7 and <= 8.1.1) OR cpe:/a:oracle:primavera_unifier:21.12:*:*:*:*:*:*:* OR cpe:/a:oracle:siebel_ui_framework:*:*:*:*:*:*:*:* (Version <= 21.12) OR cpe:/a:oracle:retail_service_backbone:19.0.0:*:*:*:*:*:*:* OR cpe:/a:oracle:retail_price_management:13.2:*:*:*:*:*:*:* OR cpe:/a:oracle:retail_price_management:14.0.4:*:*:*:*:*:*:* OR cpe:/a:oracle:retail_predictive_application_server:14.1.3.46:*:*:*:*:*:*:* OR cpe:/a:oracle:retail_predictive_application_server:15.0.3.115:*:*:*:*:*:*:* OR cpe:/a:oracle:retail_predictive_application_server:16.0.3.240:*:*:*:*:*:*:* OR cpe:/a:oracle:retail_order_management_system:19.5:*:*:*:*:*:*:* OR cpe:/a:oracle:retail_invoice_matching:15.0.3:*:*:*:*:*:*:* OR cpe:/a:oracle:retail_invoice_matching:16.0.3:*:*:*:*:*:*:* OR cpe:/a:oracle:retail_integration_bus:*:*:*:*:*:*:*:* (Version >= 19.0.0 and <= 19.0.1.0) OR cpe:/a:oracle:retail_eftlink:20.0.1:*:*:*:*:*:*:* OR cpe:/a:oracle:financial_services_model_management_and_governance:8.1.1.0.0:*:*:*:*:*:*:* OR cpe:/a:oracle:primavera_p6_enterprise_project_portfolio_management:21.12.0.0:*:*:*:*:*:*:* OR cpe:/a:oracle:primavera_p6_enterprise_project_portfolio_management:*:*:*:*:*:*:*:* (Version >= 20.12.0.0 and <= 20.12.12.0) OR cpe:/a:oracle:primavera_p6_enterprise_project_portfolio_management:*:*:*:*:*:*:*:* (Version >= 19.12.0.0 and <= 19.12.18.0) OR cpe:/a:oracle:primavera_gateway:21.12.0:*:*:*:*:*:*:* OR cpe:/a:oracle:primavera_gateway:*:*:*:*:*:*:*:* (Version >= 19.12.0 and <= 19.12.12) OR cpe:/a:oracle:primavera_gateway:*:*:*:*:*:*:*:* (Version >= 18.8.0 and <= 18.8.13) OR cpe:/a:oracle:communications_diameter_signaling_router:*:*:*:*:*:*:*:* (Version >= 8.3.0.0 and <= 8.5.1.0) OR cpe:/a:oracle:communications_webrtc_session_controller:7.2.0.0:*:*:*:*:*:*:* OR cpe:/a:oracle:communications_webrtc_session_controller:7.2.1:*:*:*:*:*:*:* OR cpe:/a:oracle:communications_service_broker:6.2:*:*:*:*:*:*:* OR cpe:/a:oracle:communications_messaging_server:8.1:*:*:*:*:*:*:* OR cpe:/a:oracle:communications_convergent_charging_controller:*:*:*:*:*:*:*:* (Version >= 12.0.1.0.0 and <= 12.0.4.0.0) OR cpe:/a:oracle:communications_convergent_charging_controller:6.0.1.0.0:*:*:*:*:*:*:* OR cpe:/a:oracle:communications_convergence:3.0.2.2.0:*:*:*:*:*:*:* OR cpe:/a:oracle:communications_billing_and_revenue_management:12.0.0.4:*:*:*:*:*:*:* OR cpe:/a:oracle:communications_asap:7.3:*:*:*:*:*:*:* OR cpe:/a:oracle:communications_session_route_manager:*:*:*:*:*:*:*:* (Version < 9.0) OR cpe:/a:oracle:communications_session_report_manager:*:*:*:*:*:*:*:* (Version < 9.0) OR cpe:/a:oracle:communications_element_manager:*:*:*:*:*:*:*:* (Version < 9.0) OR cpe:/a:oracle:communications_eagle_ftp_table_base_retrieval:4.5:*:*:*:*:*:*:* OR cpe:/a:oracle:communications_cloud_native_core_security_edge_protection_proxy:1.7.0:*:*:*:*:*:*:* OR cpe:/a:oracle:communications_unified_inventory_management:7.4.2:*:*:*:*:*:*:* OR cpe:/a:oracle:communications_pricing_design_center:12.0.0.4:*:*:*:*:*:*:* OR cpe:/a:oracle:communications_pricing_design_center:12.0.0.5:*:*:*:*:*:*:* OR cpe:/a:oracle:communications_network_charging_and_control:*:*:*:*:*:*:*:* (Version >= 12.0.1.0.0 and <= 12.0.4.0.0) OR cpe:/a:oracle:communications_network_charging_and_control:6.0.1.0.0:*:*:*:*:*:*:* OR cpe:/a:oracle:banking_platform:2.12.0:*:*:*:*:*:*:* OR cpe:/a:oracle:banking_party_management:2.7.0:*:*:*:*:*:*:* OR cpe:/a:oracle:banking_loans_servicing:2.12.0:*:*:*:*:*:*:* OR cpe:/a:oracle:banking_enterprise_default_management:2.7.1:*:*:*:*:*:*:* OR cpe:/a:oracle:banking_enterprise_default_management:2.12.0:*:*:*:*:*:*:* OR cpe:/a:oracle:banking_deposits_and_lines_of_credit_servicing:2.12.0:*:*:*:*:*:*:* OR cpe:/a:oracle:hospitality_suite8:8.13.0:*:*:*:*:*:*:* OR cpe:/a:oracle:hospitality_suite8:8.14.0:*:*:*:*:*:*:* OR cpe:/a:oracle:healthcare_translational_research:4.1.0:*:*:*:*:*:*:* OR cpe:/a:oracle:healthcare_data_repository:8.1.1:*:*:*:*:*:*:* OR cpe:/a:oracle:insurance_insbridge_rating_and_underwriting:5.2.0:*:*:*:*:*:*:* OR cpe:/a:oracle:retail_service_backbone:*:*:*:*:*:*:*:* (Version >= 16.0.1 and <= 16.0.3) OR cpe:/a:oracle:retail_service_backbone:19.0.1:*:*:*:*:*:*:* OR cpe:/a:oracle:retail_merchandising_system:19.0.1:*:*:*:*:*:*:* OR cpe:/a:oracle:retail_integration_bus:*:*:*:*:*:*:*:* (Version >= 16.0.1 and <= 16.0.3) OR cpe:/a:oracle:retail_integration_bus:19.0.1:*:*:*:*:*:*:* OR cpe:/a:oracle:retail_integration_bus:19.0.0:*:*:*:*:*:*:* OR cpe:/a:oracle:retail_financial_integration:14.1.3.2:*:*:*:*:*:*:* OR cpe:/a:oracle:retail_financial_integration:15.0.3.1:*:*:*:*:*:*:* OR cpe:/a:oracle:retail_financial_integration:19.0.1:*:*:*:*:*:*:* OR cpe:/a:oracle:autovue_for_agile_product_lifecycle_management:21.0.2:*:*:*:*:*:*:* OR cpe:/a:oracle:agile_plm_mcad_connector:3.6:*:*:*:*:*:*:* OR cpe:/a:oracle:communications_convergence:3.0.3.0:*:*:*:*:*:*:* OR cpe:/a:oracle:communications_billing_and_revenue_management:12.0.0.5:*:*:*:*:*:*:* OR cpe:/a:oracle:sql_developer:*:*:*:*:*:*:*:* (Version < 21.4.2) OR cpe:/a:oracle:communications_user_data_repository:12.4:*:*:*:*:*:*:* OR cpe:/a:oracle:communications_eagle_element_management_system:46.6:*:*:*:*:*:*:* OR cpe:/a:oracle:communications_cloud_native_core_unified_data_repository:1.15.0:*:*:*:*:*:*:* OR cpe:/a:oracle:communications_cloud_native_core_service_communication_proxy:1.15.0:*:*:*:*:*:*:* OR cpe:/a:oracle:communications_cloud_native_core_policy:1.15.0:*:*:*:*:*:*:* OR cpe:/a:oracle:communications_cloud_native_core_network_slice_selection_function:1.8.0:*:*:*:*:*:*:* OR cpe:/a:oracle:communications_cloud_native_core_network_repository_function:1.15.0:*:*:*:*:*:*:* OR cpe:/a:oracle:communications_cloud_native_core_network_repository_function:1.15.1:*:*:*:*:*:*:* OR cpe:/a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:1.10.0:*:*:*:*:*:*:* OR cpe:/a:oracle:communications_cloud_native_core_console:1.9.0:*:*:*:*:*:*:* OR cpe:/a:oracle:management_cloud_engine:1.5.0:*:*:*:*:*:*:* OR cpe:/a:oracle:identity_manager_connector:9.1.0:*:*:*:*:*:*:* OR cpe:/a:oracle:identity_management_suite:12.2.1.4.0:*:*:*:*:*:*:* OR cpe:/a:oracle:flexcube_universal_banking:11.83.3:*:*:*:*:*:*:* OR cpe:/a:oracle:flexcube_universal_banking:14.5:*:*:*:*:*:*:* OR cpe:/a:oracle:flexcube_universal_banking:*:*:*:*:*:*:*:* (Version >= 12.1.0 and <= 12.4) OR cpe:/a:oracle:banking_treasury_management:14.5:*:*:*:*:*:*:* OR cpe:/a:oracle:banking_trade_finance:14.5:*:*:*:*:*:*:* OR cpe:/a:oracle:banking_payments:14.5:*:*:*:*:*:*:* OR cpe:/a:oracle:enterprise_manager_for_peoplesoft:13.5.1.1:*:*:*:*:*:*:* OR cpe:/a:oracle:payment_interface:19.1:*:*:*:*:*:*:* OR cpe:/a:oracle:payment_interface:20.3:*:*:*:*:*:*:* OR cpe:/a:oracle:hospitality_token_proxy_service:19.2:*:*:*:*:*:*:* OR cpe:/a:oracle:healthcare_translational_research:4.1.1:*:*:*:*:*:*:* OR cpe:/a:oracle:healthcare_master_person_index:5.0.1:*:*:*:*:*:*:* OR cpe:/a:oracle:healthcare_foundation:*:*:*:*:*:*:*:* (Version >= 7.3.0.1 and <= 7.3.0.4) OR cpe:/a:oracle:health_sciences_information_manager:*:*:*:*:*:*:*:* (Version >= 3.0.1 and <= 3.0.4) OR cpe:/a:oracle:health_sciences_inform:6.3.2.1:*:*:*:*:*:*:* OR cpe:/a:oracle:health_sciences_inform:7.0.0.0:*:*:*:*:*:*:* OR cpe:/a:oracle:health_sciences_inform:6.2.1.1:*:*:*:*:*:*:* OR cpe:/a:oracle:health_sciences_empirica_signal:9.2.0.0:*:*:*:*:*:*:* OR cpe:/a:oracle:health_sciences_empirica_signal:9.1.0.6:*:*:*:*:*:*:* OR cpe:/a:oracle:mysql_enterprise_monitor:*:*:*:*:*:*:*:* (Version <= 8.0.29) OR cpe:/a:oracle:insurance_insbridge_rating_and_underwriting:*:*:*:*:*:*:*:* (Version >= 5.4 and <= 5.6.0.0) OR cpe:/a:oracle:insurance_data_gateway:1.0.1:*:*:*:*:*:*:* OR cpe:/a:oracle:hyperion_tax_provision:*:*:*:*:*:*:*:* (Version < 11.2.8.0) OR cpe:/a:oracle:hyperion_profitability_and_cost_management:*:*:*:*:*:*:*:* (Version < 11.2.8.0) OR cpe:/a:oracle:hyperion_planning:*:*:*:*:*:*:*:* (Version < 11.2.8.0) OR cpe:/a:oracle:hyperion_infrastructure_technology:*:*:*:*:*:*:*:* (Version < 11.2.8.0) OR cpe:/a:oracle:hyperion_data_relationship_management:*:*:*:*:*:*:*:* (Version < 11.2.8.0) OR cpe:/a:oracle:hyperion_bi+:*:*:*:*:*:*:*:* (Version < 11.2.8.0) OR cpe:/a:oracle:retail_store_inventory_management:14.1.3.14:*:*:*:*:*:*:* OR cpe:/a:oracle:retail_store_inventory_management:14.1.3.5:*:*:*:*:*:*:* OR cpe:/a:oracle:retail_store_inventory_management:15.0.3.3:*:*:*:*:*:*:* OR cpe:/a:oracle:retail_store_inventory_management:15.0.3.8:*:*:*:*:*:*:* OR cpe:/a:oracle:retail_store_inventory_management:16.0.3.7:*:*:*:*:*:*:* OR cpe:/a:oracle:retail_store_inventory_management:14.0.4.13:*:*:*:*:*:*:* OR cpe:/a:oracle:retail_financial_integration:*:*:*:*:*:*:*:* (Version >= 16.0.1 and <= 16.0.3) OR cpe:/a:oracle:retail_financial_integration:19.0.0:*:*:*:*:*:*:* OR cpe:/a:oracle:retail_eftlink:21.0.0:*:*:*:*:*:*:* OR cpe:/a:oracle:retail_data_extractor_for_merchandising:15.0.2:*:*:*:*:*:*:* OR cpe:/a:oracle:retail_data_extractor_for_merchandising:16.0.2:*:*:*:*:*:*:* OR cpe:/a:oracle:retail_customer_insights:16.0.2:*:*:*:*:*:*:* OR cpe:/a:oracle:retail_customer_insights:15.0.2:*:*:*:*:*:*:* OR cpe:/a:oracle:taleo_platform:*:*:*:*:*:*:*:* (Version < 22.1) Configuration CCN 1 :cpe:/a:apache:log4j:2.8.1:*:*:*:*:*:*:* OR cpe:/a:apache:log4j:2.13.1:-:*:*:*:*:*:* OR cpe:/a:apache:log4j:2.14.0:-:*:*:*:*:*:* OR cpe:/a:apache:log4j:2.14.1:-:*:*:*:*:*:* OR cpe:/a:apache:log4j:2.15.0:-:*:*:*:*:*:* OR cpe:/a:apache:log4j:2.0:beta9:*:*:*:*:*:* OR cpe:/a:apache:log4j:2.12.1:-:*:*:*:*:*:* OR cpe:/a:apache:log4j:2.13.0:-:*:*:*:*:*:* OR cpe:/a:apache:log4j:2.16.0:-:*:*:*:*:*:* AND cpe:/a:ibm:websphere_application_server:8.5:*:*:*:*:*:*:* OR cpe:/a:ibm:infosphere_information_server:11.3:*:*:*:*:*:*:* OR cpe:/a:ibm:tivoli_netcool/impact:7.1.0:*:*:*:*:*:*:* OR cpe:/a:ibm:tivoli_netcool/omnibus:8.1.0:*:*:*:*:*:*:* OR cpe:/a:ibm:watson_explorer:11.0.0:*:*:*:*:*:*:* OR cpe:/a:ibm:infosphere_information_server:11.5:*:*:*:*:*:*:* OR cpe:/a:oracle:retail_point-of-service:14.1:*:*:*:*:*:*:* OR cpe:/a:ibm:api_connect:5.0.0.0:*:*:*:*:*:*:* OR cpe:/a:ibm:watson_explorer:11.0.1:*:*:*:*:*:*:* OR cpe:/a:ibm:websphere_application_server:9.0:*:*:*:*:*:*:* OR cpe:/a:ibm:tivoli_monitoring:6.3.0.7:*:*:*:*:*:*:* OR cpe:/a:ibm:watson_explorer:11.0.2:*:*:*:*:*:*:* OR cpe:/a:oracle:retail_order_broker_cloud_service:16.0:*:*:*:*:*:*:* OR cpe:/a:oracle:retail_price_management:13.2:*:*:*:*:*:*:* OR cpe:/a:ibm:operations_analytics_predictive_insights:1.3.6:*:*:*:*:*:*:* OR cpe:/a:oracle:retail_back_office:14.1:*:*:*:*:*:*:* OR cpe:/a:oracle:retail_returns_management:14.1:*:*:*:*:*:*:* OR cpe:/a:ibm:monitoring:8.1.4:*:*:*:*:*:*:* OR cpe:/a:oracle:webcenter_portal:12.2.1.3.0:*:*:*:*:*:*:* OR cpe:/a:ibm:cognos_analytics:11.0.6:*:*:*:*:*:*:* OR cpe:/a:ibm:infosphere_information_server:11.7:*:*:*:*:*:*:* OR cpe:/a:oracle:instantis_enterprisetrack:17.1:*:*:*:*:*:*:* OR cpe:/a:oracle:instantis_enterprisetrack:17.2:*:*:*:*:*:*:* OR cpe:/a:oracle:retail_eftlink:16.0.3:*:*:*:*:*:*:* OR cpe:/a:ibm:spectrum_symphony:7.2.0.2:*:*:*:*:*:*:* OR cpe:/a:ibm:security_guardium:10.5:*:*:*:*:*:*:* OR cpe:/a:ibm:sterling_connect:direct:4.8:*:*:*:microsoft_windows:*:*:* OR cpe:/a:oracle:retail_central_office:14.1:*:*:*:*:*:*:* OR cpe:/o:ibm:security_access_manager:8.2.2:*:enterprise_single_sign-on:*:*:*:*:* OR cpe:/a:ibm:rational_engineering_lifecycle_manager:6.0.6:*:*:*:*:*:*:* OR cpe:/a:ibm:rational_doors_next_generation:6.0.6:*:*:*:*:*:*:* OR cpe:/a:ibm:rational_team_concert:6.0.6:*:*:*:*:*:*:* OR cpe:/a:ibm:rational_quality_manager:6.0.6:*:*:*:*:*:*:* OR cpe:/a:ibm:security_key_lifecycle_manager:3.0:*:*:*:*:*:*:* OR cpe:/a:ibm:spectrum_symphony:7.2.1:*:*:*:*:*:*:* OR cpe:/a:ibm:rational_publishing_engine:6.0.6:*:*:*:*:*:*:* OR cpe:/a:ibm:watson_explorer:12.0.0:*:*:*:*:*:*:* OR cpe:/a:oracle:instantis_enterprisetrack:17.3:*:*:*:*:*:*:* OR cpe:/a:ibm:robotic_process_automation_with_automation_anywhere:11:*:*:*:*:*:*:* OR cpe:/a:ibm:jazz_reporting_service:6.0.6:*:*:*:*:*:*:* OR cpe:/a:ibm:cloud_private:3.1.0:*:*:*:*:*:*:* OR cpe:/a:ibm:sterling_connect:direct:4.3.0:*:*:*:unix:*:*:* OR cpe:/a:ibm:cloud_private:3.1.1:*:*:*:*:*:*:* OR cpe:/a:ibm:cloud_private:3.1.2:*:*:*:*:*:*:* OR cpe:/a:ibm:sterling_b2b_integrator:6.0.0.0:*:*:*:*:*:*:* OR cpe:/a:ibm:sterling_secure_proxy:3.4.3.2:*:*:*:*:*:*:* OR cpe:/a:ibm:security_guardium:10.6:*:*:*:*:*:*:* OR cpe:/a:ibm:sterling_connect:direct:6.0.0:*:*:*:unix:*:*:* OR cpe:/a:ibm:watson_explorer:12.0.1:*:*:*:*:*:*:* OR cpe:/a:ibm:watson_explorer:12.0.2:*:*:*:*:*:*:* OR cpe:/a:ibm:sterling_connect:direct:6.0:*:*:*:microsoft_windows:*:*:* OR cpe:/a:ibm:rational_team_concert:6.0.6.1:*:*:*:*:*:*:* OR cpe:/a:ibm:jazz_reporting_service:6.0.6.1:*:*:*:*:*:*:* OR cpe:/a:ibm:jazz_for_service_management:1.1.3:*:*:*:*:*:*:* OR cpe:/a:ibm:rational_publishing_engine:6.0.6.1:*:*:*:*:*:*:* OR cpe:/a:ibm:cloud_private:3.2.0:*:*:*:*:*:*:* OR cpe:/a:ibm:netcool_agile_service_manager:1.1:*:*:*:*:*:*:* OR cpe:/a:ibm:rational_doors_next_generation:6.0.6.1:*:*:*:*:*:*:* OR cpe:/a:ibm:storediq:7.6.0.0:*:*:*:*:*:*:* OR cpe:/a:ibm:cognos_analytics:11.1:*:*:*:*:*:*:* OR cpe:/a:ibm:security_key_lifecycle_manager:3.0.1:*:*:*:*:*:*:* OR cpe:/a:ibm:api_connect:2018.4.1.0:*:*:*:*:*:*:* OR cpe:/a:ibm:cloud_pak_for_automation:19.0.3:*:*:*:*:*:*:* OR cpe:/a:ibm:content_collector:4.0.1:*:*:*:email:*:*:* OR cpe:/a:ibm:spectrum_symphony:7.3:*:*:*:*:*:*:* OR cpe:/a:ibm:watson_explorer:12.0.3:*:deep_analytics:*:analytical_components:*:*:* OR cpe:/a:ibm:app_connect_enterprise:11.0.0.7:*:*:*:*:*:*:* OR cpe:/a:ibm:security_guardium:11.0:*:*:*:*:*:*:* OR cpe:/a:ibm:security_guardium:11.1:*:*:*:*:*:*:* OR cpe:/a:ibm:rational_quality_manager:6.0.6.1:*:*:*:*:*:*:* OR cpe:/a:ibm:spectrum_conductor:2.4.1:*:*:*:*:*:*:* OR cpe:/a:ibm:control_center:6.1.3.0:*:*:*:*:*:*:* OR cpe:/a:ibm:cloud_private:3.2.1:cd:*:*:*:*:*:* OR cpe:/a:ibm:data_risk_manager:2.0.6:*:*:*:*:*:*:* OR cpe:/a:ibm:event_streams:2019.4.1:*:*:*:*:*:*:* OR cpe:/a:ibm:spectrum_protect_operations_center:7.1.0.000:*:*:*:*:*:*:* OR cpe:/a:ibm:spectrum_protect_operations_center:8.1.0.000:*:*:*:*:*:*:* OR cpe:/a:ibm:cloud_pak_for_automation:20.0.1:*:*:*:*:*:*:* OR cpe:/a:ibm:business_automation_workflow:18.0:*:*:*:*:*:*:* OR cpe:/a:ibm:business_automation_workflow:19.0:*:*:*:*:*:*:* OR cpe:/a:ibm:business_automation_workflow:20.0:*:*:*:*:*:*:* OR cpe:/a:ibm:log_analysis:1.3.5.3:*:*:*:*:*:*:* OR cpe:/a:ibm:log_analysis:1.3.6.0:*:*:*:*:*:*:* OR cpe:/a:ibm:log_analysis:1.3.6:*:*:*:*:*:*:* OR cpe:/a:ibm:security_key_lifecycle_manager:4.0:*:*:*:*:*:*:* OR cpe:/a:ibm:jazz_reporting_service:7.0.1:*:*:*:*:*:*:* OR cpe:/a:ibm:event_streams:2019.4.2:*:*:*:*:*:*:* OR cpe:/a:ibm:event_streams:10.0.0:*:*:*:*:*:*:* OR cpe:/a:ibm:cloud_private:3.2.2:cd:*:*:*:*:*:* OR cpe:/a:ibm:db2:11.5:*:*:*:*:linux:*:* OR cpe:/a:ibm:db2:11.5:*:*:*:*:unix:*:* OR cpe:/a:ibm:db2:11.5:*:*:*:*:windows:*:* OR cpe:/a:ibm:log_analysis:1.3.6.1:*:*:*:*:*:*:* OR cpe:/a:ibm:api_connect:10.0.0.0:*:*:*:*:*:*:* OR cpe:/a:ibm:informix_dynamic_server:14.10:*:*:*:*:*:*:* OR cpe:/a:ibm:security_guardium:11.2:*:*:*:*:*:*:* OR cpe:/a:ibm:elastic_storage_server:6.0.1.0:*:*:*:*:*:*:* OR cpe:/a:ibm:cognos_controller:10.4.2:*:*:*:*:*:*:* OR cpe:/a:ibm:sterling_file_gateway:6.0.0.0:*:*:*:*:*:*:* OR cpe:/a:ibm:event_streams:2019.4.3:*:*:*:*:*:*:* OR cpe:/a:ibm:event_streams:10.1.0:*:*:*:*:*:*:* OR cpe:/a:ibm:rational_engineering_lifecycle_manager:6.0.6.1:*:*:*:*:*:*:* OR cpe:/a:ibm:engineering_lifecycle_optimization:7.0:*:*:*:*:*:*:* OR cpe:/a:ibm:engineering_lifecycle_optimization:7.0.1:*:*:*:*:*:*:* OR cpe:/a:ibm:engineering_workflow_management:7.0.1:*:*:*:*:*:*:* OR cpe:/a:ibm:control_center:6.2.0.0:*:*:*:*:*:*:* OR cpe:/a:ibm:api_connect:10.0.1.0:*:*:*:*:*:*:* OR cpe:/a:ibm:cloud_application_business_insights:1.1.5:*:*:*:*:*:*:* OR cpe:/a:ibm:engineering_test_management:7.0.1:*:*:*:*:*:*:* OR cpe:/a:ibm:engineering_lifecycle_optimization:7.0.2:*:*:*:*:*:*:* OR cpe:/a:ibm:watson_discovery:2.2.1:*:*:*:*:*:*:* OR cpe:/a:ibm:spectrum_protect_for_virtual_environments:8.1.11.0:*:*:*:*:hyper-v:*:* OR cpe:/a:ibm:security_guardium:11.3:*:*:*:*:*:*:* OR cpe:/a:ibm:spectrum_protect_for_space_management:7.1.8.10:*:*:*:*:*:*:* OR cpe:/a:ibm:event_streams:10.2.0:*:*:*:*:*:*:* OR cpe:/a:ibm:cloud_pak_for_automation:21.0.1:*:*:*:*:*:*:* OR cpe:/a:ibm:app_connect_enterprise:12.0.1.0:*:*:*:*:*:*:* OR cpe:/a:ibm:cloud_pak_for_automation:21.0.2:-:*:*:*:*:*:* OR cpe:/a:ibm:sterling_secure_proxy:6.0.2:*:*:*:*:*:*:* OR cpe:/a:ibm:cloud_pak_for_security:1.7.2.0:*:*:*:*:*:*:* OR cpe:/a:ibm:event_streams:10.3.0:*:*:*:*:*:*:* OR cpe:/a:ibm:event_streams:10.3.1:*:*:*:*:*:*:* OR cpe:/a:ibm:security_key_lifecycle_manager:4.1.1:*:*:*:*:*:*:* OR cpe:/a:ibm:security_key_lifecycle_manager:4.1.0:*:*:*:*:*:*:* OR cpe:/a:ibm:security_guardium:11.4:*:*:*:*:*:*:* OR cpe:/a:ibm:sterling_b2b_integrator:6.1.1.0:*:*:*:standard:*:*:* OR cpe:/a:ibm:financial_transaction_manager:3.2.4.0:*:*:*:*:*:*:* OR cpe:/a:ibm:financial_transaction_manager:3.2.7:*:*:*:*:*:*:* OR cpe:/a:ibm:sterling_secure_proxy:6.0.3:*:*:*:*:*:*:* OR cpe:/a:ibm:spectrum_scale:5.0.5.0:*:*:*:*:*:*:* OR cpe:/a:ibm:spectrum_scale:5.1.0.0:*:*:*:*:*:*:* OR cpe:/a:ibm:qradar_user_behavior_analytics:1.0.0:*:*:*:*:*:*:* OR cpe:/a:ibm:data_virtualization_on_cloud_pak_for_data:1.3.0:*:*:*:*:*:*:* OR cpe:/a:ibm:data_virtualization_on_cloud_pak_for_data:1.5.0:*:*:*:*:*:*:* OR cpe:/a:ibm:informix_dynamic_server:12.10:*:*:*:*:*:*:* OR cpe:/a:ibm:watson_discovery:2.0.0:*:*:*:*:*:*:* OR cpe:/a:ibm:cloud_pak_for_automation:19.0.1:*:*:*:*:*:*:* OR cpe:/a:ibm:db2_warehouse:3.5:-:*:*:*:*:*:* OR cpe:/a:ibm:db2_warehouse:4.0:-:*:*:*:*:*:* OR cpe:/a:ibm:cloud_pak_for_data:3.5:-:*:*:*:*:*:* OR cpe:/a:ibm:data_virtualization_on_cloud_pak_for_data:1.4.1:*:*:*:*:*:*:* OR cpe:/a:ibm:collaborative_lifecycle_management:6.0.6:*:*:*:*:*:*:* OR cpe:/a:ibm:collaborative_lifecycle_management:6.0.6.1:*:*:*:*:*:*:* OR cpe:/a:ibm:engineering_requirements_management_doors_next:7.0.1:*:*:*:*:*:*:* OR cpe:/a:ibm:engineering_lifecycle_management:7.0.1:*:*:*:*:*:*:* OR cpe:/a:ibm:engineering_lifecycle_optimization_-_engineering_insights:7.0.1:*:*:*:*:*:*:* OR cpe:/a:ibm:engineering_lifecycle_management:7.0.2:*:*:*:*:*:*:* Oval Definitions BACK
apache log4j *
apache log4j *
apache log4j *
netapp cloud manager -
debian debian linux 10.0
debian debian linux 11.0
sonicwall network security manager *
sonicwall network security manager *
sonicwall email security *
sonicwall web application firewall *
sonicwall 6bk1602-0aa12-0tp0 firmware *
sonicwall 6bk1602-0aa12-0tp0 -
sonicwall 6bk1602-0aa22-0tp0 firmware *
sonicwall 6bk1602-0aa22-0tp0 -
sonicwall 6bk1602-0aa32-0tp0 firmware *
sonicwall 6bk1602-0aa32-0tp0 -
sonicwall 6bk1602-0aa42-0tp0 firmware *
sonicwall 6bk1602-0aa42-0tp0 -
sonicwall 6bk1602-0aa52-0tp0 firmware *
sonicwall 6bk1602-0aa52-0tp0 -
oracle e-business suite 12.2
oracle retail back office 14.1
oracle weblogic server 12.2.1.3.0
oracle webcenter portal 12.2.1.3.0
oracle webcenter sites 12.2.1.3.0
oracle managed file transfer 12.2.1.3.0
oracle retail order broker 16.0
oracle retail integration bus 14.1.3
oracle retail returns management 14.1
oracle retail central office 14.1
oracle primavera unifier 18.8
oracle retail point-of-service 14.1
oracle instantis enterprisetrack 17.1
oracle instantis enterprisetrack 17.2
oracle instantis enterprisetrack 17.3
oracle weblogic server 12.2.1.4.0
oracle business intelligence 5.5.0.0.0
oracle primavera unifier 19.12
oracle communications unified inventory management 7.3.5
oracle webcenter sites 12.2.1.4.0
oracle identity management suite 12.2.1.3.0
oracle data integrator 12.2.1.3.0
oracle flexcube universal banking *
oracle banking platform 2.6.2
oracle peoplesoft enterprise peopletools 8.58
oracle utilities framework 4.4.0.0.0
oracle agile plm 9.3.6
oracle webcenter portal 12.2.1.4.0
oracle weblogic server 14.1.1.0.0
oracle communications services gatekeeper 7.0
oracle retail service backbone 14.1.3
oracle primavera unifier 20.12
oracle managed file transfer 12.2.1.4.0
oracle retail order broker 18.0
oracle communications interactive session recorder 6.3
oracle communications interactive session recorder 6.4
oracle retail service backbone 15.0.3.1
oracle retail service backbone 14.1.3.2
oracle primavera gateway *
oracle retail price management 14.1.3.0
oracle retail price management 15.0.3.0
oracle retail price management 16.0.3.0
oracle retail order broker 19.1
oracle primavera gateway *
oracle communications ip service activator 7.4.0
oracle communications performance intelligence center 10.4.0.3
oracle communications evolved communications application server 7.1
oracle communications unified inventory management 7.4.1
oracle communications network integrity 7.3.6
oracle jdeveloper 12.2.1.4.0
oracle data integrator 12.2.1.4.0
oracle banking platform 2.7.1
oracle enterprise manager ops center 12.4.0.0
oracle enterprise manager for peoplesoft 13.4.1.1
oracle enterprise manager base platform 13.5.0.0
oracle enterprise manager base platform 13.4.0.0
oracle peoplesoft enterprise peopletools 8.59
oracle insurance insbridge rating and underwriting 5.6.1.0
oracle agile engineering data management 6.2.1.0
oracle retail merchandising system 16.0.3
oracle utilities framework 4.4.0.2.0
oracle utilities framework 4.4.0.3.0
oracle utilities framework *
oracle retail service backbone 19.0.1.0
oracle retail integration bus 14.1.3.2
oracle retail eftlink 16.0.3
oracle retail eftlink 17.0.2
oracle retail eftlink 18.0.1
oracle retail eftlink 19.0.1
oracle retail integration bus 15.0.3.1
oracle financial services model management and governance 8.1.0.0.0
oracle financial services model management and governance 8.0.8.0.0
oracle financial services analytical applications infrastructure *
oracle primavera unifier 21.12
oracle siebel ui framework *
oracle retail service backbone 19.0.0
oracle retail price management 13.2
oracle retail price management 14.0.4
oracle retail predictive application server 14.1.3.46
oracle retail predictive application server 15.0.3.115
oracle retail predictive application server 16.0.3.240
oracle retail order management system 19.5
oracle retail invoice matching 15.0.3
oracle retail invoice matching 16.0.3
oracle retail integration bus *
oracle retail eftlink 20.0.1
oracle financial services model management and governance 8.1.1.0.0
oracle primavera p6 enterprise project portfolio management 21.12.0.0
oracle primavera p6 enterprise project portfolio management *
oracle primavera p6 enterprise project portfolio management *
oracle primavera gateway 21.12.0
oracle primavera gateway *
oracle primavera gateway *
oracle communications diameter signaling router *
oracle communications webrtc session controller 7.2.0.0
oracle communications webrtc session controller 7.2.1
oracle communications service broker 6.2
oracle communications messaging server 8.1
oracle communications convergent charging controller *
oracle communications convergent charging controller 6.0.1.0.0
oracle communications convergence 3.0.2.2.0
oracle communications billing and revenue management 12.0.0.4
oracle communications asap 7.3
oracle communications session route manager *
oracle communications session report manager *
oracle communications element manager *
oracle communications eagle ftp table base retrieval 4.5
oracle communications cloud native core security edge protection proxy 1.7.0
oracle communications unified inventory management 7.4.2
oracle communications pricing design center 12.0.0.4
oracle communications pricing design center 12.0.0.5
oracle communications network charging and control *
oracle communications network charging and control 6.0.1.0.0
oracle banking platform 2.12.0
oracle banking party management 2.7.0
oracle banking loans servicing 2.12.0
oracle banking enterprise default management 2.7.1
oracle banking enterprise default management 2.12.0
oracle banking deposits and lines of credit servicing 2.12.0
oracle hospitality suite8 8.13.0
oracle hospitality suite8 8.14.0
oracle healthcare translational research 4.1.0
oracle healthcare data repository 8.1.1
oracle insurance insbridge rating and underwriting 5.2.0
oracle retail service backbone *
oracle retail service backbone 19.0.1
oracle retail merchandising system 19.0.1
oracle retail integration bus *
oracle retail integration bus 19.0.1
oracle retail integration bus 19.0.0
oracle retail financial integration 14.1.3.2
oracle retail financial integration 15.0.3.1
oracle retail financial integration 19.0.1
oracle autovue for agile product lifecycle management 21.0.2
oracle agile plm mcad connector 3.6
oracle communications convergence 3.0.3.0
oracle communications billing and revenue management 12.0.0.5
oracle sql developer *
oracle communications user data repository 12.4
oracle communications eagle element management system 46.6
oracle communications cloud native core unified data repository 1.15.0
oracle communications cloud native core service communication proxy 1.15.0
oracle communications cloud native core policy 1.15.0
oracle communications cloud native core network slice selection function 1.8.0
oracle communications cloud native core network repository function 1.15.0
oracle communications cloud native core network repository function 1.15.1
oracle communications cloud native core network function cloud native environment 1.10.0
oracle communications cloud native core console 1.9.0
oracle management cloud engine 1.5.0
oracle identity manager connector 9.1.0
oracle identity management suite 12.2.1.4.0
oracle flexcube universal banking 11.83.3
oracle flexcube universal banking 14.5
oracle flexcube universal banking *
oracle banking treasury management 14.5
oracle banking trade finance 14.5
oracle banking payments 14.5
oracle enterprise manager for peoplesoft 13.5.1.1
oracle payment interface 19.1
oracle payment interface 20.3
oracle hospitality token proxy service 19.2
oracle healthcare translational research 4.1.1
oracle healthcare master person index 5.0.1
oracle healthcare foundation *
oracle health sciences information manager *
oracle health sciences inform 6.3.2.1
oracle health sciences inform 7.0.0.0
oracle health sciences inform 6.2.1.1
oracle health sciences empirica signal 9.2.0.0
oracle health sciences empirica signal 9.1.0.6
oracle mysql enterprise monitor *
oracle insurance insbridge rating and underwriting *
oracle insurance data gateway 1.0.1
oracle hyperion tax provision *
oracle hyperion profitability and cost management *
oracle hyperion planning *
oracle hyperion infrastructure technology *
oracle hyperion data relationship management *
oracle hyperion bi+ *
oracle retail store inventory management 14.1.3.14
oracle retail store inventory management 14.1.3.5
oracle retail store inventory management 15.0.3.3
oracle retail store inventory management 15.0.3.8
oracle retail store inventory management 16.0.3.7
oracle retail store inventory management 14.0.4.13
oracle retail financial integration *
oracle retail financial integration 19.0.0
oracle retail eftlink 21.0.0
oracle retail data extractor for merchandising 15.0.2
oracle retail data extractor for merchandising 16.0.2
oracle retail customer insights 16.0.2
oracle retail customer insights 15.0.2
oracle taleo platform *
apache log4j 2.8.1
apache log4j 2.13.1 -
apache log4j 2.14.0 -
apache log4j 2.14.1 -
apache log4j 2.15.0 -
apache log4j 2.0 beta9
apache log4j 2.12.1 -
apache log4j 2.13.0 -
apache log4j 2.16.0 -
ibm websphere application server 8.5
ibm infosphere information server 11.3
ibm tivoli netcool/impact 7.1.0
ibm tivoli netcool/omnibus 8.1.0
ibm watson explorer 11.0.0
ibm infosphere information server 11.5
oracle retail point-of-service 14.1
ibm api connect 5.0.0.0
ibm watson explorer 11.0.1
ibm websphere application server 9.0
ibm tivoli monitoring 6.3.0.7
ibm watson explorer 11.0.2
oracle retail order broker cloud service 16.0
oracle retail price management 13.2
ibm operations analytics predictive insights 1.3.6
oracle retail back office 14.1
oracle retail returns management 14.1
ibm monitoring 8.1.4
oracle webcenter portal 12.2.1.3.0
ibm cognos analytics 11.0.6
ibm infosphere information server 11.7
oracle instantis enterprisetrack 17.1
oracle instantis enterprisetrack 17.2
oracle retail eftlink 16.0.3
ibm spectrum symphony 7.2.0.2
ibm security guardium 10.5
ibm sterling connect:direct 4.8
oracle retail central office 14.1
ibm security access manager for enterprise single sign-on 8.2.2
ibm rational engineering lifecycle manager 6.0.6
ibm rational doors next generation 6.0.6
ibm rational team concert 6.0.6
ibm rational quality manager 6.0.6
ibm security key lifecycle manager 3.0
ibm spectrum symphony 7.2.1
ibm rational publishing engine 6.0.6
ibm watson explorer 12.0.0
oracle instantis enterprisetrack 17.3
ibm robotic process automation with automation anywhere 11
ibm jazz reporting service 6.0.6
ibm cloud private 3.1.0
ibm sterling connect:direct 4.3.0
ibm cloud private 3.1.1
ibm cloud private 3.1.2
ibm sterling b2b integrator 6.0.0.0
ibm sterling secure proxy 3.4.3.2
ibm security guardium 10.6
ibm sterling connect:direct 6.0.0
ibm watson explorer 12.0.1
ibm watson explorer 12.0.2
ibm sterling connect:direct 6.0
ibm rational team concert 6.0.6.1
ibm jazz reporting service 6.0.6.1
ibm jazz for service management 1.1.3
ibm rational publishing engine 6.0.6.1
ibm cloud private 3.2.0
ibm netcool agile service manager 1.1
ibm rational doors next generation 6.0.6.1
ibm storediq 7.6.0.0
ibm cognos analytics 11.1
ibm security key lifecycle manager 3.0.1
ibm api connect 2018.4.1.0
ibm cloud pak for automation 19.0.3
ibm content collector 4.0.1
ibm spectrum symphony 7.3
ibm watson explorer 12.0.3
ibm app connect enterprise 11.0.0.7
ibm security guardium 11.0
ibm security guardium 11.1
ibm rational quality manager 6.0.6.1
ibm spectrum conductor 2.4.1
ibm control center 6.1.3.0
ibm cloud private 3.2.1 cd
ibm data risk manager 2.0.6
ibm event streams 2019.4.1
ibm spectrum protect operations center 7.1.0.000
ibm spectrum protect operations center 8.1.0.000
ibm cloud pak for automation 20.0.1
ibm business automation workflow 18.0
ibm business automation workflow 19.0
ibm business automation workflow 20.0
ibm log analysis 1.3.5.3
ibm log analysis 1.3.6.0
ibm log analysis 1.3.6
ibm security key lifecycle manager 4.0
ibm jazz reporting service 7.0.1
ibm event streams 2019.4.2
ibm event streams 10.0.0
ibm cloud private 3.2.2 cd
ibm db2 11.5
ibm db2 11.5
ibm db2 11.5
ibm log analysis 1.3.6.1
ibm api connect 10.0.0.0
ibm informix dynamic server 14.10
ibm security guardium 11.2
ibm elastic storage server 6.0.1.0
ibm cognos controller 10.4.2
ibm sterling file gateway 6.0.0.0
ibm event streams 2019.4.3
ibm event streams 10.1.0
ibm rational engineering lifecycle manager 6.0.6.1
ibm engineering lifecycle optimization 7.0
ibm engineering lifecycle optimization 7.0.1
ibm engineering workflow management 7.0.1
ibm control center 6.2.0.0
ibm api connect 10.0.1.0
ibm cloud application business insights 1.1.5
ibm engineering test management 7.0.1
ibm engineering lifecycle optimization 7.0.2
ibm watson discovery 2.2.1
ibm spectrum protect for virtual environments 8.1.11.0
ibm security guardium 11.3
ibm spectrum protect for space management 7.1.8.10
ibm event streams 10.2.0
ibm cloud pak for automation 21.0.1
ibm app connect enterprise 12.0.1.0
ibm cloud pak for automation 21.0.2 -
ibm sterling secure proxy 6.0.2
ibm cloud pak for security 1.7.2.0
ibm event streams 10.3.0
ibm event streams 10.3.1
ibm security key lifecycle manager 4.1.1
ibm security key lifecycle manager 4.1.0
ibm security guardium 11.4
ibm sterling b2b integrator 6.1.1.0
ibm financial transaction manager 3.2.4.0
ibm financial transaction manager 3.2.7
ibm sterling secure proxy 6.0.3
ibm spectrum scale 5.0.5.0
ibm spectrum scale 5.1.0.0
ibm qradar user behavior analytics 1.0.0
ibm data virtualization on cloud pak for data 1.3.0
ibm data virtualization on cloud pak for data 1.5.0
ibm informix dynamic server 12.10
ibm watson discovery 2.0.0
ibm cloud pak for automation 19.0.1
ibm db2 warehouse 3.5 -
ibm db2 warehouse 4.0 -
ibm cloud pak for data 3.5 -
ibm data virtualization on cloud pak for data 1.4.1
ibm collaborative lifecycle management 6.0.6
ibm collaborative lifecycle management 6.0.6.1
ibm engineering requirements management doors next 7.0.1
ibm engineering lifecycle management 7.0.1
ibm engineering lifecycle optimization - engineering insights 7.0.1
ibm engineering lifecycle management 7.0.2
Denotes that component is vulnerable