Vulnerability Name: CVE-2022-21626 (CCN-238689) Assigned: 2021-11-15 Published: 2022-10-18 Updated: 2023-04-27 Summary: An unspecified vulnerability in Oracle Java SE and Oracle GraalVM Enterprise Edition related to the Security component could allow an unauthenticated attacker to cause a denial of service resulting in a low availability impact using unknown attack vectors. CVSS v3 Severity: 5.3 Medium (CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L 4.6 Medium (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:U/RL:O/RC:C Exploitability Metrics: Attack Vector (AV): NetworkAttack Complexity (AC): LowPrivileges Required (PR): NoneUser Interaction (UI): NoneScope: Scope (S): UnchangedImpact Metrics: Confidentiality (C): NoneIntegrity (I): NoneAvailibility (A): Low
5.3 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L 4.6 Medium (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:U/RL:O/RC:C Exploitability Metrics: Attack Vector (AV): NetworkAttack Complexity (AC): LowPrivileges Required (PR): NoneUser Interaction (UI): NoneScope: Scope (S): UnchangedImpact Metrics: Confidentiality (C): NoneIntegrity (I): NoneAvailibility (A): Low
5.3 Medium (REDHAT CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L 4.6 Medium (REDHAT Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:U/RL:O/RC:C Exploitability Metrics: Attack Vector (AV): NetworkAttack Complexity (AC): LowPrivileges Required (PR): NoneUser Interaction (UI): NoneScope: Scope (S): UnchangedImpact Metrics: Confidentiality (C): NoneIntegrity (I): NoneAvailibility (A): Low
CVSS v2 Severity: 5.0 Medium (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P Exploitability Metrics: Access Vector (AV): NetworkAccess Complexity (AC): LowAthentication (Au): NoneImpact Metrics: Confidentiality (C): NoneIntegrity (I): NoneAvailibility (A): Partial
Vulnerability Consequences: Denial of Service References: Source: MITRECVE-2022-21626 oracle-cpuoct2022-cve202221626(238689) secalert_us@oracle.com secalert_us@oracle.com secalert_us@oracle.com secalert_us@oracle.com secalert_us@oracle.com Multiple vulnerabilities may affect IBM Semeru Runtime Multiple vulnerabilities may affect IBM SDK, Java Technology Edition Multiple Vulnerabilities in IBM Java SDK affect IBM WebSphere Application Server and IBM WebSphere Application Server Liberty due to the October 2022 CPU Multiple Security vulnerabilities in IBM Java in FileNet Content Manager Multiple vulnerabilities in IBM Java SDK (October 2022) affect IBM InfoSphere Information Server Vulnerabilities in the Java JDK affect IBM Event Streams (CVE-2022-3676, CVE-2022-21628, CVE-2022-21626, CVE-2022-21624, CVE-2022-21619) Multiple vulnerabilities in IBM Java SDK and IBM Java Runtime affect Rational Functional Tester Multiple vulnerabilities in IBM Java SDK affect IBM Tivoli Business Service Manager (CVE-2022-21628, CVE-2022-21626, CVE-2022-21624, CVE-2022-21619) Vulnerabilities in PostgreSQL, Open JDK, and Jettison may affect IBM Spectrum Copy Data Management IBM Data Risk Manager is affected by multiple vulnerabilities including remote code execution in Apache Commons Text 1.9 Multiple vulnerabilities in IBM Java Runtime affect z/Transaction Processing Facility Multiple vulnerabilities in IBM Java SDK affect IBM Tivoli Netcool Impact Vulnerabilities in IBM Java SDK affect IBM Spectrum Control Multiple vulnerabilities in IBM Java Runtime affect Watson Explorer and Watson Explorer Content Analytics Studio (CVE-2022-21626) Multiple Vulnerabilities in CloudPak for Watson AIOPs Multiple vulnerabilities in IBM Java SDK affect IBM License Metric Tool v9. Security vulnerability is addressed with IBM Cloud Pak for Business Automation iFixes for November 2022 Multiple vulnerabilities in IBM Java SDK affect AIX IBM Integration Designer is vulnerable to denial of service ( CVE-2022-21626) Vulnerabilities in Java and IBM WebSphere Application Server Liberty affects IBM Cloud Application Business Insights - CVE-2022-34165, CVE-2022-21628, CVE-2022-21626, CVE-2022-21624, CVE-2022-21619 IBM Security SOAR is using a component with a known vulnerability - IBM JDK 8.0.7.16 and earlier IBM DataPower Gateway affected by vulnerability in Java (CVE-2022-21626) IBM MQ Appliance is vulnerable to an unspecified Java SE vulnerability (CVE-2022-21626) Multiple Security vulnerabilities in Java may affect IBM Robotic Process Automation for Cloud Pak (CVE-2022-21618, CVE-2022-21619, CVE-2022-21624, CVE-2022-21626, CVE-2022-21628, CVE-2022-39399) Enterprise Content Management System Monitor is affected by a vulnerability in IBM SDK Java Technology Edition Multiple Vulnerabilities in IBM Java SDK affects Liberty for Java for IBM Cloud due to the October 2022 CPU plus CVE-2022-3676 Vulnerabilities in IBM Java included with IBM Tivoli Monitoring. IBM Watson Discovery Cartridge for IBM Cloud Pak for Data affected by vulnerability in Java IBM MQ Internet Pass-Thru is vulnerable to an issue within IBM Runtime Environment Java Technology Edition, Version 7 and Version 8 (CVE-2022-21626) A vulnerability in the IBM Java Runtime affects IBM Rational ClearCase (CVE-2022-21626) IBM SDK Java Technology Edition, is used by IBM Tivoli Application Dependency Discovery Manager (TADDM) and is vulnerable to a denial of service (CVE-2022-21541, CVE-2022-21540, CVE-2021-2163) A vulnerability in the IBM Java Runtime affects IBM Rational ClearQuest (CVE-2022-21626) IBM Cloud Transformation Advisor is vulnerable to multiple vulnerabilities A CVE-2022-21626 vulnerability in IBM Java Runtime affects IBM Process Designer 8.5.7 shipped with IBM Business Automation Workflow Multiple security vulnerabilities in Java may affect IBM Robotic Process Automation (CVE-2022-21628, CVE-2022-21626, CVE-2022-21624, CVE-2022-21619, CVE-2022-3676) Security vulnerabilities are addressed with IBM Cloud Pak for Business Automation iFixes for January 2023 A vulnerability in IBM Java affects IBM SAN Volume Controller, IBM Storwize, IBM Spectrum Virtualize and IBM FlashSystem products IBM Virtualization Engine TS7700 is vulnerable to a denial of service threat due to use of IBM SDK Java Technology Edition, Version 8 (CVE-2022-21626) Multiple vulnerabilities in IBM Java SDK affects App Connect Professional. IBM Sterling Connect:Direct File Agent is vulnerable to a denial of service due to IBM Runtime Environment Java Technology Edition (CVE-2022-21626) Multiple vulnerabilities in IBM Java SDK affects IBM WebSphere Application Server October 2022 CPU that is bundled with IBM WebSphere Application Server Patterns Multiple vulnerabilities may affect IBM SDK, Java Technology Edition for IBM Content Collector for SAP Applications IBM Java SDK and IBM Java Runtime for IBM i are vulnerable to bypassing security restrictions, denial of service attacks, and data integrity impacts due to multiple vulnerabilities. IBM Sterling Connect:Direct for Microsoft Windows is vulnerable to denial of service due to IBM Runtime Environment Java Technology Edition (CVE-2022-21626) Vulnerabilities in IBM Java SDK and IBM Java Runtime affects Rational Business Developer Multiple vulnerabilities in IBM Java Runtime affects SPSS Collaboration and Deployment Services (CVE-2022-21628, CVE-2022-21626, CVE-2022-21624, CVE-2022-21619) Vulnerabilities in IBM Semeru Runtime affect SPSS Collaboration and Deployment Services (CVE-2022-21628, CVE-2022-21626, CVE-2022-21618, CVE-2022-39399, CVE-2022-21624, CVE-2022-21619, CVE-2022-3676) Vulnerability in IBM Java (CVE-2022-21628, CVE-2022-21626, CVE-2022-21624 and CVE-2022-21619) affects Power HMC Multiple Vulnerabilities (CVE-2022-21628, CVE-2022-21626, CVE-2022-21624, CVE-2022-21619) affects CICS Transaction Gateway. IBM Sterling Connect:Direct for UNIX is vulnerable to denial of servce due to IBM Java (CVE-2022-21626) IBM PowerVM Novalink is vulnerable because Java SE is vulnerable to a denial of service, caused by a flaw in the Lightweight HTTP Server. (CVE-2022-21628) IBM Sterling Connect:Direct FTP+ is vulnerable to denial of service due to IBM Java (CVE-2022-21626) IBM Sterling Control Center is vulnerable to a denial of service due to Jave SE (CVE-2022-21626) IBM Sterling Connect:Direct Browser User Interface vulnerable to multiple issues due to IBM Runtime Environment Java IBM Sterling Connect:Direct Web Services is vulnerable to multiple vulnerabilities due to IBM Java Multiple vulnerabilities in Golang Go affect IBM Decision Optimization in IBM Cloud Pak for Data IBM MQ is affected by multiple vulnerabilities in IBM Runtime Environment Java Technology Edition, Version 8 Multiple vulnerabilities in IBM Semeru Runtime affect z/Transaction Processing Facility IBM SDK, Java Technology Edition Quarterly CPU - Oct 2022 - Includes Oracle October 2022 CPU and IBM Java - OpenJ9 CVE-2022-3676 Multiple Vulnerabilities (CVE-2022-21628, CVE-2022-21626, CVE-2022-21624, CVE-2022-21619) affects CICS Transaction Gateway for Multiplatforms and CICS Transaction Gateway Desktop Edition. IBM SDK, Java Technology Edition, Security Update February 2023 multiple vulnerabilities in Java SE may affect CICS TX Standard multiple vulnerabilities in Java SE may affect CICS TX Advanced multiple vulnerabilities in Java SE may affect TXSeries for Multiplatforms Vulnerabilites in Java SE affect IBM Spectrum Protect Backup-Archive Client, IBM Spectrum Protect for Virtual Environments and IBM Spectrum Protect for Space Management (CVE-2022-21628, CVE-2022-21626, CVE-2022-21624, CVE-2022-21619) IBM Security Guardium is affected by multiple vulnerabilities Multiple Vulnerabilities in Java affecting Watson Knowledge Catalog for IBM Cloud Pak for Data (CVE-2022-21628, CVE-2022-21626) Multiple Vulnerabilities in IBM Runtime Environment Java Technology Edition affects WebSphere eXtreme Scale Vulnerabilities in IBM Db2, IBM Java Runtime, and Golang Go may affect IBM Spectrum Protect Server (CVE-2022-21626, CVE-2022-41717, CVE-2022-43929, CVE-2022-43927, CVE-2022-43930) Vulnerability in Java SE may affect IBM Spectrum Protect Operations Center (CVE-2022-21626) Multiple vulnerabilities in IBM SDK Java Technology Edition affect IBM Workload Scheduler. IBM QRadar SIEM includes components with known vulnerabilities Multiple vulnerabilities in IBM SDK, Java Technology Edition Quarterly CPU -April 2022 to January 2023 affects AIX LPARs in IBM PureData System for Operational Analytics IBM Security Verify Governance is vulnerable to several issues due to vulnerabilities in Java SE (CVE-2022-21628, CVE-2022-21626, CVE-2022-21624, CVE-2022-21619) IBM Sterling Secure Proxy is vulnerable to multiple vulnerabilities due to IBM Java Runtime IBM Sterling External Authentication Server is vulnerable to multiple vulnerabilities due to IBM Java Runtime Multiple vulnerabilities in IBM Java SDK affect WebSphere Service Registry and Repository due to October 2022 CPU and January 2023 CPU plus deferred CVE-2022-21426 and CVE-2022-3676 Vulnerabbilities exists in the IBM SDK, Java Technology Edition affect IBM Tivoli Network Configuration Manager (CVE-2022-21628, CVE-2022-21626, CVE-2022-21624, CVE-2022-21619). IBM Sterling Partner Engagement Manager vulnerable to multiple issues due to IBM Java SE Multiple vulnerabilities in IBM Java SDK and IBM Java Runtime affect Rational Performance Tester Multiple vulnerabilities in IBM Java SDK and IBM Java Runtime affect Rational Service Tester Multiple Vunerabilities in IBM Java SDK affect IBM Cloud Pak System Multiple vulnerabilities in IBM SDK Java affect IBM App Connect Enterprise and IBM Integration Bus Multiple vulnerabilities in the IBM SDK, Java Technology Edition affects APM Agents for Monitoring Multiple Vulnerabilities in Rational Synergy 7.2.2.5 Oracle Critical Patch Update Advisory - October 2022 secalert_us@oracle.com Vulnerable Configuration: Configuration RedHat 1 :cpe:/a:redhat:enterprise_linux:8:*:*:*:*:*:*:* Configuration RedHat 2 :cpe:/a:redhat:enterprise_linux:8::supplementary:*:*:*:*:* Configuration CCN 1 :cpe:/a:oracle:graalvm:20.3.7:*:*:*:enterprise:*:*:* OR cpe:/a:oracle:graalvm:21.3.3:*:*:*:enterprise:*:*:* OR cpe:/a:oracle:graalvm:22.2.0:*:*:*:enterprise:*:*:* AND cpe:/o:ibm:aix:7.1:*:*:*:*:*:*:* OR cpe:/a:ibm:websphere_application_server:8.5:*:*:*:*:*:*:* OR cpe:/a:ibm:tivoli_monitoring:6.3.0:*:*:*:*:*:*:* OR cpe:/o:ibm:i:7.2:*:*:*:*:*:*:* OR cpe:/a:ibm:cics_transaction_gateway:9.1:*:*:*:*:*:*:* OR cpe:/a:ibm:websphere_service_registry_and_repository:8.5:*:*:*:*:*:*:* OR cpe:/a:ibm:tivoli_netcool_configuration_manager:6.4.1:*:*:*:*:*:*:* OR cpe:/a:ibm:spss_collaboration_and_deployment_services:7.0:*:*:*:*:*:*:* OR cpe:/a:ibm:txseries:8.1:*:*:*:*:*:*:* OR cpe:/a:ibm:txseries:8.2:*:*:*:*:*:*:* OR cpe:/a:ibm:license_metric_tool:9.2:*:*:*:*:*:*:* OR cpe:/a:ibm:watson_explorer:11.0.0:*:*:*:*:*:*:* OR cpe:/a:ibm:rational_business_developer:9.5:*:*:*:*:*:*:* OR cpe:/o:ibm:i:7.3:*:*:*:*:*:*:* OR cpe:/a:ibm:websphere_application_server_patterns:1.0.0.0:*:*:*:*:*:*:* OR cpe:/a:ibm:watson_explorer:11.0.1:*:*:*:*:*:*:* OR cpe:/o:ibm:aix:7.2:*:*:*:*:*:*:* OR cpe:/a:ibm:tivoli_netcool_configuration_manager:6.4.2:*:*:*:*:*:*:* OR cpe:/a:ibm:websphere_application_server:9.0:*:*:*:*:*:*:* OR cpe:/a:ibm:websphere_extreme_scale:8.6.1.0:*:*:*:*:*:*:* OR cpe:/a:ibm:watson_explorer:11.0.2:*:*:*:*:*:*:* OR cpe:/a:ibm:rational_clearquest:9.0.1:*:*:*:*:*:*:* OR cpe:/a:ibm:workload_scheduler:9.4:*:*:*:*:*:*:* OR cpe:/a:ibm:spss_collaboration_and_deployment_services:8.0:*:*:*:*:*:*:* OR cpe:/a:ibm:spss_collaboration_and_deployment_services:8.1:*:*:*:*:*:*:* OR cpe:/a:ibm:spss_collaboration_and_deployment_services:8.1.1:*:*:*:*:*:*:* OR cpe:/a:ibm:infosphere_information_server:11.7:*:*:*:*:*:*:* OR cpe:/a:ibm:rational_functional_tester:9.2:*:*:*:*:*:*:* OR cpe:/a:ibm:security_guardium:10.5:*:*:*:*:*:*:* OR cpe:/a:ibm:content_collector:4.0.0.2:*:*:*:sap_applications:*:*:* OR cpe:/a:ibm:websphere_application_server_patterns:1.0.0.7:*:*:*:*:*:*:* OR cpe:/a:ibm:websphere_application_server_patterns:2.2.0.0:*:*:*:*:*:*:* OR cpe:/a:ibm:tivoli_monitoring:6.3.0.7:*:*:*:*:*:*:* OR cpe:/a:ibm:rational_performance_tester:9.2:*:*:*:*:*:*:* OR cpe:/a:ibm:rational_software_architect_designer:9.6:*:*:*:*:*:*:* OR cpe:/a:ibm:tivoli_netcool/impact:7.1.0:*:*:*:*:*:*:* OR cpe:/a:ibm:websphere_application_server:::~~liberty~~~:*:*:*:*:* OR cpe:/a:ibm:watson_explorer:12.0.0:*:*:*:*:*:*:* OR cpe:/a:ibm:sterling_connect:direct:4.3.0:*:*:*:unix:*:*:* OR cpe:/a:ibm:app_connect:11.0.0.1:*:*:*:enterprise:*:*:* OR cpe:/a:ibm:datapower_gateway:2018.4.1.0:*:*:*:*:*:*:* OR cpe:/a:ibm:security_guardium:10.6:*:*:*:*:*:*:* OR cpe:/a:ibm:sterling_connect:direct:6.0.0:*:*:*:unix:*:*:* OR cpe:/a:ibm:watson_explorer:12.0.1:*:*:*:*:*:*:* OR cpe:/a:ibm:watson_explorer:12.0.2:*:*:*:*:*:*:* OR cpe:/a:ibm:cloud_application_performance_management:8.1.4:*:*:*:*:advanced_private:*:* OR cpe:/a:ibm:tivoli_business_service_manager:6.2.0:*:*:*:*:*:*:* OR cpe:/a:ibm:rational_functional_tester:9.5:*:*:*:*:*:*:* OR cpe:/o:ibm:i:7.4:*:*:*:*:*:*:* OR cpe:/a:ibm:java:7.1.0.0:*:*:*:*:*:*:* OR cpe:/a:ibm:java:8.0.0.0:*:*:*:*:*:*:* OR cpe:/a:ibm:spectrum_protect_operations_center:8.1:*:*:*:*:*:*:* OR cpe:/a:ibm:vios:3.1:*:*:*:*:*:*:* OR cpe:/a:ibm:spectrum_protect_backup-archive_client:8.1.0.0:*:*:*:*:*:*:* OR cpe:/a:ibm:spectrum_protect_for_virtual_environments:8.1.0.0:*:*:*:*:*:*:* OR cpe:/a:ibm:cloud_transformation_advisor:2.0.1:*:*:*:*:*:*:* OR cpe:/a:ibm:business_automation_workflow:19.0.0.3:*:*:*:*:*:*:* OR cpe:/a:ibm:txseries:9.1:*:*:*:*:*:*:* OR cpe:/a:ibm:watson_explorer:12.0.3:*:deep_analytics:*:analytical_components:*:*:* OR cpe:/a:ibm:tivoli_application_dependency_discovery_manager:7.3.0.0:*:*:*:*:*:*:* OR cpe:/a:ibm:rational_business_developer:9.6:*:*:*:*:*:*:* OR cpe:/a:ibm:cloud_pak_system:2.3.1.1:*:*:*:*:*:*:* OR cpe:/a:ibm:spss_collaboration_and_deployment_services:8.2:*:*:*:*:*:*:* OR cpe:/a:ibm:spss_collaboration_and_deployment_services:8.2.1:*:*:*:*:*:*:* OR cpe:/a:ibm:qradar_security_information_and_event_manager:7.4:-:*:*:*:*:*:* OR cpe:/a:ibm:rational_clearquest:9.0.2:*:*:*:*:*:*:* OR cpe:/a:ibm:event_streams:10.0.0:*:*:*:*:*:*:* OR cpe:/a:ibm:content_collector:4.0.0.3:*:*:*:sap_applications:*:*:* OR cpe:/a:ibm:cloud_pak_system:2.3.2.0:*:*:*:*:*:*:* OR cpe:/a:ibm:rational_service_tester:9.5:*:*:*:soa_quality:*:*:* OR cpe:/a:ibm:event_streams:10.1.0:*:*:*:*:*:*:* OR cpe:/a:ibm:datapower_gateway:10.0.1.0:*:*:*:*:*:*:* OR cpe:/a:ibm:integration_designer:20.0.0.2:*:*:*:*:*:*:* OR cpe:/a:ibm:rational_application_developer:9.6:*:*:*:websphere:*:*:* OR cpe:/a:ibm:rational_service_tester:9.2:*:*:*:soa_quality:*:*:* OR cpe:/a:ibm:workload_scheduler:9.5:*:*:*:*:*:*:* OR cpe:/a:ibm:spectrum_protect_for_space_management:8.1.0.0:*:*:*:*:*:*:* OR cpe:/a:ibm:security_guardium:11.3:*:*:*:*:*:*:* OR cpe:/a:ibm:event_streams:10.2.0:*:*:*:*:*:*:* OR cpe:/a:ibm:app_connect_enterprise:12.0.1.0:*:*:*:*:*:*:* OR cpe:/a:ibm:event_streams:10.3.0:*:*:*:*:*:*:* OR cpe:/a:ibm:event_streams:10.3.1:*:*:*:*:*:*:* OR cpe:/a:ibm:security_guardium:11.4:*:*:*:*:*:*:* OR cpe:/a:ibm:sterling_secure_proxy:6.0.3:*:*:*:*:*:*:* OR cpe:/a:ibm:secure_external_authentication_server:6.0.3:*:*:*:*:*:*:* OR cpe:/o:ibm:aix:7.3:*:*:*:*:*:*:* OR cpe:/a:ibm:cloud_pak_for_business_automation:18.0.0:*:*:*:*:*:*:* OR cpe:/a:ibm:cloud_pak_for_business_automation:18.0.2:*:*:*:*:*:*:* OR cpe:/a:ibm:cloud_pak_for_business_automation:19.0.1:*:*:*:*:*:*:* OR cpe:/a:ibm:cloud_pak_for_business_automation:19.0.3:*:*:*:*:*:*:* OR cpe:/a:ibm:cloud_pak_for_business_automation:20.0.1:*:*:*:*:*:*:* OR cpe:/a:ibm:cloud_pak_for_business_automation:20.0.3:*:*:*:*:*:*:* OR cpe:/a:ibm:cloud_pak_for_business_automation:21.0.1:-:*:*:*:*:*:* OR cpe:/a:ibm:cloud_pak_for_business_automation:21.0.2:-:*:*:*:*:*:* OR cpe:/a:ibm:cloud_pak_for_business_automation:21.0.3:-:*:*:*:*:*:* OR cpe:/a:ibm:spectrum_virtualize:8.2:*:*:*:*:*:*:* OR cpe:/a:ibm:datapower_gateway:10.0.4.0:*:*:*:*:*:*:* OR cpe:/o:ibm:i:7.5:*:*:*:*:*:*:* OR cpe:/a:ibm:cics_tx:11.1:*:*:*:standard:*:*:* OR cpe:/a:ibm:cics_tx:11.1:*:*:*:advanced:*:*:* OR cpe:/a:ibm:business_automation_workflow:22.0.1:-:*:*:containers:*:*:* OR cpe:/a:ibm:security_verify_governance:10.0:*:*:*:*:*:*:* OR cpe:/a:ibm:datapower_gateway:10.5.0.0:*:*:*:*:*:*:* OR cpe:/a:ibm:cloud_pak_for_business_automation:22.0.1:-:*:*:*:*:*:* OR cpe:/a:ibm:cics_transaction_gateway:9.2:*:*:*:*:*:*:* OR cpe:/a:ibm:robotic_process_automation:21.0.6:*:*:*:*:*:*:* OR cpe:/a:ibm:robotic_process_automation_for_cloud_pak:21.0.7:*:*:*:*:*:*:* OR cpe:/a:ibm:robotic_process_automation:21.0.7:*:*:*:*:*:*:* OR cpe:/a:ibm:robotic_process_automation:23.0.0:*:*:*:*:*:*:* OR cpe:/a:ibm:cloud_pak_for_business_automation:22.0.2:-:*:*:*:*:*:* OR cpe:/a:ibm:sterling_external_authentication_server:6.1.0:*:*:*:*:*:*:* OR cpe:/a:ibm:sterling_connect:direct:6.0.0.2:*:*:*:*:unix:*:* OR cpe:/a:ibm:sterling_connect:direct:4.3.0.1:*:*:*:*:unix:*:* Oval Definitions BACK
oracle graalvm 20.3.7
oracle graalvm 21.3.3
oracle graalvm 22.2.0
ibm aix 7.1
ibm websphere application server 8.5
ibm tivoli monitoring 6.3.0
ibm i 7.2
ibm cics transaction gateway 9.1
ibm websphere service registry and repository 8.5
ibm tivoli netcool configuration manager 6.4.1
ibm spss collaboration and deployment services 7.0
ibm txseries 8.1
ibm txseries 8.2
ibm license metric tool 9.2
ibm watson explorer 11.0.0
ibm rational business developer 9.5
ibm i 7.3
ibm websphere application server patterns 1.0.0.0
ibm watson explorer 11.0.1
ibm aix 7.2
ibm tivoli netcool configuration manager 6.4.2
ibm websphere application server 9.0
ibm websphere extreme scale 8.6.1.0
ibm watson explorer 11.0.2
ibm rational clearquest 9.0.1
ibm workload scheduler 9.4
ibm spss collaboration and deployment services 8.0
ibm spss collaboration and deployment services 8.1
ibm spss collaboration and deployment services 8.1.1
ibm infosphere information server 11.7
ibm rational functional tester 9.2
ibm security guardium 10.5
ibm content collector 4.0.0.2
ibm websphere application server patterns 1.0.0.7
ibm websphere application server patterns 2.2.0.0
ibm tivoli monitoring 6.3.0.7
ibm rational performance tester 9.2
ibm rational software architect designer 9.6
ibm tivoli netcool/impact 7.1.0
ibm websphere application server
ibm watson explorer 12.0.0
ibm sterling connect:direct 4.3.0
ibm app connect 11.0.0.1
ibm datapower gateway 2018.4.1.0
ibm security guardium 10.6
ibm sterling connect:direct 6.0.0
ibm watson explorer 12.0.1
ibm watson explorer 12.0.2
ibm cloud application performance management 8.1.4
ibm tivoli business service manager 6.2.0
ibm rational functional tester 9.5
ibm i 7.4
ibm java 7.1.0.0
ibm java 8.0.0.0
ibm spectrum protect operations center 8.1
ibm vios 3.1
ibm spectrum protect backup-archive client 8.1.0.0
ibm spectrum protect for virtual environments 8.1.0.0
ibm cloud transformation advisor 2.0.1
ibm business automation workflow 19.0.0.3
ibm txseries 9.1
ibm watson explorer 12.0.3
ibm tivoli application dependency discovery manager 7.3.0.0
ibm rational business developer 9.6
ibm cloud pak system 2.3.1.1
ibm spss collaboration and deployment services 8.2
ibm spss collaboration and deployment services 8.2.1
ibm qradar security information and event manager 7.4 -
ibm rational clearquest 9.0.2
ibm event streams 10.0.0
ibm content collector 4.0.0.3
ibm cloud pak system 2.3.2.0
ibm rational service tester 9.5
ibm event streams 10.1.0
ibm datapower gateway 10.0.1.0
ibm integration designer 20.0.0.2
ibm rational application developer 9.6
ibm rational service tester 9.2
ibm workload scheduler 9.5
ibm spectrum protect for space management 8.1.0.0
ibm security guardium 11.3
ibm event streams 10.2.0
ibm app connect enterprise 12.0.1.0
ibm event streams 10.3.0
ibm event streams 10.3.1
ibm security guardium 11.4
ibm sterling secure proxy 6.0.3
ibm secure external authentication server 6.0.3
ibm aix 7.3
ibm cloud pak for business automation 18.0.0
ibm cloud pak for business automation 18.0.2
ibm cloud pak for business automation 19.0.1
ibm cloud pak for business automation 19.0.3
ibm cloud pak for business automation 20.0.1
ibm cloud pak for business automation 20.0.3
ibm cloud pak for business automation 21.0.1 -
ibm cloud pak for business automation 21.0.2 -
ibm cloud pak for business automation 21.0.3 -
ibm spectrum virtualize 8.2
ibm datapower gateway 10.0.4.0
ibm i 7.5
ibm cics tx 11.1
ibm cics tx 11.1
ibm business automation workflow 22.0.1 -
ibm security verify governance 10.0
ibm datapower gateway 10.5.0.0
ibm cloud pak for business automation 22.0.1 -
ibm cics transaction gateway 9.2
ibm robotic process automation 21.0.6
ibm robotic process automation for cloud pak 21.0.7
ibm robotic process automation 21.0.7
ibm robotic process automation 23.0.0
ibm cloud pak for business automation 22.0.2 -
ibm sterling external authentication server 6.1.0
ibm sterling connect:direct 6.0.0.2
ibm sterling connect:direct 4.3.0.1
Denotes that component is vulnerable