{ "document": { "category": "csaf_base", "csaf_version": "2.0", "distribution": { "tlp": { "label": "WHITE" } }, "lang": "en", "notes": [ { "category": "legal_disclaimer", "text": "The Netherlands Cyber Security Center (henceforth: NCSC-NL) maintains this portal to enhance access to its information and vulnerabilities. The use of this information is subject to the following terms and conditions:\n\nThe vulnerabilities disclosed in this portal are gathered by NCSC-NL from a variety of open sources, which the user can retrieve from other platforms. NCSC-NL makes every reasonable effort to ensure that the content of this portal is kept up to date, and that it is accurate and complete. Nevertheless, NCSC-NL cannot entirely rule out the possibility of errors, and therefore cannot give any warranty in respect of its completeness, accuracy or real-time keeping up-to-date. NCSC-NL does not control nor guarantee the accuracy, relevance, timeliness or completeness of information obtained from these external sources. The vulnerabilities disclosed in this portal are intended solely for the convenience of professional parties to take appropriate measures to manage the risks posed to the cybersecurity. No rights can be derived from the information provided therein.\n\nNCSC-NL and the Kingdom of the Netherlands assume no legal liability or responsibility for any damage resulting from either the use or inability of use of the vulnerabilities disclosed in this portal. This includes damage resulting from the inaccuracy of incompleteness of the information contained in it.\nThe information on this page is subject to Dutch law. All disputes related to or arising from the use of this portal regarding the disclosure of vulnerabilities will be submitted to the competent court in The Hague. This choice of means also applies to the court in summary proceedings." } ], "publisher": { "category": "coordinator", "contact_details": "cert@ncsc.nl", "name": "National Cyber Security Centre", "namespace": "https://www.ncsc.nl/" }, "title": "CVE-2024-30172", "tracking": { "current_release_date": "2026-06-04T00:51:35.327565Z", "generator": { "date": "2026-02-17T15:00:00Z", "engine": { "name": "V.E.L.M.A", "version": "1.7" } }, "id": "CVE-2024-30172", "initial_release_date": "2024-05-14T23:09:40.416136Z", "revision_history": [ { "date": "2024-05-14T23:09:40.416136Z", "number": "1", "summary": "Source created.| Description created for source.| Unknown change.| References updated (1)." }, { "date": "2024-05-30T12:14:28.633184Z", "number": "2", "summary": "Source created.| Description created for source.| References created (4)." }, { "date": "2024-05-31T12:15:20.597610Z", "number": "3", "summary": "Products updated (1).| Products created (1).| References created (1)." }, { "date": "2024-06-05T15:39:28.290271Z", "number": "4", "summary": "Source created.| Description created for source.| References updated (1)." }, { "date": "2024-06-14T12:23:49.723532Z", "number": "5", "summary": "Description updated for source.| Products updated (2)." }, { "date": "2024-06-14T13:38:44.549171Z", "number": "6", "summary": "References created (1)." }, { "date": "2024-06-14T13:40:32.353500Z", "number": "7", "summary": "References updated (1)." }, { "date": "2024-06-14T15:39:15.050905Z", "number": "8", "summary": "Source created.| Description created for source.| CVSS created.| References created (3).| References updated (2).| CWES updated (1)." }, { "date": "2024-06-15T12:12:00.020261Z", "number": "9", "summary": "Source created.| EPSS created." }, { "date": "2024-06-18T13:00:09.247129Z", "number": "10", "summary": "Products updated (5).| Products created (2).| References created (2)." }, { "date": "2024-06-26T12:22:56.894733Z", "number": "11", "summary": "Products updated (6).| References updated (1)." }, { "date": "2024-06-29T12:16:57.022055Z", "number": "12", "summary": "Products updated (2).| References updated (1)." }, { "date": "2024-07-01T15:58:58.077336Z", "number": "13", "summary": "Description updated for source.| Products updated (1).| References updated (8)." }, { "date": "2024-07-02T06:21:09.522938Z", "number": "14", "summary": "Products updated (4).| References created (1)." }, { "date": "2024-07-03T00:27:33.120488Z", "number": "15", "summary": "Description updated for source.| CVSS created.| Products updated (1).| References created (1).| References updated (12).| CWES updated (1)." }, { "date": "2024-07-03T10:02:55.203449Z", "number": "16", "summary": "Products updated (1)." }, { "date": "2024-07-08T09:46:45.882089Z", "number": "17", "summary": "Products updated (1).| References updated (2)." }, { "date": "2024-07-09T18:17:58.563452Z", "number": "18", "summary": "Products updated (19).| Products created (1).| References updated (3).| References created (1)." }, { "date": "2024-07-11T18:27:49.151371Z", "number": "19", "summary": "Description updated for source.| CVSS created.| Products updated (1).| References updated (8).| CWES updated (1)." }, { "date": "2024-07-12T11:23:59.977285Z", "number": "20", "summary": "References updated (1)." }, { "date": "2024-07-14T00:17:50.039357Z", "number": "21", "summary": "Products updated (1).| References updated (1)." }, { "date": "2024-07-14T18:27:22.728897Z", "number": "22", "summary": "Description updated for source.| CVSS created.| Products updated (1).| References updated (77).| CWES updated (1)." }, { "date": "2024-07-15T12:14:27.709682Z", "number": "23", "summary": "Products updated (2).| References updated (1)." }, { "date": "2024-07-17T01:12:40.812082Z", "number": "24", "summary": "Description updated for source.| CVSS created.| Products updated (265).| References updated (2)." }, { "date": "2024-07-18T12:14:51.931328Z", "number": "25", "summary": "Products updated (2).| References updated (1)." }, { "date": "2024-07-24T06:18:42.132754Z", "number": "26", "summary": "Products updated (2).| Products created (1).| References updated (1)." }, { "date": "2024-07-25T10:28:00.986482Z", "number": "27", "summary": "Products updated (4).| References updated (1)." }, { "date": "2024-07-26T00:27:58.860880Z", "number": "28", "summary": "Description updated for source.| CVSS created.| Products updated (1).| References updated (14).| CWES updated (1)." }, { "date": "2024-08-02T00:22:23.536773Z", "number": "29", "summary": "Products updated (2)." }, { "date": "2024-08-09T00:27:35.391374Z", "number": "30", "summary": "Description updated for source.| CVSS created.| Products updated (1).| References updated (23).| CWES updated (1)." }, { "date": "2024-08-09T00:27:43.575855Z", "number": "31", "summary": "Description updated for source.| CVSS created.| Products updated (1).| References updated (7).| CWES updated (1)." }, { "date": "2024-08-09T00:27:52.335822Z", "number": "32", "summary": "Description updated for source.| CVSS created.| Products updated (1).| References updated (7).| CWES updated (1)." }, { "date": "2024-08-09T00:28:00.813639Z", "number": "33", "summary": "Description updated for source.| CVSS created.| Products updated (1).| References updated (7).| CWES updated (1)." }, { "date": "2024-08-12T12:15:30.524172Z", "number": "34", "summary": "Products updated (3)." }, { "date": "2024-08-12T20:52:46.092496Z", "number": "35", "summary": "Products updated (3)." }, { "date": "2024-08-14T06:20:56.080822Z", "number": "36", "summary": "Products updated (1)." }, { "date": "2024-08-14T11:23:06.857309Z", "number": "37", "summary": "Products updated (1).| References updated (1)." }, { "date": "2024-08-16T03:15:22.288589Z", "number": "38", "summary": "Products updated (2)." }, { "date": "2024-08-16T07:15:11.660114Z", "number": "39", "summary": "Source connected.| Description updated for source.| CVSS created.| References updated (34).| CWES updated (1)." }, { "date": "2024-08-16T07:15:49.599999Z", "number": "40", "summary": "Source connected.| Description updated for source.| CVSS created.| References updated (8).| CWES updated (1)." }, { "date": "2024-08-16T07:16:02.065712Z", "number": "41", "summary": "Source connected.| Description updated for source.| CVSS created.| References updated (7).| CWES updated (1)." }, { "date": "2024-08-23T15:08:16.211700Z", "number": "42", "summary": "Source connected.| Description updated for source.| Products updated (2).| References updated (7)." }, { "date": "2024-08-26T10:18:13.327056Z", "number": "43", "summary": "Products updated (3).| References updated (1)." }, { "date": "2024-08-29T06:14:29.221094Z", "number": "44", "summary": "Products updated (3)." }, { "date": "2024-09-04T13:19:05.640747Z", "number": "45", "summary": "Products updated (1).| References updated (1)." }, { "date": "2024-09-09T21:39:21.074474Z", "number": "46", "summary": "References updated (1).| References created (1)." }, { "date": "2024-09-12T15:58:07.189667Z", "number": "47", "summary": "Products updated (1).| References updated (1)." }, { "date": "2024-09-18T10:50:29.717824Z", "number": "48", "summary": "Products updated (5).| References updated (2)." }, { "date": "2024-09-25T10:05:50.904668Z", "number": "49", "summary": "Products updated (1)." }, { "date": "2024-10-07T14:52:13.163365Z", "number": "50", "summary": "References updated (1)." }, { "date": "2024-10-07T14:52:20.753718Z", "number": "51", "summary": "References updated (1)." }, { "date": "2024-10-07T14:52:31.355681Z", "number": "52", "summary": "References updated (1)." }, { "date": "2024-10-07T14:52:40.616178Z", "number": "53", "summary": "References updated (1)." }, { "date": "2024-10-07T14:52:50.180910Z", "number": "54", "summary": "References updated (1)." }, { "date": "2024-10-07T14:53:14.561014Z", "number": "55", "summary": "References updated (1)." }, { "date": "2024-10-07T14:53:48.943193Z", "number": "56", "summary": "References updated (1)." }, { "date": "2024-10-09T12:47:48.671532Z", "number": "57", "summary": "References updated (1)." }, { "date": "2024-10-09T12:48:05.023678Z", "number": "58", "summary": "References updated (1)." }, { "date": "2024-10-09T12:48:11.068161Z", "number": "59", "summary": "References updated (1)." }, { "date": "2024-10-09T12:48:33.306920Z", "number": "60", "summary": "References updated (1)." }, { "date": "2024-10-19T02:23:43.738211Z", "number": "61", "summary": "Source connected.| EPSS created." }, { "date": "2024-11-01T10:45:34.240104Z", "number": "62", "summary": "Products updated (14).| Products created (6)." }, { "date": "2024-11-05T17:41:30.409183Z", "number": "63", "summary": "CVSS created.| Products created (1)." }, { "date": "2024-11-05T19:36:41.729128Z", "number": "64", "summary": "CVSS created." }, { "date": "2024-11-05T21:39:31.048612Z", "number": "65", "summary": "CVSS created." }, { "date": "2024-11-06T01:38:57.017660Z", "number": "66", "summary": "References updated (2)." }, { "date": "2024-11-20T11:07:36.749823Z", "number": "67", "summary": "Source connected.| Products updated (1).| References updated (3)." }, { "date": "2024-11-21T05:16:04.806689Z", "number": "68", "summary": "Products updated (4).| References updated (1)." }, { "date": "2024-12-05T17:02:00.742299Z", "number": "69", "summary": "Source created.| Description created for source.| Products updated (1)." }, { "date": "2024-12-06T13:06:05.615588Z", "number": "70", "summary": "Source connected." }, { "date": "2024-12-06T13:06:20.910106Z", "number": "71", "summary": "Products updated (1).| References updated (1)." }, { "date": "2024-12-11T12:06:04.476159Z", "number": "72", "summary": "Source connected.| Products updated (1).| References updated (3)." }, { "date": "2024-12-14T01:32:43.709833Z", "number": "73", "summary": "Description updated for source.| CVSS created.| Products updated (6).| References updated (1).| Vendor_assessment created." }, { "date": "2024-12-18T11:47:54.221690Z", "number": "74", "summary": "Products updated (1)." }, { "date": "2025-01-22T01:33:29.857074Z", "number": "75", "summary": "Source connected.| Description updated for source.| CVSS created.| References updated (2)." }, { "date": "2025-01-22T13:36:43.514070Z", "number": "76", "summary": "Source connected." }, { "date": "2025-02-01T01:13:26.586958Z", "number": "77", "summary": "Description updated for source." }, { "date": "2025-03-19T14:04:30.828275Z", "number": "78", "summary": "Products updated (1).| References updated (2)." }, { "date": "2025-03-19T14:04:38.970321Z", "number": "79", "summary": "NCSC Score updated." }, { "date": "2025-03-29T17:33:53.214321Z", "number": "80", "summary": "EPSS updated." }, { "date": "2025-03-30T14:11:55.537911Z", "number": "81", "summary": "EPSS updated." }, { "date": "2025-03-31T09:41:22.112639Z", "number": "82", "summary": "Products connected (1).| References updated (1)." }, { "date": "2025-04-16T00:26:11.848559Z", "number": "83", "summary": "Source connected.| Description updated for source.| CVSS created.| Products connected (1).| Product Remediations created (1).| References updated (2)." }, { "date": "2025-04-16T15:02:30.800679Z", "number": "84", "summary": "Source connected." }, { "date": "2025-07-02T11:51:52.761061Z", "number": "85", "summary": "Products connected (3).| References updated (1)." }, { "date": "2025-07-02T11:51:59.568388Z", "number": "86", "summary": "NCSC Score updated." }, { "date": "2025-08-20T00:25:04.772997Z", "number": "87", "summary": "Source connected.| Description created for source.| CVSS created.| Vendor_assessment created." }, { "date": "2025-08-20T08:14:06.880673Z", "number": "88", "summary": "Description removed for source.| References created (1)." }, { "date": "2025-09-27T09:29:36.090662Z", "number": "89", "summary": "Source created.| CVE status created. (valid)| Description created for source.| CVSS created.| Products connected (48).| Product Identifiers created (46).| Products created (6).| References created (8).| CWES updated (1)." }, { "date": "2025-09-27T09:29:40.694957Z", "number": "90", "summary": "NCSC Score updated." }, { "date": "2025-10-02T14:27:17.780480Z", "number": "91", "summary": "Source created.| CVE status created. (valid)| Description created for source.| CVSS created.| Products connected (54).| Product Identifiers created (46).| References created (8).| CWES updated (1)." }, { "date": "2025-10-02T14:27:22.866353Z", "number": "92", "summary": "NCSC Score updated." }, { "date": "2025-10-06T10:05:50.803335Z", "number": "93", "summary": "Products connected (1).| References created (1)." }, { "date": "2025-10-06T10:05:54.265976Z", "number": "94", "summary": "NCSC Score updated." }, { "date": "2025-11-18T20:52:18.571333Z", "number": "95", "summary": "EPSS updated." }, { "date": "2025-11-18T20:52:29.506130Z", "number": "96", "summary": "NCSC Score updated." }, { "date": "2025-11-21T22:12:00.138177Z", "number": "97", "summary": "EPSS updated." }, { "date": "2025-11-21T22:12:13.825615Z", "number": "98", "summary": "NCSC Score updated." }, { "date": "2026-01-15T06:40:42.840459Z", "number": "99", "summary": "Manual regenerated (CSAFs rebuild product/vendor naming update)." }, { "date": "2026-01-28T06:19:55.132002Z", "number": "100", "summary": "Products removed (18)." }, { "date": "2026-01-28T06:20:03.706991Z", "number": "101", "summary": "NCSC Score updated." }, { "date": "2026-01-28T06:25:33.362648Z", "number": "102", "summary": "Products removed (54)." }, { "date": "2026-01-28T06:25:40.602696Z", "number": "103", "summary": "NCSC Score updated." }, { "date": "2026-02-24T18:29:12.119103Z", "number": "104", "summary": "Products created (1).| Product Threats created (1).| Product Remediations created (1)." }, { "date": "2026-02-24T18:29:16.560900Z", "number": "105", "summary": "NCSC Score updated." }, { "date": "2026-02-25T19:25:43.559489Z", "number": "106", "summary": "Products created (1).| Product Identifiers created (1).| Products removed (1).| Unknown change." }, { "date": "2026-02-25T19:25:44.900564Z", "number": "107", "summary": "NCSC Score updated." }, { "date": "2026-03-09T12:17:29.774559Z", "number": "108", "summary": "NCSC Score updated." }, { "date": "2026-03-10T12:33:47.858671Z", "number": "109", "summary": "Source connected.| CVE status created. (valid)| Description created for source.| CVSS created.| Products connected (1).| Product Remediations created (1).| References created (2).| CWES updated (1)." }, { "date": "2026-03-10T12:33:56.435961Z", "number": "110", "summary": "NCSC Score updated." }, { "date": "2026-03-10T12:44:37.819356Z", "number": "111", "summary": "Source connected.| CVE status created. (valid)" }, { "date": "2026-03-18T15:53:29.041114Z", "number": "112", "summary": "NCSC Score updated." }, { "date": "2026-03-19T11:39:29.068075Z", "number": "113", "summary": "Products connected (1).| References created (1)." }, { "date": "2026-03-19T11:39:35.332644Z", "number": "114", "summary": "NCSC Score updated." }, { "date": "2026-03-20T06:41:17.823330Z", "number": "115", "summary": "Source connected.| CVE status created. (valid)| EPSS created." }, { "date": "2026-03-20T06:41:21.575243Z", "number": "116", "summary": "NCSC Score updated." }, { "date": "2026-03-25T00:38:01.739371Z", "number": "117", "summary": "Products connected (1).| References created (1)." }, { "date": "2026-03-25T00:38:09.466915Z", "number": "118", "summary": "NCSC Score updated." }, { "date": "2026-04-14T22:29:22.274474Z", "number": "119", "summary": "NCSC Score updated." }, { "date": "2026-04-15T17:31:07.206033Z", "number": "120", "summary": "Source created.| CVE status created. (valid)| Description created for source.| CVSS created.| References created (2)." }, { "date": "2026-04-15T17:31:13.259864Z", "number": "121", "summary": "NCSC Score updated." }, { "date": "2026-04-15T23:42:54.495916Z", "number": "122", "summary": "Source connected.| CVE status created. (valid)| EPSS created." }, { "date": "2026-04-15T23:42:57.865475Z", "number": "123", "summary": "NCSC Score updated." }, { "date": "2026-04-22T00:48:40.216572Z", "number": "124", "summary": "Source connected.| CVE status created. (valid)| Description created for source.| Products connected (1).| Product Remediations created (1).| References created (2)." }, { "date": "2026-04-22T00:48:46.006604Z", "number": "125", "summary": "NCSC Score updated." }, { "date": "2026-04-24T18:43:21.087377Z", "number": "126", "summary": "Source connected.| CVE status created. (valid)| Description created for source.| Products connected (16).| References created (1)." }, { "date": "2026-04-24T18:43:27.203911Z", "number": "127", "summary": "NCSC Score updated." }, { "date": "2026-06-04T00:44:26.939239Z", "number": "128", "summary": "Source connected.| CVE status created. (valid)| EPSS created." }, { "date": "2026-06-04T00:44:29.333408Z", "number": "129", "summary": "NCSC Score updated." } ], "status": "interim", "version": "129" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_version_range", "name": "vers:netapp/unknown", "product": { "name": "vers:netapp/unknown", "product_id": "CSAFPID-1239319" } } ], "category": "product_name", "name": "Active IQ Unified Manager for Linux" }, { "branches": [ { "category": "product_version_range", "name": "vers:netapp/unknown", "product": { "name": "vers:netapp/unknown", "product_id": "CSAFPID-1209056" } } ], "category": "product_name", "name": "Active IQ Unified Manager for Microsoft Windows" }, { "branches": [ { "category": "product_version_range", "name": "vers:netapp/unknown", "product": { "name": "vers:netapp/unknown", "product_id": "CSAFPID-1209057" } } ], "category": "product_name", "name": "Active IQ Unified Manager for VMware vSphere" }, { "branches": [ { "category": "product_version_range", "name": "vers:netapp/unknown", "product": { "name": "vers:netapp/unknown", "product_id": "CSAFPID-1442747" } } ], "category": "product_name", "name": "Active IQ mobile app" }, { "branches": [ { "category": "product_version_range", "name": "vers:unknown/for linux", "product": { "name": "vers:unknown/for linux", "product_id": "CSAFPID-1600334", "product_identification_helper": { "cpe": "cpe:/a:netapp:active_iq_unified_manager:for_linux" } } }, { "category": "product_version_range", "name": "vers:unknown/for microsoft windows", "product": { "name": "vers:unknown/for microsoft windows", "product_id": "CSAFPID-1600336", "product_identification_helper": { "cpe": "cpe:/a:netapp:active_iq_unified_manager:for_microsoft_windows" } } }, { "category": "product_version_range", "name": "vers:unknown/for vmware vsphere", "product": { "name": "vers:unknown/for vmware vsphere", "product_id": "CSAFPID-1600335", "product_identification_helper": { "cpe": "cpe:/a:netapp:active_iq_unified_manager:for_vmware_vsphere" } } } ], "category": "product_name", "name": "ActiveIQ Unified Manager" }, { "branches": [ { "category": "product_version_range", "name": "vers:netapp/<1.78", "product": { "name": "vers:netapp/<1.78", "product_id": "CSAFPID-5694347" } } ], "category": "product_name", "name": "Multiple products incorporating Bouncy Castle" }, { "branches": [ { "category": "product_version_range", "name": "vers:unknown/unknown", "product": { "name": "vers:unknown/unknown", "product_id": "CSAFPID-1330514", "product_identification_helper": { "cpe": "cpe:/a:netapp:active_iq_unified_manager:-" } } } ], "category": "product_name", "name": "NetApp ActiveIQ Unified Manager" }, { "branches": [ { "category": "product_version_range", "name": "vers:netapp/unknown", "product": { "name": "vers:netapp/unknown", "product_id": "CSAFPID-1442746" } } ], "category": "product_name", "name": "NetApp BlueXP" }, { "branches": [ { "category": "product_version_range", "name": "vers:netapp/unknown", "product": { "name": "vers:netapp/unknown", "product_id": "CSAFPID-1442732" } } ], "category": "product_name", "name": "ONTAP tools for VMware vSphere 10" }, { "branches": [ { "category": "product_version_range", "name": "vers:netapp/unknown", "product": { "name": "vers:netapp/unknown", "product_id": "CSAFPID-1209059" } } ], "category": "product_name", "name": "OnCommand Workflow Automation" }, { "branches": [ { "category": "product_version_range", "name": "vers:netapp/11.90", "product": { "name": "vers:netapp/11.90", "product_id": "CSAFPID-1932428" } }, { "category": "product_version_range", "name": "vers:netapp/unknown", "product": { "name": "vers:netapp/unknown", "product_id": "CSAFPID-1444325" } } ], "category": "product_name", "name": "SANtricity Storage Plugin for vCenter" } ], "category": "vendor", "name": "NetApp" }, { "branches": [ { "branches": [ { "category": "product_version_range", "name": "vers:unknown/2.0.0.8", "product": { "name": "vers:unknown/2.0.0.8", "product_id": "CSAFPID-1251170" } }, { "category": "product_version_range", "name": "vers:unknown/3.0.1.0", "product": { "name": "vers:unknown/3.0.1.0", "product_id": "CSAFPID-1251169" } }, { "category": "product_version_range", "name": "vers:unknown/3.0.1.3", "product": { "name": "vers:unknown/3.0.1.3", "product_id": "CSAFPID-1251178" } } ], "category": "product_name", "name": "App Connect for Manufacturing" }, { "branches": [ { "category": "product_version_range", "name": "vers:unknown/8.1.3", "product": { "name": "vers:unknown/8.1.3", "product_id": "CSAFPID-1251194" } }, { "category": "product_version_range", "name": "vers:unknown/8.1.4", "product": { "name": "vers:unknown/8.1.4", "product_id": "CSAFPID-1251195" } } ], "category": "product_name", "name": "Application Performance Management" }, { "branches": [ { "category": "product_version_range", "name": "vers:unknown/3.18.0.50", "product": { "name": "vers:unknown/3.18.0.50", "product_id": "CSAFPID-1251185" } }, { "category": "product_version_range", "name": "vers:unknown/3.18.2.87", "product": { "name": "vers:unknown/3.18.2.87", "product_id": "CSAFPID-1251186" } } ], "category": "product_name", "name": "Cloud Object System" }, { "branches": [ { "category": "product_version_range", "name": "vers:unknown/*", "product": { "name": "vers:unknown/*", "product_id": "CSAFPID-1251161" } } ], "category": "product_name", "name": "Cloud Pak for Network Automation 2.x" }, { "branches": [ { "category": "product_version_range", "name": "vers:unknown/1.10.0.0", "product": { "name": "vers:unknown/1.10.0.0", "product_id": "CSAFPID-1251166" } }, { "category": "product_version_range", "name": "vers:unknown/1.10.11.0", "product": { "name": "vers:unknown/1.10.11.0", "product_id": "CSAFPID-1251168" } } ], "category": "product_name", "name": "Cloud Pak for Security" }, { "branches": [ { "category": "product_version_range", "name": "vers:unknown/2.0.1", "product": { "name": "vers:unknown/2.0.1", "product_id": "CSAFPID-1251162" } }, { "category": "product_version_range", "name": "vers:unknown/3.9.0", "product": { "name": "vers:unknown/3.9.0", "product_id": "CSAFPID-1251180" } } ], "category": "product_name", "name": "Cloud Transformation Advisor" }, { "branches": [ { "category": "product_version_range", "name": "vers:unknown/11.5", "product": { "name": "vers:unknown/11.5", "product_id": "CSAFPID-1346529" } } ], "category": "product_name", "name": "Db2 for Linux, UNIX and Windows" }, { "branches": [ { "category": "product_version_range", "name": "vers:unknown/1.0", "product": { "name": "vers:unknown/1.0", "product_id": "CSAFPID-109898", "product_identification_helper": { "cpe": "cpe:2.3:a:ibm:disconnected_log_collector:1.0:*:*:*:*:*:*:*" } } }, { "category": "product_version_range", "name": "vers:unknown/1.8.5", "product": { "name": "vers:unknown/1.8.5", "product_id": "CSAFPID-129498", "product_identification_helper": { "cpe": "cpe:2.3:a:ibm:disconnected_log_collector:1.8.5:*:*:*:*:*:*:*" } } } ], "category": "product_name", "name": "Disconnected Log Collector" }, { "branches": [ { "category": "product_version_range", "name": "vers:unknown/11.0.0", "product": { "name": "vers:unknown/11.0.0", "product_id": "CSAFPID-1251171" } }, { "category": "product_version_range", "name": "vers:unknown/11.2.0", "product": { "name": "vers:unknown/11.2.0", "product_id": "CSAFPID-1251182" } } ], "category": "product_name", "name": "Event Endpoint Management" }, { "branches": [ { "category": "product_version_range", "name": "vers:unknown/1.1.2", "product": { "name": "vers:unknown/1.1.2", "product_id": "CSAFPID-1251175" } }, { "category": "product_version_range", "name": "vers:unknown/1.1.7", "product": { "name": "vers:unknown/1.1.7", "product_id": "CSAFPID-1251184" } } ], "category": "product_name", "name": "Event Processing" }, { "branches": [ { "category": "product_version_range", "name": "vers:unknown/unknown", "product": { "name": "vers:unknown/unknown", "product_id": "CSAFPID-1345181", "product_identification_helper": { "cpe": "cpe:/a:ibm:db2:-" } } } ], "category": "product_name", "name": "IBM DB2" }, { "branches": [ { "category": "product_version_range", "name": "vers:unknown/unknown", "product": { "name": "vers:unknown/unknown", "product_id": "CSAFPID-1337808", "product_identification_helper": { "cpe": "cpe:/a:ibm:mq:-" } } } ], "category": "product_name", "name": "IBM MQ" }, { "branches": [ { "category": "product_version_range", "name": "vers:unknown/unknown", "product": { "name": "vers:unknown/unknown", "product_id": "CSAFPID-1345178", "product_identification_helper": { "cpe": "cpe:/a:ibm:security_guardium:-" } } } ], "category": "product_name", "name": "IBM Security Guardium" }, { "branches": [ { "category": "product_version_range", "name": "vers:unknown/unknown", "product": { "name": "vers:unknown/unknown", "product_id": "CSAFPID-1793055", "product_identification_helper": { "cpe": "cpe:/a:ibm:tivoli_key_lifecycle_manager:-" } } } ], "category": "product_name", "name": "IBM Tivoli Key Lifecycle Manager" }, { "branches": [ { "category": "product_version_range", "name": "vers:unknown/9.2", "product": { "name": "vers:unknown/9.2", "product_id": "CSAFPID-165054", "product_identification_helper": { "cpe": "cpe:/a:ibm:license_metric_tool:9.2" } } }, { "category": "product_version_range", "name": "vers:unknown/9.2.0", "product": { "name": "vers:unknown/9.2.0", "product_id": "CSAFPID-129468", "product_identification_helper": { "cpe": "cpe:2.3:a:ibm:license_metric_tool:9.2.0:*:*:*:*:*:*:*" } } }, { "category": "product_version_range", "name": "vers:unknown/9.2.35", "product": { "name": "vers:unknown/9.2.35", "product_id": "CSAFPID-129821", "product_identification_helper": { "cpe": "cpe:2.3:a:ibm:license_metric_tool:9.2.35:*:*:*:*:*:*:*" } } } ], "category": "product_name", "name": "License Metric Tool" }, { "branches": [ { "category": "product_version_range", "name": "vers:unknown/1.3.5.3", "product": { "name": "vers:unknown/1.3.5.3", "product_id": "CSAFPID-1251133" } }, { "category": "product_version_range", "name": "vers:unknown/1.3.6.0", "product": { "name": "vers:unknown/1.3.6.0", "product_id": "CSAFPID-1251134" } }, { "category": "product_version_range", "name": "vers:unknown/1.3.6.1", "product": { "name": "vers:unknown/1.3.6.1", "product_id": "CSAFPID-1251135" } }, { "category": "product_version_range", "name": "vers:unknown/1.3.7.0", "product": { "name": "vers:unknown/1.3.7.0", "product_id": "CSAFPID-1251136" } }, { "category": "product_version_range", "name": "vers:unknown/1.3.7.1", "product": { "name": "vers:unknown/1.3.7.1", "product_id": "CSAFPID-1251137" } }, { "category": "product_version_range", "name": "vers:unknown/1.3.7.2", "product": { "name": "vers:unknown/1.3.7.2", "product_id": "CSAFPID-1251138" } } ], "category": "product_name", "name": "Log Analysis" }, { "branches": [ { "category": "product_version_range", "name": "vers:unknown/2.0.0", "product": { "name": "vers:unknown/2.0.0", "product_id": "CSAFPID-7926", "product_identification_helper": { "cpe": "cpe:2.3:a:ibm:mq_operator:2.0.0:*:*:*:*:*:*:*" } } }, { "category": "product_version_range", "name": "vers:unknown/2.0.23", "product": { "name": "vers:unknown/2.0.23", "product_id": "CSAFPID-123217", "product_identification_helper": { "cpe": "cpe:2.3:a:ibm:mq_operator:2.0.23:*:*:*:*:*:*:*" } } }, { "category": "product_version_range", "name": "vers:unknown/2.2.0", "product": { "name": "vers:unknown/2.2.0", "product_id": "CSAFPID-7928", "product_identification_helper": { "cpe": "cpe:2.3:a:ibm:mq_operator:2.2.0:*:*:*:*:*:*:*" } } }, { "category": "product_version_range", "name": "vers:unknown/2.2.2", "product": { "name": "vers:unknown/2.2.2", "product_id": "CSAFPID-7929", "product_identification_helper": { "cpe": "cpe:2.3:a:ibm:mq_operator:2.2.2:*:*:*:*:*:*:*" } } }, { "category": "product_version_range", "name": "vers:unknown/2.3.0", "product": { "name": "vers:unknown/2.3.0", "product_id": "CSAFPID-7924", "product_identification_helper": { "cpe": "cpe:2.3:a:ibm:mq_operator:2.3.0:*:*:*:*:*:*:*" } } }, { "category": "product_version_range", "name": "vers:unknown/2.3.3", "product": { "name": "vers:unknown/2.3.3", "product_id": "CSAFPID-7925", "product_identification_helper": { "cpe": "cpe:2.3:a:ibm:mq_operator:2.3.3:*:*:*:*:*:*:*" } } }, { "category": "product_version_range", "name": "vers:unknown/2.4.0", "product": { "name": "vers:unknown/2.4.0", "product_id": "CSAFPID-7927", "product_identification_helper": { "cpe": "cpe:2.3:a:ibm:mq_operator:2.4.0:*:*:*:*:*:*:*" } } }, { "category": "product_version_range", "name": "vers:unknown/2.4.8", "product": { "name": "vers:unknown/2.4.8", "product_id": "CSAFPID-123199", "product_identification_helper": { "cpe": "cpe:2.3:a:ibm:mq_operator:2.4.8:*:*:*:*:*:*:*" } } }, { "category": "product_version_range", "name": "vers:unknown/3.0.0", "product": { "name": "vers:unknown/3.0.0", "product_id": "CSAFPID-7930", "product_identification_helper": { "cpe": "cpe:2.3:a:ibm:mq_operator:3.0.0:*:*:*:*:*:*:*" } } }, { "category": "product_version_range", "name": "vers:unknown/3.0.1", "product": { "name": "vers:unknown/3.0.1", "product_id": "CSAFPID-7933", "product_identification_helper": { "cpe": "cpe:2.3:a:ibm:mq_operator:3.0.1:*:*:*:*:*:*:*" } } }, { "category": "product_version_range", "name": "vers:unknown/3.1.0", "product": { "name": "vers:unknown/3.1.0", "product_id": "CSAFPID-123198", "product_identification_helper": { "cpe": "cpe:2.3:a:ibm:mq_operator:3.1.0:*:*:*:*:*:*:*" } } }, { "category": "product_version_range", "name": "vers:unknown/3.1.3", "product": { "name": "vers:unknown/3.1.3", "product_id": "CSAFPID-123212", "product_identification_helper": { "cpe": "cpe:2.3:a:ibm:mq_operator:3.1.3:*:*:*:*:*:*:*" } } }, { "category": "product_version_range", "name": "vers:unknown/3.2.0", "product": { "name": "vers:unknown/3.2.0", "product_id": "CSAFPID-123218", "product_identification_helper": { "cpe": "cpe:2.3:a:ibm:mq_operator:3.2.0:*:*:*:*:*:*:*" } } }, { "category": "product_version_range", "name": "vers:unknown/3.2.1", "product": { "name": "vers:unknown/3.2.1", "product_id": "CSAFPID-123219", "product_identification_helper": { "cpe": "cpe:2.3:a:ibm:mq_operator:3.2.1:*:*:*:*:*:*:*" } } } ], "category": "product_name", "name": "MQ Operator" }, { "branches": [ { "category": "product_version_range", "name": "vers:unknown/8.7", "product": { "name": "vers:unknown/8.7", "product_id": "CSAFPID-129505", "product_identification_helper": { "cpe": "cpe:2.3:a:ibm:maximo_application_suite:8.7:*:*:*:*:*:*:*" } } }, { "category": "product_version_range", "name": "vers:unknown/8.8", "product": { "name": "vers:unknown/8.8", "product_id": "CSAFPID-129834", "product_identification_helper": { "cpe": "cpe:2.3:a:ibm:maximo_application_suite:8.8:*:*:*:*:*:*:*" } } }, { "category": "product_version_range", "name": "vers:unknown/9.0", "product": { "name": "vers:unknown/9.0", "product_id": "CSAFPID-185963", "product_identification_helper": { "cpe": "cpe:2.3:a:ibm:maximo_application_suite:9.0:*:*:*:*:*:*:*" } } } ], "category": "product_name", "name": "Maximo Application Suite" }, { "branches": [ { "category": "product_version_range", "name": "vers:unknown/*", "product": { "name": "vers:unknown/*", "product_id": "CSAFPID-1251179" } } ], "category": "product_name", "name": "Observability with Instana (OnPrem) 253" }, { "branches": [ { "category": "product_version_range", "name": "vers:unknown/*", "product": { "name": "vers:unknown/*", "product_id": "CSAFPID-1251174" } } ], "category": "product_name", "name": "Observability with Instana (OnPrem) 267" }, { "branches": [ { "category": "product_version_range", "name": "vers:unknown/*", "product": { "name": "vers:unknown/*", "product_id": "CSAFPID-1251176" } } ], "category": "product_name", "name": "Observability with Instana (OnPrem) 272" }, { "branches": [ { "category": "product_version_range", "name": "vers:unknown/*", "product": { "name": "vers:unknown/*", "product_id": "CSAFPID-1251187" } } ], "category": "product_name", "name": "Observability with Instana (OnPrem) 275" }, { "branches": [ { "category": "product_version_range", "name": "vers:unknown/1.14.1", "product": { "name": "vers:unknown/1.14.1", "product_id": "CSAFPID-1251145" } }, { "category": "product_version_range", "name": "vers:unknown/1.14.2", "product": { "name": "vers:unknown/1.14.2", "product_id": "CSAFPID-1251146" } }, { "category": "product_version_range", "name": "vers:unknown/1.14.3", "product": { "name": "vers:unknown/1.14.3", "product_id": "CSAFPID-1251149" } }, { "category": "product_version_range", "name": "vers:unknown/1.14.4", "product": { "name": "vers:unknown/1.14.4", "product_id": "CSAFPID-1251153" } } ], "category": "product_name", "name": "Process Mining" }, { "branches": [ { "category": "product_version_range", "name": "vers:unknown/7.5", "product": { "name": "vers:unknown/7.5", "product_id": "CSAFPID-1190586" } }, { "category": "product_version_range", "name": "vers:unknown/<7.5.0 up9", "product": { "name": "vers:unknown/<7.5.0 up9", "product_id": "CSAFPID-1190644" } } ], "category": "product_name", "name": "QRadar SIEM" }, { "branches": [ { "category": "product_version_range", "name": "vers:unknown/1.10.12.0", "product": { "name": "vers:unknown/1.10.12.0", "product_id": "CSAFPID-1251172" } }, { "category": "product_version_range", "name": "vers:unknown/1.10.21.0", "product": { "name": "vers:unknown/1.10.21.0", "product_id": "CSAFPID-1251177" } } ], "category": "product_name", "name": "QRadar Suite Software" }, { "branches": [ { "category": "product_version_range", "name": "vers:unknown/collaboration and deployment services 8.5", "product": { "name": "vers:unknown/collaboration and deployment services 8.5", "product_id": "CSAFPID-1265066", "product_identification_helper": { "cpe": "cpe:/a:ibm:spss:collaboration_and_deployment_services_8.5" } } } ], "category": "product_name", "name": "SPSS" }, { "branches": [ { "category": "product_version_range", "name": "vers:unknown/7.5", "product": { "name": "vers:unknown/7.5", "product_id": "CSAFPID-1251167" } } ], "category": "product_name", "name": "Security QRadar SIEM" }, { "branches": [ { "category": "product_version_range", "name": "vers:unknown/5.1.0.0-5.1.9.4", "product": { "name": "vers:unknown/5.1.0.0-5.1.9.4", "product_id": "CSAFPID-1345174", "product_identification_helper": { "cpe": "cpe:/a:ibm:spectrum_scale:5.1.0.0_-_5.1.9.4" } } }, { "category": "product_version_range", "name": "vers:unknown/<5.1.9.5", "product": { "name": "vers:unknown/<5.1.9.5", "product_id": "CSAFPID-1244746" } }, { "category": "product_version_range", "name": "vers:unknown/<5.2.1.0", "product": { "name": "vers:unknown/<5.2.1.0", "product_id": "CSAFPID-1244745" } } ], "category": "product_name", "name": "Storage Scale" }, { "branches": [ { "category": "product_version_range", "name": "vers:unknown/1.77", "product": { "name": "vers:unknown/1.77", "product_id": "CSAFPID-1251132" } } ], "category": "product_name", "name": "The Legion of the Bouncy Castle BC Java" }, { "branches": [ { "category": "product_version_range", "name": "vers:unknown/4.0.0", "product": { "name": "vers:unknown/4.0.0", "product_id": "CSAFPID-1251160" } } ], "category": "product_name", "name": "Watson Speech Services Cartridge for Cloud Pak for Data -" }, { "branches": [ { "category": "product_version_range", "name": "vers:unknown/1.0", "product": { "name": "vers:unknown/1.0", "product_id": "CSAFPID-1251165" } }, { "category": "product_version_range", "name": "vers:unknown/1.4.7", "product": { "name": "vers:unknown/1.4.7", "product_id": "CSAFPID-1251188" } }, { "category": "product_version_range", "name": "vers:unknown/2.0", "product": { "name": "vers:unknown/2.0", "product_id": "CSAFPID-1251189" } } ], "category": "product_name", "name": "i Modernization Engine for Lifecycle Integration" } ], "category": "vendor", "name": "IBM" }, { "branches": [ { "branches": [ { "category": "product_version_range", "name": "vers:unknown/unknown", "product": { "name": "vers:unknown/unknown", "product_id": "CSAFPID-1341594", "product_identification_helper": { "cpe": "cpe:/a:atlassian:bitbucket:-" } } } ], "category": "product_name", "name": "Atlassian Bitbucket" }, { "branches": [ { "category": "product_version_range", "name": "vers:unknown/data center <9.2.21", "product": { "name": "vers:unknown/data center <9.2.21", "product_id": "CSAFPID-1429891" } }, { "category": "product_version_range", "name": "vers:unknown/data center <9.6.8", "product": { "name": "vers:unknown/data center <9.6.8", "product_id": "CSAFPID-1429889" } }, { "category": "product_version_range", "name": "vers:unknown/server <9.2.21", "product": { "name": "vers:unknown/server <9.2.21", "product_id": "CSAFPID-1429890" } } ], "category": "product_name", "name": "Bamboo" }, { "branches": [ { "category": "product_version_range", "name": "vers:unknown/<8.19.16", "product": { "name": "vers:unknown/<8.19.16", "product_id": "CSAFPID-2530878" } }, { "category": "product_version_range", "name": "vers:unknown/<8.9.26", "product": { "name": "vers:unknown/<8.9.26", "product_id": "CSAFPID-2530877" } }, { "category": "product_version_range", "name": "vers:unknown/<9.4.4", "product": { "name": "vers:unknown/<9.4.4", "product_id": "CSAFPID-2530879" } }, { "category": "product_version_range", "name": "vers:unknown/<9.5.2", "product": { "name": "vers:unknown/<9.5.2", "product_id": "CSAFPID-2530880" } } ], "category": "product_name", "name": "Bitbucket" }, { "branches": [ { "category": "product_version_range", "name": "vers:unknown/<7.19.26", "product": { "name": "vers:unknown/<7.19.26", "product_id": "CSAFPID-1345176" } }, { "category": "product_version_range", "name": "vers:unknown/<8.5.12", "product": { "name": "vers:unknown/<8.5.12", "product_id": "CSAFPID-1345180" } }, { "category": "product_version_range", "name": "vers:unknown/<8.9.4", "product": { "name": "vers:unknown/<8.9.4", "product_id": "CSAFPID-1345179" } }, { "category": "product_version_range", "name": "vers:unknown/<8.9.8", "product": { "name": "vers:unknown/<8.9.8", "product_id": "CSAFPID-1341598" } }, { "category": "product_version_range", "name": "vers:unknown/<9.0.1", "product": { "name": "vers:unknown/<9.0.1", "product_id": "CSAFPID-1345177" } }, { "category": "product_version_range", "name": "vers:unknown/<9.1.1", "product": { "name": "vers:unknown/<9.1.1", "product_id": "CSAFPID-1341600" } }, { "category": "product_version_range", "name": "vers:unknown/lts <7.19.29", "product": { "name": "vers:unknown/lts <7.19.29", "product_id": "CSAFPID-1341599" } }, { "category": "product_version_range", "name": "vers:unknown/lts <8.5.17", "product": { "name": "vers:unknown/lts <8.5.17", "product_id": "CSAFPID-1341597" } } ], "category": "product_name", "name": "Confluence" } ], "category": "vendor", "name": "Atlassian" }, { "branches": [ { "branches": [ { "category": "product_version_range", "name": "vers:unknown/<9.4m9 ts1m9", "product": { "name": "vers:unknown/<9.4m9 ts1m9", "product_id": "CSAFPID-5008496" } } ], "category": "product_name", "name": "Base SAS" } ], "category": "vendor", "name": "SAS Institute" }, { "branches": [ { "branches": [ { "category": "product_version_range", "name": "vers:unknown/<1.78.1", "product": { "name": "vers:unknown/<1.78.1", "product_id": "CSAFPID-1345175" } } ], "category": "product_name", "name": "Bouncy Castle" } ], "category": "vendor", "name": "Open Source" }, { "branches": [ { "branches": [ { "category": "product_version_range", "name": "vers:unknown/unknown", "product": { "name": "vers:unknown/unknown", "product_id": "CSAFPID-1330524", "product_identification_helper": { "cpe": "cpe:/a:hitachi:ops_center:-" } } } ], "category": "product_name", "name": "Hitachi Ops Center" } ], "category": "vendor", "name": "Hitachi" }, { "branches": [ { "branches": [ { "category": "product_version_range", "name": "vers:unknown/7.4", "product": { "name": "vers:unknown/7.4", "product_id": "CSAFPID-214568", "product_identification_helper": { "cpe": "cpe:2.3:a:redhat:jboss_enterprise_application_platform:7.4:*:*:*:*:*:*:*" } } } ], "category": "product_name", "name": "Jboss Enterprise Application Platform" }, { "branches": [ { "category": "product_version_range", "name": "vers:unknown/unknown", "product": { "name": "vers:unknown/unknown", "product_id": "CSAFPID-1317175", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:-" } } } ], "category": "product_name", "name": "Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version_range", "name": "vers:unknown/7.12", "product": { "name": "vers:unknown/7.12", "product_id": "CSAFPID-849243", "product_identification_helper": { "cpe": "cpe:2.3:a:redhat:amq_broker:7.12:*:*:*:*:*:*:*" } } } ], "category": "product_name", "name": "amq_broker" }, { "branches": [ { "category": "product_version_range", "name": "vers:unknown/4.4.1", "product": { "name": "vers:unknown/4.4.1", "product_id": "CSAFPID-1020049", "product_identification_helper": { "cpe": "cpe:2.3:a:redhat:apache_camel_spring_boot:4.4.1:*:*:*:*:*:*:*" } } } ], "category": "product_name", "name": "apache_camel_spring_boot" }, { "branches": [ { "category": "product_version_range", "name": "vers:unknown/3", "product": { "name": "vers:unknown/3", "product_id": "CSAFPID-352876", "product_identification_helper": { "cpe": "cpe:2.3:a:redhat:camel_quarkus:3:*:*:*:*:*:*:*" } } } ], "category": "product_name", "name": "camel_quarkus" }, { "branches": [ { "category": "product_version_range", "name": "vers:unknown/3.8", "product": { "name": "vers:unknown/3.8", "product_id": "CSAFPID-1052941", "product_identification_helper": { "cpe": "cpe:2.3:a:redhat:quarkus:3.8:*:el8:*:*:*:*:*" } } } ], "category": "product_name", "name": "quarkus" } ], "category": "vendor", "name": "Red Hat" }, { "branches": [ { "branches": [ { "branches": [ { "category": "product_version_range", "name": "vers:oracle/7.6.0.0.0", "product": { "name": "vers:oracle/7.6.0.0.0", "product_id": "CSAFPID-1839853", "product_identification_helper": { "cpe": "cpe:2.3:a:oracle:business_intelligence:7.6.0.0.0:*:*:*:enterprise:*:*:*" } } } ], "category": "product_name", "name": "Oracle Business Intelligence Enterprise Edition" } ], "category": "product_family", "name": "Oracle Analytics" }, { "branches": [ { "branches": [ { "category": "product_version_range", "name": "vers:oracle/>=6.1.1|<=7.0.0", "product": { "name": "vers:oracle/>=6.1.1|<=7.0.0", "product_id": "CSAFPID-6212729", "product_identification_helper": { "cpe": "cpe:2.3:a:oracle:communications_unified_assurance:6.1.1-7.0.0:*:*:*:*:*:*:*" } } } ], "category": "product_name", "name": "Oracle Communications Unified Assurance" } ], "category": "product_family", "name": "Oracle Communications" }, { "branches": [ { "category": "product_version_range", "name": "vers:oracle/12.2.1.4.0", "product": { "name": "vers:oracle/12.2.1.4.0", "product_id": "CSAFPID-1145260", "product_identification_helper": { "cpe": "cpe:2.3:a:oracle:global_lifecycle_management_nextgen_oui_framework:12.2.1.4.0:*:*:*:*:*:*:*" } } } ], "category": "product_name", "name": "Oracle Global Lifecycle Management NextGen OUI Framework" }, { "branches": [ { "category": "product_version_range", "name": "vers:oracle/24.1.0.0.0", "product": { "name": "vers:oracle/24.1.0.0.0", "product_id": "CSAFPID-1145333", "product_identification_helper": { "cpe": "cpe:2.3:a:oracle:utilities_application_framework:24.1.0.0.0:*:*:*:*:*:*:*" } } }, { "category": "product_version_range", "name": "vers:oracle/24.2.0.0.0", "product": { "name": "vers:oracle/24.2.0.0.0", "product_id": "CSAFPID-1145334", "product_identification_helper": { "cpe": "cpe:2.3:a:oracle:utilities_application_framework:24.2.0.0.0:*:*:*:*:*:*:*" } } }, { "category": "product_version_range", "name": "vers:oracle/4.3.0.6.0", "product": { "name": "vers:oracle/4.3.0.6.0", "product_id": "CSAFPID-1145444", "product_identification_helper": { "cpe": "cpe:2.3:a:oracle:utilities_application_framework:4.3.0.6.0:*:*:*:*:*:*:*" } } }, { "category": "product_version_range", "name": "vers:oracle/4.4.0.0.0", "product": { "name": "vers:oracle/4.4.0.0.0", "product_id": "CSAFPID-1144726", "product_identification_helper": { "cpe": "cpe:2.3:a:oracle:utilities_application_framework:4.4.0.0.0:*:*:*:*:*:*:*" } } }, { "category": "product_version_range", "name": "vers:oracle/4.4.0.2.0", "product": { "name": "vers:oracle/4.4.0.2.0", "product_id": "CSAFPID-1144728", "product_identification_helper": { "cpe": "cpe:2.3:a:oracle:utilities_application_framework:4.4.0.2.0:*:*:*:*:*:*:*" } } }, { "category": "product_version_range", "name": "vers:oracle/4.4.0.3.0", "product": { "name": "vers:oracle/4.4.0.3.0", "product_id": "CSAFPID-1144729", "product_identification_helper": { "cpe": "cpe:2.3:a:oracle:utilities_application_framework:4.4.0.3.0:*:*:*:*:*:*:*" } } }, { "category": "product_version_range", "name": "vers:oracle/4.5.0.0.0", "product": { "name": "vers:oracle/4.5.0.0.0", "product_id": "CSAFPID-1144725", "product_identification_helper": { "cpe": "cpe:2.3:a:oracle:utilities_application_framework:4.5.0.0.0:*:*:*:*:*:*:*" } } }, { "category": "product_version_range", "name": "vers:oracle/>=4.5.0.1.1|<=4.5.0.1.3", "product": { "name": "vers:oracle/>=4.5.0.1.1|<=4.5.0.1.3", "product_id": "CSAFPID-1145332", "product_identification_helper": { "cpe": "cpe:2.3:a:oracle:utilities_application_framework:4.5.0.1.1-4.5.0.1.3:*:*:*:*:*:*:*" } } } ], "category": "product_name", "name": "Oracle Utilities Application Framework" }, { "branches": [ { "branches": [ { "category": "product_version_range", "name": "vers:oracle/12.2.1.4.0", "product": { "name": "vers:oracle/12.2.1.4.0", "product_id": "CSAFPID-1839896", "product_identification_helper": { "cpe": "cpe:2.3:a:oracle:weblogic_server:12.2.1.4.0:*:*:*:*:*:*:*" } } }, { "category": "product_version_range", "name": "vers:oracle/14.1.1.0.0", "product": { "name": "vers:oracle/14.1.1.0.0", "product_id": "CSAFPID-1839897", "product_identification_helper": { "cpe": "cpe:2.3:a:oracle:weblogic_server:14.1.1.0.0:*:*:*:*:*:*:*" } } } ], "category": "product_name", "name": "Oracle WebLogic Server" } ], "category": "product_family", "name": "Oracle Fusion Middleware" } ], "category": "vendor", "name": "Oracle" }, { "branches": [ { "branches": [ { "category": "product_version_range", "name": "vers:unknown/<11.6.12", "product": { "name": "vers:unknown/<11.6.12", "product_id": "CSAFPID-1193799" } } ], "category": "product_name", "name": "PDFreactor" } ], "category": "vendor", "name": "RealObjects" }, { "branches": [ { "branches": [ { "category": "product_version_range", "name": "vers:intdot/<4.0.800", "product": { "name": "vers:intdot/<4.0.800", "product_id": "CSAFPID-5771496" } } ], "category": "product_name", "name": "SIDIS Prime" } ], "category": "vendor", "name": "Siemens" }, { "branches": [ { "branches": [ { "category": "product_version_range", "name": "vers:unknown/<5.34.00.16", "product": { "name": "vers:unknown/<5.34.00.16", "product_id": "CSAFPID-5902969" } } ], "category": "product_name", "name": "Secure Connect Gateway" } ], "category": "vendor", "name": "Dell" }, { "branches": [ { "branches": [ { "category": "product_version_range", "name": "vers:unknown/unknown", "product": { "name": "vers:unknown/unknown", "product_id": "CSAFPID-1317174", "product_identification_helper": { "cpe": "cpe:/o:suse:suse_linux:-" } } } ], "category": "product_name", "name": "SuSE Linux" } ], "category": "vendor", "name": "SUSE" }, { "branches": [ { "branches": [ { "category": "product_version_range", "name": "vers:unknown/unknown", "product": { "name": "vers:unknown/unknown", "product_id": "CSAFPID-1330299", "product_identification_helper": { "cpe": "cpe:/o:canonical:ubuntu_linux:-" } } } ], "category": "product_name", "name": "Ubuntu Linux" }, { "branches": [ { "branches": [ { "category": "product_version_range", "name": "vers:unknown/1.49+dfsg-3ubuntu1", "product": { "name": "vers:unknown/1.49+dfsg-3ubuntu1", "product_id": "CSAFPID-6175498", "product_identification_helper": { "purl": "pkg:deb/ubuntu/bouncycastle@1.49%2Bdfsg-3ubuntu1?arch=source&distro=esm-apps/xenial" } } }, { "category": "product_version_range", "name": "vers:unknown/1.51-4ubuntu1", "product": { "name": "vers:unknown/1.51-4ubuntu1", "product_id": "CSAFPID-6175499", "product_identification_helper": { "purl": "pkg:deb/ubuntu/bouncycastle@1.51-4ubuntu1?arch=source&distro=esm-apps/xenial" } } }, { "category": "product_version_range", "name": "vers:unknown/>=0|<1.51-4ubuntu1+esm1", "product": { "name": "vers:unknown/>=0|<1.51-4ubuntu1+esm1", "product_id": "CSAFPID-6236079" } } ], "category": "product_name", "name": "bouncycastle" } ], "category": "product_family", "name": "Ubuntu:Pro:16.04:LTS" }, { "branches": [ { "branches": [ { "category": "product_version_range", "name": "vers:unknown/1.57-1", "product": { "name": "vers:unknown/1.57-1", "product_id": "CSAFPID-6175502", "product_identification_helper": { "purl": "pkg:deb/ubuntu/bouncycastle@1.57-1?arch=source&distro=esm-apps/bionic" } } }, { "category": "product_version_range", "name": "vers:unknown/1.58-1", "product": { "name": "vers:unknown/1.58-1", "product_id": "CSAFPID-6175503", "product_identification_helper": { "purl": "pkg:deb/ubuntu/bouncycastle@1.58-1?arch=source&distro=esm-apps/bionic" } } }, { "category": "product_version_range", "name": "vers:unknown/1.59-1", "product": { "name": "vers:unknown/1.59-1", "product_id": "CSAFPID-6175504", "product_identification_helper": { "purl": "pkg:deb/ubuntu/bouncycastle@1.59-1?arch=source&distro=esm-apps/bionic" } } }, { "category": "product_version_range", "name": "vers:unknown/>=0|<1.59-1ubuntu0.1~esm1", "product": { "name": "vers:unknown/>=0|<1.59-1ubuntu0.1~esm1", "product_id": "CSAFPID-6236080" } } ], "category": "product_name", "name": "bouncycastle" } ], "category": "product_family", "name": "Ubuntu:Pro:18.04:LTS" }, { "branches": [ { "branches": [ { "category": "product_version_range", "name": "vers:unknown/1.61-1", "product": { "name": "vers:unknown/1.61-1", "product_id": "CSAFPID-6175507", "product_identification_helper": { "purl": "pkg:deb/ubuntu/bouncycastle@1.61-1?arch=source&distro=esm-apps/focal" } } }, { "category": "product_version_range", "name": "vers:unknown/>=0|<1.61-1ubuntu0.1~esm1", "product": { "name": "vers:unknown/>=0|<1.61-1ubuntu0.1~esm1", "product_id": "CSAFPID-6236081" } } ], "category": "product_name", "name": "bouncycastle" } ], "category": "product_family", "name": "Ubuntu:Pro:20.04:LTS" }, { "branches": [ { "branches": [ { "category": "product_version_range", "name": "vers:unknown/1.68-2", "product": { "name": "vers:unknown/1.68-2", "product_id": "CSAFPID-6175510", "product_identification_helper": { "purl": "pkg:deb/ubuntu/bouncycastle@1.68-2?arch=source&distro=esm-apps/jammy" } } }, { "category": "product_version_range", "name": "vers:unknown/1.68-4", "product": { "name": "vers:unknown/1.68-4", "product_id": "CSAFPID-6175511", "product_identification_helper": { "purl": "pkg:deb/ubuntu/bouncycastle@1.68-4?arch=source&distro=esm-apps/jammy" } } }, { "category": "product_version_range", "name": "vers:unknown/1.68-5", "product": { "name": "vers:unknown/1.68-5", "product_id": "CSAFPID-6175512", "product_identification_helper": { "purl": "pkg:deb/ubuntu/bouncycastle@1.68-5?arch=source&distro=esm-apps/jammy" } } }, { "category": "product_version_range", "name": "vers:unknown/>=0|<1.68-5ubuntu0.1~esm1", "product": { "name": "vers:unknown/>=0|<1.68-5ubuntu0.1~esm1", "product_id": "CSAFPID-6236082" } } ], "category": "product_name", "name": "bouncycastle" } ], "category": "product_family", "name": "Ubuntu:Pro:22.04:LTS" }, { "branches": [ { "branches": [ { "category": "product_version_range", "name": "vers:unknown/1.72-2", "product": { "name": "vers:unknown/1.72-2", "product_id": "CSAFPID-6175515", "product_identification_helper": { "purl": "pkg:deb/ubuntu/bouncycastle@1.72-2?arch=source&distro=esm-apps/noble" } } }, { "category": "product_version_range", "name": "vers:unknown/1.77-1", "product": { "name": "vers:unknown/1.77-1", "product_id": "CSAFPID-6175516", "product_identification_helper": { "purl": "pkg:deb/ubuntu/bouncycastle@1.77-1?arch=source&distro=esm-apps/noble" } } }, { "category": "product_version_range", "name": "vers:unknown/>=0|<1.77-1ubuntu0.1~esm1", "product": { "name": "vers:unknown/>=0|<1.77-1ubuntu0.1~esm1", "product_id": "CSAFPID-6236083" } } ], "category": "product_name", "name": "bouncycastle" } ], "category": "product_family", "name": "Ubuntu:Pro:24.04:LTS" } ], "category": "vendor", "name": "Ubuntu" }, { "branches": [ { "branches": [ { "category": "product_version_range", "name": "vers:unknown/1.73", "product": { "name": "vers:unknown/1.73", "product_id": "CSAFPID-4823250", "product_identification_helper": { "purl": "pkg:maven/org.bouncycastle/bcprov-jdk14@1.73" } } }, { "category": "product_version_range", "name": "vers:unknown/1.74", "product": { "name": "vers:unknown/1.74", "product_id": "CSAFPID-4823251", "product_identification_helper": { "purl": "pkg:maven/org.bouncycastle/bcprov-jdk14@1.74" } } }, { "category": "product_version_range", "name": "vers:unknown/1.75", "product": { "name": "vers:unknown/1.75", "product_id": "CSAFPID-4823252", "product_identification_helper": { "purl": "pkg:maven/org.bouncycastle/bcprov-jdk14@1.75" } } }, { "category": "product_version_range", "name": "vers:unknown/1.76", "product": { "name": "vers:unknown/1.76", "product_id": "CSAFPID-4823253", "product_identification_helper": { "purl": "pkg:maven/org.bouncycastle/bcprov-jdk14@1.76" } } }, { "category": "product_version_range", "name": "vers:unknown/1.77", "product": { "name": "vers:unknown/1.77", "product_id": "CSAFPID-4823254", "product_identification_helper": { "purl": "pkg:maven/org.bouncycastle/bcprov-jdk14@1.77" } } }, { "category": "product_version_range", "name": "vers:unknown/>=1.73|<1.78", "product": { "name": "vers:unknown/>=1.73|<1.78", "product_id": "CSAFPID-4826114" } } ], "category": "product_name", "name": "bcprov-jdk14" }, { "branches": [ { "category": "product_version_range", "name": "vers:unknown/1.73", "product": { "name": "vers:unknown/1.73", "product_id": "CSAFPID-4823215", "product_identification_helper": { "purl": "pkg:maven/org.bouncycastle/bcprov-jdk15to18@1.73" } } }, { "category": "product_version_range", "name": "vers:unknown/1.74", "product": { "name": "vers:unknown/1.74", "product_id": "CSAFPID-4823216", "product_identification_helper": { "purl": "pkg:maven/org.bouncycastle/bcprov-jdk15to18@1.74" } } }, { "category": "product_version_range", "name": "vers:unknown/1.75", "product": { "name": "vers:unknown/1.75", "product_id": "CSAFPID-4823217", "product_identification_helper": { "purl": "pkg:maven/org.bouncycastle/bcprov-jdk15to18@1.75" } } }, { "category": "product_version_range", "name": "vers:unknown/1.76", "product": { "name": "vers:unknown/1.76", "product_id": "CSAFPID-4823218", "product_identification_helper": { "purl": "pkg:maven/org.bouncycastle/bcprov-jdk15to18@1.76" } } }, { "category": "product_version_range", "name": "vers:unknown/1.77", "product": { "name": "vers:unknown/1.77", "product_id": "CSAFPID-4823219", "product_identification_helper": { "purl": "pkg:maven/org.bouncycastle/bcprov-jdk15to18@1.77" } } }, { "category": "product_version_range", "name": "vers:unknown/>=1.73|<1.78", "product": { "name": "vers:unknown/>=1.73|<1.78", "product_id": "CSAFPID-4826113" } } ], "category": "product_name", "name": "bcprov-jdk15to18" }, { "branches": [ { "category": "product_version_range", "name": "vers:unknown/1.73", "product": { "name": "vers:unknown/1.73", "product_id": "CSAFPID-4823172", "product_identification_helper": { "purl": "pkg:maven/org.bouncycastle/bcprov-jdk18on@1.73" } } }, { "category": "product_version_range", "name": "vers:unknown/1.74", "product": { "name": "vers:unknown/1.74", "product_id": "CSAFPID-4823173", "product_identification_helper": { "purl": "pkg:maven/org.bouncycastle/bcprov-jdk18on@1.74" } } }, { "category": "product_version_range", "name": "vers:unknown/1.75", "product": { "name": "vers:unknown/1.75", "product_id": "CSAFPID-4823174", "product_identification_helper": { "purl": "pkg:maven/org.bouncycastle/bcprov-jdk18on@1.75" } } }, { "category": "product_version_range", "name": "vers:unknown/1.76", "product": { "name": "vers:unknown/1.76", "product_id": "CSAFPID-4823175", "product_identification_helper": { "purl": "pkg:maven/org.bouncycastle/bcprov-jdk18on@1.76" } } }, { "category": "product_version_range", "name": "vers:unknown/1.77", "product": { "name": "vers:unknown/1.77", "product_id": "CSAFPID-4823176", "product_identification_helper": { "purl": "pkg:maven/org.bouncycastle/bcprov-jdk18on@1.77" } } }, { "category": "product_version_range", "name": "vers:unknown/>=1.73|<1.78", "product": { "name": "vers:unknown/>=1.73|<1.78", "product_id": "CSAFPID-4826112" } } ], "category": "product_name", "name": "bcprov-jdk18on" }, { "branches": [ { "category": "product_version_range", "name": "vers:unknown/1.73", "product": { "name": "vers:unknown/1.73", "product_id": "CSAFPID-4823276", "product_identification_helper": { "purl": "pkg:maven/org.bouncycastle/bctls-jdk14@1.73" } } }, { "category": "product_version_range", "name": "vers:unknown/1.74", "product": { "name": "vers:unknown/1.74", "product_id": "CSAFPID-4823277", "product_identification_helper": { "purl": "pkg:maven/org.bouncycastle/bctls-jdk14@1.74" } } }, { "category": "product_version_range", "name": "vers:unknown/1.75", "product": { "name": "vers:unknown/1.75", "product_id": "CSAFPID-4823278", "product_identification_helper": { "purl": "pkg:maven/org.bouncycastle/bctls-jdk14@1.75" } } }, { "category": "product_version_range", "name": "vers:unknown/1.76", "product": { "name": "vers:unknown/1.76", "product_id": "CSAFPID-4823279", "product_identification_helper": { "purl": "pkg:maven/org.bouncycastle/bctls-jdk14@1.76" } } }, { "category": "product_version_range", "name": "vers:unknown/1.77", "product": { "name": "vers:unknown/1.77", "product_id": "CSAFPID-4823280", "product_identification_helper": { "purl": "pkg:maven/org.bouncycastle/bctls-jdk14@1.77" } } }, { "category": "product_version_range", "name": "vers:unknown/>=1.73|<1.78", "product": { "name": "vers:unknown/>=1.73|<1.78", "product_id": "CSAFPID-4826116" } } ], "category": "product_name", "name": "bctls-jdk14" }, { "branches": [ { "category": "product_version_range", "name": "vers:unknown/1.73", "product": { "name": "vers:unknown/1.73", "product_id": "CSAFPID-4823292", "product_identification_helper": { "purl": "pkg:maven/org.bouncycastle/bctls-jdk15to18@1.73" } } }, { "category": "product_version_range", "name": "vers:unknown/1.74", "product": { "name": "vers:unknown/1.74", "product_id": "CSAFPID-4823293", "product_identification_helper": { "purl": "pkg:maven/org.bouncycastle/bctls-jdk15to18@1.74" } } }, { "category": "product_version_range", "name": "vers:unknown/1.75", "product": { "name": "vers:unknown/1.75", "product_id": "CSAFPID-4823294", "product_identification_helper": { "purl": "pkg:maven/org.bouncycastle/bctls-jdk15to18@1.75" } } }, { "category": "product_version_range", "name": "vers:unknown/1.76", "product": { "name": "vers:unknown/1.76", "product_id": "CSAFPID-4823295", "product_identification_helper": { "purl": "pkg:maven/org.bouncycastle/bctls-jdk15to18@1.76" } } }, { "category": "product_version_range", "name": "vers:unknown/1.77", "product": { "name": "vers:unknown/1.77", "product_id": "CSAFPID-4823296", "product_identification_helper": { "purl": "pkg:maven/org.bouncycastle/bctls-jdk15to18@1.77" } } }, { "category": "product_version_range", "name": "vers:unknown/>=1.73|<1.78", "product": { "name": "vers:unknown/>=1.73|<1.78", "product_id": "CSAFPID-4826117" } } ], "category": "product_name", "name": "bctls-jdk15to18" }, { "branches": [ { "category": "product_version_range", "name": "vers:unknown/1.73", "product": { "name": "vers:unknown/1.73", "product_id": "CSAFPID-4823259", "product_identification_helper": { "purl": "pkg:maven/org.bouncycastle/bctls-jdk18on@1.73" } } }, { "category": "product_version_range", "name": "vers:unknown/1.74", "product": { "name": "vers:unknown/1.74", "product_id": "CSAFPID-4823260", "product_identification_helper": { "purl": "pkg:maven/org.bouncycastle/bctls-jdk18on@1.74" } } }, { "category": "product_version_range", "name": "vers:unknown/1.75", "product": { "name": "vers:unknown/1.75", "product_id": "CSAFPID-4823261", "product_identification_helper": { "purl": "pkg:maven/org.bouncycastle/bctls-jdk18on@1.75" } } }, { "category": "product_version_range", "name": "vers:unknown/1.76", "product": { "name": "vers:unknown/1.76", "product_id": "CSAFPID-4823262", "product_identification_helper": { "purl": "pkg:maven/org.bouncycastle/bctls-jdk18on@1.76" } } }, { "category": "product_version_range", "name": "vers:unknown/1.77", "product": { "name": "vers:unknown/1.77", "product_id": "CSAFPID-4823263", "product_identification_helper": { "purl": "pkg:maven/org.bouncycastle/bctls-jdk18on@1.77" } } }, { "category": "product_version_range", "name": "vers:unknown/>=1.73|<1.78", "product": { "name": "vers:unknown/>=1.73|<1.78", "product_id": "CSAFPID-4826115" } } ], "category": "product_name", "name": "bctls-jdk18on" } ], "category": "vendor", "name": "org.bouncycastle" }, { "branches": [ { "branches": [ { "branches": [ { "category": "product_version_range", "name": "vers:deb/unknown", "product": { "name": "vers:deb/unknown", "product_id": "CSAFPID-1390942" } } ], "category": "product_name", "name": "bouncycastle" } ], "category": "product_family", "name": "bookworm" }, { "branches": [ { "branches": [ { "category": "product_version_range", "name": "vers:deb/unknown", "product": { "name": "vers:deb/unknown", "product_id": "CSAFPID-1390943" } } ], "category": "product_name", "name": "bouncycastle" } ], "category": "product_family", "name": "bullseye" } ], "category": "vendor", "name": "Debian" }, { "branches": [ { "branches": [ { "category": "product_version_range", "name": "vers:unknown/<1.78", "product": { "name": "vers:unknown/<1.78", "product_id": "CSAFPID-5709319", "product_identification_helper": { "cpe": "cpe:2.3:a:bouncycastle:legion-of-the-bouncy-castle-java-crytography-api:*:*:*:*:*:*:*:*" } } } ], "category": "product_name", "name": "legion-of-the-bouncy-castle-java-crytography-api" } ], "category": "vendor", "name": "Bouncy Castle" }, { "branches": [ { "branches": [ { "category": "product_version_range", "name": "vers:unknown/*", "product": { "name": "vers:unknown/*", "product_id": "CSAFPID-1082172", "product_identification_helper": { "cpe": "cpe:2.3:a:sos_gmbh:sos_gmbh_jobscheduler__2.5.10:*:*:*:*:*:*:*:*" } } } ], "category": "product_name", "name": "sos_gmbh_jobscheduler__2.5.10" }, { "branches": [ { "category": "product_version_range", "name": "vers:unknown/*", "product": { "name": "vers:unknown/*", "product_id": "CSAFPID-1082173", "product_identification_helper": { "cpe": "cpe:2.3:a:sos_gmbh:sos_gmbh_jobscheduler__2.6.7:*:*:*:*:*:*:*:*" } } } ], "category": "product_name", "name": "sos_gmbh_jobscheduler__2.6.7" } ], "category": "vendor", "name": "sos_gmbh" } ] }, "vulnerabilities": [ { "cve": "CVE-2024-30172", "cwe": { "id": "CWE-835", "name": "Loop with Unreachable Exit Condition ('Infinite Loop')" }, "notes": [ { "category": "description", "text": "The Bouncy Castle Crypto Package For Java is vulnerable to a denial of service, caused by an infinite loop in the Ed25519 verification code. By persuading a victim to use a specially crafted signature and public key, a remote attacker could exploit this vulnerability to cause a denial of service condition.", "title": "ibm - https://exchange.xforce.ibmcloud.com/vulnerabilities/290103" }, { "category": "description", "text": "An issue was discovered in Bouncy Castle Java Cryptography APIs before 1.78. An Ed25519 verification code infinite loop can occur via a crafted signature and public key.", "title": "cveprojectv5 - https://www.cve.org/CVERecord?id=CVE-2024-30172" }, { "category": "description", "text": "An issue was discovered in Bouncy Castle Java Cryptography APIs before 1.78. An Ed25519 verification code infinite loop can occur via a crafted signature and public key.", "title": "nvd - https://nvd.nist.gov/vuln/detail/CVE-2024-30172" }, { "category": "description", "text": "Multiple NetApp products incorporate Bouncy Castle. Bouncy Castle Java Cryptography APIs prior to 1.78 are susceptible to vulnerabilities which when successfully exploited could lead to addition or modification of data or Denial of Service (DoS).", "title": "netapp - https://security.netapp.com/advisory/ntap-20240614-0007/" }, { "category": "description", "text": "An issue was discovered in Bouncy Castle Java Cryptography APIs before 1.78. An Ed25519 verification code infinite loop can occur via a crafted signature and public key.", "title": "github - https://github.com/advisories/GHSA-m44j-cfrm-g8qc" }, { "category": "description", "text": "A flaw was found in the Bouncy Castle Java Cryptography APIs. Affected versions of this package are vulnerable to an Infinite loop issue in ED25519 verification in the ScalarUtil class. This flaw allows an attacker to send a malicious signature and public key to trigger a denial of service.", "title": "redhat - https://access.redhat.com/errata/RHSA-2024:4271" }, { "category": "description", "text": "A flaw was found in the Bouncy Castle Java Cryptography APIs. Affected versions of this package are vulnerable to an Infinite loop issue in ED25519 verification in the ScalarUtil class. This flaw allows an attacker to send a malicious signature and public key to trigger a denial of service.", "title": "redhat - https://access.redhat.com/errata/RHSA-2024:4505" }, { "category": "description", "text": "A flaw was found in the Bouncy Castle Java Cryptography APIs. Affected versions of this package are vulnerable to an Infinite loop issue in ED25519 verification in the ScalarUtil class. This flaw allows an attacker to send a malicious signature and public key to trigger a denial of service.", "title": "redhat - https://access.redhat.com/errata/RHSA-2024:4326" }, { "category": "description", "text": "Vulnerability in the Oracle Utilities Application Framework product of Oracle Utilities Applications (component: General (Bouncy Castle Java Library)). Supported versions that are affected are 4.3.0.6.0, 4.4.0.0.0, 4.4.0.2.0, 4.4.0.3.0, 4.5.0.0.0, 4.5.0.1.1-4.5.0.1.3, 24.1.0.0.0 and 24.2.0.0.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTPS to compromise Oracle Utilities Application Framework. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of Oracle Utilities Application Framework. CVSS 3.1 Base Score 7.5 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H).", "title": "oracle - https://www.oracle.com/docs/tech/security-alerts/cpujul2024csaf.json" }, { "category": "description", "text": "A flaw was found in the Bouncy Castle Java Cryptography APIs. Affected versions of this package are vulnerable to an Infinite loop issue in ED25519 verification in the ScalarUtil class. This flaw allows an attacker to send a malicious signature and public key to trigger a denial of service.", "title": "redhat - https://access.redhat.com/errata/RHSA-2024:4884" }, { "category": "description", "text": "A flaw was found in the Bouncy Castle Java Cryptography APIs. Affected versions of this package are vulnerable to an Infinite loop issue in ED25519 verification in the ScalarUtil class. This flaw allows an attacker to send a malicious signature and public key to trigger a denial of service.", "title": "redhat - https://access.redhat.com/errata/RHSA-2024:5147" }, { "category": "description", "text": "A flaw was found in the Bouncy Castle Java Cryptography APIs. Affected versions of this package are vulnerable to an Infinite loop issue in ED25519 verification in the ScalarUtil class. This flaw allows an attacker to send a malicious signature and public key to trigger a denial of service.", "title": "redhat - https://access.redhat.com/errata/RHSA-2024:5145" }, { "category": "description", "text": "A flaw was found in the Bouncy Castle Java Cryptography APIs. Affected versions of this package are vulnerable to an Infinite loop issue in ED25519 verification in the ScalarUtil class. This flaw allows an attacker to send a malicious signature and public key to trigger a denial of service.", "title": "redhat - https://access.redhat.com/errata/RHSA-2024:5144" }, { "category": "description", "text": "A flaw was found in the Bouncy Castle Java Cryptography APIs. Affected versions of this package are vulnerable to an Infinite loop issue in ED25519 verification in the ScalarUtil class. This flaw allows an attacker to send a malicious signature and public key to trigger a denial of service.", "title": "redhat - https://access.redhat.com/errata/RHSA-2024:5143" }, { "category": "description", "text": "A flaw was found in the Bouncy Castle Java Cryptography APIs. Affected versions of this package are vulnerable to an Infinite loop issue in ED25519 verification in the ScalarUtil class. This flaw allows an attacker to send a malicious signature and public key to trigger a denial of service.", "title": "redhat - https://access.redhat.com/errata/RHSA-2024:5482" }, { "category": "description", "text": "A flaw was found in the Bouncy Castle Java Cryptography APIs. Affected versions of this package are vulnerable to an Infinite loop issue in ED25519 verification in the ScalarUtil class. This flaw allows an attacker to send a malicious signature and public key to trigger a denial of service.", "title": "redhat - https://access.redhat.com/errata/RHSA-2024:5481" }, { "category": "description", "text": "A flaw was found in the Bouncy Castle Java Cryptography APIs. Affected versions of this package are vulnerable to an Infinite loop issue in ED25519 verification in the ScalarUtil class. This flaw allows an attacker to send a malicious signature and public key to trigger a denial of service.", "title": "redhat - https://access.redhat.com/errata/RHSA-2024:5479" }, { "category": "description", "text": "Es bestehen mehrere Schwachstellen im JobScheduler der SOS GmbH. Diese Fehler werden durch den unsachgemäßen Umgang mit manipulierten F2m-Parametern und der Ed25519-Signaturprüfung in den Bouncy Castle-Bibliotheken verursacht, was zu einer Endlosschleife oder zu einer übermäßigen CPU-Auslastung führen kann. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um einen Denial-of-Service-Zustand zu erzeugen.", "title": "certbundde - https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-1912.json" }, { "category": "description", "text": "An issue was discovered in Bouncy Castle Java Cryptography APIs before 1.78. An Ed25519 verification code infinite loop can occur via a crafted signature and public key.", "title": "debian - https://security-tracker.debian.org/tracker/CVE-2024-30172" }, { "category": "description", "text": "Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Centralized Thirdparty Jars (Bouncy Castle Java Library)). Supported versions that are affected are 12.2.1.4.0 and 14.1.1.0.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTPS to compromise Oracle WebLogic Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of Oracle WebLogic Server. CVSS 3.1 Base Score 7.5 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H).", "title": "oracle - https://www.oracle.com/docs/tech/security-alerts/cpujan2025csaf.json" }, { "category": "description", "text": "Vulnerability in the Oracle Business Intelligence Enterprise Edition product of Oracle Analytics (component: Platform Security (Bouncy Castle Java Library)). The supported version that is affected is 7.6.0.0.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Business Intelligence Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of Oracle Business Intelligence Enterprise Edition. CVSS 3.1 Base Score 7.5 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H).", "title": "oracle - https://www.oracle.com/docs/tech/security-alerts/cpuapr2025csaf.json" }, { "category": "description", "text": "Bouncy Castle Java Cryptography APIs prior to 1.78 are susceptible to vulnerabilities which when successfully exploited could lead to addition or modification of data or Denial of Service (DoS).", "title": "netapp - https://security.netapp.com/advisory/ntap-20240614-0007" }, { "category": "description", "text": "An issue was discovered in Bouncy Castle Java Cryptography APIs starting in 1.73 and before 1.78. An Ed25519 verification code infinite loop can occur via a crafted signature and public key.", "title": "osv - https://www.googleapis.com/download/storage/v1/b/osv-vulnerabilities/o/NuGet%2FGHSA-m44j-cfrm-g8qc.json?alt=media" }, { "category": "description", "text": "An issue was discovered in Bouncy Castle Java Cryptography APIs starting in 1.73 and before 1.78. An Ed25519 verification code infinite loop can occur via a crafted signature and public key.", "title": "osv - https://www.googleapis.com/download/storage/v1/b/osv-vulnerabilities/o/Maven%2FGHSA-m44j-cfrm-g8qc.json?alt=media" }, { "category": "description", "text": "An issue was discovered in Bouncy Castle Java Cryptography APIs before 1.78. An Ed25519 verification code infinite loop can occur via a crafted signature and public key.", "title": "siemens - https://cert-portal.siemens.com/productcert/csaf/ssa-485750.json" }, { "category": "description", "text": "An issue was discovered in Bouncy Castle Java Cryptography APIs before 1.78. An Ed25519 verification code infinite loop can occur via a crafted signature and public key.", "title": "nvd - https://services.nvd.nist.gov/rest/json/cves/2.0?cveId=CVE-2024-30172" }, { "category": "description", "text": "Vulnerability in the Oracle Communications Unified Assurance product of Oracle Communications (component: Core (Netty)). Supported versions that are affected are 6.1.1-7.0.0. Easily exploitable vulnerability allows high privileged attacker with network access via HTTP to compromise Oracle Communications Unified Assurance. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of Oracle Communications Unified Assurance.", "title": "oracle - https://www.oracle.com/docs/tech/security-alerts/cpuapr2026csaf.json" }, { "category": "description", "text": "It was discovered that Bouncy Castle did not sanitize user input when\ninserting it into an LDAP search filter. An attacker could possibly use\nthis issue to perform an LDAP injection attack. This issue only affected\nUbuntu 16.04 LTS, Ubuntu 18.04 LTS, Ubuntu 20.04 LTS, and Ubuntu 22.04 LTS.\n(CVE-2023-33201)\n\nIt was discovered that Bouncy Castle incorrectly handled specially crafted\nF2m parameters in the ECCurve algorithm. An attacker could possibly use\nthis issue to cause Bouncy Castle to use excessive resources, leading to a\ndenial of service. This issue only affected Ubuntu 18.04 LTS, Ubuntu 20.04\nLTS, Ubuntu 22.04 LTS, and Ubuntu 24.04 LTS. (CVE-2024-29857)\n\nIt was discovered that Bouncy Castle leaked timing information when\nhandling exceptions during an RSA handshake. An attacker could possibly use\nthis issue to obtain sensitive information. This issue only affected Ubuntu\n18.04 LTS, Ubuntu 20.04 LTS, Ubuntu 22.04 LTS, and Ubuntu 24.04 LTS.\n(CVE-2024-30171)\n\nIt was discovered that Bouncy Castle incorrectly handled endpoint\nidentification with an SSL socket enabled without an explicit hostname. An\nattacker could possibly use this issue to perform a DNS poisoning attack.\nThis issue only affected Ubuntu 20.04 LTS, Ubuntu 22.04 LTS, and Ubuntu\n24.04 LTS. (CVE-2024-34447)\n\nBing Shi discovered that Bouncy Castle incorrectly handled resource memory\nallocation. An attacker could possibly use this issue to cause Bouncy\nCastle to use excessive resources, leading to a denial of service. This\nissue only affected Ubuntu 24.04 LTS. (CVE-2025-8916)", "title": "osv - https://www.googleapis.com/download/storage/v1/b/osv-vulnerabilities/o/Ubuntu%2FUSN-8108-1.json?alt=media" }, { "category": "other", "text": "0.00094", "title": "EPSS" }, { "category": "other", "text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N", "title": "CVSSV4" }, { "category": "other", "text": "6.9", "title": "CVSSV4 base score" }, { "category": "other", "text": "7.6", "title": "NCSC Score" }, { "category": "other", "text": "Is related to a product by vendor Siemens, Is related to (a version of) an uncommon product, There is cvss data available from source Siemens, There is cvss data available from source Oracle, VENDOR FIX as product remediation category, There is product data available from source Oracle, There is product data available from source Certbundde", "title": "NCSC Score top increasing factors" }, { "category": "details", "text": "Severity: 3\n", "title": "Vendor assessment" }, { "category": "details", "text": "Severity: 3\n", "title": "Vendor assessment" } ], "product_status": { "fixed": [ "CSAFPID-1932428" ], "known_affected": [ "CSAFPID-849243", "CSAFPID-352876", "CSAFPID-1052941", "CSAFPID-1020049", "CSAFPID-214568", "CSAFPID-1082172", "CSAFPID-1082173", "CSAFPID-1144725", "CSAFPID-1144726", "CSAFPID-1144728", "CSAFPID-1144729", "CSAFPID-1145260", "CSAFPID-1145332", "CSAFPID-1145333", "CSAFPID-1145334", "CSAFPID-1145444", "CSAFPID-7924", "CSAFPID-7925", "CSAFPID-7926", "CSAFPID-7927", "CSAFPID-7928", "CSAFPID-7929", "CSAFPID-7930", "CSAFPID-7933", "CSAFPID-109898", "CSAFPID-123198", "CSAFPID-123199", "CSAFPID-123212", "CSAFPID-123217", "CSAFPID-123218", "CSAFPID-123219", "CSAFPID-129468", "CSAFPID-129498", "CSAFPID-129505", "CSAFPID-129821", "CSAFPID-129834", "CSAFPID-185963", "CSAFPID-1190586", "CSAFPID-1251132", "CSAFPID-1251133", "CSAFPID-1251134", "CSAFPID-1251135", "CSAFPID-1251136", "CSAFPID-1251137", "CSAFPID-1251138", "CSAFPID-1251145", "CSAFPID-1251146", "CSAFPID-1251149", "CSAFPID-1251153", "CSAFPID-1251160", "CSAFPID-1251161", "CSAFPID-1251162", "CSAFPID-1251165", "CSAFPID-1251166", "CSAFPID-1251167", "CSAFPID-1251168", "CSAFPID-1251169", "CSAFPID-1251170", "CSAFPID-1251171", "CSAFPID-1251172", "CSAFPID-1251174", "CSAFPID-1251175", "CSAFPID-1251176", "CSAFPID-1251177", "CSAFPID-1251178", "CSAFPID-1251179", "CSAFPID-1251180", "CSAFPID-1251182", "CSAFPID-1251184", "CSAFPID-1251185", "CSAFPID-1251186", "CSAFPID-1251187", "CSAFPID-1251188", "CSAFPID-1251189", "CSAFPID-1251194", "CSAFPID-1251195", "CSAFPID-1346529", "CSAFPID-1341597", "CSAFPID-1341598", "CSAFPID-1341599", "CSAFPID-1341600", "CSAFPID-165054", "CSAFPID-1190644", "CSAFPID-1193799", "CSAFPID-1244745", "CSAFPID-1244746", "CSAFPID-1317174", "CSAFPID-1317175", "CSAFPID-1337808", "CSAFPID-1341594", "CSAFPID-1345174", "CSAFPID-1345175", "CSAFPID-1345176", "CSAFPID-1345177", "CSAFPID-1345178", "CSAFPID-1345179", "CSAFPID-1345180", "CSAFPID-1345181", "CSAFPID-1390942", "CSAFPID-1390943", "CSAFPID-1330514", "CSAFPID-1429889", "CSAFPID-1429890", "CSAFPID-1429891", "CSAFPID-1209056", "CSAFPID-1209057", "CSAFPID-1209059", "CSAFPID-1239319", "CSAFPID-1442732", "CSAFPID-1442746", "CSAFPID-1330524", "CSAFPID-1839896", "CSAFPID-1839897", "CSAFPID-1444325", "CSAFPID-1793055", "CSAFPID-2530877", "CSAFPID-2530878", "CSAFPID-2530879", "CSAFPID-2530880", "CSAFPID-1265066", "CSAFPID-1839853", "CSAFPID-1600334", "CSAFPID-1600335", "CSAFPID-1600336", "CSAFPID-4823172", "CSAFPID-4823173", "CSAFPID-4823174", "CSAFPID-4823175", "CSAFPID-4823176", "CSAFPID-4823215", "CSAFPID-4823216", "CSAFPID-4823217", "CSAFPID-4823218", "CSAFPID-4823219", "CSAFPID-4823250", "CSAFPID-4823251", "CSAFPID-4823252", "CSAFPID-4823253", "CSAFPID-4823254", "CSAFPID-4823259", "CSAFPID-4823260", "CSAFPID-4823261", "CSAFPID-4823262", "CSAFPID-4823263", "CSAFPID-4823276", "CSAFPID-4823277", "CSAFPID-4823278", "CSAFPID-4823279", "CSAFPID-4823280", "CSAFPID-4823292", "CSAFPID-4823293", "CSAFPID-4823294", "CSAFPID-4823295", "CSAFPID-4823296", "CSAFPID-4826112", "CSAFPID-4826113", "CSAFPID-4826114", "CSAFPID-4826115", "CSAFPID-4826116", "CSAFPID-4826117", "CSAFPID-5008496", "CSAFPID-5694347", "CSAFPID-5709319", "CSAFPID-5771496", "CSAFPID-1330299", "CSAFPID-5902969", "CSAFPID-6212729", "CSAFPID-6175498", "CSAFPID-6175499", "CSAFPID-6175502", "CSAFPID-6175503", "CSAFPID-6175504", "CSAFPID-6175507", "CSAFPID-6175510", "CSAFPID-6175511", "CSAFPID-6175512", "CSAFPID-6175515", "CSAFPID-6175516", "CSAFPID-6236079", "CSAFPID-6236080", "CSAFPID-6236081", "CSAFPID-6236082", "CSAFPID-6236083" ], "under_investigation": [ "CSAFPID-1442747" ] }, "references": [ { "category": "external", "summary": "Source - certbundde", "url": "https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-1031.json" }, { "category": "external", "summary": "Source - redhat", "url": "https://access.redhat.com/errata/RHSA-2024:4505" }, { "category": "external", "summary": "Source - nvd", "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-30172" }, { "category": "external", "summary": "Source - redhat", "url": "https://access.redhat.com/errata/RHSA-2024:4271" }, { "category": "external", "summary": "Source - ibm", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/290103" }, { "category": "external", "summary": "Source - cveprojectv5", "url": "https://www.cve.org/CVERecord?id=CVE-2024-30172" }, { "category": "external", "summary": "Source raw - cveprojectv5", "url": "https://raw.githubusercontent.com/CVEProject/cvelistV5/main/cves/2024/30xxx/CVE-2024-30172.json" }, { "category": "external", "summary": "Source - netapp", "url": "https://security.netapp.com/advisory/ntap-20240614-0007/" }, { "category": "external", "summary": "Source - github", "url": "https://github.com/advisories/GHSA-m44j-cfrm-g8qc" }, { "category": "external", "summary": "Source - first", "url": "https://api.first.org/data/v1/epss?cve=CVE-2024-30172" }, { "category": "external", "summary": "Source raw - first", "url": "https://api.first.org/data/v1/epss?limit=10000&offset=30000" }, { "category": "external", "summary": "Source - redhat", "url": "https://access.redhat.com/errata/RHSA-2024:4326" }, { "category": "external", "summary": "Source - oracle", "url": "https://www.oracle.com/docs/tech/security-alerts/cpujul2024csaf.json" }, { "category": "external", "summary": "Source - redhat", "url": "https://access.redhat.com/errata/RHSA-2024:4884" }, { "category": "external", "summary": "Source - ncscinternal", "url": "https://www.ncsc.nl/internal/CVE-2024-30172" }, { "category": "external", "summary": "Source - redhat", "url": "https://access.redhat.com/errata/RHSA-2024:5147" }, { "category": "external", "summary": "Source - redhat", "url": "https://access.redhat.com/errata/RHSA-2024:5145" }, { "category": "external", "summary": "Source - redhat", "url": "https://access.redhat.com/errata/RHSA-2024:5144" }, { "category": "external", "summary": "Source - redhat", "url": "https://access.redhat.com/errata/RHSA-2024:5143" }, { "category": "external", "summary": "Source - ncscclear", "url": "https://advisories.ncsc.nl/advisory?id=NCSC-2024-0466" }, { "category": "external", "summary": "Source - redhat", "url": "https://access.redhat.com/errata/RHSA-2024:5482" }, { "category": "external", "summary": "Source - redhat", "url": "https://access.redhat.com/errata/RHSA-2024:5481" }, { "category": "external", "summary": "Source - redhat", "url": "https://access.redhat.com/errata/RHSA-2024:5479" }, { "category": "external", "summary": "Source - certbundde", "url": "https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-1912.json" }, { "category": "external", "summary": "Source - certbundde", "url": "https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-3663.json" }, { "category": "external", "summary": "Source - first", "url": "https://api.first.org/data/v1/epss?limit=10000&offset=10000" }, { "category": "external", "summary": "Source - certbundde", "url": "https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-3508.json" }, { "category": "external", "summary": "Source - debian", "url": "https://security-tracker.debian.org/tracker/CVE-2024-30172" }, { "category": "external", "summary": "Source - oracle", "url": "https://www.oracle.com/docs/tech/security-alerts/cpujan2025csaf.json" }, { "category": "external", "summary": "Source - ncscclear", "url": "https://advisories.ncsc.nl/advisory?id=NCSC-2025-0027" }, { "category": "external", "summary": "Source - oracle", "url": "https://www.oracle.com/docs/tech/security-alerts/cpuapr2025csaf.json" }, { "category": "external", "summary": "Source - ncscclear", "url": "https://advisories.ncsc.nl/advisory?id=NCSC-2025-0129" }, { "category": "external", "summary": "Source - netapp", "url": "https://security.netapp.com/advisory/ntap-20240614-0007" }, { "category": "external", "summary": "Source - osv", "url": "https://www.googleapis.com/download/storage/v1/b/osv-vulnerabilities/o/NuGet%2FGHSA-m44j-cfrm-g8qc.json?alt=media" }, { "category": "external", "summary": "Source - osv", "url": "https://www.googleapis.com/download/storage/v1/b/osv-vulnerabilities/o/Maven%2FGHSA-m44j-cfrm-g8qc.json?alt=media" }, { "category": "external", "summary": "Source - siemens", "url": "https://cert-portal.siemens.com/productcert/csaf/ssa-485750.json" }, { "category": "external", "summary": "Source - ncscclear", "url": "https://advisories.ncsc.nl/advisory?id=NCSC-2026-0079" }, { "category": "external", "summary": "Source - first", "url": "https://api.first.org/data/v1/epss?limit=10000&offset=70000" }, { "category": "external", "summary": "Source - nvd", "url": "https://services.nvd.nist.gov/rest/json/cves/2.0?cveId=CVE-2024-30172" }, { "category": "external", "summary": "Source - first", "url": "https://api.first.org/data/v1/epss?limit=10000&offset=80000" }, { "category": "external", "summary": "Source - oracle", "url": "https://www.oracle.com/docs/tech/security-alerts/cpuapr2026csaf.json" }, { "category": "external", "summary": "Source - osv", "url": "https://www.googleapis.com/download/storage/v1/b/osv-vulnerabilities/o/Ubuntu%2FUSN-8108-1.json?alt=media" }, { "category": "external", "summary": "Source - first", "url": "https://api.first.org/data/v1/epss?limit=10000&offset=90000" }, { "category": "external", "summary": "Reference - cveprojectv5; github; ibm; nvd; osv; redhat", "url": "https://www.bouncycastle.org/latest_releases.html" }, { "category": "external", "summary": "Reference - github; ibm; osv", "url": "https://github.com/bcgit/bc-java/commit/9c165791b68a204678b48ec11e4e579754c2ea49" }, { "category": "external", "summary": "Reference - ibm", "url": "https://github.com/bcgit/bc-java/issues/1599" }, { "category": "external", "summary": "Reference - ibm", "url": "https://www.mend.io/vulnerability-database/CVE-2024-30172" }, { "category": "external", "summary": "Reference - ibm; redhat", "url": "https://www.cve.org/CVERecord?id=CVE-2024-30172" }, { "category": "external", "summary": "Reference - ibm", "url": "https://www.ibm.com/support/pages/node/7155277" }, { "category": "external", "summary": "Reference - cveprojectv5; ibm; nvd", "url": "https://security.netapp.com/advisory/ntap-20240614-0007/" }, { "category": "external", "summary": "Reference - github; netapp; osv; redhat", "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-30172" }, { "category": "external", "summary": "Reference - github; osv", "url": "https://github.com/bcgit/bc-csharp/wiki/CVE%E2%80%902024%E2%80%9030172" }, { "category": "external", "summary": "Reference - github; osv", "url": "https://github.com/bcgit/bc-java/wiki/CVE%E2%80%902024%E2%80%9030172" }, { "category": "external", "summary": "Reference - github; osv", "url": "https://security.netapp.com/advisory/ntap-20240614-0007" }, { "category": "external", "summary": "Reference - ibm", "url": "https://www.ibm.com/support/pages/node/7157668" }, { "category": "external", "summary": "Reference - ibm", "url": "https://www.ibm.com/support/pages/node/7157753" }, { "category": "external", "summary": "Reference - ibm", "url": "https://www.ibm.com/support/pages/node/7158632" }, { "category": "external", "summary": "Reference - certbundde; ibm", "url": "https://www.ibm.com/support/pages/node/7158960" }, { "category": "external", "summary": "Reference - certbundde", "url": "https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-1031.json" }, { "category": "external", "summary": "Reference - certbundde", "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-1031" }, { "category": "external", "summary": "Reference - certbundde", "url": "https://www.bouncycastle.org/latest_releases.html#LATEST" }, { "category": "external", "summary": "Reference - certbundde; redhat", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2279227" }, { "category": "external", "summary": "Reference - certbundde", "url": "https://github.com/advisories/GHSA-4h8f-2wvx-gg5w" }, { "category": "external", "summary": "Reference - certbundde", "url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/message/QZZU3EK7MCVS5TGBQL47TPFRCL6XR25J/" }, { "category": "external", "summary": "Reference - certbundde", "url": "https://www.pdfreactor.com/pdfreactor-11-hotfix-release-11-6-12-now-available/" }, { "category": "external", "summary": "Reference - certbundde", "url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/message/NCEDYUZRBIYFFW6ATWOW33BSWPBY2U52/" }, { "category": "external", "summary": "Reference - ibm", "url": "https://www.ibm.com/support/pages/node/7159143" }, { "category": "external", "summary": "Reference - redhat", "url": "https://access.redhat.com/security/cve/CVE-2024-30172" }, { "category": "external", "summary": "Reference - redhat", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2293025" }, { "category": "external", "summary": "Reference - certbundde; redhat", "url": "https://access.redhat.com/errata/RHSA-2024:4271" }, { "category": "external", "summary": "Reference - redhat", "url": "https://access.redhat.com/security/updates/classification/#important" }, { "category": "external", "summary": "Reference - redhat", "url": "https://access.redhat.com/jbossnetwork/restricted/listSoftware.html?downloadType=distributions&product=jboss.amq.broker&version=7.12.1" }, { "category": "external", "summary": "Reference - redhat", "url": "https://docs.redhat.com/en/documentation/red_hat_amq_broker/7.12" }, { "category": "external", "summary": "Reference - redhat", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2246417" }, { "category": "external", "summary": "Reference - redhat", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276360" }, { "category": "external", "summary": "Reference - redhat", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2293028" }, { "category": "external", "summary": "Reference - redhat", "url": "https://access.redhat.com/security/data/csaf/v2/advisories/2024/rhsa-2024_4271.json" }, { "category": "external", "summary": "Reference - certbundde", "url": "https://access.redhat.com/errata/RHSA-2024:4173" }, { "category": "external", "summary": "Reference - certbundde; ibm", "url": "https://www.ibm.com/support/pages/node/7159714" }, { "category": "external", "summary": "Reference - ibm", "url": "https://www.ibm.com/support/pages/node/7159763" }, { "category": "external", "summary": "Reference - ibm", "url": "https://www.ibm.com/support/pages/node/7159783" }, { "category": "external", "summary": "Reference - ibm", "url": "https://www.ibm.com/support/pages/node/7159824" }, { "category": "external", "summary": "Reference - certbundde; redhat", "url": "https://access.redhat.com/errata/RHSA-2024:4505" }, { "category": "external", "summary": "Reference - redhat", "url": "https://access.redhat.com/security/updates/classification/#moderate" }, { "category": "external", "summary": "Reference - redhat", "url": "https://access.redhat.com/security/cve/CVE-2024-29857" }, { "category": "external", "summary": "Reference - redhat", "url": "https://access.redhat.com/security/cve/CVE-2024-30171" }, { "category": "external", "summary": "Reference - redhat", "url": "https://access.redhat.com/security/data/csaf/v2/advisories/2024/rhsa-2024_4505.json" }, { "category": "external", "summary": "Reference - certbundde; ibm", "url": "https://www.ibm.com/support/pages/node/7160134" }, { "category": "external", "summary": "Reference - certbundde; redhat", "url": "https://access.redhat.com/errata/RHSA-2024:4326" }, { "category": "external", "summary": "Reference - redhat", "url": "https://docs.redhat.com/en/documentation/red_hat_build_of_quarkus/3.8" }, { "category": "external", "summary": "Reference - redhat", "url": "https://access.redhat.com/articles/4966181" }, { "category": "external", "summary": "Reference - redhat", "url": "https://issues.redhat.com/browse/QUARKUS-3540" }, { "category": "external", "summary": "Reference - redhat", "url": "https://issues.redhat.com/browse/QUARKUS-3660" }, { "category": "external", "summary": "Reference - redhat", "url": "https://issues.redhat.com/browse/QUARKUS-4184" }, { "category": "external", "summary": "Reference - redhat", "url": "https://issues.redhat.com/browse/QUARKUS-4318" }, { "category": "external", "summary": "Reference - redhat", "url": "https://issues.redhat.com/browse/QUARKUS-4402" }, { "category": "external", "summary": "Reference - redhat", "url": "https://issues.redhat.com/browse/QUARKUS-4430" }, { "category": "external", "summary": "Reference - redhat", "url": "https://issues.redhat.com/browse/QUARKUS-4431" }, { "category": "external", "summary": "Reference - redhat", "url": "https://issues.redhat.com/browse/QUARKUS-4486" }, { "category": "external", "summary": "Reference - redhat", "url": "https://issues.redhat.com/browse/QUARKUS-4488" }, { "category": "external", "summary": "Reference - redhat", "url": "https://issues.redhat.com/browse/QUARKUS-4489" }, { "category": "external", "summary": "Reference - redhat", "url": "https://issues.redhat.com/browse/QUARKUS-4490" }, { "category": "external", "summary": "Reference - redhat", "url": "https://issues.redhat.com/browse/QUARKUS-4491" }, { "category": "external", "summary": "Reference - redhat", "url": "https://issues.redhat.com/browse/QUARKUS-4492" }, { "category": "external", "summary": "Reference - redhat", "url": "https://issues.redhat.com/browse/QUARKUS-4493" }, { "category": "external", "summary": "Reference - redhat", "url": "https://issues.redhat.com/browse/QUARKUS-4494" }, { "category": "external", "summary": "Reference - redhat", "url": "https://issues.redhat.com/browse/QUARKUS-4495" }, { "category": "external", "summary": "Reference - redhat", "url": "https://issues.redhat.com/browse/QUARKUS-4497" }, { "category": "external", "summary": "Reference - redhat", "url": "https://issues.redhat.com/browse/QUARKUS-4498" }, { "category": "external", "summary": "Reference - redhat", "url": "https://issues.redhat.com/browse/QUARKUS-4499" }, { "category": "external", "summary": "Reference - redhat", "url": "https://issues.redhat.com/browse/QUARKUS-4500" }, { "category": "external", "summary": "Reference - redhat", "url": "https://issues.redhat.com/browse/QUARKUS-4501" }, { "category": "external", "summary": "Reference - redhat", "url": "https://issues.redhat.com/browse/QUARKUS-4502" }, { "category": "external", "summary": "Reference - redhat", "url": "https://issues.redhat.com/browse/QUARKUS-4503" }, { "category": "external", "summary": "Reference - redhat", "url": "https://issues.redhat.com/browse/QUARKUS-4504" }, { "category": "external", "summary": "Reference - redhat", "url": "https://issues.redhat.com/browse/QUARKUS-4505" }, { "category": "external", "summary": "Reference - redhat", "url": "https://issues.redhat.com/browse/QUARKUS-4506" }, { "category": "external", "summary": "Reference - redhat", "url": "https://issues.redhat.com/browse/QUARKUS-4507" }, { "category": "external", "summary": "Reference - redhat", "url": "https://issues.redhat.com/browse/QUARKUS-4508" }, { "category": "external", "summary": "Reference - redhat", "url": "https://issues.redhat.com/browse/QUARKUS-4509" }, { "category": "external", "summary": "Reference - redhat", "url": "https://issues.redhat.com/browse/QUARKUS-4510" }, { "category": "external", "summary": "Reference - redhat", "url": "https://issues.redhat.com/browse/QUARKUS-4511" }, { "category": "external", "summary": "Reference - redhat", "url": "https://issues.redhat.com/browse/QUARKUS-4512" }, { "category": "external", "summary": "Reference - redhat", "url": "https://issues.redhat.com/browse/QUARKUS-4514" }, { "category": "external", "summary": "Reference - redhat", "url": "https://issues.redhat.com/browse/QUARKUS-4515" }, { "category": "external", "summary": "Reference - redhat", "url": "https://issues.redhat.com/browse/QUARKUS-4516" }, { "category": "external", "summary": "Reference - redhat", "url": "https://issues.redhat.com/browse/QUARKUS-4517" }, { "category": "external", "summary": "Reference - redhat", "url": "https://issues.redhat.com/browse/QUARKUS-4518" }, { "category": "external", "summary": "Reference - redhat", "url": "https://issues.redhat.com/browse/QUARKUS-4519" }, { "category": "external", "summary": "Reference - redhat", "url": "https://issues.redhat.com/browse/QUARKUS-4520" }, { "category": "external", "summary": "Reference - redhat", "url": "https://issues.redhat.com/browse/QUARKUS-4522" }, { "category": "external", "summary": "Reference - redhat", "url": "https://issues.redhat.com/browse/QUARKUS-4523" }, { "category": "external", "summary": "Reference - redhat", "url": "https://issues.redhat.com/browse/QUARKUS-4525" }, { "category": "external", "summary": "Reference - redhat", "url": "https://issues.redhat.com/browse/QUARKUS-4526" }, { "category": "external", "summary": "Reference - redhat", "url": "https://issues.redhat.com/browse/QUARKUS-4527" }, { "category": "external", "summary": "Reference - redhat", "url": "https://issues.redhat.com/browse/QUARKUS-4529" }, { "category": "external", "summary": "Reference - redhat", "url": "https://issues.redhat.com/browse/QUARKUS-4530" }, { "category": "external", "summary": "Reference - redhat", "url": "https://issues.redhat.com/browse/QUARKUS-4531" }, { "category": "external", "summary": "Reference - redhat", "url": "https://issues.redhat.com/browse/QUARKUS-4532" }, { "category": "external", "summary": "Reference - redhat", "url": "https://issues.redhat.com/browse/QUARKUS-4533" }, { "category": "external", "summary": "Reference - redhat", "url": "https://issues.redhat.com/browse/QUARKUS-4534" }, { "category": "external", "summary": "Reference - redhat", "url": "https://issues.redhat.com/browse/QUARKUS-4535" }, { "category": "external", "summary": "Reference - redhat", "url": "https://issues.redhat.com/browse/QUARKUS-4536" }, { "category": "external", "summary": "Reference - redhat", "url": "https://issues.redhat.com/browse/QUARKUS-4537" }, { "category": "external", "summary": "Reference - redhat", "url": "https://issues.redhat.com/browse/QUARKUS-4538" }, { "category": "external", "summary": "Reference - redhat", "url": "https://issues.redhat.com/browse/QUARKUS-4539" }, { "category": "external", "summary": "Reference - redhat", "url": "https://issues.redhat.com/browse/QUARKUS-4540" }, { "category": "external", "summary": "Reference - redhat", "url": "https://issues.redhat.com/browse/QUARKUS-4541" }, { "category": "external", "summary": "Reference - redhat", "url": "https://issues.redhat.com/browse/QUARKUS-4542" }, { "category": "external", "summary": "Reference - redhat", "url": "https://issues.redhat.com/browse/QUARKUS-4543" }, { "category": "external", "summary": "Reference - redhat", "url": "https://issues.redhat.com/browse/QUARKUS-4544" }, { "category": "external", "summary": "Reference - redhat", "url": "https://issues.redhat.com/browse/QUARKUS-4545" }, { "category": "external", "summary": "Reference - redhat", "url": "https://issues.redhat.com/browse/QUARKUS-4547" }, { "category": "external", "summary": "Reference - redhat", "url": "https://issues.redhat.com/browse/QUARKUS-4548" }, { "category": "external", "summary": "Reference - redhat", "url": "https://issues.redhat.com/browse/QUARKUS-4549" }, { "category": "external", "summary": "Reference - redhat", "url": "https://issues.redhat.com/browse/QUARKUS-4550" }, { "category": "external", "summary": "Reference - redhat", "url": "https://issues.redhat.com/browse/QUARKUS-4551" }, { "category": "external", "summary": "Reference - redhat", "url": "https://issues.redhat.com/browse/QUARKUS-4552" }, { "category": "external", "summary": "Reference - redhat", "url": "https://issues.redhat.com/browse/QUARKUS-4553" }, { "category": "external", "summary": "Reference - redhat", "url": "https://issues.redhat.com/browse/QUARKUS-4608" }, { "category": "external", "summary": "Reference - redhat", "url": "https://access.redhat.com/security/data/csaf/v2/advisories/2024/rhsa-2024_4326.json" }, { "category": "external", "summary": "Reference - ibm", "url": "https://www.ibm.com/support/pages/node/7160283" }, { "category": "external", "summary": "Reference - oracle", "url": "https://www.oracle.com/security-alerts/cpujul2024.html" }, { "category": "external", "summary": "Reference - oracle", "url": "https://www.oracle.com/docs/tech/security-alerts/cpujul2024csaf.json" }, { "category": "external", "summary": "Reference - ibm", "url": "https://www.ibm.com/support/pages/node/7160498" }, { "category": "external", "summary": "Reference - ibm", "url": "https://www.ibm.com/support/pages/node/7160601" }, { "category": "external", "summary": "Reference - ibm", "url": "https://www.ibm.com/support/pages/node/7161430" }, { "category": "external", "summary": "Reference - certbundde; redhat", "url": "https://access.redhat.com/errata/RHSA-2024:4884" }, { "category": "external", "summary": "Reference - redhat", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2256065" }, { "category": "external", "summary": "Reference - redhat", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2260840" }, { "category": "external", "summary": "Reference - redhat", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2263139" }, { "category": "external", "summary": "Reference - redhat", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2266136" }, { "category": "external", "summary": "Reference - redhat", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2266523" }, { "category": "external", "summary": "Reference - redhat", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2274197" }, { "category": "external", "summary": "Reference - redhat", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2292211" }, { "category": "external", "summary": "Reference - redhat", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2293069" }, { "category": "external", "summary": "Reference - redhat", "url": "https://access.redhat.com/security/data/csaf/v2/advisories/2024/rhsa-2024_4884.json" }, { "category": "external", "summary": "Reference - certbundde; redhat", "url": "https://access.redhat.com/errata/RHSA-2024:5147" }, { "category": "external", "summary": "Reference - redhat", "url": "https://access.redhat.com/articles/7073034" }, { "category": "external", "summary": "Reference - redhat", "url": "https://access.redhat.com/jbossnetwork/restricted/listSoftware.html?product=appplatform&downloadType=securityPatches&version=7.4" }, { "category": "external", "summary": "Reference - redhat", "url": "https://access.redhat.com/documentation/en-us/red_hat_jboss_enterprise_application_platform/7.4/" }, { "category": "external", "summary": "Reference - redhat", "url": "https://access.redhat.com/documentation/en-us/red_hat_jboss_enterprise_application_platform/7.4/html-single/installation_guide/" }, { "category": "external", "summary": "Reference - redhat", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2268277" }, { "category": "external", "summary": "Reference - redhat", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2272907" }, { "category": "external", "summary": "Reference - redhat", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2274437" }, { "category": "external", "summary": "Reference - redhat", "url": "https://issues.redhat.com/browse/JBEAP-26292" }, { "category": "external", "summary": "Reference - redhat", "url": "https://issues.redhat.com/browse/JBEAP-27017" }, { "category": "external", "summary": "Reference - redhat", "url": "https://issues.redhat.com/browse/JBEAP-27056" }, { "category": "external", "summary": "Reference - redhat", "url": "https://issues.redhat.com/browse/JBEAP-27078" }, { "category": "external", "summary": "Reference - redhat", "url": "https://issues.redhat.com/browse/JBEAP-27079" }, { "category": "external", "summary": "Reference - redhat", "url": "https://issues.redhat.com/browse/JBEAP-27101" }, { "category": "external", "summary": "Reference - redhat", "url": "https://issues.redhat.com/browse/JBEAP-27181" }, { "category": "external", "summary": "Reference - redhat", "url": "https://issues.redhat.com/browse/JBEAP-27290" }, { "category": "external", "summary": "Reference - redhat", "url": "https://issues.redhat.com/browse/JBEAP-27352" }, { "category": "external", "summary": "Reference - redhat", "url": "https://issues.redhat.com/browse/JBEAP-27353" }, { "category": "external", "summary": "Reference - redhat", "url": "https://access.redhat.com/security/data/csaf/v2/advisories/2024/rhsa-2024_5147.json" }, { "category": "external", "summary": "Reference - certbundde; redhat", "url": "https://access.redhat.com/errata/RHSA-2024:5145" }, { "category": "external", "summary": "Reference - redhat", "url": "https://issues.redhat.com/browse/JBEAP-26835" }, { "category": "external", "summary": "Reference - redhat", "url": "https://access.redhat.com/security/data/csaf/v2/advisories/2024/rhsa-2024_5145.json" }, { "category": "external", "summary": "Reference - certbundde; redhat", "url": "https://access.redhat.com/errata/RHSA-2024:5144" }, { "category": "external", "summary": "Reference - redhat", "url": "https://issues.redhat.com/browse/JBEAP-26834" }, { "category": "external", "summary": "Reference - redhat", "url": "https://access.redhat.com/security/data/csaf/v2/advisories/2024/rhsa-2024_5144.json" }, { "category": "external", "summary": "Reference - certbundde; redhat", "url": "https://access.redhat.com/errata/RHSA-2024:5143" }, { "category": "external", "summary": "Reference - redhat", "url": "https://issues.redhat.com/browse/JBEAP-26833" }, { "category": "external", "summary": "Reference - redhat", "url": "https://access.redhat.com/security/data/csaf/v2/advisories/2024/rhsa-2024_5143.json" }, { "category": "external", "summary": "Reference - certbundde", "url": "https://www.ibm.com/support/pages/node/7165340" }, { "category": "external", "summary": "Reference - certbundde; redhat", "url": "https://access.redhat.com/errata/RHSA-2024:5482" }, { "category": "external", "summary": "Reference - redhat", "url": "https://docs.redhat.com/en/documentation/red_hat_jboss_enterprise_application_platform/8.0" }, { "category": "external", "summary": "Reference - redhat", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2270732" }, { "category": "external", "summary": "Reference - redhat", "url": "https://issues.redhat.com/browse/JBEAP-25224" }, { "category": "external", "summary": "Reference - redhat", "url": "https://issues.redhat.com/browse/JBEAP-26018" }, { "category": "external", "summary": "Reference - redhat", "url": "https://issues.redhat.com/browse/JBEAP-26696" }, { "category": "external", "summary": "Reference - redhat", "url": "https://issues.redhat.com/browse/JBEAP-26790" }, { "category": "external", "summary": "Reference - redhat", "url": "https://issues.redhat.com/browse/JBEAP-26791" }, { "category": "external", "summary": "Reference - redhat", "url": "https://issues.redhat.com/browse/JBEAP-26802" }, { "category": "external", "summary": "Reference - redhat", "url": "https://issues.redhat.com/browse/JBEAP-26816" }, { "category": "external", "summary": "Reference - redhat", "url": "https://issues.redhat.com/browse/JBEAP-26823" }, { "category": "external", "summary": "Reference - redhat", "url": "https://issues.redhat.com/browse/JBEAP-26843" }, { "category": "external", "summary": "Reference - redhat", "url": "https://issues.redhat.com/browse/JBEAP-26886" }, { "category": "external", "summary": "Reference - redhat", "url": "https://issues.redhat.com/browse/JBEAP-26932" }, { "category": "external", "summary": "Reference - redhat", "url": "https://issues.redhat.com/browse/JBEAP-26948" }, { "category": "external", "summary": "Reference - redhat", "url": "https://issues.redhat.com/browse/JBEAP-26961" }, { "category": "external", "summary": "Reference - redhat", "url": "https://issues.redhat.com/browse/JBEAP-26962" }, { "category": "external", "summary": "Reference - redhat", "url": "https://issues.redhat.com/browse/JBEAP-26966" }, { "category": "external", "summary": "Reference - redhat", "url": "https://issues.redhat.com/browse/JBEAP-26986" }, { "category": "external", "summary": "Reference - redhat", "url": "https://issues.redhat.com/browse/JBEAP-27002" }, { "category": "external", "summary": "Reference - redhat", "url": "https://issues.redhat.com/browse/JBEAP-27019" }, { "category": "external", "summary": "Reference - redhat", "url": "https://issues.redhat.com/browse/JBEAP-27055" }, { "category": "external", "summary": "Reference - redhat", "url": "https://issues.redhat.com/browse/JBEAP-27090" }, { "category": "external", "summary": "Reference - redhat", "url": "https://issues.redhat.com/browse/JBEAP-27192" }, { "category": "external", "summary": "Reference - redhat", "url": "https://issues.redhat.com/browse/JBEAP-27194" }, { "category": "external", "summary": "Reference - redhat", "url": "https://issues.redhat.com/browse/JBEAP-27261" }, { "category": "external", "summary": "Reference - redhat", "url": "https://issues.redhat.com/browse/JBEAP-27262" }, { "category": "external", "summary": "Reference - redhat", "url": "https://issues.redhat.com/browse/JBEAP-27327" }, { "category": "external", "summary": "Reference - redhat", "url": "https://issues.redhat.com/browse/JBEAP-27356" }, { "category": "external", "summary": "Reference - redhat", "url": "https://access.redhat.com/security/data/csaf/v2/advisories/2024/rhsa-2024_5482.json" }, { "category": "external", "summary": "Reference - certbundde; redhat", "url": "https://access.redhat.com/errata/RHSA-2024:5481" }, { "category": "external", "summary": "Reference - redhat", "url": "https://access.redhat.com/documentation/en-us/red_hat_jboss_enterprise_application_platform/8.0/" }, { "category": "external", "summary": "Reference - redhat", "url": "https://issues.redhat.com/browse/JBEAP-26793" }, { "category": "external", "summary": "Reference - redhat", "url": "https://access.redhat.com/security/data/csaf/v2/advisories/2024/rhsa-2024_5481.json" }, { "category": "external", "summary": "Reference - certbundde; redhat", "url": "https://access.redhat.com/errata/RHSA-2024:5479" }, { "category": "external", "summary": "Reference - redhat", "url": "https://issues.redhat.com/browse/JBEAP-26792" }, { "category": "external", "summary": "Reference - redhat", "url": "https://access.redhat.com/security/data/csaf/v2/advisories/2024/rhsa-2024_5479.json" }, { "category": "external", "summary": "Reference - certbundde", "url": "https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-1912.json" }, { "category": "external", "summary": "Reference - certbundde", "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-1912" }, { "category": "external", "summary": "Reference - certbundde", "url": "https://kb.sos-berlin.com/display/PKB/Vulnerability+Remediation+Release+2.7.2" }, { "category": "external", "summary": "Reference - certbundde", "url": "https://kb.sos-berlin.com/display/PKB/Vulnerability+Remediation+Release+2.6.7" }, { "category": "external", "summary": "Reference - certbundde", "url": "https://kb.sos-berlin.com/display/PKB/Vulnerability+Remediation+Release+2.5.10" }, { "category": "external", "summary": "Reference - certbundde", "url": "https://change.sos-berlin.com/browse/JS-2130" }, { "category": "external", "summary": "Reference - certbundde", "url": "https://change.sos-berlin.com/browse/JOC-1889" }, { "category": "external", "summary": "Reference - certbundde", "url": "https://www.ibm.com/support/pages/node/7166617" }, { "category": "external", "summary": "Reference - certbundde", "url": "https://www.ibm.com/support/pages/node/7167111" }, { "category": "external", "summary": "Reference - github; osv", "url": "https://github.com/bcgit/bc-java/commit/ebe1c75579170072dc59b8dee2b55ce31663178f" }, { "category": "external", "summary": "Reference - certbundde", "url": "https://www.ibm.com/support/pages/node/7168235" }, { "category": "external", "summary": "Reference - certbundde", "url": "https://jira.atlassian.com/browse/CONFSERVER-97723" }, { "category": "external", "summary": "Reference - certbundde", "url": "https://www.ibm.com/support/pages/node/7168754" }, { "category": "external", "summary": "Reference - redhat", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_5482.json" }, { "category": "external", "summary": "Reference - redhat", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_5481.json" }, { "category": "external", "summary": "Reference - redhat", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_5479.json" }, { "category": "external", "summary": "Reference - redhat", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_5147.json" }, { "category": "external", "summary": "Reference - redhat", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_5145.json" }, { "category": "external", "summary": "Reference - redhat", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_5144.json" }, { "category": "external", "summary": "Reference - redhat", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_5143.json" }, { "category": "external", "summary": "Reference - redhat", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_4884.json" }, { "category": "external", "summary": "Reference - redhat", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_4326.json" }, { "category": "external", "summary": "Reference - redhat", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_4505.json" }, { "category": "external", "summary": "Reference - redhat", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_4271.json" }, { "category": "external", "summary": "Reference - certbundde", "url": "https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-3508.json" }, { "category": "external", "summary": "Reference - certbundde", "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-3508" }, { "category": "external", "summary": "Reference - certbundde", "url": "https://confluence.atlassian.com/security/security-bulletin-november-19-2024-1456179091.html" }, { "category": "external", "summary": "Reference - certbundde", "url": "https://confluence.atlassian.com/pages/viewpage.action?pageId=1456179091" }, { "category": "external", "summary": "Reference - certbundde", "url": "https://security.netapp.com/advisory/ntap-20241206-0008/" }, { "category": "external", "summary": "Reference - certbundde", "url": "https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-3663.json" }, { "category": "external", "summary": "Reference - certbundde", "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-3663" }, { "category": "external", "summary": "Reference - certbundde", "url": "https://confluence.atlassian.com/security/security-bulletin-december-10-2024-1476624803.html" }, { "category": "external", "summary": "Reference - oracle", "url": "https://www.oracle.com/security-alerts/cpujan2025.html" }, { "category": "external", "summary": "Reference - oracle", "url": "https://www.oracle.com/docs/tech/security-alerts/cpujan2025csaf.json" }, { "category": "external", "summary": "Reference - certbundde", "url": "https://www.hitachi.com/products/it/software/security/info/vuls/hitachi-sec-2024-152/index.html" }, { "category": "external", "summary": "Reference - certbundde", "url": "https://confluence.atlassian.com/security/security-bulletin-march-18-2025-1527943363.html" }, { "category": "external", "summary": "Reference - certbundde", "url": "https://www.ibm.com/support/pages/node/7229444" }, { "category": "external", "summary": "Reference - oracle", "url": "https://www.oracle.com/security-alerts/cpuapr2025.html" }, { "category": "external", "summary": "Reference - oracle", "url": "https://www.oracle.com/docs/tech/security-alerts/cpuapr2025csaf.json" }, { "category": "external", "summary": "Reference - certbundde", "url": "https://security.netapp.com/advisory/NTAP-20240614-0007" }, { "category": "external", "summary": "Reference - certbundde", "url": "https://security.netapp.com/advisory/NTAP-20240614-0008" }, { "category": "external", "summary": "Reference - osv", "url": "https://github.com/bcgit/bc-java/commit/1b9fd9b545e691bfb3941a9f6a797660c8860f02" }, { "category": "external", "summary": "Reference - certbundde", "url": "https://support.sas.com/en/security-bulletins/sas-security-update-for-sas-94m9-ts1m9.html" }, { "category": "external", "summary": "Reference - siemens", "url": "https://cert-portal.siemens.com/productcert/html/ssa-485750.html" }, { "category": "external", "summary": "Reference - siemens", "url": "https://cert-portal.siemens.com/productcert/csaf/ssa-485750.json" }, { "category": "external", "summary": "Reference - certbundde; osv", "url": "https://ubuntu.com/security/notices/USN-8108-1" }, { "category": "external", "summary": "Reference - certbundde", "url": "https://www.dell.com/support/kbdoc/de-de/000443243/dsa-2026-152-dell-secure-connect-gateway-security-update-for-multiple-third-party-component-vulnerabilities" }, { "category": "external", "summary": "Reference - oracle", "url": "https://www.oracle.com/security-alerts/cpuapr2026.html" }, { "category": "external", "summary": "Reference - oracle", "url": "https://www.oracle.com/docs/tech/security-alerts/cpuapr2026csaf.json" } ], "remediations": [ { "category": "vendor_fix", "details": "Oracle customers with valid support contracts", "product_ids": [ "CSAFPID-1144725", "CSAFPID-1144726", "CSAFPID-1144728", "CSAFPID-1144729", "CSAFPID-1145332", "CSAFPID-1145333", "CSAFPID-1145334", "CSAFPID-1145444" ], "url": "https://support.oracle.com/rs?type=doc&id=3031477.1" }, { "category": "vendor_fix", "details": "Oracle customers with valid support contracts", "product_ids": [ "CSAFPID-1145260" ], "url": "https://support.oracle.com/rs?type=doc&id=3030266.2" }, { "category": "vendor_fix", "details": "upgrade to the latest version of bc java (1.78 or later) available from the bcjava git repository see references.", "product_ids": [ "CSAFPID-7924", "CSAFPID-7925", "CSAFPID-7926", "CSAFPID-7927", "CSAFPID-7928", "CSAFPID-7929", "CSAFPID-7930", "CSAFPID-7933", "CSAFPID-109898", "CSAFPID-123198", "CSAFPID-123199", "CSAFPID-123212", "CSAFPID-123217", "CSAFPID-123218", "CSAFPID-123219", "CSAFPID-129468", "CSAFPID-129498", "CSAFPID-129505", "CSAFPID-129821", "CSAFPID-129834", "CSAFPID-185963", "CSAFPID-1190586", "CSAFPID-1251132", "CSAFPID-1251133", "CSAFPID-1251134", "CSAFPID-1251135", "CSAFPID-1251136", "CSAFPID-1251137", "CSAFPID-1251138", "CSAFPID-1251145", "CSAFPID-1251146", "CSAFPID-1251149", "CSAFPID-1251153", "CSAFPID-1251160", "CSAFPID-1251161", "CSAFPID-1251162", "CSAFPID-1251165", "CSAFPID-1251166", "CSAFPID-1251167", "CSAFPID-1251168", "CSAFPID-1251169", "CSAFPID-1251170", "CSAFPID-1251171", "CSAFPID-1251172", "CSAFPID-1251174", "CSAFPID-1251175", "CSAFPID-1251176", "CSAFPID-1251177", "CSAFPID-1251178", "CSAFPID-1251179", "CSAFPID-1251180", "CSAFPID-1251182", "CSAFPID-1251184", "CSAFPID-1251185", "CSAFPID-1251186", "CSAFPID-1251187", "CSAFPID-1251188", "CSAFPID-1251189", "CSAFPID-1251194", "CSAFPID-1251195", "CSAFPID-1346529" ] }, { "category": "vendor_fix", "details": "Oracle customers with valid support contracts", "product_ids": [ "CSAFPID-1839896", "CSAFPID-1839897" ], "url": "https://support.oracle.com/rs?type=doc&id=3064245.2" }, { "category": "vendor_fix", "details": "Oracle customers with valid support contracts", "product_ids": [ "CSAFPID-1839853" ], "url": "https://support.oracle.com/rs?type=doc&id=3078843.2" }, { "category": "none_available", "details": "No fix or other remediation is available.", "product_ids": [ "CSAFPID-5694347" ] }, { "category": "vendor_fix", "details": "Update to V4.0.800 or later version", "product_ids": [ "CSAFPID-5771496" ] }, { "category": "vendor_fix", "details": "Oracle customers with valid support contracts", "product_ids": [ "CSAFPID-6212729" ], "url": "https://support.oracle.com/rs?type=doc&id=CPU62" } ], "scores": [ { "cvss_v3": { "version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "baseScore": 7.5, "baseSeverity": "HIGH" }, "products": [ "CSAFPID-1020049", "CSAFPID-1052941", "CSAFPID-1082172", "CSAFPID-1082173", "CSAFPID-109898", "CSAFPID-1144725", "CSAFPID-1144726", "CSAFPID-1144728", "CSAFPID-1144729", "CSAFPID-1145260", "CSAFPID-1145332", "CSAFPID-1145333", "CSAFPID-1145334", "CSAFPID-1145444", "CSAFPID-1190586", "CSAFPID-1190644", "CSAFPID-1193799", "CSAFPID-1209056", "CSAFPID-1209057", "CSAFPID-1209059", "CSAFPID-123198", "CSAFPID-123199", "CSAFPID-123212", "CSAFPID-123217", "CSAFPID-123218", "CSAFPID-123219", "CSAFPID-1239319", "CSAFPID-1244745", "CSAFPID-1244746", "CSAFPID-1251132", "CSAFPID-1251133", "CSAFPID-1251134", "CSAFPID-1251135", "CSAFPID-1251136", "CSAFPID-1251137", "CSAFPID-1251138", "CSAFPID-1251145", "CSAFPID-1251146", "CSAFPID-1251149", "CSAFPID-1251153", "CSAFPID-1251160", "CSAFPID-1251161", "CSAFPID-1251162", "CSAFPID-1251165", "CSAFPID-1251166", "CSAFPID-1251167", "CSAFPID-1251168", "CSAFPID-1251169", "CSAFPID-1251170", "CSAFPID-1251171", "CSAFPID-1251172", "CSAFPID-1251174", "CSAFPID-1251175", "CSAFPID-1251176", "CSAFPID-1251177", "CSAFPID-1251178", "CSAFPID-1251179", "CSAFPID-1251180", "CSAFPID-1251182", "CSAFPID-1251184", "CSAFPID-1251185", "CSAFPID-1251186", "CSAFPID-1251187", "CSAFPID-1251188", "CSAFPID-1251189", "CSAFPID-1251194", "CSAFPID-1251195", "CSAFPID-1265066", "CSAFPID-129468", "CSAFPID-129498", "CSAFPID-129505", "CSAFPID-129821", "CSAFPID-129834", "CSAFPID-1317174", "CSAFPID-1317175", "CSAFPID-1330299", "CSAFPID-1330514", "CSAFPID-1330524", "CSAFPID-1337808", "CSAFPID-1341594", "CSAFPID-1341597", "CSAFPID-1341598", "CSAFPID-1341599", "CSAFPID-1341600", "CSAFPID-1345174", "CSAFPID-1345175", "CSAFPID-1345176", "CSAFPID-1345177", "CSAFPID-1345178", "CSAFPID-1345179", "CSAFPID-1345180", "CSAFPID-1345181", "CSAFPID-1346529", "CSAFPID-1390942", "CSAFPID-1390943", "CSAFPID-1429889", "CSAFPID-1429890", "CSAFPID-1429891", "CSAFPID-1442732", "CSAFPID-1442746", "CSAFPID-1444325", "CSAFPID-1600334", "CSAFPID-1600335", "CSAFPID-1600336", "CSAFPID-165054", "CSAFPID-1793055", "CSAFPID-1839853", "CSAFPID-1839896", "CSAFPID-1839897", "CSAFPID-185963", "CSAFPID-214568", "CSAFPID-2530877", "CSAFPID-2530878", "CSAFPID-2530879", "CSAFPID-2530880", "CSAFPID-352876", "CSAFPID-4823172", "CSAFPID-4823173", "CSAFPID-4823174", "CSAFPID-4823175", "CSAFPID-4823176", "CSAFPID-4823215", "CSAFPID-4823216", "CSAFPID-4823217", "CSAFPID-4823218", "CSAFPID-4823219", "CSAFPID-4823250", "CSAFPID-4823251", "CSAFPID-4823252", "CSAFPID-4823253", "CSAFPID-4823254", "CSAFPID-4823259", "CSAFPID-4823260", "CSAFPID-4823261", "CSAFPID-4823262", "CSAFPID-4823263", "CSAFPID-4823276", "CSAFPID-4823277", "CSAFPID-4823278", "CSAFPID-4823279", "CSAFPID-4823280", "CSAFPID-4823292", "CSAFPID-4823293", "CSAFPID-4823294", "CSAFPID-4823295", "CSAFPID-4823296", "CSAFPID-4826112", "CSAFPID-4826113", "CSAFPID-4826114", "CSAFPID-4826115", "CSAFPID-4826116", "CSAFPID-4826117", "CSAFPID-5008496", "CSAFPID-5694347", "CSAFPID-5709319", "CSAFPID-5771496", "CSAFPID-5902969", "CSAFPID-6175498", "CSAFPID-6175499", "CSAFPID-6175502", "CSAFPID-6175503", "CSAFPID-6175504", "CSAFPID-6175507", "CSAFPID-6175510", "CSAFPID-6175511", "CSAFPID-6175512", "CSAFPID-6175515", "CSAFPID-6175516", "CSAFPID-6212729", "CSAFPID-6236079", "CSAFPID-6236080", "CSAFPID-6236081", "CSAFPID-6236082", "CSAFPID-6236083", "CSAFPID-7924", "CSAFPID-7925", "CSAFPID-7926", "CSAFPID-7927", "CSAFPID-7928", "CSAFPID-7929", "CSAFPID-7930", "CSAFPID-7933", "CSAFPID-849243" ] } ], "threats": [ { "category": "impact", "details": "Successful exploitation of these vulnerabilities could lead to addition or modification of data or Denial of Service (DoS).", "product_ids": [ "CSAFPID-1209056", "CSAFPID-1209057", "CSAFPID-1209059", "CSAFPID-1239319", "CSAFPID-1442732", "CSAFPID-1442746", "CSAFPID-1442747", "CSAFPID-1444325", "CSAFPID-1932428", "CSAFPID-5694347" ] } ], "title": "CVE-2024-30172" } ] }