CVE-2020-2805

{"id": "CVE-2020-2805", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 5.1, "accessVector": "NETWORK", "vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "HIGH", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 6.4, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 4.9, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": true}], "cvssMetricV30": [{"type": "Secondary", "source": "secalert_us@oracle.com", "cvssData": {"scope": "CHANGED", "version": "3.0", "baseScore": 8.3, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "REQUIRED", "attackComplexity": "HIGH", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 6.0, "exploitabilityScore": 1.6}], "cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "CHANGED", "version": "3.1", "baseScore": 8.3, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "REQUIRED", "attackComplexity": "HIGH", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 6.0, "exploitabilityScore": 1.6}]}, "published": "2020-04-15T14:15:28.437", "references": [{"url": "http://lists.opensuse.org/opensuse-security-announce/2020-06/msg00000.html", "tags": ["Third Party Advisory"], "source": "secalert_us@oracle.com"}, {"url": "http://lists.opensuse.org/opensuse-security-announce/2020-06/msg00023.html", "tags": ["Third Party Advisory"], "source": "secalert_us@oracle.com"}, {"url": "http://lists.opensuse.org/opensuse-security-announce/2020-06/msg00048.html", "tags": ["Third Party Advisory"], "source": "secalert_us@oracle.com"}, {"url": "https://lists.debian.org/debian-lts-announce/2020/04/msg00024.html", "tags": ["Third Party Advisory"], "source": "secalert_us@oracle.com"}, {"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CKAV6KFFAEANXAN73AFTGU7Z6YNRWCXQ/", "source": "secalert_us@oracle.com"}, {"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/L7VHC4EW36KZEIDQ56RPCWBZCQELFFKN/", "source": "secalert_us@oracle.com"}, {"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NYHHHZRHXCBGRHGE5UP7UEB4IZ2QX536/", "source": "secalert_us@oracle.com"}, {"url": "https://security.gentoo.org/glsa/202006-22", "tags": ["Third Party Advisory"], "source": "secalert_us@oracle.com"}, {"url": "https://security.gentoo.org/glsa/202209-15", "tags": ["Third Party Advisory"], "source": "secalert_us@oracle.com"}, {"url": "https://security.netapp.com/advisory/ntap-20200416-0004/", "tags": ["Third Party Advisory"], "source": "secalert_us@oracle.com"}, {"url": "https://usn.ubuntu.com/4337-1/", "tags": ["Third Party Advisory"], "source": "secalert_us@oracle.com"}, {"url": "https://www.debian.org/security/2020/dsa-4662", "tags": ["Third Party Advisory"], "source": "secalert_us@oracle.com"}, {"url": "https://www.debian.org/security/2020/dsa-4668", "tags": ["Third Party Advisory"], "source": "secalert_us@oracle.com"}, {"url": "https://www.oracle.com/security-alerts/cpuapr2020.html", "tags": ["Vendor Advisory"], "source": "secalert_us@oracle.com"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-noinfo"}]}], "descriptions": [{"lang": "en", "value": "Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Libraries). Supported versions that are affected are Java SE: 7u251, 8u241, 11.0.6 and 14; Java SE Embedded: 8u241. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Java SE, Java SE Embedded, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in takeover of Java SE, Java SE Embedded. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.0 Base Score 8.3 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H)."}, {"lang": "es", "value": "Vulnerabilidad en el producto Java SE, Java SE Embedded de Oracle Java SE (componente: Libraries). Las versiones compatibles que est\u00e1n afectadas son Java SE: 7u251, 8u241, 11.0.6 y 14; Java SE Embedded: 8u241. Una vulnerabilidad dif\u00edcil de explotar permite a un atacante no autenticado con acceso a la red por medio de m\u00faltiples protocolos comprometer a Java SE, Java SE Embedded. Los ataques con \u00e9xito requieren una interacci\u00f3n humana de una persona diferente del atacante y, aunque la vulnerabilidad se encuentra en Java SE, Java SE Embedded, los ataques pueden afectar significativamente a productos adicionales. Los ataques con \u00e9xito de esta vulnerabilidad pueden resultar en la toma de control de Java SE, Java SE Embedded. Nota: Esta vulnerabilidad se aplica a las implementaciones de Java, generalmente en clientes que ejecutan aplicaciones Java Web Start dentro del sandbox o applets de Java dentro del sandbox, que cargan y ejecutan c\u00f3digo no confiable (por ejemplo, c\u00f3digo que proviene de Internet) y conf\u00edan en el sandbox de Java para la seguridad. Esta vulnerabilidad no se aplica a las implementaciones de Java, com\u00fanmente en servidores, que cargan y ejecutan solo c\u00f3digo confiable (por ejemplo, c\u00f3digo instalado por un administrador). CVSS 3.0 Puntuaci\u00f3n Base 8.3 (Impactos de la confidencialidad, la integridad y la disponibilidad). Vector CVSS: (CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H)."}], "lastModified": "2023-11-07T03:21:48.580", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:oracle:jdk:1.7.0:update251:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E3B8B378-3211-4E63-873D-A05574B39E14"}, {"criteria": "cpe:2.3:a:oracle:jdk:1.8.0:update241:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "CEAD5DA3-6D7D-4127-8E58-E0ACA8A611D7"}, {"criteria": "cpe:2.3:a:oracle:jdk:11.0.6:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "441D7EFC-92F3-4F5B-ADDB-A4BF241F546E"}, {"criteria": "cpe:2.3:a:oracle:jdk:14.0.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "84457AF5-BF82-449E-8576-F34DD338BBE0"}, {"criteria": "cpe:2.3:a:oracle:jre:1.7.0:update_251:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8F257E03-5BA1-4743-983A-6C08F8572FFA"}, {"criteria": "cpe:2.3:a:oracle:jre:1.8.0:update_241:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C49049F7-8BA7-4787-8C55-CABFAB6BC0F8"}, {"criteria": "cpe:2.3:a:oracle:jre:11.0.6:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6E5E08E5-823D-4F57-BA0A-603F8E680419"}, {"criteria": "cpe:2.3:a:oracle:jre:14.0.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "89D95157-3487-4421-A5E3-801B987625B5"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:oracle:openjdk:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A8ADAA7A-7951-40D7-B1B1-78944D954209", "versionEndIncluding": "11.0.6", "versionStartIncluding": "11"}, {"criteria": "cpe:2.3:a:oracle:openjdk:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "ECA4E3C8-0E29-47F3-8FE6-5EB7AB469AAA", "versionEndIncluding": "13.0.2", "versionStartIncluding": "13"}, {"criteria": "cpe:2.3:a:oracle:openjdk:7:-:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E78B7C5A-FA51-41E4-AAB0-C6DED2EFCF4C"}, {"criteria": "cpe:2.3:a:oracle:openjdk:7:update1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "02011EDC-20A7-4A16-A592-7C76E0037997"}, {"criteria": "cpe:2.3:a:oracle:openjdk:7:update10:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AC6D4652-1226-4C60-BEDF-01EBF8AC0849"}, {"criteria": "cpe:2.3:a:oracle:openjdk:7:update101:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3C1F9ED7-7D93-41F4-9130-15BA734420AC"}, {"criteria": "cpe:2.3:a:oracle:openjdk:7:update11:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1CF9CDF1-95D3-4125-A73F-396D2280FC4E"}, {"criteria": "cpe:2.3:a:oracle:openjdk:7:update111:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A13266DC-F8D9-4F30-987F-65BBEAF8D3A8"}, {"criteria": "cpe:2.3:a:oracle:openjdk:7:update121:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C28388AB-CFC9-4749-A90F-383F5B905EA9"}, {"criteria": "cpe:2.3:a:oracle:openjdk:7:update13:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DA1B00F9-A81C-48B7-8DAA-F394DDF323F3"}, {"criteria": "cpe:2.3:a:oracle:openjdk:7:update131:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "CA7AD457-6CE6-4925-8D94-A907B40233D9"}, {"criteria": "cpe:2.3:a:oracle:openjdk:7:update141:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A6F3FDD1-7CAC-4B84-ABB7-64E9D3FBD708"}, {"criteria": "cpe:2.3:a:oracle:openjdk:7:update15:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5480E5AD-DB46-474A-9B57-84ED088A75FA"}, {"criteria": "cpe:2.3:a:oracle:openjdk:7:update151:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "881A4AE9-6012-4E91-98BE-0A352CC20703"}, {"criteria": "cpe:2.3:a:oracle:openjdk:7:update161:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7E1E1079-57D9-473B-A017-964F4745F329"}, {"criteria": "cpe:2.3:a:oracle:openjdk:7:update17:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B8D6446E-2915-4F12-87BE-E7420BC2626E"}, {"criteria": "cpe:2.3:a:oracle:openjdk:7:update171:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "564EDCE3-16E6-401D-8A43-032D1F8875E1"}, {"criteria": "cpe:2.3:a:oracle:openjdk:7:update181:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "08278802-D31B-488A-BA6A-EBC816DF883A"}, {"criteria": "cpe:2.3:a:oracle:openjdk:7:update191:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "72BDA05A-C8BD-472E-8465-EE1F3E5D8CF6"}, {"criteria": "cpe:2.3:a:oracle:openjdk:7:update2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7BBB0969-565E-43E2-B067-A10AAA5F1958"}, {"criteria": "cpe:2.3:a:oracle:openjdk:7:update201:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D78BE95D-6270-469A-8035-FCDDB398F952"}, {"criteria": "cpe:2.3:a:oracle:openjdk:7:update21:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "88C24F40-3150-4584-93D9-8307DE04EEE9"}, {"criteria": "cpe:2.3:a:oracle:openjdk:7:update211:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E0FC5A03-FF11-4787-BBF1-3ACF93A21F2D"}, {"criteria": "cpe:2.3:a:oracle:openjdk:7:update221:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "19626B36-62FC-4497-A2E1-7D6CD9839B19"}, {"criteria": "cpe:2.3:a:oracle:openjdk:7:update231:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5713AEBD-35F6-44E8-A0CC-A42830D7AE20"}, {"criteria": "cpe:2.3:a:oracle:openjdk:7:update241:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8BE0C04B-440E-4B35-ACC8-6264514F764C"}, {"criteria": "cpe:2.3:a:oracle:openjdk:7:update25:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "555EC2A6-0475-48ED-AE0C-B306714A9333"}, {"criteria": "cpe:2.3:a:oracle:openjdk:7:update251:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EC1CF2AD-3F7A-4EF3-BD41-117A21553A9F"}, {"criteria": "cpe:2.3:a:oracle:openjdk:7:update3:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C242D3BE-9114-4A9E-BB78-45754C7CC450"}, {"criteria": "cpe:2.3:a:oracle:openjdk:7:update4:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D61068FE-18EE-4ADB-BC69-A3ECE8724575"}, {"criteria": "cpe:2.3:a:oracle:openjdk:7:update40:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EFB59E80-4EC4-4399-BF40-6733E4E475A9"}, {"criteria": "cpe:2.3:a:oracle:openjdk:7:update45:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "84E31265-22E1-4E91-BFCB-D2AFF445926A"}, {"criteria": "cpe:2.3:a:oracle:openjdk:7:update5:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AB3A58C3-94BB-4120-BE1D-AAF8BBF7F22B"}, {"criteria": "cpe:2.3:a:oracle:openjdk:7:update51:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "50319E52-8739-47C5-B61E-3CA9B6A9A48F"}, {"criteria": "cpe:2.3:a:oracle:openjdk:7:update55:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7ED515B9-DC74-4DC5-B98A-08D87D85E11E"}, {"criteria": "cpe:2.3:a:oracle:openjdk:7:update6:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6D1D4868-1F9F-43F7-968C-6469B67D3F1B"}, {"criteria": "cpe:2.3:a:oracle:openjdk:7:update60:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "568F1AC4-B0D7-4438-82E5-0E61500F2240"}, {"criteria": "cpe:2.3:a:oracle:openjdk:7:update65:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F5E99B4A-EDAD-4471-81C4-7E9C775C9D9F"}, {"criteria": "cpe:2.3:a:oracle:openjdk:7:update67:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "14E9133E-9FF3-40DB-9A11-7469EF5FD265"}, {"criteria": "cpe:2.3:a:oracle:openjdk:7:update7:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "94834710-3FA9-49D9-8600-B514CBCA4270"}, {"criteria": "cpe:2.3:a:oracle:openjdk:7:update72:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4228D9E1-7D82-4B49-9669-9CDAD7187432"}, {"criteria": "cpe:2.3:a:oracle:openjdk:7:update76:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F6231F48-2936-4F7D-96D5-4BA11F78EBE8"}, {"criteria": "cpe:2.3:a:oracle:openjdk:7:update80:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D96D5061-4A81-497E-9AD6-A8381B3B454C"}, {"criteria": "cpe:2.3:a:oracle:openjdk:7:update85:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5345C21E-A01B-43B9-9A20-F2783D921C60"}, {"criteria": "cpe:2.3:a:oracle:openjdk:7:update9:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B219F360-83BD-4111-AB59-C9D4F55AF4C0"}, {"criteria": "cpe:2.3:a:oracle:openjdk:7:update91:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D25377EA-8E8F-4C76-8EA9-3BBDFB352815"}, {"criteria": "cpe:2.3:a:oracle:openjdk:7:update95:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "59FEFE05-269A-4EAF-A80F-E4C2107B1197"}, {"criteria": "cpe:2.3:a:oracle:openjdk:7:update97:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E7E2AA7C-F602-4DB7-9EC1-0708C46C253C"}, {"criteria": "cpe:2.3:a:oracle:openjdk:7:update99:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FB70E154-A304-429E-80F5-8D87B00E32D1"}, {"criteria": "cpe:2.3:a:oracle:openjdk:8:-:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "70892D06-6E75-4425-BBF0-4B684EC62A1C"}, {"criteria": "cpe:2.3:a:oracle:openjdk:8:update101:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "18DCFF53-B298-4534-AB5C-8A5EF59C616F"}, {"criteria": "cpe:2.3:a:oracle:openjdk:8:update102:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "083419F8-FDDF-4E36-88F8-857DB317C1D1"}, {"criteria": "cpe:2.3:a:oracle:openjdk:8:update11:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D7A74F65-57E8-4C9A-BA96-5EF401504F13"}, {"criteria": "cpe:2.3:a:oracle:openjdk:8:update111:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0D0B90FC-57B6-4315-9B29-3C36E58B2CF5"}, {"criteria": "cpe:2.3:a:oracle:openjdk:8:update112:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "07812576-3C35-404C-A7D7-9BE9E3D76E00"}, {"criteria": "cpe:2.3:a:oracle:openjdk:8:update121:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "00C52B1C-5447-4282-9667-9EBE0720B423"}, {"criteria": "cpe:2.3:a:oracle:openjdk:8:update131:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "92BB9EB0-0C12-4E77-89EE-FB77097841B8"}, {"criteria": "cpe:2.3:a:oracle:openjdk:8:update141:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FF9D5DCE-2E8F-42B9-9038-AEA7E8C8CFFD"}, {"criteria": "cpe:2.3:a:oracle:openjdk:8:update151:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "ABC0E7BB-F8B7-4369-9910-71240E4073A3"}, {"criteria": "cpe:2.3:a:oracle:openjdk:8:update152:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "551B2640-8CEC-4C24-AF8B-7A7CEF864D9D"}, {"criteria": "cpe:2.3:a:oracle:openjdk:8:update161:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0AE30779-48FB-451E-8CE1-F469F93B8772"}, {"criteria": "cpe:2.3:a:oracle:openjdk:8:update162:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "60590FDE-7156-4314-A012-AA38BD2ADDC9"}, {"criteria": "cpe:2.3:a:oracle:openjdk:8:update171:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BE51AD3A-8331-4E8F-9DB1-7A0051731DFB"}, {"criteria": "cpe:2.3:a:oracle:openjdk:8:update172:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F24F6122-2256-41B6-9033-794C6424ED99"}, {"criteria": "cpe:2.3:a:oracle:openjdk:8:update181:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0EAFA79E-8C7A-48CF-8868-11378FE4B26F"}, {"criteria": "cpe:2.3:a:oracle:openjdk:8:update191:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D1D6F19F-59B5-4BB6-AD35-013384025970"}, {"criteria": "cpe:2.3:a:oracle:openjdk:8:update192:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E7BA97BC-3ADA-465A-835B-6C3C5F416B56"}, {"criteria": "cpe:2.3:a:oracle:openjdk:8:update20:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B71F77A4-B7EB-47A1-AAFD-431A7D040B86"}, {"criteria": "cpe:2.3:a:oracle:openjdk:8:update201:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "91D6BEA9-5943-44A4-946D-CEAA9BA99376"}, {"criteria": "cpe:2.3:a:oracle:openjdk:8:update202:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C079A3E0-44EB-4B9C-B4FC-B7621D165C3B"}, {"criteria": "cpe:2.3:a:oracle:openjdk:8:update211:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2CB74086-14B8-4237-8357-E0C6B5BB8313"}, {"criteria": "cpe:2.3:a:oracle:openjdk:8:update212:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3ABED20A-7C34-4E86-9AFB-F4DC9ECBB3A9"}, {"criteria": "cpe:2.3:a:oracle:openjdk:8:update221:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "00C2B9C9-1177-4DA6-96CE-55F37F383F99"}, {"criteria": "cpe:2.3:a:oracle:openjdk:8:update231:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "12A3F367-33AD-47C3-BFDC-871A17E72C94"}, {"criteria": "cpe:2.3:a:oracle:openjdk:8:update241:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "78261932-7373-4F16-91E0-1A72ADBEBC3E"}, {"criteria": "cpe:2.3:a:oracle:openjdk:8:update25:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B38C0276-0EBD-4E0B-BFCF-4DDECACE04E2"}, {"criteria": "cpe:2.3:a:oracle:openjdk:8:update31:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F8483034-DD5A-445D-892F-CDE90A7D58EE"}, {"criteria": "cpe:2.3:a:oracle:openjdk:8:update40:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8279718F-878F-4868-8859-1728D13CD0D8"}, {"criteria": "cpe:2.3:a:oracle:openjdk:8:update45:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2C024E1A-FD2C-42E8-B227-C2AFD3040436"}, {"criteria": "cpe:2.3:a:oracle:openjdk:8:update5:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4F24389D-DDD0-4204-AA24-31C920A4F47E"}, {"criteria": "cpe:2.3:a:oracle:openjdk:8:update51:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "966979BE-1F21-4729-B6B8-610F74648344"}, {"criteria": "cpe:2.3:a:oracle:openjdk:8:update60:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F8534265-33BF-460D-BF74-5F55FDE50F29"}, {"criteria": "cpe:2.3:a:oracle:openjdk:8:update65:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F77AFC25-1466-4E56-9D5F-6988F3288E16"}, {"criteria": "cpe:2.3:a:oracle:openjdk:8:update66:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A650BEB8-E56F-4E42-9361-8D2DB083F0F8"}, {"criteria": "cpe:2.3:a:oracle:openjdk:8:update71:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "799FFECD-E80A-44B3-953D-CDB5E195F3AA"}, {"criteria": "cpe:2.3:a:oracle:openjdk:8:update72:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A7047507-7CAF-4A14-AA9A-5CEF806EDE98"}, {"criteria": "cpe:2.3:a:oracle:openjdk:8:update73:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "CFC7B179-95D3-4F94-84F6-73F1034A1AF2"}, {"criteria": "cpe:2.3:a:oracle:openjdk:8:update74:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9FB28526-9385-44CA-AF08-1899E6C3AE4D"}, {"criteria": "cpe:2.3:a:oracle:openjdk:8:update77:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E26B69E4-0B43-415F-A82B-52FDCB262B3E"}, {"criteria": "cpe:2.3:a:oracle:openjdk:8:update91:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "27BC4150-70EC-462B-8FC5-20B3442CBB31"}, {"criteria": "cpe:2.3:a:oracle:openjdk:8:update92:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "02646989-ECD9-40AE-A83E-EFF4080C69B9"}, {"criteria": "cpe:2.3:a:oracle:openjdk:14:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F46E15B6-86D8-4B16-B3E9-B1CAAA354E7F"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:netapp:7-mode_transition_tool:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7EF6650C-558D-45C8-AE7D-136EE70CB6D7"}, {"criteria": "cpe:2.3:a:netapp:active_iq_unified_manager:*:*:*:*:*:windows:*:*", "vulnerable": true, "matchCriteriaId": "BD075607-09B7-493E-8611-66D041FFDA62", "versionStartIncluding": "7.3"}, {"criteria": "cpe:2.3:a:netapp:active_iq_unified_manager:*:*:*:*:*:vsphere:*:*", "vulnerable": true, "matchCriteriaId": "B64FC591-5854-4480-A6E2-5E953C2415B3", "versionStartIncluding": "9.5"}, {"criteria": "cpe:2.3:a:netapp:cloud_backup:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5C2089EE-5D7F-47EC-8EA5-0F69790564C4"}, {"criteria": "cpe:2.3:a:netapp:e-series_performance_analyzer:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "24B8DB06-590A-4008-B0AB-FCD1401C77C6"}, {"criteria": "cpe:2.3:a:netapp:e-series_santricity_os_controller:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8C5DA53D-744B-4087-AEA9-257F18949E4D", "versionEndIncluding": "11.70.2", "versionStartIncluding": "11.0.0"}, {"criteria": "cpe:2.3:a:netapp:e-series_santricity_web_services:-:*:*:*:*:web_services_proxy:*:*", "vulnerable": true, "matchCriteriaId": "1AEFF829-A8F2-4041-8DDF-E705DB3ADED2"}, {"criteria": "cpe:2.3:a:netapp:oncommand_insight:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F1BE6C1F-2565-4E97-92AA-16563E5660A5"}, {"criteria": "cpe:2.3:a:netapp:oncommand_workflow_automation:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5735E553-9731-4AAC-BCFF-989377F817B3"}, {"criteria": "cpe:2.3:a:netapp:plug-in_for_symantec_netbackup:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FFE0A9D2-9A49-4BF6-BC6F-8249162D8334"}, {"criteria": "cpe:2.3:a:netapp:santricity_unified_manager:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A372B177-F740-4655-865C-31777A6E140B"}, {"criteria": "cpe:2.3:a:netapp:snapmanager:-:*:*:*:*:sap:*:*", "vulnerable": true, "matchCriteriaId": "64DE38C8-94F1-4860-B045-F33928F676A8"}, {"criteria": "cpe:2.3:a:netapp:snapmanager:-:-:*:*:*:oracle:*:*", "vulnerable": true, "matchCriteriaId": "25BBBC1A-228F-45A6-AE95-DB915EDF84BD"}, {"criteria": "cpe:2.3:a:netapp:steelstore_cloud_integrated_storage:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E94F7F59-1785-493F-91A7-5F5EA5E87E4D"}, {"criteria": "cpe:2.3:a:netapp:storagegrid:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D239B58A-9386-443D-B579-B56AE2A500BC", "versionEndIncluding": "9.0.4", "versionStartIncluding": "9.0.0"}, {"criteria": "cpe:2.3:a:netapp:storagegrid:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8ADFF451-740F-4DBA-BD23-3881945D3E40"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C11E6FB0-C8C0-4527-9AA0-CB9B316F8F43"}, {"criteria": "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DEECE5FC-CACF-4496-A3E7-164736409252"}, {"criteria": "cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "07B237A9-69A3-4A9C-9DA0-4E06BD37AE73"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "97A4B8DF-58DA-4AB6-A1F9-331B36409BA3"}, {"criteria": "cpe:2.3:o:fedoraproject:fedora:31:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "80F0FA5D-8D3B-4C0E-81E2-87998286AF33"}, {"criteria": "cpe:2.3:o:fedoraproject:fedora:32:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "36D96259-24BD-44E2-96D9-78CE1D41F956"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:opensuse:leap:15.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B620311B-34A3-48A6-82DF-6F078D7A4493"}, {"criteria": "cpe:2.3:o:opensuse:leap:15.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B009C22E-30A4-4288-BCF6-C3E81DEAF45A"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:esm:*:*:*", "vulnerable": true, "matchCriteriaId": "7A5301BF-1402-4BE0-A0F8-69FBE79BC6D6"}, {"criteria": "cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*", "vulnerable": true, "matchCriteriaId": "23A7C53F-B80F-4E6A-AFA9-58EEA84BE11D"}, {"criteria": "cpe:2.3:o:canonical:ubuntu_linux:19.10:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A31C8344-3E02-4EB8-8BD8-4C84B7959624"}], "operator": "OR"}]}], "sourceIdentifier": "secalert_us@oracle.com"}