CVE-2020-11022

Published Apr 29, 2020
Last updated a month ago
CVSS medium 6.9
lms
Open source
Overview

Description: In jQuery starting with 1.12.0 and before 3.5.0, passing HTML from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.
Source: security-advisories@github.com
NVD status: Modified
Products: jquery, drupal, debian_linux, fedora, agile_product_lifecycle_management_for_process, application_testing_suite, banking_digital_experience, blockchain_platform, communications_application_session_controller, communications_billing_and_revenue_management, communications_diameter_signaling_router_idih\, communications_eagle_application_processor, communications_services_gatekeeper, communications_webrtc_session_controller, enterprise_manager_ops_center, enterprise_session_border_controller, financial_services_analytical_applications_infrastructure, financial_services_analytical_applications_reconciliation_framework, financial_services_asset_liability_management, financial_services_balance_sheet_planning, financial_services_basel_regulatory_capital_basic, financial_services_basel_regulatory_capital_internal_ratings_based_approach, financial_services_data_foundation, financial_services_data_governance_for_us_regulatory_reporting, financial_services_data_integration_hub, financial_services_funds_transfer_pricing, financial_services_hedge_management_and_ifrs_valuations, financial_services_institutional_performance_analytics, financial_services_liquidity_risk_management, financial_services_liquidity_risk_measurement_and_management, financial_services_loan_loss_forecasting_and_provisioning, financial_services_market_risk_measurement_and_management, financial_services_price_creation_and_discovery, financial_services_profitability_management, financial_services_regulatory_reporting_for_european_banking_authority, financial_services_regulatory_reporting_for_us_federal_reserve, healthcare_foundation, hospitality_materials_control, hospitality_simphony, insurance_accounting_analyzer, insurance_allocation_manager_for_enterprise_profitability, insurance_data_foundation, insurance_insbridge_rating_and_underwriting, jdeveloper, peoplesoft_enterprise_peopletools, policy_automation, policy_automation_connector_for_siebel, policy_automation_for_mobile_devices, retail_back_office, retail_customer_management_and_segmentation_foundation, retail_returns_management, siebel_ui_framework, storagetek_acsls, weblogic_server, max_data, oncommand_insight, oncommand_system_manager, snap_creator_framework, snapcenter, h300s_firmware, h500s_firmware, h700s_firmware, h300e_firmware, h500e_firmware, h700e_firmware, h410s_firmware, h410c_firmware, leap, log_correlation_engine, agile_product_supplier_collaboration_for_process
Risk scores

CVSS 3.1

Type: Primary
Base score: 6.1
Impact score: 2.7
Exploitability score: 2.8
Vector string: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
Severity: MEDIUM
CVSS 2.0

Type: Primary
Base score: 4.3
Impact score: 2.9
Exploitability score: 8.6
Vector string: AV:N/AC:M/Au:N/C:N/I:P/A:N
Weaknesses

security-advisories@github.com: CWE-79
nvd@nist.gov: CWE-79
Hype score: Not currently trending
Configurations

[
  {
    "nodes": [
      {
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*",
            "matchCriteriaId": "B5CFA4CA-5296-4B78-8D65-34FC63A09DEF",
            "versionEndExcluding": "3.5.0",
            "versionStartIncluding": "1.2",
            "vulnerable": true
          }
        ],
        "negate": false,
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:drupal:drupal:*:*:*:*:*:*:*:*",
            "matchCriteriaId": "70C672EE-2027-4A29-8C14-3450DEF1462A",
            "versionEndExcluding": "7.70",
            "versionStartIncluding": "7.0",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:drupal:drupal:*:*:*:*:*:*:*:*",
            "matchCriteriaId": "BBFE42E2-6583-4EBE-B320-B8CF9CA0C3BC",
            "versionEndExcluding": "8.7.14",
            "versionStartIncluding": "8.7.0",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:drupal:drupal:*:*:*:*:*:*:*:*",
            "matchCriteriaId": "7BA49DB0-ECC3-4155-B76C-0CA292600DE6",
            "versionEndExcluding": "8.8.6",
            "versionStartIncluding": "8.8.0",
            "vulnerable": true
          }
        ],
        "negate": false,
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*",
            "matchCriteriaId": "DEECE5FC-CACF-4496-A3E7-164736409252",
            "vulnerable": true
          }
        ],
        "negate": false,
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:fedoraproject:fedora:31:*:*:*:*:*:*:*",
            "matchCriteriaId": "80F0FA5D-8D3B-4C0E-81E2-87998286AF33",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:fedoraproject:fedora:32:*:*:*:*:*:*:*",
            "matchCriteriaId": "36D96259-24BD-44E2-96D9-78CE1D41F956",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:fedoraproject:fedora:33:*:*:*:*:*:*:*",
            "matchCriteriaId": "E460AA51-FCDA-46B9-AE97-E6676AA5E194",
            "vulnerable": true
          }
        ],
        "negate": false,
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:oracle:agile_product_lifecycle_management_for_process:6.2.0.0:*:*:*:*:*:*:*",
            "matchCriteriaId": "A079FD6E-3BB0-4997-9A8E-6F8FEC89887A",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:application_testing_suite:13.3.0.1:*:*:*:*:*:*:*",
            "matchCriteriaId": "A125E817-F974-4509-872C-B71933F42AD1",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:banking_digital_experience:18.1:*:*:*:*:*:*:*",
            "matchCriteriaId": "BBE7BF09-B89C-4590-821E-6C0587E096B5",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:banking_digital_experience:18.2:*:*:*:*:*:*:*",
            "matchCriteriaId": "ADAE8A71-0BCD-42D5-B38C-9B2A27CC1E6B",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:banking_digital_experience:18.3:*:*:*:*:*:*:*",
            "matchCriteriaId": "E7231D2D-4092-44F3-B60A-D7C9ED78AFDF",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:banking_digital_experience:19.1:*:*:*:*:*:*:*",
            "matchCriteriaId": "F7BDFC10-45A0-46D8-AB92-4A5E2C1C76ED",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:banking_digital_experience:19.2:*:*:*:*:*:*:*",
            "matchCriteriaId": "18127694-109C-4E7E-AE79-0BA351849291",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:banking_digital_experience:20.1:*:*:*:*:*:*:*",
            "matchCriteriaId": "33F68878-BC19-4DB8-8A72-BD9FE3D0ACEC",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:blockchain_platform:*:*:*:*:*:*:*:*",
            "matchCriteriaId": "D0DBC938-A782-433F-8BF1-CA250C332AA7",
            "versionEndExcluding": "21.1.2",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:communications_application_session_controller:3.8m0:*:*:*:*:*:*:*",
            "matchCriteriaId": "B796AC70-A220-48D8-B8CD-97CF57227962",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:communications_billing_and_revenue_management:7.5.0.23.0:*:*:*:*:*:*:*",
            "matchCriteriaId": "790A89FD-6B86-49AE-9B4F-AE7262915E13",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:communications_billing_and_revenue_management:12.0.0.3.0:*:*:*:*:*:*:*",
            "matchCriteriaId": "E39D442D-1997-49AF-8B02-5640BE2A26CC",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:communications_diameter_signaling_router_idih\\::*:*:*:*:*:*:*:*",
            "matchCriteriaId": "FAFED7F5-03FA-43B5-AD13-1130F0324448",
            "versionEndIncluding": "8.2.2",
            "versionStartIncluding": "8.0.0",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:communications_eagle_application_processor:*:*:*:*:*:*:*:*",
            "matchCriteriaId": "1A0E3537-CB5A-40BF-B42C-CED9211B8892",
            "versionEndIncluding": "16.4.0",
            "versionStartIncluding": "16.1.0",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:communications_services_gatekeeper:7.0:*:*:*:*:*:*:*",
            "matchCriteriaId": "062E4E7C-55BB-46F3-8B61-5A663B565891",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:communications_webrtc_session_controller:7.2:*:*:*:*:*:*:*",
            "matchCriteriaId": "726DB59B-00C7-444E-83F7-CB31032482AB",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:enterprise_manager_ops_center:12.4.0.0:*:*:*:*:*:*:*",
            "matchCriteriaId": "B095CC03-7077-4A58-AB25-CC5380CDCE5A",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:enterprise_session_border_controller:8.4:*:*:*:*:*:*:*",
            "matchCriteriaId": "7015A8CB-8FA6-423E-8307-BD903244F517",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:financial_services_analytical_applications_infrastructure:*:*:*:*:*:*:*:*",
            "matchCriteriaId": "F2BB6A71-6AF6-4C0B-9304-4111E32108D4",
            "versionEndIncluding": "8.1.0.0.0",
            "versionStartIncluding": "8.0.6.0.0",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:financial_services_analytical_applications_reconciliation_framework:*:*:*:*:*:*:*:*",
            "matchCriteriaId": "AD080793-FC45-4260-8E45-40E228F432FC",
            "versionEndIncluding": "8.0.8",
            "versionStartIncluding": "8.0.6",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:financial_services_analytical_applications_reconciliation_framework:8.1.0:*:*:*:*:*:*:*",
            "matchCriteriaId": "2ACA29E6-F393-46E5-B2B3-9158077819A9",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:financial_services_asset_liability_management:8.0.6:*:*:*:*:*:*:*",
            "matchCriteriaId": "FCD1EC13-CC2F-4668-90D2-D8609066F2DF",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:financial_services_asset_liability_management:8.0.7:*:*:*:*:*:*:*",
            "matchCriteriaId": "4D614F76-0AA1-4EA8-A24A-38EFC90EF5DB",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:financial_services_asset_liability_management:8.1.0:*:*:*:*:*:*:*",
            "matchCriteriaId": "39B8DFFF-B037-4F29-8C8E-F4BBC3435199",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:financial_services_balance_sheet_planning:8.0.8:*:*:*:*:*:*:*",
            "matchCriteriaId": "4D0D0EAC-300D-44B1-AD4A-93A368D5DBA1",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:financial_services_basel_regulatory_capital_basic:*:*:*:*:*:*:*:*",
            "matchCriteriaId": "C5E0646D-4866-41FB-AE2E-5307B6F4004A",
            "versionEndIncluding": "8.0.8",
            "versionStartIncluding": "8.0.6",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:financial_services_basel_regulatory_capital_basic:8.1.0:*:*:*:*:*:*:*",
            "matchCriteriaId": "8A566893-8DCF-49E4-93D0-0ACCEFD70D3D",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:financial_services_basel_regulatory_capital_internal_ratings_based_approach:*:*:*:*:*:*:*:*",
            "matchCriteriaId": "B37FC113-4F40-4D29-8712-7AD250373008",
            "versionEndIncluding": "8.0.8",
            "versionStartIncluding": "8.0.6",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:financial_services_basel_regulatory_capital_internal_ratings_based_approach:8.1.0:*:*:*:*:*:*:*",
            "matchCriteriaId": "00E5D719-249D-48B8-BAFC-1E14D250B3F6",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:financial_services_data_foundation:*:*:*:*:*:*:*:*",
            "matchCriteriaId": "712577A9-04D6-4579-A82B-72200E467399",
            "versionEndIncluding": "8.1.0",
            "versionStartIncluding": "8.0.6",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:financial_services_data_governance_for_us_regulatory_reporting:*:*:*:*:*:*:*:*",
            "matchCriteriaId": "672949B4-1989-4AA7-806F-EEC07D07F317",
            "versionEndIncluding": "8.0.9",
            "versionStartIncluding": "8.0.6",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:financial_services_data_integration_hub:8.0.6:*:*:*:*:*:*:*",
            "matchCriteriaId": "987A0C35-4C7F-4FFB-B47B-37B69A32F879",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:financial_services_data_integration_hub:8.0.7:*:*:*:*:*:*:*",
            "matchCriteriaId": "8B3B6BE3-4C5A-402F-832C-86A0A6234C25",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:financial_services_data_integration_hub:8.1.0:*:*:*:*:*:*:*",
            "matchCriteriaId": "9476D1DA-C8A8-40A0-94DD-9B46C05FD461",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:financial_services_funds_transfer_pricing:8.0.6:*:*:*:*:*:*:*",
            "matchCriteriaId": "34070F24-2E53-43EC-9117-E1434B2C4C2B",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:financial_services_funds_transfer_pricing:8.0.7:*:*:*:*:*:*:*",
            "matchCriteriaId": "B9B2C2F6-235F-4E78-A299-18C041C05C9A",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:financial_services_funds_transfer_pricing:8.1.0:*:*:*:*:*:*:*",
            "matchCriteriaId": "F727AAC6-6D9F-4B28-B07C-6A93916C43A3",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:financial_services_hedge_management_and_ifrs_valuations:*:*:*:*:*:*:*:*",
            "matchCriteriaId": "6662C783-5B5C-4559-89F5-1A681AA46A3E",
            "versionEndIncluding": "8.0.8",
            "versionStartIncluding": "8.0.6",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:financial_services_hedge_management_and_ifrs_valuations:8.1.0:*:*:*:*:*:*:*",
            "matchCriteriaId": "51C17460-D326-4525-A7D1-0AED53E75E18",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:financial_services_institutional_performance_analytics:8.0.6:*:*:*:*:*:*:*",
            "matchCriteriaId": "37C8EE84-A840-4132-B331-C7D450B1FBBF",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:financial_services_institutional_performance_analytics:8.0.7:*:*:*:*:*:*:*",
            "matchCriteriaId": "1D8436A2-9CA3-4C91-B632-9B03368ABC1B",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:financial_services_institutional_performance_analytics:8.1.0:*:*:*:*:*:*:*",
            "matchCriteriaId": "A00142E6-EEB3-44BD-AB0D-0E5C5640557F",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:financial_services_liquidity_risk_management:8.0.6:*:*:*:*:*:*:*",
            "matchCriteriaId": "6149C89E-0111-4CF9-90CA-0662D2F75E04",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:financial_services_liquidity_risk_measurement_and_management:8.0.7:*:*:*:*:*:*:*",
            "matchCriteriaId": "6CDDF6CA-6441-4606-9D2F-22A67BA46978",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:financial_services_liquidity_risk_measurement_and_management:8.0.8:*:*:*:*:*:*:*",
            "matchCriteriaId": "6FA0B592-A216-4320-A4FE-ABCA6B3E7D7A",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:financial_services_liquidity_risk_measurement_and_management:8.1.0:*:*:*:*:*:*:*",
            "matchCriteriaId": "CEA4D6CF-D54A-40DF-9B70-E13392D0BE19",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:financial_services_loan_loss_forecasting_and_provisioning:*:*:*:*:*:*:*:*",
            "matchCriteriaId": "2A333755-4B6E-4A0F-AC48-4CEA70CD5801",
            "versionEndIncluding": "8.0.8",
            "versionStartIncluding": "8.0.6",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:financial_services_loan_loss_forecasting_and_provisioning:8.1.0:*:*:*:*:*:*:*",
            "matchCriteriaId": "397B1A24-7C95-4A73-8363-4529A7F6CFCC",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:financial_services_market_risk_measurement_and_management:8.0.6:*:*:*:*:*:*:*",
            "matchCriteriaId": "EF6D5112-4055-4F89-A5B3-0DCB109481B7",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:financial_services_market_risk_measurement_and_management:8.0.8:*:*:*:*:*:*:*",
            "matchCriteriaId": "D262848E-AA24-4057-A747-6221BA22ADF4",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:financial_services_price_creation_and_discovery:8.0.6:*:*:*:*:*:*:*",
            "matchCriteriaId": "4A01F8ED-64DA-43BC-9C02-488010BCD0F4",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:financial_services_price_creation_and_discovery:8.0.7:*:*:*:*:*:*:*",
            "matchCriteriaId": "75638A6A-88B2-4BC7-84EA-1CF5FC30D555",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:financial_services_profitability_management:8.0.6:*:*:*:*:*:*:*",
            "matchCriteriaId": "501B9331-6BB7-44BF-A664-180CAFABF88C",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:financial_services_profitability_management:8.0.7:*:*:*:*:*:*:*",
            "matchCriteriaId": "F2A3AE3C-8E24-4FB6-9954-9B50CBD59B21",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:financial_services_profitability_management:8.1.0:*:*:*:*:*:*:*",
            "matchCriteriaId": "F8E565DA-91BE-44FC-A28F-579BE8D2281A",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:financial_services_regulatory_reporting_for_european_banking_authority:*:*:*:*:*:*:*:*",
            "matchCriteriaId": "AED72F90-3B68-45AC-865C-110F7FD30D37",
            "versionEndIncluding": "8.1.0",
            "versionStartIncluding": "8.0.6",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:financial_services_regulatory_reporting_for_us_federal_reserve:*:*:*:*:*:*:*:*",
            "matchCriteriaId": "4F909C61-1A74-402C-B74F-BAF7297875B0",
            "versionEndIncluding": "8.0.9",
            "versionStartIncluding": "8.0.6",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:healthcare_foundation:7.1.1:*:*:*:*:*:*:*",
            "matchCriteriaId": "26A1F27B-C3AC-4D13-B9B2-2D6CF65D07BC",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:healthcare_foundation:7.2.0:*:*:*:*:*:*:*",
            "matchCriteriaId": "B95E8056-51D8-4390-ADE3-661B7AE1D7CE",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:healthcare_foundation:7.2.1:*:*:*:*:*:*:*",
            "matchCriteriaId": "609D6EDF-D4D0-4370-9B8B-CA39D41946C0",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:healthcare_foundation:7.3.0:*:*:*:*:*:*:*",
            "matchCriteriaId": "9059A907-508B-4844-8D7B-0FA68C0DF6A6",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:hospitality_materials_control:18.1:*:*:*:*:*:*:*",
            "matchCriteriaId": "2AC63D10-2326-4542-B345-31D45B9A7408",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:hospitality_simphony:*:*:*:*:*:*:*:*",
            "matchCriteriaId": "7BFD7783-BE15-421C-A550-7FE15AB53ABF",
            "versionEndIncluding": "19.1.2",
            "versionStartIncluding": "19.1.0",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:hospitality_simphony:18.1:*:*:*:*:*:*:*",
            "matchCriteriaId": "1F7BF047-03C5-4A60-B718-E222B16DBF41",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:hospitality_simphony:18.2:*:*:*:*:*:*:*",
            "matchCriteriaId": "E3A73D81-3E1A-42E6-AB96-835CDD5905F2",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:insurance_accounting_analyzer:8.0.9:*:*:*:*:*:*:*",
            "matchCriteriaId": "66136D6D-FC52-40DB-B7B6-BA8B7758CE16",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:insurance_allocation_manager_for_enterprise_profitability:8.0.8:*:*:*:*:*:*:*",
            "matchCriteriaId": "06514F46-544B-4404-B45C-C9584EBC3131",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:insurance_allocation_manager_for_enterprise_profitability:8.1.0:*:*:*:*:*:*:*",
            "matchCriteriaId": "3BD4BF9A-BF38-460D-974D-5B3255AAF946",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:insurance_data_foundation:*:*:*:*:*:*:*:*",
            "matchCriteriaId": "B7DB4831-F874-4D9D-AB58-BE4A554891EA",
            "versionEndIncluding": "8.1.0",
            "versionStartIncluding": "8.0.6",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:insurance_insbridge_rating_and_underwriting:*:*:*:*:*:*:*:*",
            "matchCriteriaId": "B47C73D0-BE89-4D87-8765-12C507F13AFF",
            "versionEndIncluding": "5.6.0.0",
            "versionStartIncluding": "5.0.0.0",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:insurance_insbridge_rating_and_underwriting:5.6.1.0:*:*:*:*:*:*:*",
            "matchCriteriaId": "5B8AA91A-1880-43CD-938D-48EF58ACF2CF",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:jdeveloper:11.1.1.9.0:*:*:*:*:*:*:*",
            "matchCriteriaId": "A7506589-9B3B-49BA-B826-774BFDCC45B8",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:jdeveloper:12.2.1.3.0:*:*:*:*:*:*:*",
            "matchCriteriaId": "228DA523-4D6D-48C5-BDB0-DB1A60F23F8B",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:jdeveloper:12.2.1.4.0:*:*:*:*:*:*:*",
            "matchCriteriaId": "335AB6A7-3B1F-4FA8-AF08-7D64C16C4B04",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:peoplesoft_enterprise_peopletools:8.56:*:*:*:*:*:*:*",
            "matchCriteriaId": "D0A735B4-4F3C-416B-8C08-9CB21BAD2889",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:peoplesoft_enterprise_peopletools:8.57:*:*:*:*:*:*:*",
            "matchCriteriaId": "7E1E416B-920B-49A0-9523-382898C2979D",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:peoplesoft_enterprise_peopletools:8.58:*:*:*:*:*:*:*",
            "matchCriteriaId": "D9DB4A14-2EF5-4B54-95D2-75E6CF9AA0A9",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:policy_automation:*:*:*:*:*:*:*:*",
            "matchCriteriaId": "15512D27-7BEB-4DDD-9A1B-447FC7156E3D",
            "versionEndIncluding": "12.2.20",
            "versionStartIncluding": "12.2.0",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:policy_automation_connector_for_siebel:10.4.6:*:*:*:*:*:*:*",
            "matchCriteriaId": "0DB5E2C7-9C68-4D3B-95AD-9CBF65DE1E94",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:policy_automation_for_mobile_devices:*:*:*:*:*:*:*:*",
            "matchCriteriaId": "90F0B2AB-453C-4585-8753-74D17BD20C79",
            "versionEndIncluding": "12.2.20",
            "versionStartIncluding": "12.2.0",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:retail_back_office:14.0:*:*:*:*:*:*:*",
            "matchCriteriaId": "31C7EEA3-AA72-48DA-A112-2923DBB37773",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:retail_back_office:14.1:*:*:*:*:*:*:*",
            "matchCriteriaId": "F0735989-13BD-40B3-B954-AC0529C5B53D",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:retail_customer_management_and_segmentation_foundation:19.0:*:*:*:*:*:*:*",
            "matchCriteriaId": "9EFAEA84-E376-40A2-8C9F-3E0676FEC527",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:retail_returns_management:14.0:*:*:*:*:*:*:*",
            "matchCriteriaId": "959316A8-C3AF-4126-A242-3835ED0AD1E8",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:retail_returns_management:14.1:*:*:*:*:*:*:*",
            "matchCriteriaId": "BDB925C6-2CBC-4D88-B9EA-F246F4F7A206",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:siebel_ui_framework:20.8:*:*:*:*:*:*:*",
            "matchCriteriaId": "98B9198C-11DF-4E80-ACFC-DC719CED8C7E",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:storagetek_acsls:8.5.1:*:*:*:*:*:*:*",
            "matchCriteriaId": "6953CFDB-33C0-4B8E-BBBD-E460A17E8ED3",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:weblogic_server:10.3.6.0.0:*:*:*:*:*:*:*",
            "matchCriteriaId": "B40B13B7-68B3-4510-968C-6A730EB46462",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:weblogic_server:12.1.3.0.0:*:*:*:*:*:*:*",
            "matchCriteriaId": "C93CC705-1F8C-4870-99E6-14BF264C3811",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:weblogic_server:12.2.1.3.0:*:*:*:*:*:*:*",
            "matchCriteriaId": "F14A818F-AA16-4438-A3E4-E64C9287AC66",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:weblogic_server:12.2.1.4.0:*:*:*:*:*:*:*",
            "matchCriteriaId": "4A5BB153-68E0-4DDA-87D1-0D9AB7F0A418",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:weblogic_server:14.1.1.0.0:*:*:*:*:*:*:*",
            "matchCriteriaId": "04BCDC24-4A21-473C-8733-0D9CFB38A752",
            "vulnerable": true
          }
        ],
        "negate": false,
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:netapp:max_data:-:*:*:*:*:*:*:*",
            "matchCriteriaId": "FD1FCB0D-3E19-4461-9330-4D7F02972A35",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:netapp:oncommand_insight:-:*:*:*:*:*:*:*",
            "matchCriteriaId": "F1BE6C1F-2565-4E97-92AA-16563E5660A5",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:netapp:oncommand_system_manager:*:*:*:*:*:*:*:*",
            "matchCriteriaId": "B9273745-6408-4CD3-94E8-9385D4F5FE69",
            "versionEndIncluding": "3.1.3",
            "versionStartIncluding": "3.0",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:netapp:snap_creator_framework:-:*:*:*:*:*:*:*",
            "matchCriteriaId": "9F4754FB-E3EB-454A-AB1A-AE3835C5350C",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:netapp:snapcenter:-:*:*:*:*:*:*:*",
            "matchCriteriaId": "BDFB1169-41A0-4A86-8E4F-FDA9730B1E94",
            "vulnerable": true
          }
        ],
        "negate": false,
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:netapp:h300s_firmware:-:*:*:*:*:*:*:*",
            "matchCriteriaId": "6770B6C3-732E-4E22-BF1C-2D2FD610061C",
            "vulnerable": true
          }
        ],
        "negate": false,
        "operator": "OR"
      },
      {
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:netapp:h300s:-:*:*:*:*:*:*:*",
            "matchCriteriaId": "9F9C8C20-42EB-4AB5-BD97-212DEB070C43",
            "vulnerable": false
          }
        ],
        "negate": false,
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:netapp:h500s_firmware:-:*:*:*:*:*:*:*",
            "matchCriteriaId": "7FFF7106-ED78-49BA-9EC5-B889E3685D53",
            "vulnerable": true
          }
        ],
        "negate": false,
        "operator": "OR"
      },
      {
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:netapp:h500s:-:*:*:*:*:*:*:*",
            "matchCriteriaId": "E63D8B0F-006E-4801-BF9D-1C001BBFB4F9",
            "vulnerable": false
          }
        ],
        "negate": false,
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:netapp:h700s_firmware:-:*:*:*:*:*:*:*",
            "matchCriteriaId": "56409CEC-5A1E-4450-AA42-641E459CC2AF",
            "vulnerable": true
          }
        ],
        "negate": false,
        "operator": "OR"
      },
      {
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:netapp:h700s:-:*:*:*:*:*:*:*",
            "matchCriteriaId": "B06F4839-D16A-4A61-9BB5-55B13F41E47F",
            "vulnerable": false
          }
        ],
        "negate": false,
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:netapp:h300e_firmware:-:*:*:*:*:*:*:*",
            "matchCriteriaId": "108A2215-50FB-4074-94CF-C130FA14566D",
            "vulnerable": true
          }
        ],
        "negate": false,
        "operator": "OR"
      },
      {
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:netapp:h300e:-:*:*:*:*:*:*:*",
            "matchCriteriaId": "7AFC73CE-ABB9-42D3-9A71-3F5BC5381E0E",
            "vulnerable": false
          }
        ],
        "negate": false,
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:netapp:h500e_firmware:-:*:*:*:*:*:*:*",
            "matchCriteriaId": "32F0B6C0-F930-480D-962B-3F4EFDCC13C7",
            "vulnerable": true
          }
        ],
        "negate": false,
        "operator": "OR"
      },
      {
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:netapp:h500e:-:*:*:*:*:*:*:*",
            "matchCriteriaId": "803BC414-B250-4E3A-A478-A3881340D6B8",
            "vulnerable": false
          }
        ],
        "negate": false,
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:netapp:h700e_firmware:-:*:*:*:*:*:*:*",
            "matchCriteriaId": "0FEB3337-BFDE-462A-908B-176F92053CEC",
            "vulnerable": true
          }
        ],
        "negate": false,
        "operator": "OR"
      },
      {
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:netapp:h700e:-:*:*:*:*:*:*:*",
            "matchCriteriaId": "736AEAE9-782B-4F71-9893-DED53367E102",
            "vulnerable": false
          }
        ],
        "negate": false,
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:netapp:h410s_firmware:-:*:*:*:*:*:*:*",
            "matchCriteriaId": "D0B4AD8A-F172-4558-AEC6-FF424BA2D912",
            "vulnerable": true
          }
        ],
        "negate": false,
        "operator": "OR"
      },
      {
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:netapp:h410s:-:*:*:*:*:*:*:*",
            "matchCriteriaId": "8497A4C9-8474-4A62-8331-3FE862ED4098",
            "vulnerable": false
          }
        ],
        "negate": false,
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:netapp:h410c_firmware:-:*:*:*:*:*:*:*",
            "matchCriteriaId": "234DEFE0-5CE5-4B0A-96B8-5D227CB8ED31",
            "vulnerable": true
          }
        ],
        "negate": false,
        "operator": "OR"
      },
      {
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:netapp:h410c:-:*:*:*:*:*:*:*",
            "matchCriteriaId": "CDDF61B7-EC5C-467C-B710-B89F502CD04F",
            "vulnerable": false
          }
        ],
        "negate": false,
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:opensuse:leap:15.1:*:*:*:*:*:*:*",
            "matchCriteriaId": "B620311B-34A3-48A6-82DF-6F078D7A4493",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:opensuse:leap:15.2:*:*:*:*:*:*:*",
            "matchCriteriaId": "B009C22E-30A4-4288-BCF6-C3E81DEAF45A",
            "vulnerable": true
          }
        ],
        "negate": false,
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:tenable:log_correlation_engine:*:*:*:*:*:*:*:*",
            "matchCriteriaId": "4ACF85D6-6B45-43DA-9C01-F0208186F014",
            "versionEndExcluding": "6.0.9",
            "vulnerable": true
          }
        ],
        "negate": false,
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:oracle:agile_product_supplier_collaboration_for_process:6.2.0.0:*:*:*:*:*:*:*",
            "matchCriteriaId": "CA6F2E4C-C935-40CF-972E-8C3D8A912134",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:banking_digital_experience:*:*:*:*:*:*:*:*",
            "matchCriteriaId": "59830587-A6B0-4642-B566-6FD8792F7716",
            "versionEndIncluding": "20.1",
            "versionStartIncluding": "18.1",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:communications_application_session_controller:3.8m0:*:*:*:*:*:*:*",
            "matchCriteriaId": "B796AC70-A220-48D8-B8CD-97CF57227962",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:communications_billing_and_revenue_management:7.5.0.23.0:*:*:*:*:*:*:*",
            "matchCriteriaId": "790A89FD-6B86-49AE-9B4F-AE7262915E13",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:communications_billing_and_revenue_management:12.0.0.3.0:*:*:*:*:*:*:*",
            "matchCriteriaId": "E39D442D-1997-49AF-8B02-5640BE2A26CC",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:communications_diameter_signaling_router_idih\\::*:*:*:*:*:*:*:*",
            "matchCriteriaId": "FAFED7F5-03FA-43B5-AD13-1130F0324448",
            "versionEndIncluding": "8.2.2",
            "versionStartIncluding": "8.0.0",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:communications_webrtc_session_controller:7.2:*:*:*:*:*:*:*",
            "matchCriteriaId": "726DB59B-00C7-444E-83F7-CB31032482AB",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:enterprise_manager_ops_center:12.4.0.0:*:*:*:*:*:*:*",
            "matchCriteriaId": "B095CC03-7077-4A58-AB25-CC5380CDCE5A",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:enterprise_session_border_controller:8.4:*:*:*:*:*:*:*",
            "matchCriteriaId": "7015A8CB-8FA6-423E-8307-BD903244F517",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:financial_services_analytical_applications_infrastructure:*:*:*:*:*:*:*:*",
            "matchCriteriaId": "021014B2-DC51-481C-BCFE-5857EFBDEDDA",
            "versionEndIncluding": "8.1.0",
            "versionStartIncluding": "8.0.6",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:financial_services_analytical_applications_reconciliation_framework:*:*:*:*:*:*:*:*",
            "matchCriteriaId": "AD080793-FC45-4260-8E45-40E228F432FC",
            "versionEndIncluding": "8.0.8",
            "versionStartIncluding": "8.0.6",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:financial_services_analytical_applications_reconciliation_framework:8.1.0:*:*:*:*:*:*:*",
            "matchCriteriaId": "2ACA29E6-F393-46E5-B2B3-9158077819A9",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:financial_services_asset_liability_management:8.0.6:*:*:*:*:*:*:*",
            "matchCriteriaId": "FCD1EC13-CC2F-4668-90D2-D8609066F2DF",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:financial_services_asset_liability_management:8.0.7:*:*:*:*:*:*:*",
            "matchCriteriaId": "4D614F76-0AA1-4EA8-A24A-38EFC90EF5DB",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:financial_services_asset_liability_management:8.1.0:*:*:*:*:*:*:*",
            "matchCriteriaId": "39B8DFFF-B037-4F29-8C8E-F4BBC3435199",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:financial_services_balance_sheet_planning:8.0.8:*:*:*:*:*:*:*",
            "matchCriteriaId": "4D0D0EAC-300D-44B1-AD4A-93A368D5DBA1",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:financial_services_basel_regulatory_capital_basic:*:*:*:*:*:*:*:*",
            "matchCriteriaId": "C5E0646D-4866-41FB-AE2E-5307B6F4004A",
            "versionEndIncluding": "8.0.8",
            "versionStartIncluding": "8.0.6",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:financial_services_basel_regulatory_capital_basic:8.1.0:*:*:*:*:*:*:*",
            "matchCriteriaId": "8A566893-8DCF-49E4-93D0-0ACCEFD70D3D",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:financial_services_basel_regulatory_capital_internal_ratings_based_approach:*:*:*:*:*:*:*:*",
            "matchCriteriaId": "B37FC113-4F40-4D29-8712-7AD250373008",
            "versionEndIncluding": "8.0.8",
            "versionStartIncluding": "8.0.6",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:financial_services_basel_regulatory_capital_internal_ratings_based_approach:8.1.0:*:*:*:*:*:*:*",
            "matchCriteriaId": "00E5D719-249D-48B8-BAFC-1E14D250B3F6",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:financial_services_data_foundation:*:*:*:*:*:*:*:*",
            "matchCriteriaId": "712577A9-04D6-4579-A82B-72200E467399",
            "versionEndIncluding": "8.1.0",
            "versionStartIncluding": "8.0.6",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:financial_services_data_governance_for_us_regulatory_reporting:*:*:*:*:*:*:*:*",
            "matchCriteriaId": "672949B4-1989-4AA7-806F-EEC07D07F317",
            "versionEndIncluding": "8.0.9",
            "versionStartIncluding": "8.0.6",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:financial_services_data_integration_hub:8.0.6:*:*:*:*:*:*:*",
            "matchCriteriaId": "987A0C35-4C7F-4FFB-B47B-37B69A32F879",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:financial_services_data_integration_hub:8.0.7:*:*:*:*:*:*:*",
            "matchCriteriaId": "8B3B6BE3-4C5A-402F-832C-86A0A6234C25",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:financial_services_data_integration_hub:8.1.0:*:*:*:*:*:*:*",
            "matchCriteriaId": "9476D1DA-C8A8-40A0-94DD-9B46C05FD461",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:financial_services_funds_transfer_pricing:8.0.6:*:*:*:*:*:*:*",
            "matchCriteriaId": "34070F24-2E53-43EC-9117-E1434B2C4C2B",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:financial_services_funds_transfer_pricing:8.0.7:*:*:*:*:*:*:*",
            "matchCriteriaId": "B9B2C2F6-235F-4E78-A299-18C041C05C9A",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:financial_services_funds_transfer_pricing:8.1.0:*:*:*:*:*:*:*",
            "matchCriteriaId": "F727AAC6-6D9F-4B28-B07C-6A93916C43A3",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:financial_services_hedge_management_and_ifrs_valuations:*:*:*:*:*:*:*:*",
            "matchCriteriaId": "6662C783-5B5C-4559-89F5-1A681AA46A3E",
            "versionEndIncluding": "8.0.8",
            "versionStartIncluding": "8.0.6",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:financial_services_hedge_management_and_ifrs_valuations:8.1.0:*:*:*:*:*:*:*",
            "matchCriteriaId": "51C17460-D326-4525-A7D1-0AED53E75E18",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:financial_services_institutional_performance_analytics:8.0.6:*:*:*:*:*:*:*",
            "matchCriteriaId": "37C8EE84-A840-4132-B331-C7D450B1FBBF",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:financial_services_institutional_performance_analytics:8.0.7:*:*:*:*:*:*:*",
            "matchCriteriaId": "1D8436A2-9CA3-4C91-B632-9B03368ABC1B",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:financial_services_institutional_performance_analytics:8.1.0:*:*:*:*:*:*:*",
            "matchCriteriaId": "A00142E6-EEB3-44BD-AB0D-0E5C5640557F",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:financial_services_liquidity_risk_management:8.0.6:*:*:*:*:*:*:*",
            "matchCriteriaId": "6149C89E-0111-4CF9-90CA-0662D2F75E04",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:financial_services_liquidity_risk_measurement_and_management:8.0.7:*:*:*:*:*:*:*",
            "matchCriteriaId": "6CDDF6CA-6441-4606-9D2F-22A67BA46978",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:financial_services_liquidity_risk_measurement_and_management:8.0.8:*:*:*:*:*:*:*",
            "matchCriteriaId": "6FA0B592-A216-4320-A4FE-ABCA6B3E7D7A",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:financial_services_liquidity_risk_measurement_and_management:8.1.0:*:*:*:*:*:*:*",
            "matchCriteriaId": "CEA4D6CF-D54A-40DF-9B70-E13392D0BE19",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:financial_services_loan_loss_forecasting_and_provisioning:*:*:*:*:*:*:*:*",
            "matchCriteriaId": "2A333755-4B6E-4A0F-AC48-4CEA70CD5801",
            "versionEndIncluding": "8.0.8",
            "versionStartIncluding": "8.0.6",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:financial_services_loan_loss_forecasting_and_provisioning:8.1.0:*:*:*:*:*:*:*",
            "matchCriteriaId": "397B1A24-7C95-4A73-8363-4529A7F6CFCC",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:financial_services_market_risk_measurement_and_management:8.0.6:*:*:*:*:*:*:*",
            "matchCriteriaId": "EF6D5112-4055-4F89-A5B3-0DCB109481B7",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:financial_services_market_risk_measurement_and_management:8.0.8:*:*:*:*:*:*:*",
            "matchCriteriaId": "D262848E-AA24-4057-A747-6221BA22ADF4",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:financial_services_price_creation_and_discovery:8.0.6:*:*:*:*:*:*:*",
            "matchCriteriaId": "4A01F8ED-64DA-43BC-9C02-488010BCD0F4",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:financial_services_price_creation_and_discovery:8.0.7:*:*:*:*:*:*:*",
            "matchCriteriaId": "75638A6A-88B2-4BC7-84EA-1CF5FC30D555",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:financial_services_profitability_management:8.0.6:*:*:*:*:*:*:*",
            "matchCriteriaId": "501B9331-6BB7-44BF-A664-180CAFABF88C",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:financial_services_profitability_management:8.0.7:*:*:*:*:*:*:*",
            "matchCriteriaId": "F2A3AE3C-8E24-4FB6-9954-9B50CBD59B21",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:financial_services_profitability_management:8.1.0:*:*:*:*:*:*:*",
            "matchCriteriaId": "F8E565DA-91BE-44FC-A28F-579BE8D2281A",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:financial_services_regulatory_reporting_for_european_banking_authority:*:*:*:*:*:*:*:*",
            "matchCriteriaId": "AED72F90-3B68-45AC-865C-110F7FD30D37",
            "versionEndIncluding": "8.1.0",
            "versionStartIncluding": "8.0.6",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:financial_services_regulatory_reporting_for_us_federal_reserve:*:*:*:*:*:*:*:*",
            "matchCriteriaId": "4F909C61-1A74-402C-B74F-BAF7297875B0",
            "versionEndIncluding": "8.0.9",
            "versionStartIncluding": "8.0.6",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:healthcare_foundation:7.1.1:*:*:*:*:*:*:*",
            "matchCriteriaId": "26A1F27B-C3AC-4D13-B9B2-2D6CF65D07BC",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:healthcare_foundation:7.2.0:*:*:*:*:*:*:*",
            "matchCriteriaId": "B95E8056-51D8-4390-ADE3-661B7AE1D7CE",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:healthcare_foundation:7.2.1:*:*:*:*:*:*:*",
            "matchCriteriaId": "609D6EDF-D4D0-4370-9B8B-CA39D41946C0",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:healthcare_foundation:7.3.0:*:*:*:*:*:*:*",
            "matchCriteriaId": "9059A907-508B-4844-8D7B-0FA68C0DF6A6",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:hospitality_materials_control:18.1:*:*:*:*:*:*:*",
            "matchCriteriaId": "2AC63D10-2326-4542-B345-31D45B9A7408",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:hospitality_simphony:18.1:*:*:*:*:*:*:*",
            "matchCriteriaId": "1F7BF047-03C5-4A60-B718-E222B16DBF41",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:hospitality_simphony:18.2:*:*:*:*:*:*:*",
            "matchCriteriaId": "E3A73D81-3E1A-42E6-AB96-835CDD5905F2",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:hospitality_simphony:19.1.0-19.1.2:*:*:*:*:*:*:*",
            "matchCriteriaId": "351F9DE9-2FCE-4BCA-A098-CDFB07E6E4B9",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:insurance_accounting_analyzer:8.0.9:*:*:*:*:*:*:*",
            "matchCriteriaId": "66136D6D-FC52-40DB-B7B6-BA8B7758CE16",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:insurance_allocation_manager_for_enterprise_profitability:8.0.8:*:*:*:*:*:*:*",
            "matchCriteriaId": "06514F46-544B-4404-B45C-C9584EBC3131",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:insurance_allocation_manager_for_enterprise_profitability:8.1.0:*:*:*:*:*:*:*",
            "matchCriteriaId": "3BD4BF9A-BF38-460D-974D-5B3255AAF946",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:insurance_data_foundation:8.0.6-8.1.0:*:*:*:*:*:*:*",
            "matchCriteriaId": "D10745C6-2751-4FD0-BDFA-84C7AB8066BC",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:insurance_insbridge_rating_and_underwriting:*:*:*:*:*:*:*:*",
            "matchCriteriaId": "B47C73D0-BE89-4D87-8765-12C507F13AFF",
            "versionEndIncluding": "5.6.0.0",
            "versionStartIncluding": "5.0.0.0",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:insurance_insbridge_rating_and_underwriting:5.6.1.0:*:*:*:*:*:*:*",
            "matchCriteriaId": "5B8AA91A-1880-43CD-938D-48EF58ACF2CF",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:jdeveloper:11.1.1.9.0:*:*:*:*:*:*:*",
            "matchCriteriaId": "A7506589-9B3B-49BA-B826-774BFDCC45B8",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:jdeveloper:12.2.1.3.0:*:*:*:*:*:*:*",
            "matchCriteriaId": "228DA523-4D6D-48C5-BDB0-DB1A60F23F8B",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:jdeveloper:12.2.1.4.0:*:*:*:*:*:*:*",
            "matchCriteriaId": "335AB6A7-3B1F-4FA8-AF08-7D64C16C4B04",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:peoplesoft_enterprise_peopletools:8.56:*:*:*:*:*:*:*",
            "matchCriteriaId": "D0A735B4-4F3C-416B-8C08-9CB21BAD2889",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:peoplesoft_enterprise_peopletools:8.57:*:*:*:*:*:*:*",
            "matchCriteriaId": "7E1E416B-920B-49A0-9523-382898C2979D",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:peoplesoft_enterprise_peopletools:8.58:*:*:*:*:*:*:*",
            "matchCriteriaId": "D9DB4A14-2EF5-4B54-95D2-75E6CF9AA0A9",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:policy_automation:*:*:*:*:*:*:*:*",
            "matchCriteriaId": "15512D27-7BEB-4DDD-9A1B-447FC7156E3D",
            "versionEndIncluding": "12.2.20",
            "versionStartIncluding": "12.2.0",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:policy_automation_connector_for_siebel:10.4.6:*:*:*:*:*:*:*",
            "matchCriteriaId": "0DB5E2C7-9C68-4D3B-95AD-9CBF65DE1E94",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:policy_automation_for_mobile_devices:*:*:*:*:*:*:*:*",
            "matchCriteriaId": "90F0B2AB-453C-4585-8753-74D17BD20C79",
            "versionEndIncluding": "12.2.20",
            "versionStartIncluding": "12.2.0",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:retail_back_office:14.0:*:*:*:*:*:*:*",
            "matchCriteriaId": "31C7EEA3-AA72-48DA-A112-2923DBB37773",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:retail_back_office:14.1:*:*:*:*:*:*:*",
            "matchCriteriaId": "F0735989-13BD-40B3-B954-AC0529C5B53D",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:retail_customer_management_and_segmentation_foundation:19.0:*:*:*:*:*:*:*",
            "matchCriteriaId": "9EFAEA84-E376-40A2-8C9F-3E0676FEC527",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:retail_returns_management:14.0:*:*:*:*:*:*:*",
            "matchCriteriaId": "959316A8-C3AF-4126-A242-3835ED0AD1E8",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:retail_returns_management:14.1:*:*:*:*:*:*:*",
            "matchCriteriaId": "BDB925C6-2CBC-4D88-B9EA-F246F4F7A206",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:siebel_ui_framework:20.8:*:*:*:*:*:*:*",
            "matchCriteriaId": "98B9198C-11DF-4E80-ACFC-DC719CED8C7E",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:weblogic_server:10.3.6.0.0:*:*:*:*:*:*:*",
            "matchCriteriaId": "B40B13B7-68B3-4510-968C-6A730EB46462",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:weblogic_server:12.1.3.0.0:*:*:*:*:*:*:*",
            "matchCriteriaId": "C93CC705-1F8C-4870-99E6-14BF264C3811",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:weblogic_server:12.2.1.3.0:*:*:*:*:*:*:*",
            "matchCriteriaId": "F14A818F-AA16-4438-A3E4-E64C9287AC66",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:weblogic_server:12.2.1.4.0:*:*:*:*:*:*:*",
            "matchCriteriaId": "4A5BB153-68E0-4DDA-87D1-0D9AB7F0A418",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:weblogic_server:14.1.1.0.0:*:*:*:*:*:*:*",
            "matchCriteriaId": "04BCDC24-4A21-473C-8733-0D9CFB38A752",
            "vulnerable": true
          }
        ],
        "negate": false,
        "operator": "OR"
      }
    ]
  }
]
References

Sources include official advisories and independent security research.
Overview

Risk scores

CVSS 3.1

CVSS 2.0

Weaknesses

Social media

Configurations

Related CVEs

References
