cvelistv5 - CVE-2015-8010

CVE-2015-8010 (GCVE-0-2015-8010)

Vulnerability from cvelistv5

Published

2017-03-27 17:00

Modified

2024-08-06 08:06

Severity ?

CWE

Summary

Cross-site scripting (XSS) vulnerability in the Classic-UI with the CSV export link and pagination feature in Icinga before 1.14 allows remote attackers to inject arbitrary web script or HTML via the query string to cgi-bin/status.cgi.

References

URL

	Vendor	Product	Version
	n/a	n/a	Version: n/a

gsd-2015-8010

Vulnerability from gsd

Modified

2023-12-13 01:20

Details

Aliases

CVE-2015-8010

Aliases

CVE-2015-8010

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2015-8010",
    "description": "Cross-site scripting (XSS) vulnerability in the Classic-UI with the CSV export link and pagination feature in Icinga before 1.14 allows remote attackers to inject arbitrary web script or HTML via the query string to cgi-bin/status.cgi.",
    "id": "GSD-2015-8010",
    "references": [
      "https://www.suse.com/security/cve/CVE-2015-8010.html"
    ]
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2015-8010"
      ],
      "details": "Cross-site scripting (XSS) vulnerability in the Classic-UI with the CSV export link and pagination feature in Icinga before 1.14 allows remote attackers to inject arbitrary web script or HTML via the query string to cgi-bin/status.cgi.",
      "id": "GSD-2015-8010",
      "modified": "2023-12-13T01:20:03.201413Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "cve@mitre.org",
        "ID": "CVE-2015-8010",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "n/a",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "n/a"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "n/a"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "Cross-site scripting (XSS) vulnerability in the Classic-UI with the CSV export link and pagination feature in Icinga before 1.14 allows remote attackers to inject arbitrary web script or HTML via the query string to cgi-bin/status.cgi."
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "n/a"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "https://github.com/Icinga/icinga-core/issues/1563",
            "refsource": "CONFIRM",
            "url": "https://github.com/Icinga/icinga-core/issues/1563"
          },
          {
            "name": "[oss-security] 20151029 Re: CVE request - Icinga 1.13.3 and older are vulnerable to XSS",
            "refsource": "MLIST",
            "url": "http://www.openwall.com/lists/oss-security/2015/10/29/15"
          },
          {
            "name": "openSUSE-SU-2017:0146",
            "refsource": "SUSE",
            "url": "http://lists.opensuse.org/opensuse-security-announce/2017-01/msg00019.html"
          },
          {
            "name": "97145",
            "refsource": "BID",
            "url": "http://www.securityfocus.com/bid/97145"
          },
          {
            "name": "[oss-security] 20151023 CVE request - Icinga 1.13.3 and older are vulnerable to XSS",
            "refsource": "MLIST",
            "url": "http://www.openwall.com/lists/oss-security/2015/10/23/15"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:a:icinga:icinga:*:*:*:*:*:*:*:*",
                "cpe_name": [],
                "versionEndIncluding": "1.13.4",
                "vulnerable": true
              }
            ],
            "operator": "OR"
          },
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:o:opensuse:leap:42.2:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:opensuse_project:leap:42.1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2015-8010"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "Cross-site scripting (XSS) vulnerability in the Classic-UI with the CSV export link and pagination feature in Icinga before 1.14 allows remote attackers to inject arbitrary web script or HTML via the query string to cgi-bin/status.cgi."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "CWE-79"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://github.com/Icinga/icinga-core/issues/1563",
              "refsource": "CONFIRM",
              "tags": [
                "Patch",
                "Third Party Advisory"
              ],
              "url": "https://github.com/Icinga/icinga-core/issues/1563"
            },
            {
              "name": "[oss-security] 20151029 Re: CVE request - Icinga 1.13.3 and older are vulnerable to XSS",
              "refsource": "MLIST",
              "tags": [
                "Mailing List",
                "Third Party Advisory"
              ],
              "url": "http://www.openwall.com/lists/oss-security/2015/10/29/15"
            },
            {
              "name": "[oss-security] 20151023 CVE request - Icinga 1.13.3 and older are vulnerable to XSS",
              "refsource": "MLIST",
              "tags": [
                "Mailing List",
                "Third Party Advisory"
              ],
              "url": "http://www.openwall.com/lists/oss-security/2015/10/23/15"
            },
            {
              "name": "openSUSE-SU-2017:0146",
              "refsource": "SUSE",
              "tags": [
                "Third Party Advisory"
              ],
              "url": "http://lists.opensuse.org/opensuse-security-announce/2017-01/msg00019.html"
            },
            {
              "name": "97145",
              "refsource": "BID",
              "tags": [],
              "url": "http://www.securityfocus.com/bid/97145"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "cvssV2": {
            "accessComplexity": "MEDIUM",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "NONE",
            "baseScore": 4.3,
            "confidentialityImpact": "NONE",
            "integrityImpact": "PARTIAL",
            "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N",
            "version": "2.0"
          },
          "exploitabilityScore": 8.6,
          "impactScore": 2.9,
          "obtainAllPrivilege": false,
          "obtainOtherPrivilege": false,
          "obtainUserPrivilege": false,
          "severity": "MEDIUM",
          "userInteractionRequired": true
        },
        "baseMetricV3": {
          "cvssV3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 6.1,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "LOW",
            "integrityImpact": "LOW",
            "privilegesRequired": "NONE",
            "scope": "CHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
            "version": "3.0"
          },
          "exploitabilityScore": 2.8,
          "impactScore": 2.7
        }
      },
      "lastModifiedDate": "2018-10-30T16:27Z",
      "publishedDate": "2017-03-27T17:59Z"
    }
  }
}

suse-su-2018:3620-1

Vulnerability from csaf_suse

Published

2018-11-05 16:57

Modified

2018-11-05 16:57

Summary

Security update for icinga

Notes

Title of the patch

Security update for icinga

Description of the patch

This update for icinga fixes the following issues: Security issues fixed: - CVE-2015-8010: Fixed XSS in the icinga classic UI (boo#952777) - CVE-2016-8641 / CVE-2016-10089: fixed a possible symlink attack for files/dirs created by root (boo#1011630 and boo#1018047)

Patchnames

SUSE-SLE-Manager-Tools-12-2018-2580,SUSE-Storage-4-2018-2580

CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://www.suse.com/support/security/rating/",
      "text": "moderate"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright 2024 SUSE LLC. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Security update for icinga",
        "title": "Title of the patch"
      },
      {
        "category": "description",
        "text": "This update for icinga fixes the following issues:\n\nSecurity issues fixed:\n\n- CVE-2015-8010: Fixed XSS in the icinga classic UI (boo#952777)\n- CVE-2016-8641 / CVE-2016-10089: fixed a possible symlink attack for files/dirs created by root (boo#1011630 and boo#1018047)\n\n",
        "title": "Description of the patch"
      },
      {
        "category": "details",
        "text": "SUSE-SLE-Manager-Tools-12-2018-2580,SUSE-Storage-4-2018-2580",
        "title": "Patchnames"
      },
      {
        "category": "legal_disclaimer",
        "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
        "title": "Terms of use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://www.suse.com/support/security/contact/",
      "name": "SUSE Product Security Team",
      "namespace": "https://www.suse.com/"
    },
    "references": [
      {
        "category": "external",
        "summary": "SUSE ratings",
        "url": "https://www.suse.com/support/security/rating/"
      },
      {
        "category": "self",
        "summary": "URL of this CSAF notice",
        "url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2018_3620-1.json"
      },
      {
        "category": "self",
        "summary": "URL for SUSE-SU-2018:3620-1",
        "url": "https://www.suse.com/support/update/announcement/2018/suse-su-20183620-1/"
      },
      {
        "category": "self",
        "summary": "E-Mail link for SUSE-SU-2018:3620-1",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2018-November/004828.html"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1011630",
        "url": "https://bugzilla.suse.com/1011630"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1018047",
        "url": "https://bugzilla.suse.com/1018047"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 952777",
        "url": "https://bugzilla.suse.com/952777"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2015-8010 page",
        "url": "https://www.suse.com/security/cve/CVE-2015-8010/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2016-10089 page",
        "url": "https://www.suse.com/security/cve/CVE-2016-10089/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2016-8641 page",
        "url": "https://www.suse.com/security/cve/CVE-2016-8641/"
      }
    ],
    "title": "Security update for icinga",
    "tracking": {
      "current_release_date": "2018-11-05T16:57:03Z",
      "generator": {
        "date": "2018-11-05T16:57:03Z",
        "engine": {
          "name": "cve-database.git:bin/generate-csaf.pl",
          "version": "1"
        }
      },
      "id": "SUSE-SU-2018:3620-1",
      "initial_release_date": "2018-11-05T16:57:03Z",
      "revision_history": [
        {
          "date": "2018-11-05T16:57:03Z",
          "number": "1",
          "summary": "Current version"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "icinga-1.13.3-12.3.1.aarch64",
                "product": {
                  "name": "icinga-1.13.3-12.3.1.aarch64",
                  "product_id": "icinga-1.13.3-12.3.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "icinga-devel-1.13.3-12.3.1.aarch64",
                "product": {
                  "name": "icinga-devel-1.13.3-12.3.1.aarch64",
                  "product_id": "icinga-devel-1.13.3-12.3.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "icinga-doc-1.13.3-12.3.1.aarch64",
                "product": {
                  "name": "icinga-doc-1.13.3-12.3.1.aarch64",
                  "product_id": "icinga-doc-1.13.3-12.3.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "icinga-idoutils-1.13.3-12.3.1.aarch64",
                "product": {
                  "name": "icinga-idoutils-1.13.3-12.3.1.aarch64",
                  "product_id": "icinga-idoutils-1.13.3-12.3.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "icinga-idoutils-mysql-1.13.3-12.3.1.aarch64",
                "product": {
                  "name": "icinga-idoutils-mysql-1.13.3-12.3.1.aarch64",
                  "product_id": "icinga-idoutils-mysql-1.13.3-12.3.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "icinga-idoutils-oracle-1.13.3-12.3.1.aarch64",
                "product": {
                  "name": "icinga-idoutils-oracle-1.13.3-12.3.1.aarch64",
                  "product_id": "icinga-idoutils-oracle-1.13.3-12.3.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "icinga-idoutils-pgsql-1.13.3-12.3.1.aarch64",
                "product": {
                  "name": "icinga-idoutils-pgsql-1.13.3-12.3.1.aarch64",
                  "product_id": "icinga-idoutils-pgsql-1.13.3-12.3.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "icinga-plugins-downtimes-1.13.3-12.3.1.aarch64",
                "product": {
                  "name": "icinga-plugins-downtimes-1.13.3-12.3.1.aarch64",
                  "product_id": "icinga-plugins-downtimes-1.13.3-12.3.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "icinga-plugins-eventhandlers-1.13.3-12.3.1.aarch64",
                "product": {
                  "name": "icinga-plugins-eventhandlers-1.13.3-12.3.1.aarch64",
                  "product_id": "icinga-plugins-eventhandlers-1.13.3-12.3.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "icinga-www-1.13.3-12.3.1.aarch64",
                "product": {
                  "name": "icinga-www-1.13.3-12.3.1.aarch64",
                  "product_id": "icinga-www-1.13.3-12.3.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "icinga-www-config-1.13.3-12.3.1.aarch64",
                "product": {
                  "name": "icinga-www-config-1.13.3-12.3.1.aarch64",
                  "product_id": "icinga-www-config-1.13.3-12.3.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "monitoring-tools-1.13.3-12.3.1.aarch64",
                "product": {
                  "name": "monitoring-tools-1.13.3-12.3.1.aarch64",
                  "product_id": "monitoring-tools-1.13.3-12.3.1.aarch64"
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "icinga-1.13.3-12.3.1.ppc64le",
                "product": {
                  "name": "icinga-1.13.3-12.3.1.ppc64le",
                  "product_id": "icinga-1.13.3-12.3.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "icinga-devel-1.13.3-12.3.1.ppc64le",
                "product": {
                  "name": "icinga-devel-1.13.3-12.3.1.ppc64le",
                  "product_id": "icinga-devel-1.13.3-12.3.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "icinga-doc-1.13.3-12.3.1.ppc64le",
                "product": {
                  "name": "icinga-doc-1.13.3-12.3.1.ppc64le",
                  "product_id": "icinga-doc-1.13.3-12.3.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "icinga-idoutils-1.13.3-12.3.1.ppc64le",
                "product": {
                  "name": "icinga-idoutils-1.13.3-12.3.1.ppc64le",
                  "product_id": "icinga-idoutils-1.13.3-12.3.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "icinga-idoutils-mysql-1.13.3-12.3.1.ppc64le",
                "product": {
                  "name": "icinga-idoutils-mysql-1.13.3-12.3.1.ppc64le",
                  "product_id": "icinga-idoutils-mysql-1.13.3-12.3.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "icinga-idoutils-oracle-1.13.3-12.3.1.ppc64le",
                "product": {
                  "name": "icinga-idoutils-oracle-1.13.3-12.3.1.ppc64le",
                  "product_id": "icinga-idoutils-oracle-1.13.3-12.3.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "icinga-idoutils-pgsql-1.13.3-12.3.1.ppc64le",
                "product": {
                  "name": "icinga-idoutils-pgsql-1.13.3-12.3.1.ppc64le",
                  "product_id": "icinga-idoutils-pgsql-1.13.3-12.3.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "icinga-plugins-downtimes-1.13.3-12.3.1.ppc64le",
                "product": {
                  "name": "icinga-plugins-downtimes-1.13.3-12.3.1.ppc64le",
                  "product_id": "icinga-plugins-downtimes-1.13.3-12.3.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "icinga-plugins-eventhandlers-1.13.3-12.3.1.ppc64le",
                "product": {
                  "name": "icinga-plugins-eventhandlers-1.13.3-12.3.1.ppc64le",
                  "product_id": "icinga-plugins-eventhandlers-1.13.3-12.3.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "icinga-www-1.13.3-12.3.1.ppc64le",
                "product": {
                  "name": "icinga-www-1.13.3-12.3.1.ppc64le",
                  "product_id": "icinga-www-1.13.3-12.3.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "icinga-www-config-1.13.3-12.3.1.ppc64le",
                "product": {
                  "name": "icinga-www-config-1.13.3-12.3.1.ppc64le",
                  "product_id": "icinga-www-config-1.13.3-12.3.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "monitoring-tools-1.13.3-12.3.1.ppc64le",
                "product": {
                  "name": "monitoring-tools-1.13.3-12.3.1.ppc64le",
                  "product_id": "monitoring-tools-1.13.3-12.3.1.ppc64le"
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "icinga-1.13.3-12.3.1.s390x",
                "product": {
                  "name": "icinga-1.13.3-12.3.1.s390x",
                  "product_id": "icinga-1.13.3-12.3.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "icinga-devel-1.13.3-12.3.1.s390x",
                "product": {
                  "name": "icinga-devel-1.13.3-12.3.1.s390x",
                  "product_id": "icinga-devel-1.13.3-12.3.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "icinga-doc-1.13.3-12.3.1.s390x",
                "product": {
                  "name": "icinga-doc-1.13.3-12.3.1.s390x",
                  "product_id": "icinga-doc-1.13.3-12.3.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "icinga-idoutils-1.13.3-12.3.1.s390x",
                "product": {
                  "name": "icinga-idoutils-1.13.3-12.3.1.s390x",
                  "product_id": "icinga-idoutils-1.13.3-12.3.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "icinga-idoutils-mysql-1.13.3-12.3.1.s390x",
                "product": {
                  "name": "icinga-idoutils-mysql-1.13.3-12.3.1.s390x",
                  "product_id": "icinga-idoutils-mysql-1.13.3-12.3.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "icinga-idoutils-oracle-1.13.3-12.3.1.s390x",
                "product": {
                  "name": "icinga-idoutils-oracle-1.13.3-12.3.1.s390x",
                  "product_id": "icinga-idoutils-oracle-1.13.3-12.3.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "icinga-idoutils-pgsql-1.13.3-12.3.1.s390x",
                "product": {
                  "name": "icinga-idoutils-pgsql-1.13.3-12.3.1.s390x",
                  "product_id": "icinga-idoutils-pgsql-1.13.3-12.3.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "icinga-plugins-downtimes-1.13.3-12.3.1.s390x",
                "product": {
                  "name": "icinga-plugins-downtimes-1.13.3-12.3.1.s390x",
                  "product_id": "icinga-plugins-downtimes-1.13.3-12.3.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "icinga-plugins-eventhandlers-1.13.3-12.3.1.s390x",
                "product": {
                  "name": "icinga-plugins-eventhandlers-1.13.3-12.3.1.s390x",
                  "product_id": "icinga-plugins-eventhandlers-1.13.3-12.3.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "icinga-www-1.13.3-12.3.1.s390x",
                "product": {
                  "name": "icinga-www-1.13.3-12.3.1.s390x",
                  "product_id": "icinga-www-1.13.3-12.3.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "icinga-www-config-1.13.3-12.3.1.s390x",
                "product": {
                  "name": "icinga-www-config-1.13.3-12.3.1.s390x",
                  "product_id": "icinga-www-config-1.13.3-12.3.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "monitoring-tools-1.13.3-12.3.1.s390x",
                "product": {
                  "name": "monitoring-tools-1.13.3-12.3.1.s390x",
                  "product_id": "monitoring-tools-1.13.3-12.3.1.s390x"
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "icinga-1.13.3-12.3.1.x86_64",
                "product": {
                  "name": "icinga-1.13.3-12.3.1.x86_64",
                  "product_id": "icinga-1.13.3-12.3.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "icinga-devel-1.13.3-12.3.1.x86_64",
                "product": {
                  "name": "icinga-devel-1.13.3-12.3.1.x86_64",
                  "product_id": "icinga-devel-1.13.3-12.3.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "icinga-doc-1.13.3-12.3.1.x86_64",
                "product": {
                  "name": "icinga-doc-1.13.3-12.3.1.x86_64",
                  "product_id": "icinga-doc-1.13.3-12.3.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "icinga-idoutils-1.13.3-12.3.1.x86_64",
                "product": {
                  "name": "icinga-idoutils-1.13.3-12.3.1.x86_64",
                  "product_id": "icinga-idoutils-1.13.3-12.3.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "icinga-idoutils-mysql-1.13.3-12.3.1.x86_64",
                "product": {
                  "name": "icinga-idoutils-mysql-1.13.3-12.3.1.x86_64",
                  "product_id": "icinga-idoutils-mysql-1.13.3-12.3.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "icinga-idoutils-oracle-1.13.3-12.3.1.x86_64",
                "product": {
                  "name": "icinga-idoutils-oracle-1.13.3-12.3.1.x86_64",
                  "product_id": "icinga-idoutils-oracle-1.13.3-12.3.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "icinga-idoutils-pgsql-1.13.3-12.3.1.x86_64",
                "product": {
                  "name": "icinga-idoutils-pgsql-1.13.3-12.3.1.x86_64",
                  "product_id": "icinga-idoutils-pgsql-1.13.3-12.3.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "icinga-plugins-downtimes-1.13.3-12.3.1.x86_64",
                "product": {
                  "name": "icinga-plugins-downtimes-1.13.3-12.3.1.x86_64",
                  "product_id": "icinga-plugins-downtimes-1.13.3-12.3.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "icinga-plugins-eventhandlers-1.13.3-12.3.1.x86_64",
                "product": {
                  "name": "icinga-plugins-eventhandlers-1.13.3-12.3.1.x86_64",
                  "product_id": "icinga-plugins-eventhandlers-1.13.3-12.3.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "icinga-www-1.13.3-12.3.1.x86_64",
                "product": {
                  "name": "icinga-www-1.13.3-12.3.1.x86_64",
                  "product_id": "icinga-www-1.13.3-12.3.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "icinga-www-config-1.13.3-12.3.1.x86_64",
                "product": {
                  "name": "icinga-www-config-1.13.3-12.3.1.x86_64",
                  "product_id": "icinga-www-config-1.13.3-12.3.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "monitoring-tools-1.13.3-12.3.1.x86_64",
                "product": {
                  "name": "monitoring-tools-1.13.3-12.3.1.x86_64",
                  "product_id": "monitoring-tools-1.13.3-12.3.1.x86_64"
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "SUSE Manager Client Tools 12",
                "product": {
                  "name": "SUSE Manager Client Tools 12",
                  "product_id": "SUSE Manager Client Tools 12"
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Enterprise Storage 4",
                "product": {
                  "name": "SUSE Enterprise Storage 4",
                  "product_id": "SUSE Enterprise Storage 4",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:ses:4"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "SUSE Linux Enterprise"
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "icinga-1.13.3-12.3.1.aarch64 as component of SUSE Manager Client Tools 12",
          "product_id": "SUSE Manager Client Tools 12:icinga-1.13.3-12.3.1.aarch64"
        },
        "product_reference": "icinga-1.13.3-12.3.1.aarch64",
        "relates_to_product_reference": "SUSE Manager Client Tools 12"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "icinga-1.13.3-12.3.1.ppc64le as component of SUSE Manager Client Tools 12",
          "product_id": "SUSE Manager Client Tools 12:icinga-1.13.3-12.3.1.ppc64le"
        },
        "product_reference": "icinga-1.13.3-12.3.1.ppc64le",
        "relates_to_product_reference": "SUSE Manager Client Tools 12"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "icinga-1.13.3-12.3.1.s390x as component of SUSE Manager Client Tools 12",
          "product_id": "SUSE Manager Client Tools 12:icinga-1.13.3-12.3.1.s390x"
        },
        "product_reference": "icinga-1.13.3-12.3.1.s390x",
        "relates_to_product_reference": "SUSE Manager Client Tools 12"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "icinga-1.13.3-12.3.1.x86_64 as component of SUSE Manager Client Tools 12",
          "product_id": "SUSE Manager Client Tools 12:icinga-1.13.3-12.3.1.x86_64"
        },
        "product_reference": "icinga-1.13.3-12.3.1.x86_64",
        "relates_to_product_reference": "SUSE Manager Client Tools 12"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "icinga-devel-1.13.3-12.3.1.aarch64 as component of SUSE Manager Client Tools 12",
          "product_id": "SUSE Manager Client Tools 12:icinga-devel-1.13.3-12.3.1.aarch64"
        },
        "product_reference": "icinga-devel-1.13.3-12.3.1.aarch64",
        "relates_to_product_reference": "SUSE Manager Client Tools 12"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "icinga-devel-1.13.3-12.3.1.ppc64le as component of SUSE Manager Client Tools 12",
          "product_id": "SUSE Manager Client Tools 12:icinga-devel-1.13.3-12.3.1.ppc64le"
        },
        "product_reference": "icinga-devel-1.13.3-12.3.1.ppc64le",
        "relates_to_product_reference": "SUSE Manager Client Tools 12"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "icinga-devel-1.13.3-12.3.1.s390x as component of SUSE Manager Client Tools 12",
          "product_id": "SUSE Manager Client Tools 12:icinga-devel-1.13.3-12.3.1.s390x"
        },
        "product_reference": "icinga-devel-1.13.3-12.3.1.s390x",
        "relates_to_product_reference": "SUSE Manager Client Tools 12"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "icinga-devel-1.13.3-12.3.1.x86_64 as component of SUSE Manager Client Tools 12",
          "product_id": "SUSE Manager Client Tools 12:icinga-devel-1.13.3-12.3.1.x86_64"
        },
        "product_reference": "icinga-devel-1.13.3-12.3.1.x86_64",
        "relates_to_product_reference": "SUSE Manager Client Tools 12"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "icinga-doc-1.13.3-12.3.1.aarch64 as component of SUSE Manager Client Tools 12",
          "product_id": "SUSE Manager Client Tools 12:icinga-doc-1.13.3-12.3.1.aarch64"
        },
        "product_reference": "icinga-doc-1.13.3-12.3.1.aarch64",
        "relates_to_product_reference": "SUSE Manager Client Tools 12"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "icinga-doc-1.13.3-12.3.1.ppc64le as component of SUSE Manager Client Tools 12",
          "product_id": "SUSE Manager Client Tools 12:icinga-doc-1.13.3-12.3.1.ppc64le"
        },
        "product_reference": "icinga-doc-1.13.3-12.3.1.ppc64le",
        "relates_to_product_reference": "SUSE Manager Client Tools 12"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "icinga-doc-1.13.3-12.3.1.s390x as component of SUSE Manager Client Tools 12",
          "product_id": "SUSE Manager Client Tools 12:icinga-doc-1.13.3-12.3.1.s390x"
        },
        "product_reference": "icinga-doc-1.13.3-12.3.1.s390x",
        "relates_to_product_reference": "SUSE Manager Client Tools 12"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "icinga-doc-1.13.3-12.3.1.x86_64 as component of SUSE Manager Client Tools 12",
          "product_id": "SUSE Manager Client Tools 12:icinga-doc-1.13.3-12.3.1.x86_64"
        },
        "product_reference": "icinga-doc-1.13.3-12.3.1.x86_64",
        "relates_to_product_reference": "SUSE Manager Client Tools 12"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "icinga-idoutils-1.13.3-12.3.1.aarch64 as component of SUSE Manager Client Tools 12",
          "product_id": "SUSE Manager Client Tools 12:icinga-idoutils-1.13.3-12.3.1.aarch64"
        },
        "product_reference": "icinga-idoutils-1.13.3-12.3.1.aarch64",
        "relates_to_product_reference": "SUSE Manager Client Tools 12"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "icinga-idoutils-1.13.3-12.3.1.ppc64le as component of SUSE Manager Client Tools 12",
          "product_id": "SUSE Manager Client Tools 12:icinga-idoutils-1.13.3-12.3.1.ppc64le"
        },
        "product_reference": "icinga-idoutils-1.13.3-12.3.1.ppc64le",
        "relates_to_product_reference": "SUSE Manager Client Tools 12"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "icinga-idoutils-1.13.3-12.3.1.s390x as component of SUSE Manager Client Tools 12",
          "product_id": "SUSE Manager Client Tools 12:icinga-idoutils-1.13.3-12.3.1.s390x"
        },
        "product_reference": "icinga-idoutils-1.13.3-12.3.1.s390x",
        "relates_to_product_reference": "SUSE Manager Client Tools 12"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "icinga-idoutils-1.13.3-12.3.1.x86_64 as component of SUSE Manager Client Tools 12",
          "product_id": "SUSE Manager Client Tools 12:icinga-idoutils-1.13.3-12.3.1.x86_64"
        },
        "product_reference": "icinga-idoutils-1.13.3-12.3.1.x86_64",
        "relates_to_product_reference": "SUSE Manager Client Tools 12"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "icinga-idoutils-mysql-1.13.3-12.3.1.aarch64 as component of SUSE Manager Client Tools 12",
          "product_id": "SUSE Manager Client Tools 12:icinga-idoutils-mysql-1.13.3-12.3.1.aarch64"
        },
        "product_reference": "icinga-idoutils-mysql-1.13.3-12.3.1.aarch64",
        "relates_to_product_reference": "SUSE Manager Client Tools 12"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "icinga-idoutils-mysql-1.13.3-12.3.1.ppc64le as component of SUSE Manager Client Tools 12",
          "product_id": "SUSE Manager Client Tools 12:icinga-idoutils-mysql-1.13.3-12.3.1.ppc64le"
        },
        "product_reference": "icinga-idoutils-mysql-1.13.3-12.3.1.ppc64le",
        "relates_to_product_reference": "SUSE Manager Client Tools 12"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "icinga-idoutils-mysql-1.13.3-12.3.1.s390x as component of SUSE Manager Client Tools 12",
          "product_id": "SUSE Manager Client Tools 12:icinga-idoutils-mysql-1.13.3-12.3.1.s390x"
        },
        "product_reference": "icinga-idoutils-mysql-1.13.3-12.3.1.s390x",
        "relates_to_product_reference": "SUSE Manager Client Tools 12"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "icinga-idoutils-mysql-1.13.3-12.3.1.x86_64 as component of SUSE Manager Client Tools 12",
          "product_id": "SUSE Manager Client Tools 12:icinga-idoutils-mysql-1.13.3-12.3.1.x86_64"
        },
        "product_reference": "icinga-idoutils-mysql-1.13.3-12.3.1.x86_64",
        "relates_to_product_reference": "SUSE Manager Client Tools 12"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "icinga-idoutils-oracle-1.13.3-12.3.1.aarch64 as component of SUSE Manager Client Tools 12",
          "product_id": "SUSE Manager Client Tools 12:icinga-idoutils-oracle-1.13.3-12.3.1.aarch64"
        },
        "product_reference": "icinga-idoutils-oracle-1.13.3-12.3.1.aarch64",
        "relates_to_product_reference": "SUSE Manager Client Tools 12"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "icinga-idoutils-oracle-1.13.3-12.3.1.ppc64le as component of SUSE Manager Client Tools 12",
          "product_id": "SUSE Manager Client Tools 12:icinga-idoutils-oracle-1.13.3-12.3.1.ppc64le"
        },
        "product_reference": "icinga-idoutils-oracle-1.13.3-12.3.1.ppc64le",
        "relates_to_product_reference": "SUSE Manager Client Tools 12"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "icinga-idoutils-oracle-1.13.3-12.3.1.s390x as component of SUSE Manager Client Tools 12",
          "product_id": "SUSE Manager Client Tools 12:icinga-idoutils-oracle-1.13.3-12.3.1.s390x"
        },
        "product_reference": "icinga-idoutils-oracle-1.13.3-12.3.1.s390x",
        "relates_to_product_reference": "SUSE Manager Client Tools 12"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "icinga-idoutils-oracle-1.13.3-12.3.1.x86_64 as component of SUSE Manager Client Tools 12",
          "product_id": "SUSE Manager Client Tools 12:icinga-idoutils-oracle-1.13.3-12.3.1.x86_64"
        },
        "product_reference": "icinga-idoutils-oracle-1.13.3-12.3.1.x86_64",
        "relates_to_product_reference": "SUSE Manager Client Tools 12"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "icinga-idoutils-pgsql-1.13.3-12.3.1.aarch64 as component of SUSE Manager Client Tools 12",
          "product_id": "SUSE Manager Client Tools 12:icinga-idoutils-pgsql-1.13.3-12.3.1.aarch64"
        },
        "product_reference": "icinga-idoutils-pgsql-1.13.3-12.3.1.aarch64",
        "relates_to_product_reference": "SUSE Manager Client Tools 12"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "icinga-idoutils-pgsql-1.13.3-12.3.1.ppc64le as component of SUSE Manager Client Tools 12",
          "product_id": "SUSE Manager Client Tools 12:icinga-idoutils-pgsql-1.13.3-12.3.1.ppc64le"
        },
        "product_reference": "icinga-idoutils-pgsql-1.13.3-12.3.1.ppc64le",
        "relates_to_product_reference": "SUSE Manager Client Tools 12"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "icinga-idoutils-pgsql-1.13.3-12.3.1.s390x as component of SUSE Manager Client Tools 12",
          "product_id": "SUSE Manager Client Tools 12:icinga-idoutils-pgsql-1.13.3-12.3.1.s390x"
        },
        "product_reference": "icinga-idoutils-pgsql-1.13.3-12.3.1.s390x",
        "relates_to_product_reference": "SUSE Manager Client Tools 12"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "icinga-idoutils-pgsql-1.13.3-12.3.1.x86_64 as component of SUSE Manager Client Tools 12",
          "product_id": "SUSE Manager Client Tools 12:icinga-idoutils-pgsql-1.13.3-12.3.1.x86_64"
        },
        "product_reference": "icinga-idoutils-pgsql-1.13.3-12.3.1.x86_64",
        "relates_to_product_reference": "SUSE Manager Client Tools 12"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "icinga-plugins-downtimes-1.13.3-12.3.1.aarch64 as component of SUSE Manager Client Tools 12",
          "product_id": "SUSE Manager Client Tools 12:icinga-plugins-downtimes-1.13.3-12.3.1.aarch64"
        },
        "product_reference": "icinga-plugins-downtimes-1.13.3-12.3.1.aarch64",
        "relates_to_product_reference": "SUSE Manager Client Tools 12"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "icinga-plugins-downtimes-1.13.3-12.3.1.ppc64le as component of SUSE Manager Client Tools 12",
          "product_id": "SUSE Manager Client Tools 12:icinga-plugins-downtimes-1.13.3-12.3.1.ppc64le"
        },
        "product_reference": "icinga-plugins-downtimes-1.13.3-12.3.1.ppc64le",
        "relates_to_product_reference": "SUSE Manager Client Tools 12"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "icinga-plugins-downtimes-1.13.3-12.3.1.s390x as component of SUSE Manager Client Tools 12",
          "product_id": "SUSE Manager Client Tools 12:icinga-plugins-downtimes-1.13.3-12.3.1.s390x"
        },
        "product_reference": "icinga-plugins-downtimes-1.13.3-12.3.1.s390x",
        "relates_to_product_reference": "SUSE Manager Client Tools 12"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "icinga-plugins-downtimes-1.13.3-12.3.1.x86_64 as component of SUSE Manager Client Tools 12",
          "product_id": "SUSE Manager Client Tools 12:icinga-plugins-downtimes-1.13.3-12.3.1.x86_64"
        },
        "product_reference": "icinga-plugins-downtimes-1.13.3-12.3.1.x86_64",
        "relates_to_product_reference": "SUSE Manager Client Tools 12"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "icinga-plugins-eventhandlers-1.13.3-12.3.1.aarch64 as component of SUSE Manager Client Tools 12",
          "product_id": "SUSE Manager Client Tools 12:icinga-plugins-eventhandlers-1.13.3-12.3.1.aarch64"
        },
        "product_reference": "icinga-plugins-eventhandlers-1.13.3-12.3.1.aarch64",
        "relates_to_product_reference": "SUSE Manager Client Tools 12"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "icinga-plugins-eventhandlers-1.13.3-12.3.1.ppc64le as component of SUSE Manager Client Tools 12",
          "product_id": "SUSE Manager Client Tools 12:icinga-plugins-eventhandlers-1.13.3-12.3.1.ppc64le"
        },
        "product_reference": "icinga-plugins-eventhandlers-1.13.3-12.3.1.ppc64le",
        "relates_to_product_reference": "SUSE Manager Client Tools 12"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "icinga-plugins-eventhandlers-1.13.3-12.3.1.s390x as component of SUSE Manager Client Tools 12",
          "product_id": "SUSE Manager Client Tools 12:icinga-plugins-eventhandlers-1.13.3-12.3.1.s390x"
        },
        "product_reference": "icinga-plugins-eventhandlers-1.13.3-12.3.1.s390x",
        "relates_to_product_reference": "SUSE Manager Client Tools 12"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "icinga-plugins-eventhandlers-1.13.3-12.3.1.x86_64 as component of SUSE Manager Client Tools 12",
          "product_id": "SUSE Manager Client Tools 12:icinga-plugins-eventhandlers-1.13.3-12.3.1.x86_64"
        },
        "product_reference": "icinga-plugins-eventhandlers-1.13.3-12.3.1.x86_64",
        "relates_to_product_reference": "SUSE Manager Client Tools 12"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "icinga-www-1.13.3-12.3.1.aarch64 as component of SUSE Manager Client Tools 12",
          "product_id": "SUSE Manager Client Tools 12:icinga-www-1.13.3-12.3.1.aarch64"
        },
        "product_reference": "icinga-www-1.13.3-12.3.1.aarch64",
        "relates_to_product_reference": "SUSE Manager Client Tools 12"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "icinga-www-1.13.3-12.3.1.ppc64le as component of SUSE Manager Client Tools 12",
          "product_id": "SUSE Manager Client Tools 12:icinga-www-1.13.3-12.3.1.ppc64le"
        },
        "product_reference": "icinga-www-1.13.3-12.3.1.ppc64le",
        "relates_to_product_reference": "SUSE Manager Client Tools 12"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "icinga-www-1.13.3-12.3.1.s390x as component of SUSE Manager Client Tools 12",
          "product_id": "SUSE Manager Client Tools 12:icinga-www-1.13.3-12.3.1.s390x"
        },
        "product_reference": "icinga-www-1.13.3-12.3.1.s390x",
        "relates_to_product_reference": "SUSE Manager Client Tools 12"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "icinga-www-1.13.3-12.3.1.x86_64 as component of SUSE Manager Client Tools 12",
          "product_id": "SUSE Manager Client Tools 12:icinga-www-1.13.3-12.3.1.x86_64"
        },
        "product_reference": "icinga-www-1.13.3-12.3.1.x86_64",
        "relates_to_product_reference": "SUSE Manager Client Tools 12"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "icinga-www-config-1.13.3-12.3.1.aarch64 as component of SUSE Manager Client Tools 12",
          "product_id": "SUSE Manager Client Tools 12:icinga-www-config-1.13.3-12.3.1.aarch64"
        },
        "product_reference": "icinga-www-config-1.13.3-12.3.1.aarch64",
        "relates_to_product_reference": "SUSE Manager Client Tools 12"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "icinga-www-config-1.13.3-12.3.1.ppc64le as component of SUSE Manager Client Tools 12",
          "product_id": "SUSE Manager Client Tools 12:icinga-www-config-1.13.3-12.3.1.ppc64le"
        },
        "product_reference": "icinga-www-config-1.13.3-12.3.1.ppc64le",
        "relates_to_product_reference": "SUSE Manager Client Tools 12"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "icinga-www-config-1.13.3-12.3.1.s390x as component of SUSE Manager Client Tools 12",
          "product_id": "SUSE Manager Client Tools 12:icinga-www-config-1.13.3-12.3.1.s390x"
        },
        "product_reference": "icinga-www-config-1.13.3-12.3.1.s390x",
        "relates_to_product_reference": "SUSE Manager Client Tools 12"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "icinga-www-config-1.13.3-12.3.1.x86_64 as component of SUSE Manager Client Tools 12",
          "product_id": "SUSE Manager Client Tools 12:icinga-www-config-1.13.3-12.3.1.x86_64"
        },
        "product_reference": "icinga-www-config-1.13.3-12.3.1.x86_64",
        "relates_to_product_reference": "SUSE Manager Client Tools 12"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "monitoring-tools-1.13.3-12.3.1.aarch64 as component of SUSE Manager Client Tools 12",
          "product_id": "SUSE Manager Client Tools 12:monitoring-tools-1.13.3-12.3.1.aarch64"
        },
        "product_reference": "monitoring-tools-1.13.3-12.3.1.aarch64",
        "relates_to_product_reference": "SUSE Manager Client Tools 12"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "monitoring-tools-1.13.3-12.3.1.ppc64le as component of SUSE Manager Client Tools 12",
          "product_id": "SUSE Manager Client Tools 12:monitoring-tools-1.13.3-12.3.1.ppc64le"
        },
        "product_reference": "monitoring-tools-1.13.3-12.3.1.ppc64le",
        "relates_to_product_reference": "SUSE Manager Client Tools 12"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "monitoring-tools-1.13.3-12.3.1.s390x as component of SUSE Manager Client Tools 12",
          "product_id": "SUSE Manager Client Tools 12:monitoring-tools-1.13.3-12.3.1.s390x"
        },
        "product_reference": "monitoring-tools-1.13.3-12.3.1.s390x",
        "relates_to_product_reference": "SUSE Manager Client Tools 12"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "monitoring-tools-1.13.3-12.3.1.x86_64 as component of SUSE Manager Client Tools 12",
          "product_id": "SUSE Manager Client Tools 12:monitoring-tools-1.13.3-12.3.1.x86_64"
        },
        "product_reference": "monitoring-tools-1.13.3-12.3.1.x86_64",
        "relates_to_product_reference": "SUSE Manager Client Tools 12"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "icinga-1.13.3-12.3.1.aarch64 as component of SUSE Enterprise Storage 4",
          "product_id": "SUSE Enterprise Storage 4:icinga-1.13.3-12.3.1.aarch64"
        },
        "product_reference": "icinga-1.13.3-12.3.1.aarch64",
        "relates_to_product_reference": "SUSE Enterprise Storage 4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "icinga-1.13.3-12.3.1.x86_64 as component of SUSE Enterprise Storage 4",
          "product_id": "SUSE Enterprise Storage 4:icinga-1.13.3-12.3.1.x86_64"
        },
        "product_reference": "icinga-1.13.3-12.3.1.x86_64",
        "relates_to_product_reference": "SUSE Enterprise Storage 4"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2015-8010",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2015-8010"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Cross-site scripting (XSS) vulnerability in the Classic-UI with the CSV export link and pagination feature in Icinga before 1.14 allows remote attackers to inject arbitrary web script or HTML via the query string to cgi-bin/status.cgi.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Enterprise Storage 4:icinga-1.13.3-12.3.1.aarch64",
          "SUSE Enterprise Storage 4:icinga-1.13.3-12.3.1.x86_64",
          "SUSE Manager Client Tools 12:icinga-1.13.3-12.3.1.aarch64",
          "SUSE Manager Client Tools 12:icinga-1.13.3-12.3.1.ppc64le",
          "SUSE Manager Client Tools 12:icinga-1.13.3-12.3.1.s390x",
          "SUSE Manager Client Tools 12:icinga-1.13.3-12.3.1.x86_64",
          "SUSE Manager Client Tools 12:icinga-devel-1.13.3-12.3.1.aarch64",
          "SUSE Manager Client Tools 12:icinga-devel-1.13.3-12.3.1.ppc64le",
          "SUSE Manager Client Tools 12:icinga-devel-1.13.3-12.3.1.s390x",
          "SUSE Manager Client Tools 12:icinga-devel-1.13.3-12.3.1.x86_64",
          "SUSE Manager Client Tools 12:icinga-doc-1.13.3-12.3.1.aarch64",
          "SUSE Manager Client Tools 12:icinga-doc-1.13.3-12.3.1.ppc64le",
          "SUSE Manager Client Tools 12:icinga-doc-1.13.3-12.3.1.s390x",
          "SUSE Manager Client Tools 12:icinga-doc-1.13.3-12.3.1.x86_64",
          "SUSE Manager Client Tools 12:icinga-idoutils-1.13.3-12.3.1.aarch64",
          "SUSE Manager Client Tools 12:icinga-idoutils-1.13.3-12.3.1.ppc64le",
          "SUSE Manager Client Tools 12:icinga-idoutils-1.13.3-12.3.1.s390x",
          "SUSE Manager Client Tools 12:icinga-idoutils-1.13.3-12.3.1.x86_64",
          "SUSE Manager Client Tools 12:icinga-idoutils-mysql-1.13.3-12.3.1.aarch64",
          "SUSE Manager Client Tools 12:icinga-idoutils-mysql-1.13.3-12.3.1.ppc64le",
          "SUSE Manager Client Tools 12:icinga-idoutils-mysql-1.13.3-12.3.1.s390x",
          "SUSE Manager Client Tools 12:icinga-idoutils-mysql-1.13.3-12.3.1.x86_64",
          "SUSE Manager Client Tools 12:icinga-idoutils-oracle-1.13.3-12.3.1.aarch64",
          "SUSE Manager Client Tools 12:icinga-idoutils-oracle-1.13.3-12.3.1.ppc64le",
          "SUSE Manager Client Tools 12:icinga-idoutils-oracle-1.13.3-12.3.1.s390x",
          "SUSE Manager Client Tools 12:icinga-idoutils-oracle-1.13.3-12.3.1.x86_64",
          "SUSE Manager Client Tools 12:icinga-idoutils-pgsql-1.13.3-12.3.1.aarch64",
          "SUSE Manager Client Tools 12:icinga-idoutils-pgsql-1.13.3-12.3.1.ppc64le",
          "SUSE Manager Client Tools 12:icinga-idoutils-pgsql-1.13.3-12.3.1.s390x",
          "SUSE Manager Client Tools 12:icinga-idoutils-pgsql-1.13.3-12.3.1.x86_64",
          "SUSE Manager Client Tools 12:icinga-plugins-downtimes-1.13.3-12.3.1.aarch64",
          "SUSE Manager Client Tools 12:icinga-plugins-downtimes-1.13.3-12.3.1.ppc64le",
          "SUSE Manager Client Tools 12:icinga-plugins-downtimes-1.13.3-12.3.1.s390x",
          "SUSE Manager Client Tools 12:icinga-plugins-downtimes-1.13.3-12.3.1.x86_64",
          "SUSE Manager Client Tools 12:icinga-plugins-eventhandlers-1.13.3-12.3.1.aarch64",
          "SUSE Manager Client Tools 12:icinga-plugins-eventhandlers-1.13.3-12.3.1.ppc64le",
          "SUSE Manager Client Tools 12:icinga-plugins-eventhandlers-1.13.3-12.3.1.s390x",
          "SUSE Manager Client Tools 12:icinga-plugins-eventhandlers-1.13.3-12.3.1.x86_64",
          "SUSE Manager Client Tools 12:icinga-www-1.13.3-12.3.1.aarch64",
          "SUSE Manager Client Tools 12:icinga-www-1.13.3-12.3.1.ppc64le",
          "SUSE Manager Client Tools 12:icinga-www-1.13.3-12.3.1.s390x",
          "SUSE Manager Client Tools 12:icinga-www-1.13.3-12.3.1.x86_64",
          "SUSE Manager Client Tools 12:icinga-www-config-1.13.3-12.3.1.aarch64",
          "SUSE Manager Client Tools 12:icinga-www-config-1.13.3-12.3.1.ppc64le",
          "SUSE Manager Client Tools 12:icinga-www-config-1.13.3-12.3.1.s390x",
          "SUSE Manager Client Tools 12:icinga-www-config-1.13.3-12.3.1.x86_64",
          "SUSE Manager Client Tools 12:monitoring-tools-1.13.3-12.3.1.aarch64",
          "SUSE Manager Client Tools 12:monitoring-tools-1.13.3-12.3.1.ppc64le",
          "SUSE Manager Client Tools 12:monitoring-tools-1.13.3-12.3.1.s390x",
          "SUSE Manager Client Tools 12:monitoring-tools-1.13.3-12.3.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2015-8010",
          "url": "https://www.suse.com/security/cve/CVE-2015-8010"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 952777 for CVE-2015-8010",
          "url": "https://bugzilla.suse.com/952777"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Enterprise Storage 4:icinga-1.13.3-12.3.1.aarch64",
            "SUSE Enterprise Storage 4:icinga-1.13.3-12.3.1.x86_64",
            "SUSE Manager Client Tools 12:icinga-1.13.3-12.3.1.aarch64",
            "SUSE Manager Client Tools 12:icinga-1.13.3-12.3.1.ppc64le",
            "SUSE Manager Client Tools 12:icinga-1.13.3-12.3.1.s390x",
            "SUSE Manager Client Tools 12:icinga-1.13.3-12.3.1.x86_64",
            "SUSE Manager Client Tools 12:icinga-devel-1.13.3-12.3.1.aarch64",
            "SUSE Manager Client Tools 12:icinga-devel-1.13.3-12.3.1.ppc64le",
            "SUSE Manager Client Tools 12:icinga-devel-1.13.3-12.3.1.s390x",
            "SUSE Manager Client Tools 12:icinga-devel-1.13.3-12.3.1.x86_64",
            "SUSE Manager Client Tools 12:icinga-doc-1.13.3-12.3.1.aarch64",
            "SUSE Manager Client Tools 12:icinga-doc-1.13.3-12.3.1.ppc64le",
            "SUSE Manager Client Tools 12:icinga-doc-1.13.3-12.3.1.s390x",
            "SUSE Manager Client Tools 12:icinga-doc-1.13.3-12.3.1.x86_64",
            "SUSE Manager Client Tools 12:icinga-idoutils-1.13.3-12.3.1.aarch64",
            "SUSE Manager Client Tools 12:icinga-idoutils-1.13.3-12.3.1.ppc64le",
            "SUSE Manager Client Tools 12:icinga-idoutils-1.13.3-12.3.1.s390x",
            "SUSE Manager Client Tools 12:icinga-idoutils-1.13.3-12.3.1.x86_64",
            "SUSE Manager Client Tools 12:icinga-idoutils-mysql-1.13.3-12.3.1.aarch64",
            "SUSE Manager Client Tools 12:icinga-idoutils-mysql-1.13.3-12.3.1.ppc64le",
            "SUSE Manager Client Tools 12:icinga-idoutils-mysql-1.13.3-12.3.1.s390x",
            "SUSE Manager Client Tools 12:icinga-idoutils-mysql-1.13.3-12.3.1.x86_64",
            "SUSE Manager Client Tools 12:icinga-idoutils-oracle-1.13.3-12.3.1.aarch64",
            "SUSE Manager Client Tools 12:icinga-idoutils-oracle-1.13.3-12.3.1.ppc64le",
            "SUSE Manager Client Tools 12:icinga-idoutils-oracle-1.13.3-12.3.1.s390x",
            "SUSE Manager Client Tools 12:icinga-idoutils-oracle-1.13.3-12.3.1.x86_64",
            "SUSE Manager Client Tools 12:icinga-idoutils-pgsql-1.13.3-12.3.1.aarch64",
            "SUSE Manager Client Tools 12:icinga-idoutils-pgsql-1.13.3-12.3.1.ppc64le",
            "SUSE Manager Client Tools 12:icinga-idoutils-pgsql-1.13.3-12.3.1.s390x",
            "SUSE Manager Client Tools 12:icinga-idoutils-pgsql-1.13.3-12.3.1.x86_64",
            "SUSE Manager Client Tools 12:icinga-plugins-downtimes-1.13.3-12.3.1.aarch64",
            "SUSE Manager Client Tools 12:icinga-plugins-downtimes-1.13.3-12.3.1.ppc64le",
            "SUSE Manager Client Tools 12:icinga-plugins-downtimes-1.13.3-12.3.1.s390x",
            "SUSE Manager Client Tools 12:icinga-plugins-downtimes-1.13.3-12.3.1.x86_64",
            "SUSE Manager Client Tools 12:icinga-plugins-eventhandlers-1.13.3-12.3.1.aarch64",
            "SUSE Manager Client Tools 12:icinga-plugins-eventhandlers-1.13.3-12.3.1.ppc64le",
            "SUSE Manager Client Tools 12:icinga-plugins-eventhandlers-1.13.3-12.3.1.s390x",
            "SUSE Manager Client Tools 12:icinga-plugins-eventhandlers-1.13.3-12.3.1.x86_64",
            "SUSE Manager Client Tools 12:icinga-www-1.13.3-12.3.1.aarch64",
            "SUSE Manager Client Tools 12:icinga-www-1.13.3-12.3.1.ppc64le",
            "SUSE Manager Client Tools 12:icinga-www-1.13.3-12.3.1.s390x",
            "SUSE Manager Client Tools 12:icinga-www-1.13.3-12.3.1.x86_64",
            "SUSE Manager Client Tools 12:icinga-www-config-1.13.3-12.3.1.aarch64",
            "SUSE Manager Client Tools 12:icinga-www-config-1.13.3-12.3.1.ppc64le",
            "SUSE Manager Client Tools 12:icinga-www-config-1.13.3-12.3.1.s390x",
            "SUSE Manager Client Tools 12:icinga-www-config-1.13.3-12.3.1.x86_64",
            "SUSE Manager Client Tools 12:monitoring-tools-1.13.3-12.3.1.aarch64",
            "SUSE Manager Client Tools 12:monitoring-tools-1.13.3-12.3.1.ppc64le",
            "SUSE Manager Client Tools 12:monitoring-tools-1.13.3-12.3.1.s390x",
            "SUSE Manager Client Tools 12:monitoring-tools-1.13.3-12.3.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 3.5,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:N/A:N",
            "version": "3.0"
          },
          "products": [
            "SUSE Enterprise Storage 4:icinga-1.13.3-12.3.1.aarch64",
            "SUSE Enterprise Storage 4:icinga-1.13.3-12.3.1.x86_64",
            "SUSE Manager Client Tools 12:icinga-1.13.3-12.3.1.aarch64",
            "SUSE Manager Client Tools 12:icinga-1.13.3-12.3.1.ppc64le",
            "SUSE Manager Client Tools 12:icinga-1.13.3-12.3.1.s390x",
            "SUSE Manager Client Tools 12:icinga-1.13.3-12.3.1.x86_64",
            "SUSE Manager Client Tools 12:icinga-devel-1.13.3-12.3.1.aarch64",
            "SUSE Manager Client Tools 12:icinga-devel-1.13.3-12.3.1.ppc64le",
            "SUSE Manager Client Tools 12:icinga-devel-1.13.3-12.3.1.s390x",
            "SUSE Manager Client Tools 12:icinga-devel-1.13.3-12.3.1.x86_64",
            "SUSE Manager Client Tools 12:icinga-doc-1.13.3-12.3.1.aarch64",
            "SUSE Manager Client Tools 12:icinga-doc-1.13.3-12.3.1.ppc64le",
            "SUSE Manager Client Tools 12:icinga-doc-1.13.3-12.3.1.s390x",
            "SUSE Manager Client Tools 12:icinga-doc-1.13.3-12.3.1.x86_64",
            "SUSE Manager Client Tools 12:icinga-idoutils-1.13.3-12.3.1.aarch64",
            "SUSE Manager Client Tools 12:icinga-idoutils-1.13.3-12.3.1.ppc64le",
            "SUSE Manager Client Tools 12:icinga-idoutils-1.13.3-12.3.1.s390x",
            "SUSE Manager Client Tools 12:icinga-idoutils-1.13.3-12.3.1.x86_64",
            "SUSE Manager Client Tools 12:icinga-idoutils-mysql-1.13.3-12.3.1.aarch64",
            "SUSE Manager Client Tools 12:icinga-idoutils-mysql-1.13.3-12.3.1.ppc64le",
            "SUSE Manager Client Tools 12:icinga-idoutils-mysql-1.13.3-12.3.1.s390x",
            "SUSE Manager Client Tools 12:icinga-idoutils-mysql-1.13.3-12.3.1.x86_64",
            "SUSE Manager Client Tools 12:icinga-idoutils-oracle-1.13.3-12.3.1.aarch64",
            "SUSE Manager Client Tools 12:icinga-idoutils-oracle-1.13.3-12.3.1.ppc64le",
            "SUSE Manager Client Tools 12:icinga-idoutils-oracle-1.13.3-12.3.1.s390x",
            "SUSE Manager Client Tools 12:icinga-idoutils-oracle-1.13.3-12.3.1.x86_64",
            "SUSE Manager Client Tools 12:icinga-idoutils-pgsql-1.13.3-12.3.1.aarch64",
            "SUSE Manager Client Tools 12:icinga-idoutils-pgsql-1.13.3-12.3.1.ppc64le",
            "SUSE Manager Client Tools 12:icinga-idoutils-pgsql-1.13.3-12.3.1.s390x",
            "SUSE Manager Client Tools 12:icinga-idoutils-pgsql-1.13.3-12.3.1.x86_64",
            "SUSE Manager Client Tools 12:icinga-plugins-downtimes-1.13.3-12.3.1.aarch64",
            "SUSE Manager Client Tools 12:icinga-plugins-downtimes-1.13.3-12.3.1.ppc64le",
            "SUSE Manager Client Tools 12:icinga-plugins-downtimes-1.13.3-12.3.1.s390x",
            "SUSE Manager Client Tools 12:icinga-plugins-downtimes-1.13.3-12.3.1.x86_64",
            "SUSE Manager Client Tools 12:icinga-plugins-eventhandlers-1.13.3-12.3.1.aarch64",
            "SUSE Manager Client Tools 12:icinga-plugins-eventhandlers-1.13.3-12.3.1.ppc64le",
            "SUSE Manager Client Tools 12:icinga-plugins-eventhandlers-1.13.3-12.3.1.s390x",
            "SUSE Manager Client Tools 12:icinga-plugins-eventhandlers-1.13.3-12.3.1.x86_64",
            "SUSE Manager Client Tools 12:icinga-www-1.13.3-12.3.1.aarch64",
            "SUSE Manager Client Tools 12:icinga-www-1.13.3-12.3.1.ppc64le",
            "SUSE Manager Client Tools 12:icinga-www-1.13.3-12.3.1.s390x",
            "SUSE Manager Client Tools 12:icinga-www-1.13.3-12.3.1.x86_64",
            "SUSE Manager Client Tools 12:icinga-www-config-1.13.3-12.3.1.aarch64",
            "SUSE Manager Client Tools 12:icinga-www-config-1.13.3-12.3.1.ppc64le",
            "SUSE Manager Client Tools 12:icinga-www-config-1.13.3-12.3.1.s390x",
            "SUSE Manager Client Tools 12:icinga-www-config-1.13.3-12.3.1.x86_64",
            "SUSE Manager Client Tools 12:monitoring-tools-1.13.3-12.3.1.aarch64",
            "SUSE Manager Client Tools 12:monitoring-tools-1.13.3-12.3.1.ppc64le",
            "SUSE Manager Client Tools 12:monitoring-tools-1.13.3-12.3.1.s390x",
            "SUSE Manager Client Tools 12:monitoring-tools-1.13.3-12.3.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2018-11-05T16:57:03Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2015-8010"
    },
    {
      "cve": "CVE-2016-10089",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2016-10089"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Nagios 4.3.2 and earlier allows local users to gain root privileges via a hard link attack on the Nagios init script file, related to CVE-2016-8641.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Enterprise Storage 4:icinga-1.13.3-12.3.1.aarch64",
          "SUSE Enterprise Storage 4:icinga-1.13.3-12.3.1.x86_64",
          "SUSE Manager Client Tools 12:icinga-1.13.3-12.3.1.aarch64",
          "SUSE Manager Client Tools 12:icinga-1.13.3-12.3.1.ppc64le",
          "SUSE Manager Client Tools 12:icinga-1.13.3-12.3.1.s390x",
          "SUSE Manager Client Tools 12:icinga-1.13.3-12.3.1.x86_64",
          "SUSE Manager Client Tools 12:icinga-devel-1.13.3-12.3.1.aarch64",
          "SUSE Manager Client Tools 12:icinga-devel-1.13.3-12.3.1.ppc64le",
          "SUSE Manager Client Tools 12:icinga-devel-1.13.3-12.3.1.s390x",
          "SUSE Manager Client Tools 12:icinga-devel-1.13.3-12.3.1.x86_64",
          "SUSE Manager Client Tools 12:icinga-doc-1.13.3-12.3.1.aarch64",
          "SUSE Manager Client Tools 12:icinga-doc-1.13.3-12.3.1.ppc64le",
          "SUSE Manager Client Tools 12:icinga-doc-1.13.3-12.3.1.s390x",
          "SUSE Manager Client Tools 12:icinga-doc-1.13.3-12.3.1.x86_64",
          "SUSE Manager Client Tools 12:icinga-idoutils-1.13.3-12.3.1.aarch64",
          "SUSE Manager Client Tools 12:icinga-idoutils-1.13.3-12.3.1.ppc64le",
          "SUSE Manager Client Tools 12:icinga-idoutils-1.13.3-12.3.1.s390x",
          "SUSE Manager Client Tools 12:icinga-idoutils-1.13.3-12.3.1.x86_64",
          "SUSE Manager Client Tools 12:icinga-idoutils-mysql-1.13.3-12.3.1.aarch64",
          "SUSE Manager Client Tools 12:icinga-idoutils-mysql-1.13.3-12.3.1.ppc64le",
          "SUSE Manager Client Tools 12:icinga-idoutils-mysql-1.13.3-12.3.1.s390x",
          "SUSE Manager Client Tools 12:icinga-idoutils-mysql-1.13.3-12.3.1.x86_64",
          "SUSE Manager Client Tools 12:icinga-idoutils-oracle-1.13.3-12.3.1.aarch64",
          "SUSE Manager Client Tools 12:icinga-idoutils-oracle-1.13.3-12.3.1.ppc64le",
          "SUSE Manager Client Tools 12:icinga-idoutils-oracle-1.13.3-12.3.1.s390x",
          "SUSE Manager Client Tools 12:icinga-idoutils-oracle-1.13.3-12.3.1.x86_64",
          "SUSE Manager Client Tools 12:icinga-idoutils-pgsql-1.13.3-12.3.1.aarch64",
          "SUSE Manager Client Tools 12:icinga-idoutils-pgsql-1.13.3-12.3.1.ppc64le",
          "SUSE Manager Client Tools 12:icinga-idoutils-pgsql-1.13.3-12.3.1.s390x",
          "SUSE Manager Client Tools 12:icinga-idoutils-pgsql-1.13.3-12.3.1.x86_64",
          "SUSE Manager Client Tools 12:icinga-plugins-downtimes-1.13.3-12.3.1.aarch64",
          "SUSE Manager Client Tools 12:icinga-plugins-downtimes-1.13.3-12.3.1.ppc64le",
          "SUSE Manager Client Tools 12:icinga-plugins-downtimes-1.13.3-12.3.1.s390x",
          "SUSE Manager Client Tools 12:icinga-plugins-downtimes-1.13.3-12.3.1.x86_64",
          "SUSE Manager Client Tools 12:icinga-plugins-eventhandlers-1.13.3-12.3.1.aarch64",
          "SUSE Manager Client Tools 12:icinga-plugins-eventhandlers-1.13.3-12.3.1.ppc64le",
          "SUSE Manager Client Tools 12:icinga-plugins-eventhandlers-1.13.3-12.3.1.s390x",
          "SUSE Manager Client Tools 12:icinga-plugins-eventhandlers-1.13.3-12.3.1.x86_64",
          "SUSE Manager Client Tools 12:icinga-www-1.13.3-12.3.1.aarch64",
          "SUSE Manager Client Tools 12:icinga-www-1.13.3-12.3.1.ppc64le",
          "SUSE Manager Client Tools 12:icinga-www-1.13.3-12.3.1.s390x",
          "SUSE Manager Client Tools 12:icinga-www-1.13.3-12.3.1.x86_64",
          "SUSE Manager Client Tools 12:icinga-www-config-1.13.3-12.3.1.aarch64",
          "SUSE Manager Client Tools 12:icinga-www-config-1.13.3-12.3.1.ppc64le",
          "SUSE Manager Client Tools 12:icinga-www-config-1.13.3-12.3.1.s390x",
          "SUSE Manager Client Tools 12:icinga-www-config-1.13.3-12.3.1.x86_64",
          "SUSE Manager Client Tools 12:monitoring-tools-1.13.3-12.3.1.aarch64",
          "SUSE Manager Client Tools 12:monitoring-tools-1.13.3-12.3.1.ppc64le",
          "SUSE Manager Client Tools 12:monitoring-tools-1.13.3-12.3.1.s390x",
          "SUSE Manager Client Tools 12:monitoring-tools-1.13.3-12.3.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2016-10089",
          "url": "https://www.suse.com/security/cve/CVE-2016-10089"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1011630 for CVE-2016-10089",
          "url": "https://bugzilla.suse.com/1011630"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1018047 for CVE-2016-10089",
          "url": "https://bugzilla.suse.com/1018047"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Enterprise Storage 4:icinga-1.13.3-12.3.1.aarch64",
            "SUSE Enterprise Storage 4:icinga-1.13.3-12.3.1.x86_64",
            "SUSE Manager Client Tools 12:icinga-1.13.3-12.3.1.aarch64",
            "SUSE Manager Client Tools 12:icinga-1.13.3-12.3.1.ppc64le",
            "SUSE Manager Client Tools 12:icinga-1.13.3-12.3.1.s390x",
            "SUSE Manager Client Tools 12:icinga-1.13.3-12.3.1.x86_64",
            "SUSE Manager Client Tools 12:icinga-devel-1.13.3-12.3.1.aarch64",
            "SUSE Manager Client Tools 12:icinga-devel-1.13.3-12.3.1.ppc64le",
            "SUSE Manager Client Tools 12:icinga-devel-1.13.3-12.3.1.s390x",
            "SUSE Manager Client Tools 12:icinga-devel-1.13.3-12.3.1.x86_64",
            "SUSE Manager Client Tools 12:icinga-doc-1.13.3-12.3.1.aarch64",
            "SUSE Manager Client Tools 12:icinga-doc-1.13.3-12.3.1.ppc64le",
            "SUSE Manager Client Tools 12:icinga-doc-1.13.3-12.3.1.s390x",
            "SUSE Manager Client Tools 12:icinga-doc-1.13.3-12.3.1.x86_64",
            "SUSE Manager Client Tools 12:icinga-idoutils-1.13.3-12.3.1.aarch64",
            "SUSE Manager Client Tools 12:icinga-idoutils-1.13.3-12.3.1.ppc64le",
            "SUSE Manager Client Tools 12:icinga-idoutils-1.13.3-12.3.1.s390x",
            "SUSE Manager Client Tools 12:icinga-idoutils-1.13.3-12.3.1.x86_64",
            "SUSE Manager Client Tools 12:icinga-idoutils-mysql-1.13.3-12.3.1.aarch64",
            "SUSE Manager Client Tools 12:icinga-idoutils-mysql-1.13.3-12.3.1.ppc64le",
            "SUSE Manager Client Tools 12:icinga-idoutils-mysql-1.13.3-12.3.1.s390x",
            "SUSE Manager Client Tools 12:icinga-idoutils-mysql-1.13.3-12.3.1.x86_64",
            "SUSE Manager Client Tools 12:icinga-idoutils-oracle-1.13.3-12.3.1.aarch64",
            "SUSE Manager Client Tools 12:icinga-idoutils-oracle-1.13.3-12.3.1.ppc64le",
            "SUSE Manager Client Tools 12:icinga-idoutils-oracle-1.13.3-12.3.1.s390x",
            "SUSE Manager Client Tools 12:icinga-idoutils-oracle-1.13.3-12.3.1.x86_64",
            "SUSE Manager Client Tools 12:icinga-idoutils-pgsql-1.13.3-12.3.1.aarch64",
            "SUSE Manager Client Tools 12:icinga-idoutils-pgsql-1.13.3-12.3.1.ppc64le",
            "SUSE Manager Client Tools 12:icinga-idoutils-pgsql-1.13.3-12.3.1.s390x",
            "SUSE Manager Client Tools 12:icinga-idoutils-pgsql-1.13.3-12.3.1.x86_64",
            "SUSE Manager Client Tools 12:icinga-plugins-downtimes-1.13.3-12.3.1.aarch64",
            "SUSE Manager Client Tools 12:icinga-plugins-downtimes-1.13.3-12.3.1.ppc64le",
            "SUSE Manager Client Tools 12:icinga-plugins-downtimes-1.13.3-12.3.1.s390x",
            "SUSE Manager Client Tools 12:icinga-plugins-downtimes-1.13.3-12.3.1.x86_64",
            "SUSE Manager Client Tools 12:icinga-plugins-eventhandlers-1.13.3-12.3.1.aarch64",
            "SUSE Manager Client Tools 12:icinga-plugins-eventhandlers-1.13.3-12.3.1.ppc64le",
            "SUSE Manager Client Tools 12:icinga-plugins-eventhandlers-1.13.3-12.3.1.s390x",
            "SUSE Manager Client Tools 12:icinga-plugins-eventhandlers-1.13.3-12.3.1.x86_64",
            "SUSE Manager Client Tools 12:icinga-www-1.13.3-12.3.1.aarch64",
            "SUSE Manager Client Tools 12:icinga-www-1.13.3-12.3.1.ppc64le",
            "SUSE Manager Client Tools 12:icinga-www-1.13.3-12.3.1.s390x",
            "SUSE Manager Client Tools 12:icinga-www-1.13.3-12.3.1.x86_64",
            "SUSE Manager Client Tools 12:icinga-www-config-1.13.3-12.3.1.aarch64",
            "SUSE Manager Client Tools 12:icinga-www-config-1.13.3-12.3.1.ppc64le",
            "SUSE Manager Client Tools 12:icinga-www-config-1.13.3-12.3.1.s390x",
            "SUSE Manager Client Tools 12:icinga-www-config-1.13.3-12.3.1.x86_64",
            "SUSE Manager Client Tools 12:monitoring-tools-1.13.3-12.3.1.aarch64",
            "SUSE Manager Client Tools 12:monitoring-tools-1.13.3-12.3.1.ppc64le",
            "SUSE Manager Client Tools 12:monitoring-tools-1.13.3-12.3.1.s390x",
            "SUSE Manager Client Tools 12:monitoring-tools-1.13.3-12.3.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.7,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "SUSE Enterprise Storage 4:icinga-1.13.3-12.3.1.aarch64",
            "SUSE Enterprise Storage 4:icinga-1.13.3-12.3.1.x86_64",
            "SUSE Manager Client Tools 12:icinga-1.13.3-12.3.1.aarch64",
            "SUSE Manager Client Tools 12:icinga-1.13.3-12.3.1.ppc64le",
            "SUSE Manager Client Tools 12:icinga-1.13.3-12.3.1.s390x",
            "SUSE Manager Client Tools 12:icinga-1.13.3-12.3.1.x86_64",
            "SUSE Manager Client Tools 12:icinga-devel-1.13.3-12.3.1.aarch64",
            "SUSE Manager Client Tools 12:icinga-devel-1.13.3-12.3.1.ppc64le",
            "SUSE Manager Client Tools 12:icinga-devel-1.13.3-12.3.1.s390x",
            "SUSE Manager Client Tools 12:icinga-devel-1.13.3-12.3.1.x86_64",
            "SUSE Manager Client Tools 12:icinga-doc-1.13.3-12.3.1.aarch64",
            "SUSE Manager Client Tools 12:icinga-doc-1.13.3-12.3.1.ppc64le",
            "SUSE Manager Client Tools 12:icinga-doc-1.13.3-12.3.1.s390x",
            "SUSE Manager Client Tools 12:icinga-doc-1.13.3-12.3.1.x86_64",
            "SUSE Manager Client Tools 12:icinga-idoutils-1.13.3-12.3.1.aarch64",
            "SUSE Manager Client Tools 12:icinga-idoutils-1.13.3-12.3.1.ppc64le",
            "SUSE Manager Client Tools 12:icinga-idoutils-1.13.3-12.3.1.s390x",
            "SUSE Manager Client Tools 12:icinga-idoutils-1.13.3-12.3.1.x86_64",
            "SUSE Manager Client Tools 12:icinga-idoutils-mysql-1.13.3-12.3.1.aarch64",
            "SUSE Manager Client Tools 12:icinga-idoutils-mysql-1.13.3-12.3.1.ppc64le",
            "SUSE Manager Client Tools 12:icinga-idoutils-mysql-1.13.3-12.3.1.s390x",
            "SUSE Manager Client Tools 12:icinga-idoutils-mysql-1.13.3-12.3.1.x86_64",
            "SUSE Manager Client Tools 12:icinga-idoutils-oracle-1.13.3-12.3.1.aarch64",
            "SUSE Manager Client Tools 12:icinga-idoutils-oracle-1.13.3-12.3.1.ppc64le",
            "SUSE Manager Client Tools 12:icinga-idoutils-oracle-1.13.3-12.3.1.s390x",
            "SUSE Manager Client Tools 12:icinga-idoutils-oracle-1.13.3-12.3.1.x86_64",
            "SUSE Manager Client Tools 12:icinga-idoutils-pgsql-1.13.3-12.3.1.aarch64",
            "SUSE Manager Client Tools 12:icinga-idoutils-pgsql-1.13.3-12.3.1.ppc64le",
            "SUSE Manager Client Tools 12:icinga-idoutils-pgsql-1.13.3-12.3.1.s390x",
            "SUSE Manager Client Tools 12:icinga-idoutils-pgsql-1.13.3-12.3.1.x86_64",
            "SUSE Manager Client Tools 12:icinga-plugins-downtimes-1.13.3-12.3.1.aarch64",
            "SUSE Manager Client Tools 12:icinga-plugins-downtimes-1.13.3-12.3.1.ppc64le",
            "SUSE Manager Client Tools 12:icinga-plugins-downtimes-1.13.3-12.3.1.s390x",
            "SUSE Manager Client Tools 12:icinga-plugins-downtimes-1.13.3-12.3.1.x86_64",
            "SUSE Manager Client Tools 12:icinga-plugins-eventhandlers-1.13.3-12.3.1.aarch64",
            "SUSE Manager Client Tools 12:icinga-plugins-eventhandlers-1.13.3-12.3.1.ppc64le",
            "SUSE Manager Client Tools 12:icinga-plugins-eventhandlers-1.13.3-12.3.1.s390x",
            "SUSE Manager Client Tools 12:icinga-plugins-eventhandlers-1.13.3-12.3.1.x86_64",
            "SUSE Manager Client Tools 12:icinga-www-1.13.3-12.3.1.aarch64",
            "SUSE Manager Client Tools 12:icinga-www-1.13.3-12.3.1.ppc64le",
            "SUSE Manager Client Tools 12:icinga-www-1.13.3-12.3.1.s390x",
            "SUSE Manager Client Tools 12:icinga-www-1.13.3-12.3.1.x86_64",
            "SUSE Manager Client Tools 12:icinga-www-config-1.13.3-12.3.1.aarch64",
            "SUSE Manager Client Tools 12:icinga-www-config-1.13.3-12.3.1.ppc64le",
            "SUSE Manager Client Tools 12:icinga-www-config-1.13.3-12.3.1.s390x",
            "SUSE Manager Client Tools 12:icinga-www-config-1.13.3-12.3.1.x86_64",
            "SUSE Manager Client Tools 12:monitoring-tools-1.13.3-12.3.1.aarch64",
            "SUSE Manager Client Tools 12:monitoring-tools-1.13.3-12.3.1.ppc64le",
            "SUSE Manager Client Tools 12:monitoring-tools-1.13.3-12.3.1.s390x",
            "SUSE Manager Client Tools 12:monitoring-tools-1.13.3-12.3.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2018-11-05T16:57:03Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2016-10089"
    },
    {
      "cve": "CVE-2016-8641",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2016-8641"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A privilege escalation vulnerability was found in nagios 4.2.x that occurs in daemon-init.in when creating necessary files and insecurely changing the ownership afterwards. It\u0027s possible for the local attacker to create symbolic links before the files are to be created and possibly escalating the privileges with the ownership change.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Enterprise Storage 4:icinga-1.13.3-12.3.1.aarch64",
          "SUSE Enterprise Storage 4:icinga-1.13.3-12.3.1.x86_64",
          "SUSE Manager Client Tools 12:icinga-1.13.3-12.3.1.aarch64",
          "SUSE Manager Client Tools 12:icinga-1.13.3-12.3.1.ppc64le",
          "SUSE Manager Client Tools 12:icinga-1.13.3-12.3.1.s390x",
          "SUSE Manager Client Tools 12:icinga-1.13.3-12.3.1.x86_64",
          "SUSE Manager Client Tools 12:icinga-devel-1.13.3-12.3.1.aarch64",
          "SUSE Manager Client Tools 12:icinga-devel-1.13.3-12.3.1.ppc64le",
          "SUSE Manager Client Tools 12:icinga-devel-1.13.3-12.3.1.s390x",
          "SUSE Manager Client Tools 12:icinga-devel-1.13.3-12.3.1.x86_64",
          "SUSE Manager Client Tools 12:icinga-doc-1.13.3-12.3.1.aarch64",
          "SUSE Manager Client Tools 12:icinga-doc-1.13.3-12.3.1.ppc64le",
          "SUSE Manager Client Tools 12:icinga-doc-1.13.3-12.3.1.s390x",
          "SUSE Manager Client Tools 12:icinga-doc-1.13.3-12.3.1.x86_64",
          "SUSE Manager Client Tools 12:icinga-idoutils-1.13.3-12.3.1.aarch64",
          "SUSE Manager Client Tools 12:icinga-idoutils-1.13.3-12.3.1.ppc64le",
          "SUSE Manager Client Tools 12:icinga-idoutils-1.13.3-12.3.1.s390x",
          "SUSE Manager Client Tools 12:icinga-idoutils-1.13.3-12.3.1.x86_64",
          "SUSE Manager Client Tools 12:icinga-idoutils-mysql-1.13.3-12.3.1.aarch64",
          "SUSE Manager Client Tools 12:icinga-idoutils-mysql-1.13.3-12.3.1.ppc64le",
          "SUSE Manager Client Tools 12:icinga-idoutils-mysql-1.13.3-12.3.1.s390x",
          "SUSE Manager Client Tools 12:icinga-idoutils-mysql-1.13.3-12.3.1.x86_64",
          "SUSE Manager Client Tools 12:icinga-idoutils-oracle-1.13.3-12.3.1.aarch64",
          "SUSE Manager Client Tools 12:icinga-idoutils-oracle-1.13.3-12.3.1.ppc64le",
          "SUSE Manager Client Tools 12:icinga-idoutils-oracle-1.13.3-12.3.1.s390x",
          "SUSE Manager Client Tools 12:icinga-idoutils-oracle-1.13.3-12.3.1.x86_64",
          "SUSE Manager Client Tools 12:icinga-idoutils-pgsql-1.13.3-12.3.1.aarch64",
          "SUSE Manager Client Tools 12:icinga-idoutils-pgsql-1.13.3-12.3.1.ppc64le",
          "SUSE Manager Client Tools 12:icinga-idoutils-pgsql-1.13.3-12.3.1.s390x",
          "SUSE Manager Client Tools 12:icinga-idoutils-pgsql-1.13.3-12.3.1.x86_64",
          "SUSE Manager Client Tools 12:icinga-plugins-downtimes-1.13.3-12.3.1.aarch64",
          "SUSE Manager Client Tools 12:icinga-plugins-downtimes-1.13.3-12.3.1.ppc64le",
          "SUSE Manager Client Tools 12:icinga-plugins-downtimes-1.13.3-12.3.1.s390x",
          "SUSE Manager Client Tools 12:icinga-plugins-downtimes-1.13.3-12.3.1.x86_64",
          "SUSE Manager Client Tools 12:icinga-plugins-eventhandlers-1.13.3-12.3.1.aarch64",
          "SUSE Manager Client Tools 12:icinga-plugins-eventhandlers-1.13.3-12.3.1.ppc64le",
          "SUSE Manager Client Tools 12:icinga-plugins-eventhandlers-1.13.3-12.3.1.s390x",
          "SUSE Manager Client Tools 12:icinga-plugins-eventhandlers-1.13.3-12.3.1.x86_64",
          "SUSE Manager Client Tools 12:icinga-www-1.13.3-12.3.1.aarch64",
          "SUSE Manager Client Tools 12:icinga-www-1.13.3-12.3.1.ppc64le",
          "SUSE Manager Client Tools 12:icinga-www-1.13.3-12.3.1.s390x",
          "SUSE Manager Client Tools 12:icinga-www-1.13.3-12.3.1.x86_64",
          "SUSE Manager Client Tools 12:icinga-www-config-1.13.3-12.3.1.aarch64",
          "SUSE Manager Client Tools 12:icinga-www-config-1.13.3-12.3.1.ppc64le",
          "SUSE Manager Client Tools 12:icinga-www-config-1.13.3-12.3.1.s390x",
          "SUSE Manager Client Tools 12:icinga-www-config-1.13.3-12.3.1.x86_64",
          "SUSE Manager Client Tools 12:monitoring-tools-1.13.3-12.3.1.aarch64",
          "SUSE Manager Client Tools 12:monitoring-tools-1.13.3-12.3.1.ppc64le",
          "SUSE Manager Client Tools 12:monitoring-tools-1.13.3-12.3.1.s390x",
          "SUSE Manager Client Tools 12:monitoring-tools-1.13.3-12.3.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2016-8641",
          "url": "https://www.suse.com/security/cve/CVE-2016-8641"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1011630 for CVE-2016-8641",
          "url": "https://bugzilla.suse.com/1011630"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1018047 for CVE-2016-8641",
          "url": "https://bugzilla.suse.com/1018047"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Enterprise Storage 4:icinga-1.13.3-12.3.1.aarch64",
            "SUSE Enterprise Storage 4:icinga-1.13.3-12.3.1.x86_64",
            "SUSE Manager Client Tools 12:icinga-1.13.3-12.3.1.aarch64",
            "SUSE Manager Client Tools 12:icinga-1.13.3-12.3.1.ppc64le",
            "SUSE Manager Client Tools 12:icinga-1.13.3-12.3.1.s390x",
            "SUSE Manager Client Tools 12:icinga-1.13.3-12.3.1.x86_64",
            "SUSE Manager Client Tools 12:icinga-devel-1.13.3-12.3.1.aarch64",
            "SUSE Manager Client Tools 12:icinga-devel-1.13.3-12.3.1.ppc64le",
            "SUSE Manager Client Tools 12:icinga-devel-1.13.3-12.3.1.s390x",
            "SUSE Manager Client Tools 12:icinga-devel-1.13.3-12.3.1.x86_64",
            "SUSE Manager Client Tools 12:icinga-doc-1.13.3-12.3.1.aarch64",
            "SUSE Manager Client Tools 12:icinga-doc-1.13.3-12.3.1.ppc64le",
            "SUSE Manager Client Tools 12:icinga-doc-1.13.3-12.3.1.s390x",
            "SUSE Manager Client Tools 12:icinga-doc-1.13.3-12.3.1.x86_64",
            "SUSE Manager Client Tools 12:icinga-idoutils-1.13.3-12.3.1.aarch64",
            "SUSE Manager Client Tools 12:icinga-idoutils-1.13.3-12.3.1.ppc64le",
            "SUSE Manager Client Tools 12:icinga-idoutils-1.13.3-12.3.1.s390x",
            "SUSE Manager Client Tools 12:icinga-idoutils-1.13.3-12.3.1.x86_64",
            "SUSE Manager Client Tools 12:icinga-idoutils-mysql-1.13.3-12.3.1.aarch64",
            "SUSE Manager Client Tools 12:icinga-idoutils-mysql-1.13.3-12.3.1.ppc64le",
            "SUSE Manager Client Tools 12:icinga-idoutils-mysql-1.13.3-12.3.1.s390x",
            "SUSE Manager Client Tools 12:icinga-idoutils-mysql-1.13.3-12.3.1.x86_64",
            "SUSE Manager Client Tools 12:icinga-idoutils-oracle-1.13.3-12.3.1.aarch64",
            "SUSE Manager Client Tools 12:icinga-idoutils-oracle-1.13.3-12.3.1.ppc64le",
            "SUSE Manager Client Tools 12:icinga-idoutils-oracle-1.13.3-12.3.1.s390x",
            "SUSE Manager Client Tools 12:icinga-idoutils-oracle-1.13.3-12.3.1.x86_64",
            "SUSE Manager Client Tools 12:icinga-idoutils-pgsql-1.13.3-12.3.1.aarch64",
            "SUSE Manager Client Tools 12:icinga-idoutils-pgsql-1.13.3-12.3.1.ppc64le",
            "SUSE Manager Client Tools 12:icinga-idoutils-pgsql-1.13.3-12.3.1.s390x",
            "SUSE Manager Client Tools 12:icinga-idoutils-pgsql-1.13.3-12.3.1.x86_64",
            "SUSE Manager Client Tools 12:icinga-plugins-downtimes-1.13.3-12.3.1.aarch64",
            "SUSE Manager Client Tools 12:icinga-plugins-downtimes-1.13.3-12.3.1.ppc64le",
            "SUSE Manager Client Tools 12:icinga-plugins-downtimes-1.13.3-12.3.1.s390x",
            "SUSE Manager Client Tools 12:icinga-plugins-downtimes-1.13.3-12.3.1.x86_64",
            "SUSE Manager Client Tools 12:icinga-plugins-eventhandlers-1.13.3-12.3.1.aarch64",
            "SUSE Manager Client Tools 12:icinga-plugins-eventhandlers-1.13.3-12.3.1.ppc64le",
            "SUSE Manager Client Tools 12:icinga-plugins-eventhandlers-1.13.3-12.3.1.s390x",
            "SUSE Manager Client Tools 12:icinga-plugins-eventhandlers-1.13.3-12.3.1.x86_64",
            "SUSE Manager Client Tools 12:icinga-www-1.13.3-12.3.1.aarch64",
            "SUSE Manager Client Tools 12:icinga-www-1.13.3-12.3.1.ppc64le",
            "SUSE Manager Client Tools 12:icinga-www-1.13.3-12.3.1.s390x",
            "SUSE Manager Client Tools 12:icinga-www-1.13.3-12.3.1.x86_64",
            "SUSE Manager Client Tools 12:icinga-www-config-1.13.3-12.3.1.aarch64",
            "SUSE Manager Client Tools 12:icinga-www-config-1.13.3-12.3.1.ppc64le",
            "SUSE Manager Client Tools 12:icinga-www-config-1.13.3-12.3.1.s390x",
            "SUSE Manager Client Tools 12:icinga-www-config-1.13.3-12.3.1.x86_64",
            "SUSE Manager Client Tools 12:monitoring-tools-1.13.3-12.3.1.aarch64",
            "SUSE Manager Client Tools 12:monitoring-tools-1.13.3-12.3.1.ppc64le",
            "SUSE Manager Client Tools 12:monitoring-tools-1.13.3-12.3.1.s390x",
            "SUSE Manager Client Tools 12:monitoring-tools-1.13.3-12.3.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.7,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "SUSE Enterprise Storage 4:icinga-1.13.3-12.3.1.aarch64",
            "SUSE Enterprise Storage 4:icinga-1.13.3-12.3.1.x86_64",
            "SUSE Manager Client Tools 12:icinga-1.13.3-12.3.1.aarch64",
            "SUSE Manager Client Tools 12:icinga-1.13.3-12.3.1.ppc64le",
            "SUSE Manager Client Tools 12:icinga-1.13.3-12.3.1.s390x",
            "SUSE Manager Client Tools 12:icinga-1.13.3-12.3.1.x86_64",
            "SUSE Manager Client Tools 12:icinga-devel-1.13.3-12.3.1.aarch64",
            "SUSE Manager Client Tools 12:icinga-devel-1.13.3-12.3.1.ppc64le",
            "SUSE Manager Client Tools 12:icinga-devel-1.13.3-12.3.1.s390x",
            "SUSE Manager Client Tools 12:icinga-devel-1.13.3-12.3.1.x86_64",
            "SUSE Manager Client Tools 12:icinga-doc-1.13.3-12.3.1.aarch64",
            "SUSE Manager Client Tools 12:icinga-doc-1.13.3-12.3.1.ppc64le",
            "SUSE Manager Client Tools 12:icinga-doc-1.13.3-12.3.1.s390x",
            "SUSE Manager Client Tools 12:icinga-doc-1.13.3-12.3.1.x86_64",
            "SUSE Manager Client Tools 12:icinga-idoutils-1.13.3-12.3.1.aarch64",
            "SUSE Manager Client Tools 12:icinga-idoutils-1.13.3-12.3.1.ppc64le",
            "SUSE Manager Client Tools 12:icinga-idoutils-1.13.3-12.3.1.s390x",
            "SUSE Manager Client Tools 12:icinga-idoutils-1.13.3-12.3.1.x86_64",
            "SUSE Manager Client Tools 12:icinga-idoutils-mysql-1.13.3-12.3.1.aarch64",
            "SUSE Manager Client Tools 12:icinga-idoutils-mysql-1.13.3-12.3.1.ppc64le",
            "SUSE Manager Client Tools 12:icinga-idoutils-mysql-1.13.3-12.3.1.s390x",
            "SUSE Manager Client Tools 12:icinga-idoutils-mysql-1.13.3-12.3.1.x86_64",
            "SUSE Manager Client Tools 12:icinga-idoutils-oracle-1.13.3-12.3.1.aarch64",
            "SUSE Manager Client Tools 12:icinga-idoutils-oracle-1.13.3-12.3.1.ppc64le",
            "SUSE Manager Client Tools 12:icinga-idoutils-oracle-1.13.3-12.3.1.s390x",
            "SUSE Manager Client Tools 12:icinga-idoutils-oracle-1.13.3-12.3.1.x86_64",
            "SUSE Manager Client Tools 12:icinga-idoutils-pgsql-1.13.3-12.3.1.aarch64",
            "SUSE Manager Client Tools 12:icinga-idoutils-pgsql-1.13.3-12.3.1.ppc64le",
            "SUSE Manager Client Tools 12:icinga-idoutils-pgsql-1.13.3-12.3.1.s390x",
            "SUSE Manager Client Tools 12:icinga-idoutils-pgsql-1.13.3-12.3.1.x86_64",
            "SUSE Manager Client Tools 12:icinga-plugins-downtimes-1.13.3-12.3.1.aarch64",
            "SUSE Manager Client Tools 12:icinga-plugins-downtimes-1.13.3-12.3.1.ppc64le",
            "SUSE Manager Client Tools 12:icinga-plugins-downtimes-1.13.3-12.3.1.s390x",
            "SUSE Manager Client Tools 12:icinga-plugins-downtimes-1.13.3-12.3.1.x86_64",
            "SUSE Manager Client Tools 12:icinga-plugins-eventhandlers-1.13.3-12.3.1.aarch64",
            "SUSE Manager Client Tools 12:icinga-plugins-eventhandlers-1.13.3-12.3.1.ppc64le",
            "SUSE Manager Client Tools 12:icinga-plugins-eventhandlers-1.13.3-12.3.1.s390x",
            "SUSE Manager Client Tools 12:icinga-plugins-eventhandlers-1.13.3-12.3.1.x86_64",
            "SUSE Manager Client Tools 12:icinga-www-1.13.3-12.3.1.aarch64",
            "SUSE Manager Client Tools 12:icinga-www-1.13.3-12.3.1.ppc64le",
            "SUSE Manager Client Tools 12:icinga-www-1.13.3-12.3.1.s390x",
            "SUSE Manager Client Tools 12:icinga-www-1.13.3-12.3.1.x86_64",
            "SUSE Manager Client Tools 12:icinga-www-config-1.13.3-12.3.1.aarch64",
            "SUSE Manager Client Tools 12:icinga-www-config-1.13.3-12.3.1.ppc64le",
            "SUSE Manager Client Tools 12:icinga-www-config-1.13.3-12.3.1.s390x",
            "SUSE Manager Client Tools 12:icinga-www-config-1.13.3-12.3.1.x86_64",
            "SUSE Manager Client Tools 12:monitoring-tools-1.13.3-12.3.1.aarch64",
            "SUSE Manager Client Tools 12:monitoring-tools-1.13.3-12.3.1.ppc64le",
            "SUSE Manager Client Tools 12:monitoring-tools-1.13.3-12.3.1.s390x",
            "SUSE Manager Client Tools 12:monitoring-tools-1.13.3-12.3.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2018-11-05T16:57:03Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2016-8641"
    }
  ]
}

ghsa-x57r-7jqf-5w9p

Vulnerability from github

Published

2022-05-14 02:11

Modified

2022-05-14 02:11

Severity ?

6.1 (Medium) - CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Details

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2015-8010"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-79"
    ],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2017-03-27T17:59:00Z",
    "severity": "MODERATE"
  },
  "details": "Cross-site scripting (XSS) vulnerability in the Classic-UI with the CSV export link and pagination feature in Icinga before 1.14 allows remote attackers to inject arbitrary web script or HTML via the query string to cgi-bin/status.cgi.",
  "id": "GHSA-x57r-7jqf-5w9p",
  "modified": "2022-05-14T02:11:46Z",
  "published": "2022-05-14T02:11:46Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2015-8010"
    },
    {
      "type": "WEB",
      "url": "https://github.com/Icinga/icinga-core/issues/1563"
    },
    {
      "type": "WEB",
      "url": "http://lists.opensuse.org/opensuse-security-announce/2017-01/msg00019.html"
    },
    {
      "type": "WEB",
      "url": "http://www.openwall.com/lists/oss-security/2015/10/23/15"
    },
    {
      "type": "WEB",
      "url": "http://www.openwall.com/lists/oss-security/2015/10/29/15"
    },
    {
      "type": "WEB",
      "url": "http://www.securityfocus.com/bid/97145"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
      "type": "CVSS_V3"
    }
  ]
}

cnvd-2017-04820

Vulnerability from cnvd

Title

Icinga跨站脚本漏洞

Description

Icinga是Icinga项目的一套企业级开源监控系统，是一个介于Nagios社区版和企业版间的产品。 Icinga具有CSV export link和pagination功能的Classic-UI存在跨站脚本漏洞。远程攻击者可通过向cgi-bin/status.cgi文件发送查询字符串利用该漏洞注入任意的Web脚本或HTML。

Severity

中

Patch Name

Icinga跨站脚本漏洞的补丁

Patch Description

Formal description

厂商已发布漏洞修复程序，请及时关注更新： https://github.com/Icinga/icinga-core/issues/1563

Reference

http://lists.opensuse.org/opensuse-security-announce/2017-01/msg00019.html

Impacted products

Name
Icinga Icinga <=1.13.4

Show details on source website

JSON

To clipboard

{
  "bids": {
    "bid": {
      "bidNumber": "97145"
    }
  },
  "cves": {
    "cve": {
      "cveNumber": "CVE-2015-8010"
    }
  },
  "description": "Icinga\u662fIcinga\u9879\u76ee\u7684\u4e00\u5957\u4f01\u4e1a\u7ea7\u5f00\u6e90\u76d1\u63a7\u7cfb\u7edf\uff0c\u662f\u4e00\u4e2a\u4ecb\u4e8eNagios\u793e\u533a\u7248\u548c\u4f01\u4e1a\u7248\u95f4\u7684\u4ea7\u54c1\u3002\r\n\r\nIcinga\u5177\u6709CSV export link\u548cpagination\u529f\u80fd\u7684Classic-UI\u5b58\u5728\u8de8\u7ad9\u811a\u672c\u6f0f\u6d1e\u3002\u8fdc\u7a0b\u653b\u51fb\u8005\u53ef\u901a\u8fc7\u5411cgi-bin/status.cgi\u6587\u4ef6\u53d1\u9001\u67e5\u8be2\u5b57\u7b26\u4e32\u5229\u7528\u8be5\u6f0f\u6d1e\u6ce8\u5165\u4efb\u610f\u7684Web\u811a\u672c\u6216HTML\u3002",
  "discovererName": "ricardo",
  "formalWay": "\u5382\u5546\u5df2\u53d1\u5e03\u6f0f\u6d1e\u4fee\u590d\u7a0b\u5e8f\uff0c\u8bf7\u53ca\u65f6\u5173\u6ce8\u66f4\u65b0\uff1a\r\nhttps://github.com/Icinga/icinga-core/issues/1563",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2017-04820",
  "openTime": "2017-04-20",
  "patchDescription": "Icinga\u662fIcinga\u9879\u76ee\u7684\u4e00\u5957\u4f01\u4e1a\u7ea7\u5f00\u6e90\u76d1\u63a7\u7cfb\u7edf\uff0c\u662f\u4e00\u4e2a\u4ecb\u4e8eNagios\u793e\u533a\u7248\u548c\u4f01\u4e1a\u7248\u95f4\u7684\u4ea7\u54c1\u3002\r\n\r\nIcinga\u5177\u6709CSV export link\u548cpagination\u529f\u80fd\u7684Classic-UI\u5b58\u5728\u8de8\u7ad9\u811a\u672c\u6f0f\u6d1e\u3002\u8fdc\u7a0b\u653b\u51fb\u8005\u53ef\u901a\u8fc7\u5411cgi-bin/status.cgi\u6587\u4ef6\u53d1\u9001\u67e5\u8be2\u5b57\u7b26\u4e32\u5229\u7528\u8be5\u6f0f\u6d1e\u6ce8\u5165\u4efb\u610f\u7684Web\u811a\u672c\u6216HTML\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "Icinga\u8de8\u7ad9\u811a\u672c\u6f0f\u6d1e\u7684\u8865\u4e01",
  "products": {
    "product": "Icinga Icinga \u003c=1.13.4"
  },
  "referenceLink": "http://lists.opensuse.org/opensuse-security-announce/2017-01/msg00019.html",
  "serverity": "\u4e2d",
  "submitTime": "2017-03-31",
  "title": "Icinga\u8de8\u7ad9\u811a\u672c\u6f0f\u6d1e"
}

fkie_cve-2015-8010

Vulnerability from fkie_nvd

Published

2017-03-27 17:59

Modified

2025-04-20 01:37

Severity ?

6.1 (Medium) - CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Summary

References

URL	Tags
cve@mitre.org	http://lists.opensuse.org/opensuse-security-announce/2017-01/msg00019.html	Third Party Advisory
cve@mitre.org	http://www.openwall.com/lists/oss-security/2015/10/23/15	Mailing List, Third Party Advisory
cve@mitre.org	http://www.openwall.com/lists/oss-security/2015/10/29/15	Mailing List, Third Party Advisory
cve@mitre.org	http://www.securityfocus.com/bid/97145
cve@mitre.org	https://github.com/Icinga/icinga-core/issues/1563	Patch, Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	http://lists.opensuse.org/opensuse-security-announce/2017-01/msg00019.html	Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	http://www.openwall.com/lists/oss-security/2015/10/23/15	Mailing List, Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	http://www.openwall.com/lists/oss-security/2015/10/29/15	Mailing List, Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/bid/97145
af854a3a-2127-422b-91ae-364da2661108	https://github.com/Icinga/icinga-core/issues/1563	Patch, Third Party Advisory

Impacted products

Vendor	Product	Version
icinga	icinga	*
opensuse	leap	42.2
opensuse_project	leap	42.1

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:icinga:icinga:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "A783EDF9-B375-4F7A-BA5A-15FA3B90F846",
              "versionEndIncluding": "1.13.4",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:opensuse:leap:42.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "1EA337A3-B9A3-4962-B8BD-8E0C7C5B28EB",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:opensuse_project:leap:42.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "CF605E46-ADCE-45B3-BBBA-E593D3CEE2A6",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Cross-site scripting (XSS) vulnerability in the Classic-UI with the CSV export link and pagination feature in Icinga before 1.14 allows remote attackers to inject arbitrary web script or HTML via the query string to cgi-bin/status.cgi."
    },
    {
      "lang": "es",
      "value": "Vulnerabilidad de XSS en el Classic-UI con el enlace de exportaci\u00f3n CSV y la funcionalidad de paginaci\u00f3n en Icinga en versiones anteriores a 1.14 permite a atacantes remotos inyectar secuencias de comandos web o HTML arbitrarios a trav\u00e9s de la cadena de consulta a cgi-bin/status.cgi."
    }
  ],
  "id": "CVE-2015-8010",
  "lastModified": "2025-04-20T01:37:25.860",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "MEDIUM",
        "cvssData": {
          "accessComplexity": "MEDIUM",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "NONE",
          "baseScore": 4.3,
          "confidentialityImpact": "NONE",
          "integrityImpact": "PARTIAL",
          "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N",
          "version": "2.0"
        },
        "exploitabilityScore": 8.6,
        "impactScore": 2.9,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": true
      }
    ],
    "cvssMetricV30": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "NETWORK",
          "availabilityImpact": "NONE",
          "baseScore": 6.1,
          "baseSeverity": "MEDIUM",
          "confidentialityImpact": "LOW",
          "integrityImpact": "LOW",
          "privilegesRequired": "NONE",
          "scope": "CHANGED",
          "userInteraction": "REQUIRED",
          "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
          "version": "3.0"
        },
        "exploitabilityScore": 2.8,
        "impactScore": 2.7,
        "source": "nvd@nist.gov",
        "type": "Primary"
      }
    ]
  },
  "published": "2017-03-27T17:59:00.257",
  "references": [
    {
      "source": "cve@mitre.org",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "http://lists.opensuse.org/opensuse-security-announce/2017-01/msg00019.html"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Mailing List",
        "Third Party Advisory"
      ],
      "url": "http://www.openwall.com/lists/oss-security/2015/10/23/15"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Mailing List",
        "Third Party Advisory"
      ],
      "url": "http://www.openwall.com/lists/oss-security/2015/10/29/15"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.securityfocus.com/bid/97145"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Patch",
        "Third Party Advisory"
      ],
      "url": "https://github.com/Icinga/icinga-core/issues/1563"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "http://lists.opensuse.org/opensuse-security-announce/2017-01/msg00019.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Mailing List",
        "Third Party Advisory"
      ],
      "url": "http://www.openwall.com/lists/oss-security/2015/10/23/15"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Mailing List",
        "Third Party Advisory"
      ],
      "url": "http://www.openwall.com/lists/oss-security/2015/10/29/15"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securityfocus.com/bid/97145"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch",
        "Third Party Advisory"
      ],
      "url": "https://github.com/Icinga/icinga-core/issues/1563"
    }
  ],
  "sourceIdentifier": "cve@mitre.org",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-79"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted

CVE-2015-8010 (GCVE-0-2015-8010)

Vulnerability from cvelistv5

gsd-2015-8010

Vulnerability from gsd

suse-su-2018:3620-1

Vulnerability from csaf_suse

ghsa-x57r-7jqf-5w9p

Vulnerability from github

cnvd-2017-04820

Vulnerability from cnvd

fkie_cve-2015-8010

Vulnerability from fkie_nvd

Tags

Sightings

Nomenclature