Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2024-38476 (GCVE-0-2024-38476)
Vulnerability from cvelistv5 – Published: 2024-07-01 18:15 – Updated: 2025-11-03 21:55- CWE-829 - Inclusion of Functionality from Untrusted Control Sphere
| Vendor | Product | Version | |
|---|---|---|---|
| Apache Software Foundation | Apache HTTP Server |
Affected:
2.4.0 , ≤ 2.4.59
(semver)
|
|
| apache | http_server |
Affected:
0 , ≤ 2.4.59
(custom)
cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:* |
{
"containers": {
"adp": [
{
"affected": [
{
"cpes": [
"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "http_server",
"vendor": "apache",
"versions": [
{
"lessThanOrEqual": "2.4.59",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
}
},
{
"other": {
"content": {
"id": "CVE-2024-38476",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "yes"
},
{
"Technical Impact": "total"
}
],
"role": "CISA Coordinator",
"timestamp": "2024-10-29T03:55:12.524796Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2024-10-29T16:42:18.129Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
},
{
"providerMetadata": {
"dateUpdated": "2025-11-03T21:55:42.872Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"vendor-advisory",
"x_transferred"
],
"url": "https://httpd.apache.org/security/vulnerabilities_24.html"
},
{
"tags": [
"x_transferred"
],
"url": "https://security.netapp.com/advisory/ntap-20240712-0001/"
},
{
"url": "http://www.openwall.com/lists/oss-security/2024/07/01/9"
},
{
"url": "http://seclists.org/fulldisclosure/2024/Oct/11"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"defaultStatus": "unaffected",
"product": "Apache HTTP Server",
"vendor": "Apache Software Foundation",
"versions": [
{
"lessThanOrEqual": "2.4.59",
"status": "affected",
"version": "2.4.0",
"versionType": "semver"
}
]
}
],
"credits": [
{
"lang": "en",
"type": "finder",
"value": "Orange Tsai (@orange_8361) from DEVCORE"
}
],
"descriptions": [
{
"lang": "en",
"supportingMedia": [
{
"base64": false,
"type": "text/html",
"value": "Vulnerability in core of Apache HTTP Server 2.4.59 and earlier are vulnerably to information disclosure, SSRF or local script execution via\u0026nbsp;\u003cspan style=\"background-color: rgb(255, 255, 255);\"\u003ebackend applications whose response headers are malicious or exploitable.\u003c/span\u003e\u003cbr\u003e\u003cbr\u003eUsers are recommended to upgrade to version 2.4.60, which fixes this issue."
}
],
"value": "Vulnerability in core of Apache HTTP Server 2.4.59 and earlier are vulnerably to information disclosure, SSRF or local script execution via\u00a0backend applications whose response headers are malicious or exploitable.\n\nUsers are recommended to upgrade to version 2.4.60, which fixes this issue."
}
],
"metrics": [
{
"other": {
"content": {
"text": "important"
},
"type": "Textual description of severity"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-829",
"description": "CWE-829 Inclusion of Functionality from Untrusted Control Sphere",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2024-07-12T14:06:14.537Z",
"orgId": "f0158376-9dc2-43b6-827c-5f631a4d8d09",
"shortName": "apache"
},
"references": [
{
"tags": [
"vendor-advisory"
],
"url": "https://httpd.apache.org/security/vulnerabilities_24.html"
},
{
"url": "https://security.netapp.com/advisory/ntap-20240712-0001/"
}
],
"source": {
"discovery": "UNKNOWN"
},
"timeline": [
{
"lang": "en",
"time": "2024-04-01T12:00:00.000Z",
"value": "reported"
}
],
"title": "Apache HTTP Server may use exploitable/malicious backend application output to run local handlers via internal redirect",
"x_generator": {
"engine": "Vulnogram 0.1.0-dev"
}
}
},
"cveMetadata": {
"assignerOrgId": "f0158376-9dc2-43b6-827c-5f631a4d8d09",
"assignerShortName": "apache",
"cveId": "CVE-2024-38476",
"datePublished": "2024-07-01T18:15:40.071Z",
"dateReserved": "2024-06-17T11:10:56.470Z",
"dateUpdated": "2025-11-03T21:55:42.872Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2024-38476",
"date": "2026-07-14",
"epss": "0.41611",
"percentile": "0.98521"
},
"fkie_nvd": {
"configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"2.4.0\", \"versionEndExcluding\": \"2.4.60\", \"matchCriteriaId\": \"13126636-FD76-4E3E-B949-14A5082DE02A\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:netapp:clustered_data_ontap:9.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"C3ED302E-F464-40DE-A976-FD518E42D95D\"}]}]}]",
"descriptions": "[{\"lang\": \"en\", \"value\": \"Vulnerability in core of Apache HTTP Server 2.4.59 and earlier are vulnerably to information disclosure, SSRF or local script execution via\\u00a0backend applications whose response headers are malicious or exploitable.\\n\\nUsers are recommended to upgrade to version 2.4.60, which fixes this issue.\"}, {\"lang\": \"es\", \"value\": \"La vulnerabilidad en el n\\u00facleo de Apache HTTP Server 2.4.59 y versiones anteriores es vulnerable a la divulgaci\\u00f3n de informaci\\u00f3n, SSRF o ejecuci\\u00f3n de scripts locales a trav\\u00e9s de aplicaciones backend cuyos encabezados de respuesta son maliciosos o explotables. Se recomienda a los usuarios actualizar a la versi\\u00f3n 2.4.60, que soluciona este problema.\"}]",
"id": "CVE-2024-38476",
"lastModified": "2024-12-02T17:36:33.403",
"metrics": "{\"cvssMetricV31\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\", \"baseScore\": 9.8, \"baseSeverity\": \"CRITICAL\", \"attackVector\": \"NETWORK\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"NONE\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"HIGH\", \"integrityImpact\": \"HIGH\", \"availabilityImpact\": \"HIGH\"}, \"exploitabilityScore\": 3.9, \"impactScore\": 5.9}, {\"source\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"type\": \"Secondary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\", \"baseScore\": 9.8, \"baseSeverity\": \"CRITICAL\", \"attackVector\": \"NETWORK\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"NONE\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"HIGH\", \"integrityImpact\": \"HIGH\", \"availabilityImpact\": \"HIGH\"}, \"exploitabilityScore\": 3.9, \"impactScore\": 5.9}]}",
"published": "2024-07-01T19:15:04.977",
"references": "[{\"url\": \"https://httpd.apache.org/security/vulnerabilities_24.html\", \"source\": \"security@apache.org\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"https://security.netapp.com/advisory/ntap-20240712-0001/\", \"source\": \"security@apache.org\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://www.openwall.com/lists/oss-security/2024/07/01/9\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://httpd.apache.org/security/vulnerabilities_24.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"https://security.netapp.com/advisory/ntap-20240712-0001/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}]",
"sourceIdentifier": "security@apache.org",
"vulnStatus": "Analyzed",
"weaknesses": "[{\"source\": \"security@apache.org\", \"type\": \"Secondary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-829\"}]}, {\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"NVD-CWE-noinfo\"}]}]"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2024-38476\",\"sourceIdentifier\":\"security@apache.org\",\"published\":\"2024-07-01T19:15:04.977\",\"lastModified\":\"2026-06-17T07:40:21.557\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Vulnerability in core of Apache HTTP Server 2.4.59 and earlier are vulnerably to information disclosure, SSRF or local script execution via\u00a0backend applications whose response headers are malicious or exploitable.\\n\\nUsers are recommended to upgrade to version 2.4.60, which fixes this issue.\"},{\"lang\":\"es\",\"value\":\"La vulnerabilidad en el n\u00facleo de Apache HTTP Server 2.4.59 y versiones anteriores es vulnerable a la divulgaci\u00f3n de informaci\u00f3n, SSRF o ejecuci\u00f3n de scripts locales a trav\u00e9s de aplicaciones backend cuyos encabezados de respuesta son maliciosos o explotables. Se recomienda a los usuarios actualizar a la versi\u00f3n 2.4.60, que soluciona este problema.\"}],\"affected\":[{\"source\":\"security@apache.org\",\"affectedData\":[{\"vendor\":\"Apache Software Foundation\",\"product\":\"Apache HTTP Server\",\"defaultStatus\":\"unaffected\",\"versions\":[{\"version\":\"2.4.0\",\"lessThanOrEqual\":\"2.4.59\",\"versionType\":\"semver\",\"status\":\"affected\"}]}]},{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"affectedData\":[{\"vendor\":\"apache\",\"product\":\"http_server\",\"defaultStatus\":\"unknown\",\"cpes\":[\"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*\"],\"versions\":[{\"version\":\"0\",\"lessThanOrEqual\":\"2.4.59\",\"versionType\":\"custom\",\"status\":\"affected\"}]}]}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\",\"baseScore\":9.8,\"baseSeverity\":\"CRITICAL\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":3.9,\"impactScore\":5.9},{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\",\"baseScore\":9.8,\"baseSeverity\":\"CRITICAL\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":3.9,\"impactScore\":5.9}],\"ssvcV203\":[{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"ssvcData\":{\"timestamp\":\"2024-10-29T03:55:12.524796Z\",\"id\":\"CVE-2024-38476\",\"options\":[{\"exploitation\":\"none\"},{\"automatable\":\"yes\"},{\"technicalImpact\":\"total\"}],\"role\":\"CISA Coordinator\",\"version\":\"2.0.3\"}}]},\"weaknesses\":[{\"source\":\"security@apache.org\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-829\"}]},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"NVD-CWE-noinfo\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"2.4.0\",\"versionEndExcluding\":\"2.4.60\",\"matchCriteriaId\":\"13126636-FD76-4E3E-B949-14A5082DE02A\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:netapp:clustered_data_ontap:9.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C3ED302E-F464-40DE-A976-FD518E42D95D\"}]}]}],\"references\":[{\"url\":\"https://httpd.apache.org/security/vulnerabilities_24.html\",\"source\":\"security@apache.org\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://security.netapp.com/advisory/ntap-20240712-0001/\",\"source\":\"security@apache.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://seclists.org/fulldisclosure/2024/Oct/11\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.openwall.com/lists/oss-security/2024/07/01/9\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://httpd.apache.org/security/vulnerabilities_24.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://security.netapp.com/advisory/ntap-20240712-0001/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]}]}}",
"redhat_vex": {
"aggregate_severity": "Important",
"current_release_date": "2026-06-28T08:04:51+00:00",
"cve": "CVE-2024-38476",
"id": "CVE-2024-38476",
"initial_release_date": "2024-07-01T00:00:00+00:00",
"product_status:fixed": "749",
"product_status:known_not_affected": "18",
"source": "Red Hat CSAF VEX",
"status": "final",
"title": "httpd: Security issues via\u00a0backend applications whose response headers are malicious or exploitable",
"url": "https://security.access.redhat.com/data/csaf/v2/vex/2024/cve-2024-38476.json",
"version": "3"
},
"vulnrichment": {
"containers": "{\"adp\": [{\"title\": \"CVE Program Container\", \"references\": [{\"url\": \"https://httpd.apache.org/security/vulnerabilities_24.html\", \"tags\": [\"vendor-advisory\", \"x_transferred\"]}, {\"url\": \"https://security.netapp.com/advisory/ntap-20240712-0001/\", \"tags\": [\"x_transferred\"]}, {\"url\": \"http://www.openwall.com/lists/oss-security/2024/07/01/9\"}], \"providerMetadata\": {\"orgId\": \"af854a3a-2127-422b-91ae-364da2661108\", \"shortName\": \"CVE\", \"dateUpdated\": \"2024-09-13T17:04:57.387Z\"}}, {\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 9.8, \"attackVector\": \"NETWORK\", \"baseSeverity\": \"CRITICAL\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\", \"integrityImpact\": \"HIGH\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"HIGH\", \"privilegesRequired\": \"NONE\", \"confidentialityImpact\": \"HIGH\"}}, {\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2024-38476\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"yes\"}, {\"Technical Impact\": \"total\"}], \"version\": \"2.0.3\", \"timestamp\": \"2024-10-29T03:55:12.524796Z\"}}}], \"affected\": [{\"cpes\": [\"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*\"], \"vendor\": \"apache\", \"product\": \"http_server\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"versionType\": \"custom\", \"lessThanOrEqual\": \"2.4.59\"}], \"defaultStatus\": \"unknown\"}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2024-07-02T18:27:00.765Z\"}}], \"cna\": {\"title\": \"Apache HTTP Server may use exploitable/malicious backend application output to run local handlers via internal redirect\", \"source\": {\"discovery\": \"UNKNOWN\"}, \"credits\": [{\"lang\": \"en\", \"type\": \"finder\", \"value\": \"Orange Tsai (@orange_8361) from DEVCORE\"}], \"metrics\": [{\"other\": {\"type\": \"Textual description of severity\", \"content\": {\"text\": \"important\"}}}], \"affected\": [{\"vendor\": \"Apache Software Foundation\", \"product\": \"Apache HTTP Server\", \"versions\": [{\"status\": \"affected\", \"version\": \"2.4.0\", \"versionType\": \"semver\", \"lessThanOrEqual\": \"2.4.59\"}], \"defaultStatus\": \"unaffected\"}], \"timeline\": [{\"lang\": \"en\", \"time\": \"2024-04-01T12:00:00.000Z\", \"value\": \"reported\"}], \"references\": [{\"url\": \"https://httpd.apache.org/security/vulnerabilities_24.html\", \"tags\": [\"vendor-advisory\"]}, {\"url\": \"https://security.netapp.com/advisory/ntap-20240712-0001/\"}], \"x_generator\": {\"engine\": \"Vulnogram 0.1.0-dev\"}, \"descriptions\": [{\"lang\": \"en\", \"value\": \"Vulnerability in core of Apache HTTP Server 2.4.59 and earlier are vulnerably to information disclosure, SSRF or local script execution via\\u00a0backend applications whose response headers are malicious or exploitable.\\n\\nUsers are recommended to upgrade to version 2.4.60, which fixes this issue.\", \"supportingMedia\": [{\"type\": \"text/html\", \"value\": \"Vulnerability in core of Apache HTTP Server 2.4.59 and earlier are vulnerably to information disclosure, SSRF or local script execution via\u0026nbsp;\u003cspan style=\\\"background-color: rgb(255, 255, 255);\\\"\u003ebackend applications whose response headers are malicious or exploitable.\u003c/span\u003e\u003cbr\u003e\u003cbr\u003eUsers are recommended to upgrade to version 2.4.60, which fixes this issue.\", \"base64\": false}]}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-829\", \"description\": \"CWE-829 Inclusion of Functionality from Untrusted Control Sphere\"}]}], \"providerMetadata\": {\"orgId\": \"f0158376-9dc2-43b6-827c-5f631a4d8d09\", \"shortName\": \"apache\", \"dateUpdated\": \"2024-07-12T14:06:14.537Z\"}}}",
"cveMetadata": "{\"cveId\": \"CVE-2024-38476\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2025-02-13T17:53:14.181Z\", \"dateReserved\": \"2024-06-17T11:10:56.470Z\", \"assignerOrgId\": \"f0158376-9dc2-43b6-827c-5f631a4d8d09\", \"datePublished\": \"2024-07-01T18:15:40.071Z\", \"assignerShortName\": \"apache\"}",
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
}
}
WID-SEC-W-2024-3199
Vulnerability from csaf_certbund - Published: 2024-10-15 22:00 - Updated: 2024-10-15 22:00In Oracle Secure Backup existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Verfügbarkeit gefährden. Für die Ausnutzung dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist "HIGH" für "Availability" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert "MITTEL" für die Schadenshöhe.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Secure Backup 18.1.0.2.0
Oracle / Secure Backup
|
cpe:/a:oracle:secure_backup:18.1.0.2.0
|
18.1.0.2.0 | |
|
Oracle Secure Backup 18.1.0.1.0
Oracle / Secure Backup
|
cpe:/a:oracle:secure_backup:18.1.0.1.0
|
18.1.0.1.0 |
In Oracle Secure Backup existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Verfügbarkeit gefährden. Für die Ausnutzung dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist "HIGH" für "Availability" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert "MITTEL" für die Schadenshöhe.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Secure Backup 18.1.0.2.0
Oracle / Secure Backup
|
cpe:/a:oracle:secure_backup:18.1.0.2.0
|
18.1.0.2.0 | |
|
Oracle Secure Backup 18.1.0.1.0
Oracle / Secure Backup
|
cpe:/a:oracle:secure_backup:18.1.0.1.0
|
18.1.0.1.0 |
{
"document": {
"aggregate_severity": {
"text": "mittel"
},
"category": "csaf_base",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "de-DE",
"notes": [
{
"category": "legal_disclaimer",
"text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
},
{
"category": "description",
"text": "Oracle Secure Backup ist eine Managementsoftware f\u00fcr Bandsicherungen. Sie erm\u00f6glicht eine sichere Verschl\u00fcsselung der Daten beim Schreiben auf das Band.",
"title": "Produktbeschreibung"
},
{
"category": "summary",
"text": "Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Oracle Secure Backup ausnutzen, um die Verf\u00fcgbarkeit zu gef\u00e4hrden.",
"title": "Angriff"
},
{
"category": "general",
"text": "- Windows",
"title": "Betroffene Betriebssysteme"
}
],
"publisher": {
"category": "other",
"contact_details": "csaf-provider@cert-bund.de",
"name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"namespace": "https://www.bsi.bund.de"
},
"references": [
{
"category": "self",
"summary": "WID-SEC-W-2024-3199 - CSAF Version",
"url": "https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-3199.json"
},
{
"category": "self",
"summary": "WID-SEC-2024-3199 - Portal Version",
"url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-3199"
},
{
"category": "external",
"summary": "Oracle Critical Patch Update Advisory - October 2024 - Appendix Oracle Secure Backup vom 2024-10-15",
"url": "https://www.oracle.com/security-alerts/cpuoct2024.html#AppendixOSB"
}
],
"source_lang": "en-US",
"title": "Oracle Secure Backup: Mehrere Schwachstellen",
"tracking": {
"current_release_date": "2024-10-15T22:00:00.000+00:00",
"generator": {
"date": "2024-10-16T10:12:42.056+00:00",
"engine": {
"name": "BSI-WID",
"version": "1.3.8"
}
},
"id": "WID-SEC-W-2024-3199",
"initial_release_date": "2024-10-15T22:00:00.000+00:00",
"revision_history": [
{
"date": "2024-10-15T22:00:00.000+00:00",
"number": "1",
"summary": "Initiale Fassung"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "18.1.0.1.0",
"product": {
"name": "Oracle Secure Backup 18.1.0.1.0",
"product_id": "1133939",
"product_identification_helper": {
"cpe": "cpe:/a:oracle:secure_backup:18.1.0.1.0"
}
}
},
{
"category": "product_version",
"name": "18.1.0.2.0",
"product": {
"name": "Oracle Secure Backup 18.1.0.2.0",
"product_id": "T024963",
"product_identification_helper": {
"cpe": "cpe:/a:oracle:secure_backup:18.1.0.2.0"
}
}
}
],
"category": "product_name",
"name": "Secure Backup"
}
],
"category": "vendor",
"name": "Oracle"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-38476",
"notes": [
{
"category": "description",
"text": "In Oracle Secure Backup existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"MITTEL\" f\u00fcr die Schadensh\u00f6he."
}
],
"product_status": {
"known_affected": [
"T024963",
"1133939"
]
},
"release_date": "2024-10-15T22:00:00.000+00:00",
"title": "CVE-2024-38476"
},
{
"cve": "CVE-2024-4741",
"notes": [
{
"category": "description",
"text": "In Oracle Secure Backup existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"MITTEL\" f\u00fcr die Schadensh\u00f6he."
}
],
"product_status": {
"known_affected": [
"T024963",
"1133939"
]
},
"release_date": "2024-10-15T22:00:00.000+00:00",
"title": "CVE-2024-4741"
}
]
}
WID-SEC-W-2024-3291
Vulnerability from csaf_certbund - Published: 2024-10-28 23:00 - Updated: 2026-04-06 22:00| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Sonoma <14.7.1
Apple / macOS
|
Sonoma <14.7.1 | ||
|
Apple macOS Sequoia <15.1
Apple / macOS
|
Sequoia <15.1 | ||
|
Apple macOS Ventura <13.7.1
Apple / macOS
|
Ventura <13.7.1 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Sonoma <14.7.1
Apple / macOS
|
Sonoma <14.7.1 | ||
|
Apple macOS Sequoia <15.1
Apple / macOS
|
Sequoia <15.1 | ||
|
Apple macOS Ventura <13.7.1
Apple / macOS
|
Ventura <13.7.1 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Sonoma <14.7.1
Apple / macOS
|
Sonoma <14.7.1 | ||
|
Apple macOS Sequoia <15.1
Apple / macOS
|
Sequoia <15.1 | ||
|
Apple macOS Ventura <13.7.1
Apple / macOS
|
Ventura <13.7.1 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Sonoma <14.7.1
Apple / macOS
|
Sonoma <14.7.1 | ||
|
Apple macOS Sequoia <15.1
Apple / macOS
|
Sequoia <15.1 | ||
|
Apple macOS Ventura <13.7.1
Apple / macOS
|
Ventura <13.7.1 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Sonoma <14.7.1
Apple / macOS
|
Sonoma <14.7.1 | ||
|
Apple macOS Sequoia <15.1
Apple / macOS
|
Sequoia <15.1 | ||
|
Apple macOS Ventura <13.7.1
Apple / macOS
|
Ventura <13.7.1 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Sonoma <14.7.1
Apple / macOS
|
Sonoma <14.7.1 | ||
|
Apple macOS Sequoia <15.1
Apple / macOS
|
Sequoia <15.1 | ||
|
Apple macOS Ventura <13.7.1
Apple / macOS
|
Ventura <13.7.1 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Sonoma <14.7.1
Apple / macOS
|
Sonoma <14.7.1 | ||
|
Apple macOS Sequoia <15.1
Apple / macOS
|
Sequoia <15.1 | ||
|
Apple macOS Ventura <13.7.1
Apple / macOS
|
Ventura <13.7.1 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Sonoma <14.7.1
Apple / macOS
|
Sonoma <14.7.1 | ||
|
Apple macOS Sequoia <15.1
Apple / macOS
|
Sequoia <15.1 | ||
|
Apple macOS Ventura <13.7.1
Apple / macOS
|
Ventura <13.7.1 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Sonoma <14.7.1
Apple / macOS
|
Sonoma <14.7.1 | ||
|
Apple macOS Sequoia <15.1
Apple / macOS
|
Sequoia <15.1 | ||
|
Apple macOS Ventura <13.7.1
Apple / macOS
|
Ventura <13.7.1 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Sonoma <14.7.1
Apple / macOS
|
Sonoma <14.7.1 | ||
|
Apple macOS Sequoia <15.1
Apple / macOS
|
Sequoia <15.1 | ||
|
Apple macOS Ventura <13.7.1
Apple / macOS
|
Ventura <13.7.1 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Sonoma <14.7.1
Apple / macOS
|
Sonoma <14.7.1 | ||
|
Apple macOS Sequoia <15.1
Apple / macOS
|
Sequoia <15.1 | ||
|
Apple macOS Ventura <13.7.1
Apple / macOS
|
Ventura <13.7.1 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Sonoma <14.7.1
Apple / macOS
|
Sonoma <14.7.1 | ||
|
Apple macOS Sequoia <15.1
Apple / macOS
|
Sequoia <15.1 | ||
|
Apple macOS Ventura <13.7.1
Apple / macOS
|
Ventura <13.7.1 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Sonoma <14.7.1
Apple / macOS
|
Sonoma <14.7.1 | ||
|
Apple macOS Sequoia <15.1
Apple / macOS
|
Sequoia <15.1 | ||
|
Apple macOS Ventura <13.7.1
Apple / macOS
|
Ventura <13.7.1 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Sonoma <14.7.1
Apple / macOS
|
Sonoma <14.7.1 | ||
|
Apple macOS Sequoia <15.1
Apple / macOS
|
Sequoia <15.1 | ||
|
Apple macOS Ventura <13.7.1
Apple / macOS
|
Ventura <13.7.1 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Sonoma <14.7.1
Apple / macOS
|
Sonoma <14.7.1 | ||
|
Apple macOS Sequoia <15.1
Apple / macOS
|
Sequoia <15.1 | ||
|
Apple macOS Ventura <13.7.1
Apple / macOS
|
Ventura <13.7.1 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Sonoma <14.7.1
Apple / macOS
|
Sonoma <14.7.1 | ||
|
Apple macOS Sequoia <15.1
Apple / macOS
|
Sequoia <15.1 | ||
|
Apple macOS Ventura <13.7.1
Apple / macOS
|
Ventura <13.7.1 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Sonoma <14.7.1
Apple / macOS
|
Sonoma <14.7.1 | ||
|
Apple macOS Sequoia <15.1
Apple / macOS
|
Sequoia <15.1 | ||
|
Apple macOS Ventura <13.7.1
Apple / macOS
|
Ventura <13.7.1 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Sonoma <14.7.1
Apple / macOS
|
Sonoma <14.7.1 | ||
|
Apple macOS Sequoia <15.1
Apple / macOS
|
Sequoia <15.1 | ||
|
Apple macOS Ventura <13.7.1
Apple / macOS
|
Ventura <13.7.1 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Sonoma <14.7.1
Apple / macOS
|
Sonoma <14.7.1 | ||
|
Apple macOS Sequoia <15.1
Apple / macOS
|
Sequoia <15.1 | ||
|
Apple macOS Ventura <13.7.1
Apple / macOS
|
Ventura <13.7.1 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Sonoma <14.7.1
Apple / macOS
|
Sonoma <14.7.1 | ||
|
Apple macOS Sequoia <15.1
Apple / macOS
|
Sequoia <15.1 | ||
|
Apple macOS Ventura <13.7.1
Apple / macOS
|
Ventura <13.7.1 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Sonoma <14.7.1
Apple / macOS
|
Sonoma <14.7.1 | ||
|
Apple macOS Sequoia <15.1
Apple / macOS
|
Sequoia <15.1 | ||
|
Apple macOS Ventura <13.7.1
Apple / macOS
|
Ventura <13.7.1 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Sonoma <14.7.1
Apple / macOS
|
Sonoma <14.7.1 | ||
|
Apple macOS Sequoia <15.1
Apple / macOS
|
Sequoia <15.1 | ||
|
Apple macOS Ventura <13.7.1
Apple / macOS
|
Ventura <13.7.1 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Sonoma <14.7.1
Apple / macOS
|
Sonoma <14.7.1 | ||
|
Apple macOS Sequoia <15.1
Apple / macOS
|
Sequoia <15.1 | ||
|
Apple macOS Ventura <13.7.1
Apple / macOS
|
Ventura <13.7.1 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Sonoma <14.7.1
Apple / macOS
|
Sonoma <14.7.1 | ||
|
Apple macOS Sequoia <15.1
Apple / macOS
|
Sequoia <15.1 | ||
|
Apple macOS Ventura <13.7.1
Apple / macOS
|
Ventura <13.7.1 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Sonoma <14.7.1
Apple / macOS
|
Sonoma <14.7.1 | ||
|
Apple macOS Sequoia <15.1
Apple / macOS
|
Sequoia <15.1 | ||
|
Apple macOS Ventura <13.7.1
Apple / macOS
|
Ventura <13.7.1 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Sonoma <14.7.1
Apple / macOS
|
Sonoma <14.7.1 | ||
|
Apple macOS Sequoia <15.1
Apple / macOS
|
Sequoia <15.1 | ||
|
Apple macOS Ventura <13.7.1
Apple / macOS
|
Ventura <13.7.1 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Sonoma <14.7.1
Apple / macOS
|
Sonoma <14.7.1 | ||
|
Apple macOS Sequoia <15.1
Apple / macOS
|
Sequoia <15.1 | ||
|
Apple macOS Ventura <13.7.1
Apple / macOS
|
Ventura <13.7.1 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Sonoma <14.7.1
Apple / macOS
|
Sonoma <14.7.1 | ||
|
Apple macOS Sequoia <15.1
Apple / macOS
|
Sequoia <15.1 | ||
|
Apple macOS Ventura <13.7.1
Apple / macOS
|
Ventura <13.7.1 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Sonoma <14.7.1
Apple / macOS
|
Sonoma <14.7.1 | ||
|
Apple macOS Sequoia <15.1
Apple / macOS
|
Sequoia <15.1 | ||
|
Apple macOS Ventura <13.7.1
Apple / macOS
|
Ventura <13.7.1 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Sonoma <14.7.1
Apple / macOS
|
Sonoma <14.7.1 | ||
|
Apple macOS Sequoia <15.1
Apple / macOS
|
Sequoia <15.1 | ||
|
Apple macOS Ventura <13.7.1
Apple / macOS
|
Ventura <13.7.1 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Sonoma <14.7.1
Apple / macOS
|
Sonoma <14.7.1 | ||
|
Apple macOS Sequoia <15.1
Apple / macOS
|
Sequoia <15.1 | ||
|
Apple macOS Ventura <13.7.1
Apple / macOS
|
Ventura <13.7.1 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Sonoma <14.7.1
Apple / macOS
|
Sonoma <14.7.1 | ||
|
Apple macOS Sequoia <15.1
Apple / macOS
|
Sequoia <15.1 | ||
|
Apple macOS Ventura <13.7.1
Apple / macOS
|
Ventura <13.7.1 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Sonoma <14.7.1
Apple / macOS
|
Sonoma <14.7.1 | ||
|
Apple macOS Sequoia <15.1
Apple / macOS
|
Sequoia <15.1 | ||
|
Apple macOS Ventura <13.7.1
Apple / macOS
|
Ventura <13.7.1 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Sonoma <14.7.1
Apple / macOS
|
Sonoma <14.7.1 | ||
|
Apple macOS Sequoia <15.1
Apple / macOS
|
Sequoia <15.1 | ||
|
Apple macOS Ventura <13.7.1
Apple / macOS
|
Ventura <13.7.1 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Sonoma <14.7.1
Apple / macOS
|
Sonoma <14.7.1 | ||
|
Apple macOS Sequoia <15.1
Apple / macOS
|
Sequoia <15.1 | ||
|
Apple macOS Ventura <13.7.1
Apple / macOS
|
Ventura <13.7.1 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Sonoma <14.7.1
Apple / macOS
|
Sonoma <14.7.1 | ||
|
Apple macOS Sequoia <15.1
Apple / macOS
|
Sequoia <15.1 | ||
|
Apple macOS Ventura <13.7.1
Apple / macOS
|
Ventura <13.7.1 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Sonoma <14.7.1
Apple / macOS
|
Sonoma <14.7.1 | ||
|
Apple macOS Sequoia <15.1
Apple / macOS
|
Sequoia <15.1 | ||
|
Apple macOS Ventura <13.7.1
Apple / macOS
|
Ventura <13.7.1 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Sonoma <14.7.1
Apple / macOS
|
Sonoma <14.7.1 | ||
|
Apple macOS Sequoia <15.1
Apple / macOS
|
Sequoia <15.1 | ||
|
Apple macOS Ventura <13.7.1
Apple / macOS
|
Ventura <13.7.1 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Sonoma <14.7.1
Apple / macOS
|
Sonoma <14.7.1 | ||
|
Apple macOS Sequoia <15.1
Apple / macOS
|
Sequoia <15.1 | ||
|
Apple macOS Ventura <13.7.1
Apple / macOS
|
Ventura <13.7.1 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Sonoma <14.7.1
Apple / macOS
|
Sonoma <14.7.1 | ||
|
Apple macOS Sequoia <15.1
Apple / macOS
|
Sequoia <15.1 | ||
|
Apple macOS Ventura <13.7.1
Apple / macOS
|
Ventura <13.7.1 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Sonoma <14.7.1
Apple / macOS
|
Sonoma <14.7.1 | ||
|
Apple macOS Sequoia <15.1
Apple / macOS
|
Sequoia <15.1 | ||
|
Apple macOS Ventura <13.7.1
Apple / macOS
|
Ventura <13.7.1 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Sonoma <14.7.1
Apple / macOS
|
Sonoma <14.7.1 | ||
|
Apple macOS Sequoia <15.1
Apple / macOS
|
Sequoia <15.1 | ||
|
Apple macOS Ventura <13.7.1
Apple / macOS
|
Ventura <13.7.1 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Sonoma <14.7.1
Apple / macOS
|
Sonoma <14.7.1 | ||
|
Apple macOS Sequoia <15.1
Apple / macOS
|
Sequoia <15.1 | ||
|
Apple macOS Ventura <13.7.1
Apple / macOS
|
Ventura <13.7.1 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Sonoma <14.7.1
Apple / macOS
|
Sonoma <14.7.1 | ||
|
Apple macOS Sequoia <15.1
Apple / macOS
|
Sequoia <15.1 | ||
|
Apple macOS Ventura <13.7.1
Apple / macOS
|
Ventura <13.7.1 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Sonoma <14.7.1
Apple / macOS
|
Sonoma <14.7.1 | ||
|
Apple macOS Sequoia <15.1
Apple / macOS
|
Sequoia <15.1 | ||
|
Apple macOS Ventura <13.7.1
Apple / macOS
|
Ventura <13.7.1 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Sonoma <14.7.1
Apple / macOS
|
Sonoma <14.7.1 | ||
|
Apple macOS Sequoia <15.1
Apple / macOS
|
Sequoia <15.1 | ||
|
Apple macOS Ventura <13.7.1
Apple / macOS
|
Ventura <13.7.1 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Sonoma <14.7.1
Apple / macOS
|
Sonoma <14.7.1 | ||
|
Apple macOS Sequoia <15.1
Apple / macOS
|
Sequoia <15.1 | ||
|
Apple macOS Ventura <13.7.1
Apple / macOS
|
Ventura <13.7.1 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Sonoma <14.7.1
Apple / macOS
|
Sonoma <14.7.1 | ||
|
Apple macOS Sequoia <15.1
Apple / macOS
|
Sequoia <15.1 | ||
|
Apple macOS Ventura <13.7.1
Apple / macOS
|
Ventura <13.7.1 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Sonoma <14.7.1
Apple / macOS
|
Sonoma <14.7.1 | ||
|
Apple macOS Sequoia <15.1
Apple / macOS
|
Sequoia <15.1 | ||
|
Apple macOS Ventura <13.7.1
Apple / macOS
|
Ventura <13.7.1 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Sonoma <14.7.1
Apple / macOS
|
Sonoma <14.7.1 | ||
|
Apple macOS Sequoia <15.1
Apple / macOS
|
Sequoia <15.1 | ||
|
Apple macOS Ventura <13.7.1
Apple / macOS
|
Ventura <13.7.1 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Sonoma <14.7.1
Apple / macOS
|
Sonoma <14.7.1 | ||
|
Apple macOS Sequoia <15.1
Apple / macOS
|
Sequoia <15.1 | ||
|
Apple macOS Ventura <13.7.1
Apple / macOS
|
Ventura <13.7.1 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Sonoma <14.7.1
Apple / macOS
|
Sonoma <14.7.1 | ||
|
Apple macOS Sequoia <15.1
Apple / macOS
|
Sequoia <15.1 | ||
|
Apple macOS Ventura <13.7.1
Apple / macOS
|
Ventura <13.7.1 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Sonoma <14.7.1
Apple / macOS
|
Sonoma <14.7.1 | ||
|
Apple macOS Sequoia <15.1
Apple / macOS
|
Sequoia <15.1 | ||
|
Apple macOS Ventura <13.7.1
Apple / macOS
|
Ventura <13.7.1 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Sonoma <14.7.1
Apple / macOS
|
Sonoma <14.7.1 | ||
|
Apple macOS Sequoia <15.1
Apple / macOS
|
Sequoia <15.1 | ||
|
Apple macOS Ventura <13.7.1
Apple / macOS
|
Ventura <13.7.1 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Sonoma <14.7.1
Apple / macOS
|
Sonoma <14.7.1 | ||
|
Apple macOS Sequoia <15.1
Apple / macOS
|
Sequoia <15.1 | ||
|
Apple macOS Ventura <13.7.1
Apple / macOS
|
Ventura <13.7.1 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Sonoma <14.7.1
Apple / macOS
|
Sonoma <14.7.1 | ||
|
Apple macOS Sequoia <15.1
Apple / macOS
|
Sequoia <15.1 | ||
|
Apple macOS Ventura <13.7.1
Apple / macOS
|
Ventura <13.7.1 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Sonoma <14.7.1
Apple / macOS
|
Sonoma <14.7.1 | ||
|
Apple macOS Sequoia <15.1
Apple / macOS
|
Sequoia <15.1 | ||
|
Apple macOS Ventura <13.7.1
Apple / macOS
|
Ventura <13.7.1 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Sonoma <14.7.1
Apple / macOS
|
Sonoma <14.7.1 | ||
|
Apple macOS Sequoia <15.1
Apple / macOS
|
Sequoia <15.1 | ||
|
Apple macOS Ventura <13.7.1
Apple / macOS
|
Ventura <13.7.1 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Sonoma <14.7.1
Apple / macOS
|
Sonoma <14.7.1 | ||
|
Apple macOS Sequoia <15.1
Apple / macOS
|
Sequoia <15.1 | ||
|
Apple macOS Ventura <13.7.1
Apple / macOS
|
Ventura <13.7.1 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Sonoma <14.7.1
Apple / macOS
|
Sonoma <14.7.1 | ||
|
Apple macOS Sequoia <15.1
Apple / macOS
|
Sequoia <15.1 | ||
|
Apple macOS Ventura <13.7.1
Apple / macOS
|
Ventura <13.7.1 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Sonoma <14.7.1
Apple / macOS
|
Sonoma <14.7.1 | ||
|
Apple macOS Sequoia <15.1
Apple / macOS
|
Sequoia <15.1 | ||
|
Apple macOS Ventura <13.7.1
Apple / macOS
|
Ventura <13.7.1 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Sonoma <14.7.1
Apple / macOS
|
Sonoma <14.7.1 | ||
|
Apple macOS Sequoia <15.1
Apple / macOS
|
Sequoia <15.1 | ||
|
Apple macOS Ventura <13.7.1
Apple / macOS
|
Ventura <13.7.1 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Sonoma <14.7.1
Apple / macOS
|
Sonoma <14.7.1 | ||
|
Apple macOS Sequoia <15.1
Apple / macOS
|
Sequoia <15.1 | ||
|
Apple macOS Ventura <13.7.1
Apple / macOS
|
Ventura <13.7.1 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Sonoma <14.7.1
Apple / macOS
|
Sonoma <14.7.1 | ||
|
Apple macOS Sequoia <15.1
Apple / macOS
|
Sequoia <15.1 | ||
|
Apple macOS Ventura <13.7.1
Apple / macOS
|
Ventura <13.7.1 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Sonoma <14.7.1
Apple / macOS
|
Sonoma <14.7.1 | ||
|
Apple macOS Sequoia <15.1
Apple / macOS
|
Sequoia <15.1 | ||
|
Apple macOS Ventura <13.7.1
Apple / macOS
|
Ventura <13.7.1 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Sonoma <14.7.1
Apple / macOS
|
Sonoma <14.7.1 | ||
|
Apple macOS Sequoia <15.1
Apple / macOS
|
Sequoia <15.1 | ||
|
Apple macOS Ventura <13.7.1
Apple / macOS
|
Ventura <13.7.1 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Sonoma <14.7.1
Apple / macOS
|
Sonoma <14.7.1 | ||
|
Apple macOS Sequoia <15.1
Apple / macOS
|
Sequoia <15.1 | ||
|
Apple macOS Ventura <13.7.1
Apple / macOS
|
Ventura <13.7.1 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Sonoma <14.7.1
Apple / macOS
|
Sonoma <14.7.1 | ||
|
Apple macOS Sequoia <15.1
Apple / macOS
|
Sequoia <15.1 | ||
|
Apple macOS Ventura <13.7.1
Apple / macOS
|
Ventura <13.7.1 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Sonoma <14.7.1
Apple / macOS
|
Sonoma <14.7.1 | ||
|
Apple macOS Sequoia <15.1
Apple / macOS
|
Sequoia <15.1 | ||
|
Apple macOS Ventura <13.7.1
Apple / macOS
|
Ventura <13.7.1 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Sonoma <14.7.1
Apple / macOS
|
Sonoma <14.7.1 | ||
|
Apple macOS Sequoia <15.1
Apple / macOS
|
Sequoia <15.1 | ||
|
Apple macOS Ventura <13.7.1
Apple / macOS
|
Ventura <13.7.1 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Sonoma <14.7.1
Apple / macOS
|
Sonoma <14.7.1 | ||
|
Apple macOS Sequoia <15.1
Apple / macOS
|
Sequoia <15.1 | ||
|
Apple macOS Ventura <13.7.1
Apple / macOS
|
Ventura <13.7.1 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Sonoma <14.7.1
Apple / macOS
|
Sonoma <14.7.1 | ||
|
Apple macOS Sequoia <15.1
Apple / macOS
|
Sequoia <15.1 | ||
|
Apple macOS Ventura <13.7.1
Apple / macOS
|
Ventura <13.7.1 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Sonoma <14.7.1
Apple / macOS
|
Sonoma <14.7.1 | ||
|
Apple macOS Sequoia <15.1
Apple / macOS
|
Sequoia <15.1 | ||
|
Apple macOS Ventura <13.7.1
Apple / macOS
|
Ventura <13.7.1 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Sonoma <14.7.1
Apple / macOS
|
Sonoma <14.7.1 | ||
|
Apple macOS Sequoia <15.1
Apple / macOS
|
Sequoia <15.1 | ||
|
Apple macOS Ventura <13.7.1
Apple / macOS
|
Ventura <13.7.1 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Sonoma <14.7.1
Apple / macOS
|
Sonoma <14.7.1 | ||
|
Apple macOS Sequoia <15.1
Apple / macOS
|
Sequoia <15.1 | ||
|
Apple macOS Ventura <13.7.1
Apple / macOS
|
Ventura <13.7.1 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Sonoma <14.7.1
Apple / macOS
|
Sonoma <14.7.1 | ||
|
Apple macOS Sequoia <15.1
Apple / macOS
|
Sequoia <15.1 | ||
|
Apple macOS Ventura <13.7.1
Apple / macOS
|
Ventura <13.7.1 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Sonoma <14.7.1
Apple / macOS
|
Sonoma <14.7.1 | ||
|
Apple macOS Sequoia <15.1
Apple / macOS
|
Sequoia <15.1 | ||
|
Apple macOS Ventura <13.7.1
Apple / macOS
|
Ventura <13.7.1 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Sonoma <14.7.1
Apple / macOS
|
Sonoma <14.7.1 | ||
|
Apple macOS Sequoia <15.1
Apple / macOS
|
Sequoia <15.1 | ||
|
Apple macOS Ventura <13.7.1
Apple / macOS
|
Ventura <13.7.1 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Sonoma <14.7.1
Apple / macOS
|
Sonoma <14.7.1 | ||
|
Apple macOS Sequoia <15.1
Apple / macOS
|
Sequoia <15.1 | ||
|
Apple macOS Ventura <13.7.1
Apple / macOS
|
Ventura <13.7.1 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Sonoma <14.7.1
Apple / macOS
|
Sonoma <14.7.1 | ||
|
Apple macOS Sequoia <15.1
Apple / macOS
|
Sequoia <15.1 | ||
|
Apple macOS Ventura <13.7.1
Apple / macOS
|
Ventura <13.7.1 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Sonoma <14.7.1
Apple / macOS
|
Sonoma <14.7.1 | ||
|
Apple macOS Sequoia <15.1
Apple / macOS
|
Sequoia <15.1 | ||
|
Apple macOS Ventura <13.7.1
Apple / macOS
|
Ventura <13.7.1 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Sonoma <14.7.1
Apple / macOS
|
Sonoma <14.7.1 | ||
|
Apple macOS Sequoia <15.1
Apple / macOS
|
Sequoia <15.1 | ||
|
Apple macOS Ventura <13.7.1
Apple / macOS
|
Ventura <13.7.1 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Sonoma <14.7.1
Apple / macOS
|
Sonoma <14.7.1 | ||
|
Apple macOS Sequoia <15.1
Apple / macOS
|
Sequoia <15.1 | ||
|
Apple macOS Ventura <13.7.1
Apple / macOS
|
Ventura <13.7.1 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Sonoma <14.7.1
Apple / macOS
|
Sonoma <14.7.1 | ||
|
Apple macOS Sequoia <15.1
Apple / macOS
|
Sequoia <15.1 | ||
|
Apple macOS Ventura <13.7.1
Apple / macOS
|
Ventura <13.7.1 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Sonoma <14.7.1
Apple / macOS
|
Sonoma <14.7.1 | ||
|
Apple macOS Sequoia <15.1
Apple / macOS
|
Sequoia <15.1 | ||
|
Apple macOS Ventura <13.7.1
Apple / macOS
|
Ventura <13.7.1 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Sonoma <14.7.1
Apple / macOS
|
Sonoma <14.7.1 | ||
|
Apple macOS Sequoia <15.1
Apple / macOS
|
Sequoia <15.1 | ||
|
Apple macOS Ventura <13.7.1
Apple / macOS
|
Ventura <13.7.1 |
{
"document": {
"aggregate_severity": {
"text": "mittel"
},
"category": "csaf_base",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "de-DE",
"notes": [
{
"category": "legal_disclaimer",
"text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
},
{
"category": "description",
"text": "Apple macOS ist ein Betriebssystem, das auf FreeBSD und Mach basiert.",
"title": "Produktbeschreibung"
},
{
"category": "summary",
"text": "Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Apple macOS ausnutzen, um einen Denial of Service Angriff durchzuf\u00fchren.",
"title": "Angriff"
},
{
"category": "general",
"text": "- MacOS X",
"title": "Betroffene Betriebssysteme"
}
],
"publisher": {
"category": "other",
"contact_details": "csaf-provider@cert-bund.de",
"name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"namespace": "https://www.bsi.bund.de"
},
"references": [
{
"category": "self",
"summary": "WID-SEC-W-2024-3291 - CSAF Version",
"url": "https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-3291.json"
},
{
"category": "self",
"summary": "WID-SEC-2024-3291 - Portal Version",
"url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-3291"
},
{
"category": "external",
"summary": "Apple Security Advisory vom 2024-10-28",
"url": "https://lists.apple.com/archives/security-announce/2024/Oct/msg00003.html"
},
{
"category": "external",
"summary": "Apple Security Advisory vom 2024-10-28",
"url": "https://lists.apple.com/archives/security-announce/2024/Oct/msg00004.html"
},
{
"category": "external",
"summary": "Apple Security Advisory vom 2024-10-28",
"url": "https://lists.apple.com/archives/security-announce/2024/Oct/msg00005.html"
}
],
"source_lang": "en-US",
"title": "Apple macOS: Mehrere Schwachstellen",
"tracking": {
"current_release_date": "2026-04-06T22:00:00.000+00:00",
"generator": {
"date": "2026-04-07T10:14:47.439+00:00",
"engine": {
"name": "BSI-WID",
"version": "1.5.0"
}
},
"id": "WID-SEC-W-2024-3291",
"initial_release_date": "2024-10-28T23:00:00.000+00:00",
"revision_history": [
{
"date": "2024-10-28T23:00:00.000+00:00",
"number": "1",
"summary": "Initiale Fassung"
},
{
"date": "2024-11-19T23:00:00.000+00:00",
"number": "2",
"summary": "CVE Nummern erg\u00e4nzt"
},
{
"date": "2024-12-11T23:00:00.000+00:00",
"number": "3",
"summary": "CVE Nummern erg\u00e4nzt"
},
{
"date": "2024-12-19T23:00:00.000+00:00",
"number": "4",
"summary": "CVE-2024-54538 erg\u00e4nzt"
},
{
"date": "2025-08-28T22:00:00.000+00:00",
"number": "5",
"summary": "CVE-2024-54554 erg\u00e4nzt"
},
{
"date": "2025-08-31T22:00:00.000+00:00",
"number": "6",
"summary": "Referenz(en) aufgenommen: EUVD-2024-54932"
},
{
"date": "2025-09-15T22:00:00.000+00:00",
"number": "7",
"summary": "CVE Nummern erg\u00e4nzt"
},
{
"date": "2026-04-06T22:00:00.000+00:00",
"number": "8",
"summary": "Referenz(en) aufgenommen: EUVD-2024-55521, EUVD-2024-55530, EUVD-2024-55523, EUVD-2024-55529, EUVD-2024-55525, EUVD-2024-55528"
}
],
"status": "final",
"version": "8"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "Sequoia \u003c15.1",
"product": {
"name": "Apple macOS Sequoia \u003c15.1",
"product_id": "T038638"
}
},
{
"category": "product_version",
"name": "Sequoia 15.1",
"product": {
"name": "Apple macOS Sequoia 15.1",
"product_id": "T038638-fixed",
"product_identification_helper": {
"cpe": "cpe:/o:apple:mac_os:sequoia__15.1"
}
}
},
{
"category": "product_version_range",
"name": "Sonoma \u003c14.7.1",
"product": {
"name": "Apple macOS Sonoma \u003c14.7.1",
"product_id": "T038639"
}
},
{
"category": "product_version",
"name": "Sonoma 14.7.1",
"product": {
"name": "Apple macOS Sonoma 14.7.1",
"product_id": "T038639-fixed",
"product_identification_helper": {
"cpe": "cpe:/o:apple:mac_os:sonoma__14.7.1"
}
}
},
{
"category": "product_version_range",
"name": "Ventura \u003c13.7.1",
"product": {
"name": "Apple macOS Ventura \u003c13.7.1",
"product_id": "T038640"
}
},
{
"category": "product_version",
"name": "Ventura 13.7.1",
"product": {
"name": "Apple macOS Ventura 13.7.1",
"product_id": "T038640-fixed",
"product_identification_helper": {
"cpe": "cpe:/o:apple:mac_os:ventura__13.7.1"
}
}
}
],
"category": "product_name",
"name": "macOS"
}
],
"category": "vendor",
"name": "Apple"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-38476",
"product_status": {
"known_affected": [
"T038639",
"T038638",
"T038640"
]
},
"release_date": "2024-10-28T23:00:00.000+00:00",
"title": "CVE-2024-38476"
},
{
"cve": "CVE-2024-38477",
"product_status": {
"known_affected": [
"T038639",
"T038638",
"T038640"
]
},
"release_date": "2024-10-28T23:00:00.000+00:00",
"title": "CVE-2024-38477"
},
{
"cve": "CVE-2024-39573",
"product_status": {
"known_affected": [
"T038639",
"T038638",
"T038640"
]
},
"release_date": "2024-10-28T23:00:00.000+00:00",
"title": "CVE-2024-39573"
},
{
"cve": "CVE-2024-40849",
"product_status": {
"known_affected": [
"T038639",
"T038638",
"T038640"
]
},
"release_date": "2024-10-28T23:00:00.000+00:00",
"title": "CVE-2024-40849"
},
{
"cve": "CVE-2024-40854",
"product_status": {
"known_affected": [
"T038639",
"T038638",
"T038640"
]
},
"release_date": "2024-10-28T23:00:00.000+00:00",
"title": "CVE-2024-40854"
},
{
"cve": "CVE-2024-40855",
"product_status": {
"known_affected": [
"T038639",
"T038638",
"T038640"
]
},
"release_date": "2024-10-28T23:00:00.000+00:00",
"title": "CVE-2024-40855"
},
{
"cve": "CVE-2024-40858",
"product_status": {
"known_affected": [
"T038639",
"T038638",
"T038640"
]
},
"release_date": "2024-10-28T23:00:00.000+00:00",
"title": "CVE-2024-40858"
},
{
"cve": "CVE-2024-44122",
"product_status": {
"known_affected": [
"T038639",
"T038638",
"T038640"
]
},
"release_date": "2024-10-28T23:00:00.000+00:00",
"title": "CVE-2024-44122"
},
{
"cve": "CVE-2024-44126",
"product_status": {
"known_affected": [
"T038639",
"T038638",
"T038640"
]
},
"release_date": "2024-10-28T23:00:00.000+00:00",
"title": "CVE-2024-44126"
},
{
"cve": "CVE-2024-44137",
"product_status": {
"known_affected": [
"T038639",
"T038638",
"T038640"
]
},
"release_date": "2024-10-28T23:00:00.000+00:00",
"title": "CVE-2024-44137"
},
{
"cve": "CVE-2024-44144",
"product_status": {
"known_affected": [
"T038639",
"T038638",
"T038640"
]
},
"release_date": "2024-10-28T23:00:00.000+00:00",
"title": "CVE-2024-44144"
},
{
"cve": "CVE-2024-44156",
"product_status": {
"known_affected": [
"T038639",
"T038638",
"T038640"
]
},
"release_date": "2024-10-28T23:00:00.000+00:00",
"title": "CVE-2024-44156"
},
{
"cve": "CVE-2024-44159",
"product_status": {
"known_affected": [
"T038639",
"T038638",
"T038640"
]
},
"release_date": "2024-10-28T23:00:00.000+00:00",
"title": "CVE-2024-44159"
},
{
"cve": "CVE-2024-44175",
"product_status": {
"known_affected": [
"T038639",
"T038638",
"T038640"
]
},
"release_date": "2024-10-28T23:00:00.000+00:00",
"title": "CVE-2024-44175"
},
{
"cve": "CVE-2024-44194",
"product_status": {
"known_affected": [
"T038639",
"T038638",
"T038640"
]
},
"release_date": "2024-10-28T23:00:00.000+00:00",
"title": "CVE-2024-44194"
},
{
"cve": "CVE-2024-44195",
"product_status": {
"known_affected": [
"T038639",
"T038638",
"T038640"
]
},
"release_date": "2024-10-28T23:00:00.000+00:00",
"title": "CVE-2024-44195"
},
{
"cve": "CVE-2024-44196",
"product_status": {
"known_affected": [
"T038639",
"T038638",
"T038640"
]
},
"release_date": "2024-10-28T23:00:00.000+00:00",
"title": "CVE-2024-44196"
},
{
"cve": "CVE-2024-44197",
"product_status": {
"known_affected": [
"T038639",
"T038638",
"T038640"
]
},
"release_date": "2024-10-28T23:00:00.000+00:00",
"title": "CVE-2024-44197"
},
{
"cve": "CVE-2024-44200",
"product_status": {
"known_affected": [
"T038639",
"T038638",
"T038640"
]
},
"release_date": "2024-10-28T23:00:00.000+00:00",
"title": "CVE-2024-44200"
},
{
"cve": "CVE-2024-44201",
"product_status": {
"known_affected": [
"T038639",
"T038638",
"T038640"
]
},
"release_date": "2024-10-28T23:00:00.000+00:00",
"title": "CVE-2024-44201"
},
{
"cve": "CVE-2024-44211",
"product_status": {
"known_affected": [
"T038639",
"T038638",
"T038640"
]
},
"release_date": "2024-10-28T23:00:00.000+00:00",
"title": "CVE-2024-44211"
},
{
"cve": "CVE-2024-44212",
"product_status": {
"known_affected": [
"T038639",
"T038638",
"T038640"
]
},
"release_date": "2024-10-28T23:00:00.000+00:00",
"title": "CVE-2024-44212"
},
{
"cve": "CVE-2024-44213",
"product_status": {
"known_affected": [
"T038639",
"T038638",
"T038640"
]
},
"release_date": "2024-10-28T23:00:00.000+00:00",
"title": "CVE-2024-44213"
},
{
"cve": "CVE-2024-44215",
"product_status": {
"known_affected": [
"T038639",
"T038638",
"T038640"
]
},
"release_date": "2024-10-28T23:00:00.000+00:00",
"title": "CVE-2024-44215"
},
{
"cve": "CVE-2024-44216",
"product_status": {
"known_affected": [
"T038639",
"T038638",
"T038640"
]
},
"release_date": "2024-10-28T23:00:00.000+00:00",
"title": "CVE-2024-44216"
},
{
"cve": "CVE-2024-44218",
"product_status": {
"known_affected": [
"T038639",
"T038638",
"T038640"
]
},
"release_date": "2024-10-28T23:00:00.000+00:00",
"title": "CVE-2024-44218"
},
{
"cve": "CVE-2024-44219",
"product_status": {
"known_affected": [
"T038639",
"T038638",
"T038640"
]
},
"release_date": "2024-10-28T23:00:00.000+00:00",
"title": "CVE-2024-44219"
},
{
"cve": "CVE-2024-44222",
"product_status": {
"known_affected": [
"T038639",
"T038638",
"T038640"
]
},
"release_date": "2024-10-28T23:00:00.000+00:00",
"title": "CVE-2024-44222"
},
{
"cve": "CVE-2024-44223",
"product_status": {
"known_affected": [
"T038639",
"T038638",
"T038640"
]
},
"release_date": "2024-10-28T23:00:00.000+00:00",
"title": "CVE-2024-44223"
},
{
"cve": "CVE-2024-44229",
"product_status": {
"known_affected": [
"T038639",
"T038638",
"T038640"
]
},
"release_date": "2024-10-28T23:00:00.000+00:00",
"title": "CVE-2024-44229"
},
{
"cve": "CVE-2024-44231",
"product_status": {
"known_affected": [
"T038639",
"T038638",
"T038640"
]
},
"release_date": "2024-10-28T23:00:00.000+00:00",
"title": "CVE-2024-44231"
},
{
"cve": "CVE-2024-44232",
"product_status": {
"known_affected": [
"T038639",
"T038638",
"T038640"
]
},
"release_date": "2024-10-28T23:00:00.000+00:00",
"title": "CVE-2024-44232"
},
{
"cve": "CVE-2024-44233",
"product_status": {
"known_affected": [
"T038639",
"T038638",
"T038640"
]
},
"release_date": "2024-10-28T23:00:00.000+00:00",
"title": "CVE-2024-44233"
},
{
"cve": "CVE-2024-44234",
"product_status": {
"known_affected": [
"T038639",
"T038638",
"T038640"
]
},
"release_date": "2024-10-28T23:00:00.000+00:00",
"title": "CVE-2024-44234"
},
{
"cve": "CVE-2024-44236",
"product_status": {
"known_affected": [
"T038639",
"T038638",
"T038640"
]
},
"release_date": "2024-10-28T23:00:00.000+00:00",
"title": "CVE-2024-44236"
},
{
"cve": "CVE-2024-44237",
"product_status": {
"known_affected": [
"T038639",
"T038638",
"T038640"
]
},
"release_date": "2024-10-28T23:00:00.000+00:00",
"title": "CVE-2024-44237"
},
{
"cve": "CVE-2024-44239",
"product_status": {
"known_affected": [
"T038639",
"T038638",
"T038640"
]
},
"release_date": "2024-10-28T23:00:00.000+00:00",
"title": "CVE-2024-44239"
},
{
"cve": "CVE-2024-44240",
"product_status": {
"known_affected": [
"T038639",
"T038638",
"T038640"
]
},
"release_date": "2024-10-28T23:00:00.000+00:00",
"title": "CVE-2024-44240"
},
{
"cve": "CVE-2024-44241",
"product_status": {
"known_affected": [
"T038639",
"T038638",
"T038640"
]
},
"release_date": "2024-10-28T23:00:00.000+00:00",
"title": "CVE-2024-44241"
},
{
"cve": "CVE-2024-44242",
"product_status": {
"known_affected": [
"T038639",
"T038638",
"T038640"
]
},
"release_date": "2024-10-28T23:00:00.000+00:00",
"title": "CVE-2024-44242"
},
{
"cve": "CVE-2024-44244",
"product_status": {
"known_affected": [
"T038639",
"T038638",
"T038640"
]
},
"release_date": "2024-10-28T23:00:00.000+00:00",
"title": "CVE-2024-44244"
},
{
"cve": "CVE-2024-44247",
"product_status": {
"known_affected": [
"T038639",
"T038638",
"T038640"
]
},
"release_date": "2024-10-28T23:00:00.000+00:00",
"title": "CVE-2024-44247"
},
{
"cve": "CVE-2024-44248",
"product_status": {
"known_affected": [
"T038639",
"T038638",
"T038640"
]
},
"release_date": "2024-10-28T23:00:00.000+00:00",
"title": "CVE-2024-44248"
},
{
"cve": "CVE-2024-44250",
"product_status": {
"known_affected": [
"T038639",
"T038638",
"T038640"
]
},
"release_date": "2024-10-28T23:00:00.000+00:00",
"title": "CVE-2024-44250"
},
{
"cve": "CVE-2024-44253",
"product_status": {
"known_affected": [
"T038639",
"T038638",
"T038640"
]
},
"release_date": "2024-10-28T23:00:00.000+00:00",
"title": "CVE-2024-44253"
},
{
"cve": "CVE-2024-44254",
"product_status": {
"known_affected": [
"T038639",
"T038638",
"T038640"
]
},
"release_date": "2024-10-28T23:00:00.000+00:00",
"title": "CVE-2024-44254"
},
{
"cve": "CVE-2024-44255",
"product_status": {
"known_affected": [
"T038639",
"T038638",
"T038640"
]
},
"release_date": "2024-10-28T23:00:00.000+00:00",
"title": "CVE-2024-44255"
},
{
"cve": "CVE-2024-44256",
"product_status": {
"known_affected": [
"T038639",
"T038638",
"T038640"
]
},
"release_date": "2024-10-28T23:00:00.000+00:00",
"title": "CVE-2024-44256"
},
{
"cve": "CVE-2024-44257",
"product_status": {
"known_affected": [
"T038639",
"T038638",
"T038640"
]
},
"release_date": "2024-10-28T23:00:00.000+00:00",
"title": "CVE-2024-44257"
},
{
"cve": "CVE-2024-44259",
"product_status": {
"known_affected": [
"T038639",
"T038638",
"T038640"
]
},
"release_date": "2024-10-28T23:00:00.000+00:00",
"title": "CVE-2024-44259"
},
{
"cve": "CVE-2024-44260",
"product_status": {
"known_affected": [
"T038639",
"T038638",
"T038640"
]
},
"release_date": "2024-10-28T23:00:00.000+00:00",
"title": "CVE-2024-44260"
},
{
"cve": "CVE-2024-44264",
"product_status": {
"known_affected": [
"T038639",
"T038638",
"T038640"
]
},
"release_date": "2024-10-28T23:00:00.000+00:00",
"title": "CVE-2024-44264"
},
{
"cve": "CVE-2024-44265",
"product_status": {
"known_affected": [
"T038639",
"T038638",
"T038640"
]
},
"release_date": "2024-10-28T23:00:00.000+00:00",
"title": "CVE-2024-44265"
},
{
"cve": "CVE-2024-44267",
"product_status": {
"known_affected": [
"T038639",
"T038638",
"T038640"
]
},
"release_date": "2024-10-28T23:00:00.000+00:00",
"title": "CVE-2024-44267"
},
{
"cve": "CVE-2024-44269",
"product_status": {
"known_affected": [
"T038639",
"T038638",
"T038640"
]
},
"release_date": "2024-10-28T23:00:00.000+00:00",
"title": "CVE-2024-44269"
},
{
"cve": "CVE-2024-44270",
"product_status": {
"known_affected": [
"T038639",
"T038638",
"T038640"
]
},
"release_date": "2024-10-28T23:00:00.000+00:00",
"title": "CVE-2024-44270"
},
{
"cve": "CVE-2024-44273",
"product_status": {
"known_affected": [
"T038639",
"T038638",
"T038640"
]
},
"release_date": "2024-10-28T23:00:00.000+00:00",
"title": "CVE-2024-44273"
},
{
"cve": "CVE-2024-44275",
"product_status": {
"known_affected": [
"T038639",
"T038638",
"T038640"
]
},
"release_date": "2024-10-28T23:00:00.000+00:00",
"title": "CVE-2024-44275"
},
{
"cve": "CVE-2024-44277",
"product_status": {
"known_affected": [
"T038639",
"T038638",
"T038640"
]
},
"release_date": "2024-10-28T23:00:00.000+00:00",
"title": "CVE-2024-44277"
},
{
"cve": "CVE-2024-44278",
"product_status": {
"known_affected": [
"T038639",
"T038638",
"T038640"
]
},
"release_date": "2024-10-28T23:00:00.000+00:00",
"title": "CVE-2024-44278"
},
{
"cve": "CVE-2024-44279",
"product_status": {
"known_affected": [
"T038639",
"T038638",
"T038640"
]
},
"release_date": "2024-10-28T23:00:00.000+00:00",
"title": "CVE-2024-44279"
},
{
"cve": "CVE-2024-44280",
"product_status": {
"known_affected": [
"T038639",
"T038638",
"T038640"
]
},
"release_date": "2024-10-28T23:00:00.000+00:00",
"title": "CVE-2024-44280"
},
{
"cve": "CVE-2024-44281",
"product_status": {
"known_affected": [
"T038639",
"T038638",
"T038640"
]
},
"release_date": "2024-10-28T23:00:00.000+00:00",
"title": "CVE-2024-44281"
},
{
"cve": "CVE-2024-44282",
"product_status": {
"known_affected": [
"T038639",
"T038638",
"T038640"
]
},
"release_date": "2024-10-28T23:00:00.000+00:00",
"title": "CVE-2024-44282"
},
{
"cve": "CVE-2024-44283",
"product_status": {
"known_affected": [
"T038639",
"T038638",
"T038640"
]
},
"release_date": "2024-10-28T23:00:00.000+00:00",
"title": "CVE-2024-44283"
},
{
"cve": "CVE-2024-44284",
"product_status": {
"known_affected": [
"T038639",
"T038638",
"T038640"
]
},
"release_date": "2024-10-28T23:00:00.000+00:00",
"title": "CVE-2024-44284"
},
{
"cve": "CVE-2024-44285",
"product_status": {
"known_affected": [
"T038639",
"T038638",
"T038640"
]
},
"release_date": "2024-10-28T23:00:00.000+00:00",
"title": "CVE-2024-44285"
},
{
"cve": "CVE-2024-44286",
"product_status": {
"known_affected": [
"T038639",
"T038638",
"T038640"
]
},
"release_date": "2024-10-28T23:00:00.000+00:00",
"title": "CVE-2024-44286"
},
{
"cve": "CVE-2024-44287",
"product_status": {
"known_affected": [
"T038639",
"T038638",
"T038640"
]
},
"release_date": "2024-10-28T23:00:00.000+00:00",
"title": "CVE-2024-44287"
},
{
"cve": "CVE-2024-44289",
"product_status": {
"known_affected": [
"T038639",
"T038638",
"T038640"
]
},
"release_date": "2024-10-28T23:00:00.000+00:00",
"title": "CVE-2024-44289"
},
{
"cve": "CVE-2024-44290",
"product_status": {
"known_affected": [
"T038639",
"T038638",
"T038640"
]
},
"release_date": "2024-10-28T23:00:00.000+00:00",
"title": "CVE-2024-44290"
},
{
"cve": "CVE-2024-44292",
"product_status": {
"known_affected": [
"T038639",
"T038638",
"T038640"
]
},
"release_date": "2024-10-28T23:00:00.000+00:00",
"title": "CVE-2024-44292"
},
{
"cve": "CVE-2024-44293",
"product_status": {
"known_affected": [
"T038639",
"T038638",
"T038640"
]
},
"release_date": "2024-10-28T23:00:00.000+00:00",
"title": "CVE-2024-44293"
},
{
"cve": "CVE-2024-44294",
"product_status": {
"known_affected": [
"T038639",
"T038638",
"T038640"
]
},
"release_date": "2024-10-28T23:00:00.000+00:00",
"title": "CVE-2024-44294"
},
{
"cve": "CVE-2024-44295",
"product_status": {
"known_affected": [
"T038639",
"T038638",
"T038640"
]
},
"release_date": "2024-10-28T23:00:00.000+00:00",
"title": "CVE-2024-44295"
},
{
"cve": "CVE-2024-44296",
"product_status": {
"known_affected": [
"T038639",
"T038638",
"T038640"
]
},
"release_date": "2024-10-28T23:00:00.000+00:00",
"title": "CVE-2024-44296"
},
{
"cve": "CVE-2024-44297",
"product_status": {
"known_affected": [
"T038639",
"T038638",
"T038640"
]
},
"release_date": "2024-10-28T23:00:00.000+00:00",
"title": "CVE-2024-44297"
},
{
"cve": "CVE-2024-44298",
"product_status": {
"known_affected": [
"T038639",
"T038638",
"T038640"
]
},
"release_date": "2024-10-28T23:00:00.000+00:00",
"title": "CVE-2024-44298"
},
{
"cve": "CVE-2024-44299",
"product_status": {
"known_affected": [
"T038639",
"T038638",
"T038640"
]
},
"release_date": "2024-10-28T23:00:00.000+00:00",
"title": "CVE-2024-44299"
},
{
"cve": "CVE-2024-44301",
"product_status": {
"known_affected": [
"T038639",
"T038638",
"T038640"
]
},
"release_date": "2024-10-28T23:00:00.000+00:00",
"title": "CVE-2024-44301"
},
{
"cve": "CVE-2024-44302",
"product_status": {
"known_affected": [
"T038639",
"T038638",
"T038640"
]
},
"release_date": "2024-10-28T23:00:00.000+00:00",
"title": "CVE-2024-44302"
},
{
"cve": "CVE-2024-44303",
"product_status": {
"known_affected": [
"T038639",
"T038638",
"T038640"
]
},
"release_date": "2024-10-28T23:00:00.000+00:00",
"title": "CVE-2024-44303"
},
{
"cve": "CVE-2024-54471",
"product_status": {
"known_affected": [
"T038639",
"T038638",
"T038640"
]
},
"release_date": "2024-10-28T23:00:00.000+00:00",
"title": "CVE-2024-54471"
},
{
"cve": "CVE-2024-54535",
"product_status": {
"known_affected": [
"T038639",
"T038638",
"T038640"
]
},
"release_date": "2024-10-28T23:00:00.000+00:00",
"title": "CVE-2024-54535"
},
{
"cve": "CVE-2024-54538",
"product_status": {
"known_affected": [
"T038639",
"T038638",
"T038640"
]
},
"release_date": "2024-10-28T23:00:00.000+00:00",
"title": "CVE-2024-54538"
},
{
"cve": "CVE-2024-54554",
"product_status": {
"known_affected": [
"T038639",
"T038638",
"T038640"
]
},
"release_date": "2024-10-28T23:00:00.000+00:00",
"title": "CVE-2024-54554"
}
]
}
WID-SEC-W-2025-0818
Vulnerability from csaf_certbund - Published: 2025-04-15 22:00 - Updated: 2025-04-15 22:00| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Fusion Middleware 14.1.2.0.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:14.1.2.0.0
|
14.1.2.0.0 | |
|
Oracle Fusion Middleware 12.2.1.4.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:12.2.1.4.0
|
12.2.1.4.0 | |
|
Oracle Fusion Middleware 8.5.7
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:8.5.7
|
8.5.7 | |
|
Oracle Fusion Middleware 14.1.1.0.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:14.1.1.0.0
|
14.1.1.0.0 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Fusion Middleware 14.1.2.0.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:14.1.2.0.0
|
14.1.2.0.0 | |
|
Oracle Fusion Middleware 12.2.1.4.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:12.2.1.4.0
|
12.2.1.4.0 | |
|
Oracle Fusion Middleware 8.5.7
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:8.5.7
|
8.5.7 | |
|
Oracle Fusion Middleware 14.1.1.0.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:14.1.1.0.0
|
14.1.1.0.0 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Fusion Middleware 14.1.2.0.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:14.1.2.0.0
|
14.1.2.0.0 | |
|
Oracle Fusion Middleware 12.2.1.4.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:12.2.1.4.0
|
12.2.1.4.0 | |
|
Oracle Fusion Middleware 8.5.7
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:8.5.7
|
8.5.7 | |
|
Oracle Fusion Middleware 14.1.1.0.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:14.1.1.0.0
|
14.1.1.0.0 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Fusion Middleware 14.1.2.0.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:14.1.2.0.0
|
14.1.2.0.0 | |
|
Oracle Fusion Middleware 12.2.1.4.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:12.2.1.4.0
|
12.2.1.4.0 | |
|
Oracle Fusion Middleware 8.5.7
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:8.5.7
|
8.5.7 | |
|
Oracle Fusion Middleware 14.1.1.0.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:14.1.1.0.0
|
14.1.1.0.0 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Fusion Middleware 14.1.2.0.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:14.1.2.0.0
|
14.1.2.0.0 | |
|
Oracle Fusion Middleware 12.2.1.4.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:12.2.1.4.0
|
12.2.1.4.0 | |
|
Oracle Fusion Middleware 8.5.7
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:8.5.7
|
8.5.7 | |
|
Oracle Fusion Middleware 14.1.1.0.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:14.1.1.0.0
|
14.1.1.0.0 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Fusion Middleware 14.1.2.0.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:14.1.2.0.0
|
14.1.2.0.0 | |
|
Oracle Fusion Middleware 12.2.1.4.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:12.2.1.4.0
|
12.2.1.4.0 | |
|
Oracle Fusion Middleware 8.5.7
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:8.5.7
|
8.5.7 | |
|
Oracle Fusion Middleware 14.1.1.0.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:14.1.1.0.0
|
14.1.1.0.0 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Fusion Middleware 14.1.2.0.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:14.1.2.0.0
|
14.1.2.0.0 | |
|
Oracle Fusion Middleware 12.2.1.4.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:12.2.1.4.0
|
12.2.1.4.0 | |
|
Oracle Fusion Middleware 8.5.7
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:8.5.7
|
8.5.7 | |
|
Oracle Fusion Middleware 14.1.1.0.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:14.1.1.0.0
|
14.1.1.0.0 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Fusion Middleware 14.1.2.0.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:14.1.2.0.0
|
14.1.2.0.0 | |
|
Oracle Fusion Middleware 12.2.1.4.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:12.2.1.4.0
|
12.2.1.4.0 | |
|
Oracle Fusion Middleware 8.5.7
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:8.5.7
|
8.5.7 | |
|
Oracle Fusion Middleware 14.1.1.0.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:14.1.1.0.0
|
14.1.1.0.0 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Fusion Middleware 14.1.2.0.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:14.1.2.0.0
|
14.1.2.0.0 | |
|
Oracle Fusion Middleware 12.2.1.4.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:12.2.1.4.0
|
12.2.1.4.0 | |
|
Oracle Fusion Middleware 8.5.7
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:8.5.7
|
8.5.7 | |
|
Oracle Fusion Middleware 14.1.1.0.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:14.1.1.0.0
|
14.1.1.0.0 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Fusion Middleware 14.1.2.0.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:14.1.2.0.0
|
14.1.2.0.0 | |
|
Oracle Fusion Middleware 12.2.1.4.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:12.2.1.4.0
|
12.2.1.4.0 | |
|
Oracle Fusion Middleware 8.5.7
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:8.5.7
|
8.5.7 | |
|
Oracle Fusion Middleware 14.1.1.0.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:14.1.1.0.0
|
14.1.1.0.0 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Fusion Middleware 14.1.2.0.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:14.1.2.0.0
|
14.1.2.0.0 | |
|
Oracle Fusion Middleware 12.2.1.4.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:12.2.1.4.0
|
12.2.1.4.0 | |
|
Oracle Fusion Middleware 8.5.7
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:8.5.7
|
8.5.7 | |
|
Oracle Fusion Middleware 14.1.1.0.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:14.1.1.0.0
|
14.1.1.0.0 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Fusion Middleware 14.1.2.0.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:14.1.2.0.0
|
14.1.2.0.0 | |
|
Oracle Fusion Middleware 12.2.1.4.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:12.2.1.4.0
|
12.2.1.4.0 | |
|
Oracle Fusion Middleware 8.5.7
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:8.5.7
|
8.5.7 | |
|
Oracle Fusion Middleware 14.1.1.0.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:14.1.1.0.0
|
14.1.1.0.0 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Fusion Middleware 14.1.2.0.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:14.1.2.0.0
|
14.1.2.0.0 | |
|
Oracle Fusion Middleware 12.2.1.4.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:12.2.1.4.0
|
12.2.1.4.0 | |
|
Oracle Fusion Middleware 8.5.7
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:8.5.7
|
8.5.7 | |
|
Oracle Fusion Middleware 14.1.1.0.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:14.1.1.0.0
|
14.1.1.0.0 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Fusion Middleware 14.1.2.0.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:14.1.2.0.0
|
14.1.2.0.0 | |
|
Oracle Fusion Middleware 12.2.1.4.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:12.2.1.4.0
|
12.2.1.4.0 | |
|
Oracle Fusion Middleware 8.5.7
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:8.5.7
|
8.5.7 | |
|
Oracle Fusion Middleware 14.1.1.0.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:14.1.1.0.0
|
14.1.1.0.0 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Fusion Middleware 14.1.2.0.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:14.1.2.0.0
|
14.1.2.0.0 | |
|
Oracle Fusion Middleware 12.2.1.4.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:12.2.1.4.0
|
12.2.1.4.0 | |
|
Oracle Fusion Middleware 8.5.7
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:8.5.7
|
8.5.7 | |
|
Oracle Fusion Middleware 14.1.1.0.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:14.1.1.0.0
|
14.1.1.0.0 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Fusion Middleware 14.1.2.0.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:14.1.2.0.0
|
14.1.2.0.0 | |
|
Oracle Fusion Middleware 12.2.1.4.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:12.2.1.4.0
|
12.2.1.4.0 | |
|
Oracle Fusion Middleware 8.5.7
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:8.5.7
|
8.5.7 | |
|
Oracle Fusion Middleware 14.1.1.0.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:14.1.1.0.0
|
14.1.1.0.0 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Fusion Middleware 14.1.2.0.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:14.1.2.0.0
|
14.1.2.0.0 | |
|
Oracle Fusion Middleware 12.2.1.4.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:12.2.1.4.0
|
12.2.1.4.0 | |
|
Oracle Fusion Middleware 8.5.7
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:8.5.7
|
8.5.7 | |
|
Oracle Fusion Middleware 14.1.1.0.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:14.1.1.0.0
|
14.1.1.0.0 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Fusion Middleware 14.1.2.0.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:14.1.2.0.0
|
14.1.2.0.0 | |
|
Oracle Fusion Middleware 12.2.1.4.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:12.2.1.4.0
|
12.2.1.4.0 | |
|
Oracle Fusion Middleware 8.5.7
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:8.5.7
|
8.5.7 | |
|
Oracle Fusion Middleware 14.1.1.0.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:14.1.1.0.0
|
14.1.1.0.0 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Fusion Middleware 14.1.2.0.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:14.1.2.0.0
|
14.1.2.0.0 | |
|
Oracle Fusion Middleware 12.2.1.4.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:12.2.1.4.0
|
12.2.1.4.0 | |
|
Oracle Fusion Middleware 8.5.7
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:8.5.7
|
8.5.7 | |
|
Oracle Fusion Middleware 14.1.1.0.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:14.1.1.0.0
|
14.1.1.0.0 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Fusion Middleware 14.1.2.0.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:14.1.2.0.0
|
14.1.2.0.0 | |
|
Oracle Fusion Middleware 12.2.1.4.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:12.2.1.4.0
|
12.2.1.4.0 | |
|
Oracle Fusion Middleware 8.5.7
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:8.5.7
|
8.5.7 | |
|
Oracle Fusion Middleware 14.1.1.0.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:14.1.1.0.0
|
14.1.1.0.0 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Fusion Middleware 14.1.2.0.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:14.1.2.0.0
|
14.1.2.0.0 | |
|
Oracle Fusion Middleware 12.2.1.4.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:12.2.1.4.0
|
12.2.1.4.0 | |
|
Oracle Fusion Middleware 8.5.7
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:8.5.7
|
8.5.7 | |
|
Oracle Fusion Middleware 14.1.1.0.0
Oracle / Fusion Middleware
|
cpe:/a:oracle:fusion_middleware:14.1.1.0.0
|
14.1.1.0.0 |
{
"document": {
"aggregate_severity": {
"text": "hoch"
},
"category": "csaf_base",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "de-DE",
"notes": [
{
"category": "legal_disclaimer",
"text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
},
{
"category": "description",
"text": "Oracle Fusion Middleware b\u00fcndelt mehrere Produkte zur Erstellung, Betrieb und Management von intelligenten Business Anwendungen.",
"title": "Produktbeschreibung"
},
{
"category": "summary",
"text": "Ein entfernter, anonymer oder authentisierter Angreifer kann mehrere Schwachstellen in Oracle Fusion Middleware ausnutzen, um die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit zu gef\u00e4hrden.",
"title": "Angriff"
},
{
"category": "general",
"text": "- Linux\n- UNIX\n- Windows",
"title": "Betroffene Betriebssysteme"
}
],
"publisher": {
"category": "other",
"contact_details": "csaf-provider@cert-bund.de",
"name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"namespace": "https://www.bsi.bund.de"
},
"references": [
{
"category": "self",
"summary": "WID-SEC-W-2025-0818 - CSAF Version",
"url": "https://wid.cert-bund.de/.well-known/csaf/white/2025/wid-sec-w-2025-0818.json"
},
{
"category": "self",
"summary": "WID-SEC-2025-0818 - Portal Version",
"url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2025-0818"
},
{
"category": "external",
"summary": "Oracle Critical Patch Update Advisory - April 2025 - Appendix Oracle Fusion Middleware vom 2025-04-15",
"url": "https://www.oracle.com/security-alerts/cpuapr2025.html#AppendixFMW"
}
],
"source_lang": "en-US",
"title": "Oracle Fusion Middleware: Mehrere Schwachstellen",
"tracking": {
"current_release_date": "2025-04-15T22:00:00.000+00:00",
"generator": {
"date": "2025-04-16T09:16:22.604+00:00",
"engine": {
"name": "BSI-WID",
"version": "1.3.12"
}
},
"id": "WID-SEC-W-2025-0818",
"initial_release_date": "2025-04-15T22:00:00.000+00:00",
"revision_history": [
{
"date": "2025-04-15T22:00:00.000+00:00",
"number": "1",
"summary": "Initiale Fassung"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "12.2.1.4.0",
"product": {
"name": "Oracle Fusion Middleware 12.2.1.4.0",
"product_id": "751674",
"product_identification_helper": {
"cpe": "cpe:/a:oracle:fusion_middleware:12.2.1.4.0"
}
}
},
{
"category": "product_version",
"name": "14.1.1.0.0",
"product": {
"name": "Oracle Fusion Middleware 14.1.1.0.0",
"product_id": "829576",
"product_identification_helper": {
"cpe": "cpe:/a:oracle:fusion_middleware:14.1.1.0.0"
}
}
},
{
"category": "product_version",
"name": "8.5.7",
"product": {
"name": "Oracle Fusion Middleware 8.5.7",
"product_id": "T034057",
"product_identification_helper": {
"cpe": "cpe:/a:oracle:fusion_middleware:8.5.7"
}
}
},
{
"category": "product_version",
"name": "14.1.2.0.0",
"product": {
"name": "Oracle Fusion Middleware 14.1.2.0.0",
"product_id": "T040467",
"product_identification_helper": {
"cpe": "cpe:/a:oracle:fusion_middleware:14.1.2.0.0"
}
}
}
],
"category": "product_name",
"name": "Fusion Middleware"
}
],
"category": "vendor",
"name": "Oracle"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2020-13936",
"product_status": {
"known_affected": [
"T040467",
"751674",
"T034057",
"829576"
]
},
"release_date": "2025-04-15T22:00:00.000+00:00",
"title": "CVE-2020-13936"
},
{
"cve": "CVE-2020-25649",
"product_status": {
"known_affected": [
"T040467",
"751674",
"T034057",
"829576"
]
},
"release_date": "2025-04-15T22:00:00.000+00:00",
"title": "CVE-2020-25649"
},
{
"cve": "CVE-2023-26464",
"product_status": {
"known_affected": [
"T040467",
"751674",
"T034057",
"829576"
]
},
"release_date": "2025-04-15T22:00:00.000+00:00",
"title": "CVE-2023-26464"
},
{
"cve": "CVE-2024-11053",
"product_status": {
"known_affected": [
"T040467",
"751674",
"T034057",
"829576"
]
},
"release_date": "2025-04-15T22:00:00.000+00:00",
"title": "CVE-2024-11053"
},
{
"cve": "CVE-2024-11612",
"product_status": {
"known_affected": [
"T040467",
"751674",
"T034057",
"829576"
]
},
"release_date": "2025-04-15T22:00:00.000+00:00",
"title": "CVE-2024-11612"
},
{
"cve": "CVE-2024-25710",
"product_status": {
"known_affected": [
"T040467",
"751674",
"T034057",
"829576"
]
},
"release_date": "2025-04-15T22:00:00.000+00:00",
"title": "CVE-2024-25710"
},
{
"cve": "CVE-2024-28168",
"product_status": {
"known_affected": [
"T040467",
"751674",
"T034057",
"829576"
]
},
"release_date": "2025-04-15T22:00:00.000+00:00",
"title": "CVE-2024-28168"
},
{
"cve": "CVE-2024-29857",
"product_status": {
"known_affected": [
"T040467",
"751674",
"T034057",
"829576"
]
},
"release_date": "2025-04-15T22:00:00.000+00:00",
"title": "CVE-2024-29857"
},
{
"cve": "CVE-2024-38476",
"product_status": {
"known_affected": [
"T040467",
"751674",
"T034057",
"829576"
]
},
"release_date": "2025-04-15T22:00:00.000+00:00",
"title": "CVE-2024-38476"
},
{
"cve": "CVE-2024-40896",
"product_status": {
"known_affected": [
"T040467",
"751674",
"T034057",
"829576"
]
},
"release_date": "2025-04-15T22:00:00.000+00:00",
"title": "CVE-2024-40896"
},
{
"cve": "CVE-2024-47072",
"product_status": {
"known_affected": [
"T040467",
"751674",
"T034057",
"829576"
]
},
"release_date": "2025-04-15T22:00:00.000+00:00",
"title": "CVE-2024-47072"
},
{
"cve": "CVE-2024-47554",
"product_status": {
"known_affected": [
"T040467",
"751674",
"T034057",
"829576"
]
},
"release_date": "2025-04-15T22:00:00.000+00:00",
"title": "CVE-2024-47554"
},
{
"cve": "CVE-2024-47561",
"product_status": {
"known_affected": [
"T040467",
"751674",
"T034057",
"829576"
]
},
"release_date": "2025-04-15T22:00:00.000+00:00",
"title": "CVE-2024-47561"
},
{
"cve": "CVE-2024-50602",
"product_status": {
"known_affected": [
"T040467",
"751674",
"T034057",
"829576"
]
},
"release_date": "2025-04-15T22:00:00.000+00:00",
"title": "CVE-2024-50602"
},
{
"cve": "CVE-2024-52046",
"product_status": {
"known_affected": [
"T040467",
"751674",
"T034057",
"829576"
]
},
"release_date": "2025-04-15T22:00:00.000+00:00",
"title": "CVE-2024-52046"
},
{
"cve": "CVE-2024-56337",
"product_status": {
"known_affected": [
"T040467",
"751674",
"T034057",
"829576"
]
},
"release_date": "2025-04-15T22:00:00.000+00:00",
"title": "CVE-2024-56337"
},
{
"cve": "CVE-2024-7254",
"product_status": {
"known_affected": [
"T040467",
"751674",
"T034057",
"829576"
]
},
"release_date": "2025-04-15T22:00:00.000+00:00",
"title": "CVE-2024-7254"
},
{
"cve": "CVE-2024-9143",
"product_status": {
"known_affected": [
"T040467",
"751674",
"T034057",
"829576"
]
},
"release_date": "2025-04-15T22:00:00.000+00:00",
"title": "CVE-2024-9143"
},
{
"cve": "CVE-2025-23184",
"product_status": {
"known_affected": [
"T040467",
"751674",
"T034057",
"829576"
]
},
"release_date": "2025-04-15T22:00:00.000+00:00",
"title": "CVE-2025-23184"
},
{
"cve": "CVE-2025-24970",
"product_status": {
"known_affected": [
"T040467",
"751674",
"T034057",
"829576"
]
},
"release_date": "2025-04-15T22:00:00.000+00:00",
"title": "CVE-2025-24970"
},
{
"cve": "CVE-2025-27363",
"product_status": {
"known_affected": [
"T040467",
"751674",
"T034057",
"829576"
]
},
"release_date": "2025-04-15T22:00:00.000+00:00",
"title": "CVE-2025-27363"
}
]
}
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.