Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2025-64718 (GCVE-0-2025-64718)
Vulnerability from cvelistv5 – Published: 2025-11-13 15:32 – Updated: 2026-01-29 22:08- CWE-1321 - Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')
| URL | Tags |
|---|---|
| https://github.com/nodeca/js-yaml/security/adviso… | x_refsource_CONFIRM |
| https://github.com/nodeca/js-yaml/issues/730#issu… | x_refsource_MISC |
| https://github.com/nodeca/js-yaml/commit/383665ff… | x_refsource_MISC |
| https://github.com/nodeca/js-yaml/commit/5278870a… | x_refsource_MISC |
| https://github.com/advisories/GHSA-mh29-5h37-fv8m |
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2025-64718",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "yes"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2025-11-13T16:18:01.997938Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2025-11-13T16:18:39.270Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
},
{
"providerMetadata": {
"dateUpdated": "2026-01-21T14:38:16.644Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"url": "https://github.com/advisories/GHSA-mh29-5h37-fv8m"
}
],
"title": "CVE Program Container",
"x_generator": {
"engine": "ADPogram 0.0.1"
}
}
],
"cna": {
"affected": [
{
"product": "js-yaml",
"vendor": "nodeca",
"versions": [
{
"status": "affected",
"version": "\u003e= 4.0.0, \u003c 4.1.1"
},
{
"status": "affected",
"version": "\u003c 3.14.2"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "js-yaml is a JavaScript YAML parser and dumper. In js-yaml before 4.1.1 and 3.14.2, it\u0027s possible for an attacker to modify the prototype of the result of a parsed yaml document via prototype pollution (`__proto__`). All users who parse untrusted yaml documents may be impacted. The problem is patched in js-yaml 4.1.1 and 3.14.2. Users can protect against this kind of attack on the server by using `node --disable-proto=delete` or `deno` (in Deno, pollution protection is on by default)."
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N",
"version": "3.1"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-1321",
"description": "CWE-1321: Improperly Controlled Modification of Object Prototype Attributes (\u0027Prototype Pollution\u0027)",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2026-01-29T22:08:30.431Z",
"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
"shortName": "GitHub_M"
},
"references": [
{
"name": "https://github.com/nodeca/js-yaml/security/advisories/GHSA-mh29-5h37-fv8m",
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://github.com/nodeca/js-yaml/security/advisories/GHSA-mh29-5h37-fv8m"
},
{
"name": "https://github.com/nodeca/js-yaml/issues/730#issuecomment-3549635876",
"tags": [
"x_refsource_MISC"
],
"url": "https://github.com/nodeca/js-yaml/issues/730#issuecomment-3549635876"
},
{
"name": "https://github.com/nodeca/js-yaml/commit/383665ff4248ec2192d1274e934462bb30426879",
"tags": [
"x_refsource_MISC"
],
"url": "https://github.com/nodeca/js-yaml/commit/383665ff4248ec2192d1274e934462bb30426879"
},
{
"name": "https://github.com/nodeca/js-yaml/commit/5278870a17454fe8621dbd8c445c412529525266",
"tags": [
"x_refsource_MISC"
],
"url": "https://github.com/nodeca/js-yaml/commit/5278870a17454fe8621dbd8c445c412529525266"
}
],
"source": {
"advisory": "GHSA-mh29-5h37-fv8m",
"discovery": "UNKNOWN"
},
"title": "js-yaml has prototype pollution in merge (\u003c\u003c)"
}
},
"cveMetadata": {
"assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
"assignerShortName": "GitHub_M",
"cveId": "CVE-2025-64718",
"datePublished": "2025-11-13T15:32:44.634Z",
"dateReserved": "2025-11-10T14:07:42.922Z",
"dateUpdated": "2026-01-29T22:08:30.431Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2025-64718",
"date": "2026-07-03",
"epss": "0.00378",
"percentile": "0.29751"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2025-64718\",\"sourceIdentifier\":\"security-advisories@github.com\",\"published\":\"2025-11-13T16:15:57.153\",\"lastModified\":\"2026-06-17T09:55:06.100\",\"vulnStatus\":\"Analyzed\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"js-yaml is a JavaScript YAML parser and dumper. In js-yaml before 4.1.1 and 3.14.2, it\u0027s possible for an attacker to modify the prototype of the result of a parsed yaml document via prototype pollution (`__proto__`). All users who parse untrusted yaml documents may be impacted. The problem is patched in js-yaml 4.1.1 and 3.14.2. Users can protect against this kind of attack on the server by using `node --disable-proto=delete` or `deno` (in Deno, pollution protection is on by default).\"}],\"affected\":[{\"source\":\"security-advisories@github.com\",\"affectedData\":[{\"vendor\":\"nodeca\",\"product\":\"js-yaml\",\"versions\":[{\"version\":\"\u003e= 4.0.0, \u003c 4.1.1\",\"status\":\"affected\"},{\"version\":\"\u003c 3.14.2\",\"status\":\"affected\"}]}]}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"security-advisories@github.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N\",\"baseScore\":5.3,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"LOW\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":3.9,\"impactScore\":1.4}],\"ssvcV203\":[{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"ssvcData\":{\"timestamp\":\"2025-11-13T16:18:01.997938Z\",\"id\":\"CVE-2025-64718\",\"options\":[{\"exploitation\":\"none\"},{\"automatable\":\"yes\"},{\"technicalImpact\":\"partial\"}],\"role\":\"CISA Coordinator\",\"version\":\"2.0.3\"}}]},\"weaknesses\":[{\"source\":\"security-advisories@github.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-1321\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:nodeca:js-yaml:*:*:*:*:*:node.js:*:*\",\"versionEndExcluding\":\"3.14.2\",\"matchCriteriaId\":\"8CAC7EC0-C471-4811-A77C-2DD5B47C7F46\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:nodeca:js-yaml:*:*:*:*:*:node.js:*:*\",\"versionStartIncluding\":\"4.0.0\",\"versionEndExcluding\":\"4.1.1\",\"matchCriteriaId\":\"B56B6076-0668-4DDC-8B01-C48019081B13\"}]}]}],\"references\":[{\"url\":\"https://github.com/nodeca/js-yaml/commit/383665ff4248ec2192d1274e934462bb30426879\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Patch\"]},{\"url\":\"https://github.com/nodeca/js-yaml/commit/5278870a17454fe8621dbd8c445c412529525266\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Patch\"]},{\"url\":\"https://github.com/nodeca/js-yaml/issues/730#issuecomment-3549635876\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Issue Tracking\"]},{\"url\":\"https://github.com/nodeca/js-yaml/security/advisories/GHSA-mh29-5h37-fv8m\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://github.com/advisories/GHSA-mh29-5h37-fv8m\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]}]}}",
"vulnrichment": {
"containers": "{\"adp\": [{\"title\": \"CVE Program Container\", \"references\": [{\"url\": \"https://github.com/advisories/GHSA-mh29-5h37-fv8m\"}], \"x_generator\": {\"engine\": \"ADPogram 0.0.1\"}, \"providerMetadata\": {\"orgId\": \"af854a3a-2127-422b-91ae-364da2661108\", \"shortName\": \"CVE\", \"dateUpdated\": \"2026-01-21T14:38:16.644Z\"}}, {\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2025-64718\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"yes\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2025-11-13T16:18:01.997938Z\"}}}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2025-11-13T16:18:34.960Z\"}}], \"cna\": {\"title\": \"js-yaml has prototype pollution in merge (\u003c\u003c)\", \"source\": {\"advisory\": \"GHSA-mh29-5h37-fv8m\", \"discovery\": \"UNKNOWN\"}, \"metrics\": [{\"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 5.3, \"attackVector\": \"NETWORK\", \"baseSeverity\": \"MEDIUM\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N\", \"integrityImpact\": \"LOW\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"NONE\", \"privilegesRequired\": \"NONE\", \"confidentialityImpact\": \"NONE\"}}], \"affected\": [{\"vendor\": \"nodeca\", \"product\": \"js-yaml\", \"versions\": [{\"status\": \"affected\", \"version\": \"\u003e= 4.0.0, \u003c 4.1.1\"}, {\"status\": \"affected\", \"version\": \"\u003c 3.14.2\"}]}], \"references\": [{\"url\": \"https://github.com/nodeca/js-yaml/security/advisories/GHSA-mh29-5h37-fv8m\", \"name\": \"https://github.com/nodeca/js-yaml/security/advisories/GHSA-mh29-5h37-fv8m\", \"tags\": [\"x_refsource_CONFIRM\"]}, {\"url\": \"https://github.com/nodeca/js-yaml/issues/730#issuecomment-3549635876\", \"name\": \"https://github.com/nodeca/js-yaml/issues/730#issuecomment-3549635876\", \"tags\": [\"x_refsource_MISC\"]}, {\"url\": \"https://github.com/nodeca/js-yaml/commit/383665ff4248ec2192d1274e934462bb30426879\", \"name\": \"https://github.com/nodeca/js-yaml/commit/383665ff4248ec2192d1274e934462bb30426879\", \"tags\": [\"x_refsource_MISC\"]}, {\"url\": \"https://github.com/nodeca/js-yaml/commit/5278870a17454fe8621dbd8c445c412529525266\", \"name\": \"https://github.com/nodeca/js-yaml/commit/5278870a17454fe8621dbd8c445c412529525266\", \"tags\": [\"x_refsource_MISC\"]}], \"descriptions\": [{\"lang\": \"en\", \"value\": \"js-yaml is a JavaScript YAML parser and dumper. In js-yaml before 4.1.1 and 3.14.2, it\u0027s possible for an attacker to modify the prototype of the result of a parsed yaml document via prototype pollution (`__proto__`). All users who parse untrusted yaml documents may be impacted. The problem is patched in js-yaml 4.1.1 and 3.14.2. Users can protect against this kind of attack on the server by using `node --disable-proto=delete` or `deno` (in Deno, pollution protection is on by default).\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-1321\", \"description\": \"CWE-1321: Improperly Controlled Modification of Object Prototype Attributes (\u0027Prototype Pollution\u0027)\"}]}], \"providerMetadata\": {\"orgId\": \"a0819718-46f1-4df5-94e2-005712e83aaa\", \"shortName\": \"GitHub_M\", \"dateUpdated\": \"2026-01-29T22:08:30.431Z\"}}}",
"cveMetadata": "{\"cveId\": \"CVE-2025-64718\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2026-01-29T22:08:30.431Z\", \"dateReserved\": \"2025-11-10T14:07:42.922Z\", \"assignerOrgId\": \"a0819718-46f1-4df5-94e2-005712e83aaa\", \"datePublished\": \"2025-11-13T15:32:44.634Z\", \"assignerShortName\": \"GitHub_M\"}",
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}
}
}
ICSA-26-071-03
Vulnerability from csaf_cisa - Published: 2026-03-10 00:00 - Updated: 2026-03-12 06:00| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIDIS Prime
Siemens / SIDIS Prime
|
vers:intdot/<4.0.800 |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIDIS Prime
Siemens / SIDIS Prime
|
vers:intdot/<4.0.800 |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIDIS Prime
Siemens / SIDIS Prime
|
vers:intdot/<4.0.800 |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIDIS Prime
Siemens / SIDIS Prime
|
vers:intdot/<4.0.800 |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIDIS Prime
Siemens / SIDIS Prime
|
vers:intdot/<4.0.800 |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIDIS Prime
Siemens / SIDIS Prime
|
vers:intdot/<4.0.800 |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIDIS Prime
Siemens / SIDIS Prime
|
vers:intdot/<4.0.800 |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIDIS Prime
Siemens / SIDIS Prime
|
vers:intdot/<4.0.800 |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIDIS Prime
Siemens / SIDIS Prime
|
vers:intdot/<4.0.800 |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIDIS Prime
Siemens / SIDIS Prime
|
vers:intdot/<4.0.800 |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIDIS Prime
Siemens / SIDIS Prime
|
vers:intdot/<4.0.800 |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIDIS Prime
Siemens / SIDIS Prime
|
vers:intdot/<4.0.800 |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIDIS Prime
Siemens / SIDIS Prime
|
vers:intdot/<4.0.800 |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIDIS Prime
Siemens / SIDIS Prime
|
vers:intdot/<4.0.800 |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIDIS Prime
Siemens / SIDIS Prime
|
vers:intdot/<4.0.800 |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIDIS Prime
Siemens / SIDIS Prime
|
vers:intdot/<4.0.800 |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIDIS Prime
Siemens / SIDIS Prime
|
vers:intdot/<4.0.800 |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIDIS Prime
Siemens / SIDIS Prime
|
vers:intdot/<4.0.800 |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIDIS Prime
Siemens / SIDIS Prime
|
vers:intdot/<4.0.800 |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIDIS Prime
Siemens / SIDIS Prime
|
vers:intdot/<4.0.800 |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIDIS Prime
Siemens / SIDIS Prime
|
vers:intdot/<4.0.800 |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIDIS Prime
Siemens / SIDIS Prime
|
vers:intdot/<4.0.800 |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIDIS Prime
Siemens / SIDIS Prime
|
vers:intdot/<4.0.800 |
Vendor Fix
|
{
"document": {
"acknowledgments": [
{
"organization": "Siemens ProductCERT",
"summary": "reported these vulnerabilities to CISA."
}
],
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Disclosure is not limited",
"tlp": {
"label": "WHITE",
"url": "https://www.cisa.gov/news-events/news/traffic-light-protocol-tlp-definitions-and-usage"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "SIDIS Prime before V4.0.800 is affected by multiple vulnerabilities in the components OpenSSL, SQLite, and several Node.js packages as described below.\n\nSiemens has released a new version of SIDIS Prime and recommends to update to the latest version.",
"title": "Summary"
},
{
"category": "general",
"text": "As a general security measure, Siemens strongly recommends to protect network access to devices with appropriate mechanisms. In order to operate the devices in a protected IT environment, Siemens recommends to configure the environment according to Siemens\u0027 operational guidelines for Industrial Security (Download: https://www.siemens.com/cert/operational-guidelines-industrial-security), and to follow the recommendations in the product manuals.\nAdditional information on Industrial Security by Siemens can be found at: https://www.siemens.com/industrialsecurity",
"title": "General Recommendations"
},
{
"category": "general",
"text": "For further inquiries on security vulnerabilities in Siemens products and solutions, please contact the Siemens ProductCERT: https://www.siemens.com/cert/advisories",
"title": "Additional Resources"
},
{
"category": "legal_disclaimer",
"text": "The use of Siemens Security Advisories is subject to the terms and conditions listed on: https://www.siemens.com/productcert/terms-of-use.",
"title": "Terms of Use"
},
{
"category": "legal_disclaimer",
"text": "This product is provided subject to this Notification (https://www.cisa.gov/notification) and this Privacy \u0026 Use policy (https://www.cisa.gov/privacy-policy).",
"title": "Legal Notice and Terms of Use"
},
{
"category": "other",
"text": "This ICSA is a verbatim republication of Siemens ProductCERT SSA-485750 from a direct conversion of the vendor\u0027s Common Security Advisory Framework (CSAF) advisory. This is republished to CISA\u0027s website as a means of increasing visibility and is provided \"as-is\" for informational purposes only. CISA is not responsible for the editorial or technical accuracy of republished advisories and provides no warranties of any kind regarding any information contained within this advisory. Further, CISA does not endorse any commercial product or service. Please contact Siemens ProductCERT directly for any questions regarding this advisory.",
"title": "Advisory Conversion Disclaimer"
},
{
"category": "other",
"text": "Critical Manufacturing",
"title": "Critical infrastructure sectors"
},
{
"category": "other",
"text": "Worldwide",
"title": "Countries/areas deployed"
},
{
"category": "other",
"text": "Germany",
"title": "Company headquarters location"
},
{
"category": "general",
"text": "CISA recommends users take defensive measures to minimize the exploitation risk of this vulnerability.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "Minimize network exposure for all control system devices and/or systems, and ensure they are not accessible from the internet.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "Locate control system networks and remote devices behind firewalls and isolate them from business networks.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "When remote access is required, use more secure methods, such as Virtual Private Networks (VPNs), recognizing VPNs may have vulnerabilities and should be updated to the most recent version available. Also recognize VPN is only as secure as its connected devices.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "CISA reminds organizations to perform proper impact analysis and risk assessment prior to deploying defensive measures.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "CISA also provides a section for control systems security recommended practices on the ICS webpage on cisa.gov. Several CISA products detailing cyber defense best practices are available for reading and download, including Improving Industrial Control Systems Cybersecurity with Defense-in-Depth Strategies.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "CISA encourages organizations to implement recommended cybersecurity strategies for proactive defense of ICS assets. Additional mitigation guidance and recommended practices are publicly available on the ICS webpage at cisa.gov in the technical information paper, ICS-TIP-12-146-01B--Targeted Cyber Intrusion Detection and Mitigation Strategies.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "Organizations observing suspected malicious activity should follow established internal procedures and report findings to CISA for tracking and correlation against other incidents.",
"title": "Recommended Practices"
}
],
"publisher": {
"category": "other",
"contact_details": "central@cisa.dhs.gov",
"name": "CISA",
"namespace": "https://www.cisa.gov/"
},
"references": [
{
"category": "self",
"summary": "SSA-485750: Multiple Vulnerabilities in SIDIS Prime Before V4.0.800 - CSAF Version",
"url": "https://cert-portal.siemens.com/productcert/csaf/ssa-485750.json"
},
{
"category": "self",
"summary": "SSA-485750: Multiple Vulnerabilities in SIDIS Prime Before V4.0.800 - HTML Version",
"url": "https://cert-portal.siemens.com/productcert/html/ssa-485750.html"
},
{
"category": "self",
"summary": "ICS Advisory ICSA-26-071-03 JSON",
"url": "https://raw.githubusercontent.com/cisagov/CSAF/develop/csaf_files/OT/white/2025/icsa-26-071-03.json"
},
{
"category": "self",
"summary": "ICS Advisory ICSA-26-071-03 - Web Version",
"url": "https://www.cisa.gov/news-events/ics-advisories/icsa-26-071-03"
},
{
"category": "external",
"summary": "Recommended Practices",
"url": "https://www.cisa.gov/news-events/ics-alerts/ics-alert-10-301-01"
},
{
"category": "external",
"summary": "Recommended Practices",
"url": "https://www.cisa.gov/resources-tools/resources/ics-recommended-practices"
},
{
"category": "external",
"summary": "Recommended Practices",
"url": "https://www.cisa.gov/topics/industrial-control-systems"
},
{
"category": "external",
"summary": "Recommended Practices",
"url": "https://www.cisa.gov/sites/default/files/recommended_practices/NCCIC_ICS-CERT_Defense_in_Depth_2016_S508C.pdf"
},
{
"category": "external",
"summary": "Recommended Practices",
"url": "https://www.cisa.gov/sites/default/files/publications/Cybersecurity_Best_Practices_for_Industrial_Control_Systems.pdf"
},
{
"category": "external",
"summary": "Recommended Practices",
"url": "https://www.cisa.gov/news-events/news/targeted-cyber-intrusion-detection-and-mitigation-strategies-update-b"
}
],
"title": "Siemens SIDIS Prime",
"tracking": {
"current_release_date": "2026-03-12T06:00:00.000000Z",
"generator": {
"date": "2026-03-11T20:56:12.127996Z",
"engine": {
"name": "CISA CSAF Generator",
"version": "1.5.0"
}
},
"id": "ICSA-26-071-03",
"initial_release_date": "2026-03-10T00:00:00.000000Z",
"revision_history": [
{
"date": "2026-03-10T00:00:00.000000Z",
"legacy_version": "Initial",
"number": "1",
"summary": "Publication Date"
},
{
"date": "2026-03-12T06:00:00.000000Z",
"legacy_version": "CISA Republication",
"number": "2",
"summary": "Initial CISA Republication of Siemens ProductCERT SSA-485750 advisory"
}
],
"status": "final",
"version": "2"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.0.800",
"product": {
"name": "SIDIS Prime",
"product_id": "CSAFPID-0001"
}
}
],
"category": "product_name",
"name": "SIDIS Prime"
}
],
"category": "vendor",
"name": "Siemens"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-29857",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"notes": [
{
"category": "summary",
"text": "An issue was discovered in ECCurve.java and ECCurve.cs in Bouncy Castle Java (BC Java) before 1.78, BC Java LTS before 2.73.6, BC-FJA before 1.0.2.5, and BC C# .Net before 2.3.1. Importing an EC certificate with crafted F2m parameters can lead to excessive CPU consumption during the evaluation of the curve parameters.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"category": "external",
"summary": "www.cve.org",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-29857"
},
{
"category": "external",
"summary": "cwe.mitre.org",
"url": "https://cwe.mitre.org/data/definitions/125.html"
},
{
"category": "external",
"summary": "www.first.org",
"url": "https://www.first.org/cvss/calculator/3.1#CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V4.0.800 or later version",
"product_ids": [
"CSAFPID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-0001"
]
}
],
"title": "CVE-2024-29857"
},
{
"cve": "CVE-2024-30171",
"cwe": {
"id": "CWE-203",
"name": "Observable Discrepancy"
},
"notes": [
{
"category": "summary",
"text": "An issue was discovered in Bouncy Castle Java TLS API and JSSE Provider before 1.78. Timing-based leakage may occur in RSA based handshakes because of exception processing.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"category": "external",
"summary": "www.cve.org",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-30171"
},
{
"category": "external",
"summary": "cwe.mitre.org",
"url": "https://cwe.mitre.org/data/definitions/203.html"
},
{
"category": "external",
"summary": "www.first.org",
"url": "https://www.first.org/cvss/calculator/3.1#CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V4.0.800 or later version",
"product_ids": [
"CSAFPID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-0001"
]
}
],
"title": "CVE-2024-30171"
},
{
"cve": "CVE-2024-30172",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "summary",
"text": "An issue was discovered in Bouncy Castle Java Cryptography APIs before 1.78. An Ed25519 verification code infinite loop can occur via a crafted signature and public key.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"category": "external",
"summary": "www.cve.org",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-30172"
},
{
"category": "external",
"summary": "cwe.mitre.org",
"url": "https://cwe.mitre.org/data/definitions/20.html"
},
{
"category": "external",
"summary": "www.first.org",
"url": "https://www.first.org/cvss/calculator/3.1#CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V4.0.800 or later version",
"product_ids": [
"CSAFPID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-0001"
]
}
],
"title": "CVE-2024-30172"
},
{
"cve": "CVE-2024-41996",
"cwe": {
"id": "CWE-295",
"name": "Improper Certificate Validation"
},
"notes": [
{
"category": "summary",
"text": "Validating the order of the public keys in the Diffie-Hellman Key Agreement Protocol, when an approved safe prime is used, allows remote attackers (from the client side) to trigger unnecessarily expensive server-side DHE modular-exponentiation calculations. The client may cause asymmetric resource consumption. The basic attack scenario is that the client must claim that it can only communicate with DHE, and the server must be configured to allow DHE and validate the order of the public key.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"category": "external",
"summary": "www.cve.org",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41996"
},
{
"category": "external",
"summary": "cwe.mitre.org",
"url": "https://cwe.mitre.org/data/definitions/295.html"
},
{
"category": "external",
"summary": "www.first.org",
"url": "https://www.first.org/cvss/calculator/3.1#CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V4.0.800 or later version",
"product_ids": [
"CSAFPID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-0001"
]
}
],
"title": "CVE-2024-41996"
},
{
"cve": "CVE-2025-6965",
"cwe": {
"id": "CWE-197",
"name": "Numeric Truncation Error"
},
"notes": [
{
"category": "summary",
"text": "There exists a vulnerability in SQLite versions before 3.50.2 where the number of aggregate terms could exceed the number of columns available. This could lead to a memory corruption issue. We recommend upgrading to version 3.50.2 or above.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"category": "external",
"summary": "www.cve.org",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6965"
},
{
"category": "external",
"summary": "cwe.mitre.org",
"url": "https://cwe.mitre.org/data/definitions/197.html"
},
{
"category": "external",
"summary": "www.first.org",
"url": "https://www.first.org/cvss/calculator/3.1#CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:H/A:L"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V4.0.800 or later version",
"product_ids": [
"CSAFPID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:H/A:L",
"version": "3.1"
},
"products": [
"CSAFPID-0001"
]
}
],
"title": "CVE-2025-6965"
},
{
"cve": "CVE-2025-7783",
"cwe": {
"id": "CWE-330",
"name": "Use of Insufficiently Random Values"
},
"notes": [
{
"category": "summary",
"text": "Use of Insufficiently Random Values vulnerability in form-data allows HTTP Parameter Pollution (HPP). This vulnerability is associated with program files lib/form_data.Js.\r\n\r\nThis issue affects form-data: \u003c 2.5.4, 3.0.0 - 3.0.3, 4.0.0 - 4.0.3.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"category": "external",
"summary": "www.cve.org",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-7783"
},
{
"category": "external",
"summary": "cwe.mitre.org",
"url": "https://cwe.mitre.org/data/definitions/330.html"
},
{
"category": "external",
"summary": "www.first.org",
"url": "https://www.first.org/cvss/calculator/3.1#CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V4.0.800 or later version",
"product_ids": [
"CSAFPID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-0001"
]
}
],
"title": "CVE-2025-7783"
},
{
"cve": "CVE-2025-9230",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"notes": [
{
"category": "summary",
"text": "An application trying to decrypt CMS messages encrypted using password based encryption can trigger an out-of-bounds read and write. Impact summary: This out-of-bounds read may trigger a crash which leads to Denial of Service for an application. The out-of-bounds write can cause a memory corruption which can have various consequences including a Denial of Service or Execution of attacker-supplied code. Although the consequences of a successful exploit of this vulnerability could be severe, the probability that the attacker would be able to perform it is low. Besides, password based (PWRI) encryption support in CMS messages is very rarely used. For that reason the issue was assessed as Moderate severity according to our Security Policy. The FIPS modules in 3.5, 3.4, 3.3, 3.2, 3.1 and 3.0 are not affected by this issue, as the CMS implementation is outside the OpenSSL FIPS module boundary.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"category": "external",
"summary": "www.cve.org",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-9230"
},
{
"category": "external",
"summary": "cwe.mitre.org",
"url": "https://cwe.mitre.org/data/definitions/787.html"
},
{
"category": "external",
"summary": "www.first.org",
"url": "https://www.first.org/cvss/calculator/3.1#CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V4.0.800 or later version",
"product_ids": [
"CSAFPID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"CSAFPID-0001"
]
}
],
"title": "CVE-2025-9230"
},
{
"cve": "CVE-2025-9232",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"notes": [
{
"category": "summary",
"text": "Issue summary: An application using the OpenSSL HTTP client API functions may\ntrigger an out-of-bounds read if the \u0027no_proxy\u0027 environment variable is set and\nthe host portion of the authority component of the HTTP URL is an IPv6 address.\n\nImpact summary: An out-of-bounds read can trigger a crash which leads to\nDenial of Service for an application.\n\nThe OpenSSL HTTP client API functions can be used directly by applications\nbut they are also used by the OCSP client functions and CMP (Certificate\nManagement Protocol) client implementation in OpenSSL. However the URLs used\nby these implementations are unlikely to be controlled by an attacker.\n\nIn this vulnerable code the out of bounds read can only trigger a crash.\nFurthermore the vulnerability requires an attacker-controlled URL to be\npassed from an application to the OpenSSL function and the user has to have\na \u0027no_proxy\u0027 environment variable set. For the aforementioned reasons the\nissue was assessed as Low severity.\n\nThe vulnerable code was introduced in the following patch releases:\n3.0.16, 3.1.8, 3.2.4, 3.3.3, 3.4.0 and 3.5.0.\n\nThe FIPS modules in 3.5, 3.4, 3.3, 3.2, 3.1 and 3.0 are not affected by this\nissue, as the HTTP client implementation is outside the OpenSSL FIPS module\nboundary.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"category": "external",
"summary": "www.cve.org",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-9232"
},
{
"category": "external",
"summary": "cwe.mitre.org",
"url": "https://cwe.mitre.org/data/definitions/125.html"
},
{
"category": "external",
"summary": "www.first.org",
"url": "https://www.first.org/cvss/calculator/3.1#CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V4.0.800 or later version",
"product_ids": [
"CSAFPID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-0001"
]
}
],
"title": "CVE-2025-9232"
},
{
"cve": "CVE-2025-9670",
"cwe": {
"id": "CWE-1333",
"name": "Inefficient Regular Expression Complexity"
},
"notes": [
{
"category": "summary",
"text": "A security flaw has been discovered in mixmark-io turndown up to 7.2.1. This affects an unknown function of the file src/commonmark-rules.js. Performing manipulation results in inefficient regular expression complexity. It is possible to initiate the attack remotely. The exploit has been released to the public and may be exploited.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"category": "external",
"summary": "www.cve.org",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-9670"
},
{
"category": "external",
"summary": "cwe.mitre.org",
"url": "https://cwe.mitre.org/data/definitions/1333.html"
},
{
"category": "external",
"summary": "www.first.org",
"url": "https://www.first.org/cvss/calculator/3.1#CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V4.0.800 or later version",
"product_ids": [
"CSAFPID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"CSAFPID-0001"
]
}
],
"title": "CVE-2025-9670"
},
{
"cve": "CVE-2025-12816",
"cwe": {
"id": "CWE-436",
"name": "Interpretation Conflict"
},
"notes": [
{
"category": "summary",
"text": "An interpretation-conflict (CWE-436) vulnerability in node-forge versions 1.3.1 and earlier enables unauthenticated attackers to craft ASN.1 structures to desynchronize schema validations, yielding a semantic divergence that may bypass downstream cryptographic verifications and security decisions.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"category": "external",
"summary": "www.cve.org",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-12816"
},
{
"category": "external",
"summary": "cwe.mitre.org",
"url": "https://cwe.mitre.org/data/definitions/436.html"
},
{
"category": "external",
"summary": "www.first.org",
"url": "https://www.first.org/cvss/calculator/3.1#CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:N"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V4.0.800 or later version",
"product_ids": [
"CSAFPID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.6,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-0001"
]
}
],
"title": "CVE-2025-12816"
},
{
"cve": "CVE-2025-15284",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "summary",
"text": "Improper Input Validation vulnerability in qs (parse modules) allows HTTP DoS.This issue affects qs: \u003c 6.14.1.\n\n\nSummaryThe arrayLimit\u00a0option in qs does not enforce limits for bracket notation (a[]=1\u0026a[]=2), allowing attackers to cause denial-of-service via memory exhaustion. Applications using arrayLimit\u00a0for DoS protection are vulnerable.\n\nDetailsThe arrayLimit\u00a0option only checks limits for indexed notation (a[0]=1\u0026a[1]=2) but completely bypasses it for bracket notation (a[]=1\u0026a[]=2).\n\nVulnerable code\u00a0(lib/parse.js:159-162):\n\nif (root === \u0027[]\u0027 \u0026\u0026 options.parseArrays) {\n obj = utils.combine([], leaf); // No arrayLimit check\n}\n\n\n\n\n\nWorking code\u00a0(lib/parse.js:175):\n\nelse if (index \u003c= options.arrayLimit) { // Limit checked here\n obj = [];\n obj[index] = leaf;\n}\n\n\n\n\n\nThe bracket notation handler at line 159 uses utils.combine([], leaf)\u00a0without validating against options.arrayLimit, while indexed notation at line 175 checks index \u003c= options.arrayLimit\u00a0before creating arrays.\n\nPoCTest 1 - Basic bypass:\n\nnpm install qs\n\n\n\n\n\nconst qs = require(\u0027qs\u0027);\nconst result = qs.parse(\u0027a[]=1\u0026a[]=2\u0026a[]=3\u0026a[]=4\u0026a[]=5\u0026a[]=6\u0027, { arrayLimit: 5 });\nconsole.log(result.a.length); // Output: 6 (should be max 5)\n\n\n\n\n\nTest 2 - DoS demonstration:\n\nconst qs = require(\u0027qs\u0027);\nconst attack = \u0027a[]=\u0027 + Array(10000).fill(\u0027x\u0027).join(\u0027\u0026a[]=\u0027);\nconst result = qs.parse(attack, { arrayLimit: 100 });\nconsole.log(result.a.length); // Output: 10000 (should be max 100)\n\n\n\n\n\nConfiguration:\n\n * arrayLimit: 5\u00a0(test 1) or arrayLimit: 100\u00a0(test 2)\n * Use bracket notation: a[]=value\u00a0(not indexed a[0]=value)\n\n\nImpactDenial of Service via memory exhaustion. Affects applications using qs.parse()\u00a0with user-controlled input and arrayLimit\u00a0for protection.\n\nAttack scenario:\n\n * Attacker sends HTTP request: GET /api/search?filters[]=x\u0026filters[]=x\u0026...\u0026filters[]=x\u00a0(100,000+ times)\n * Application parses with qs.parse(query, { arrayLimit: 100 })\n * qs ignores limit, parses all 100,000 elements into array\n * Server memory exhausted \u2192 application crashes or becomes unresponsive\n * Service unavailable for all users\nReal-world impact:\n\n * Single malicious request can crash server\n * No authentication required\n * Easy to automate and scale\n * Affects any endpoint parsing query strings with bracket notation",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"category": "external",
"summary": "www.cve.org",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-15284"
},
{
"category": "external",
"summary": "cwe.mitre.org",
"url": "https://cwe.mitre.org/data/definitions/20.html"
},
{
"category": "external",
"summary": "www.first.org",
"url": "https://www.first.org/cvss/calculator/3.1#CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V4.0.800 or later version",
"product_ids": [
"CSAFPID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-0001"
]
}
],
"title": "CVE-2025-15284"
},
{
"cve": "CVE-2025-58751",
"cwe": {
"id": "CWE-22",
"name": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)"
},
"notes": [
{
"category": "summary",
"text": "Vite is a frontend tooling framework for JavaScript. Prior to versions 7.1.5, 7.0.7, 6.3.6, and 5.4.20, files starting with the same name with the public directory were served bypassing the `server.fs` settings. Only apps that explicitly expose the Vite dev server to the network (using --host or `server.host` config option), use the public directory feature (enabled by default), and have a symlink in the public directory are affected. Versions 7.1.5, 7.0.7, 6.3.6, and 5.4.20 fix the issue.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"category": "external",
"summary": "www.cve.org",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-58751"
},
{
"category": "external",
"summary": "cwe.mitre.org",
"url": "https://cwe.mitre.org/data/definitions/22.html"
},
{
"category": "external",
"summary": "www.first.org",
"url": "https://www.first.org/cvss/calculator/3.1#CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V4.0.800 or later version",
"product_ids": [
"CSAFPID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-0001"
]
}
],
"title": "CVE-2025-58751"
},
{
"cve": "CVE-2025-58752",
"cwe": {
"id": "CWE-23",
"name": "Relative Path Traversal"
},
"notes": [
{
"category": "summary",
"text": "Vite is a frontend tooling framework for JavaScript. Prior to versions 7.1.5, 7.0.7, 6.3.6, and 5.4.20, any HTML files on the machine were served regardless of the `server.fs` settings. Only apps that explicitly expose the Vite dev server to the network (using --host or server.host config option) and use `appType: \u0027spa\u0027` (default) or `appType: \u0027mpa\u0027` are affected. This vulnerability also affects the preview server. The preview server allowed HTML files not under the output directory to be served. Versions 7.1.5, 7.0.7, 6.3.6, and 5.4.20 fix the issue.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"category": "external",
"summary": "www.cve.org",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-58752"
},
{
"category": "external",
"summary": "cwe.mitre.org",
"url": "https://cwe.mitre.org/data/definitions/23.html"
},
{
"category": "external",
"summary": "www.first.org",
"url": "https://www.first.org/cvss/calculator/3.1#CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V4.0.800 or later version",
"product_ids": [
"CSAFPID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-0001"
]
}
],
"title": "CVE-2025-58752"
},
{
"cve": "CVE-2025-58754",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"notes": [
{
"category": "summary",
"text": "Axios is a promise based HTTP client for the browser and Node.js. When Axios starting in version 0.28.0 and prior to versions 0.30.2 and 1.12.0 runs on Node.js and is given a URL with the `data:` scheme, it does not perform HTTP. Instead, its Node http adapter decodes the entire payload into memory (`Buffer`/`Blob`) and returns a synthetic 200 response. This path ignores `maxContentLength` / `maxBodyLength` (which only protect HTTP responses), so an attacker can supply a very large `data:` URI and cause the process to allocate unbounded memory and crash (DoS), even if the caller requested `responseType: \u0027stream\u0027`. Versions 0.30.2 and 1.12.0 contain a patch for the issue.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"category": "external",
"summary": "www.cve.org",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-58754"
},
{
"category": "external",
"summary": "cwe.mitre.org",
"url": "https://cwe.mitre.org/data/definitions/770.html"
},
{
"category": "external",
"summary": "www.first.org",
"url": "https://www.first.org/cvss/calculator/3.1#CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V4.0.800 or later version",
"product_ids": [
"CSAFPID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-0001"
]
}
],
"title": "CVE-2025-58754"
},
{
"cve": "CVE-2025-62522",
"cwe": {
"id": "CWE-22",
"name": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)"
},
"notes": [
{
"category": "summary",
"text": "Vite is a frontend tooling framework for JavaScript. In versions from 2.9.18 to before 3.0.0, 3.2.9 to before 4.0.0, 4.5.3 to before 5.0.0, 5.2.6 to before 5.4.21, 6.0.0 to before 6.4.1, 7.0.0 to before 7.0.8, and 7.1.0 to before 7.1.11, files denied by server.fs.deny were sent if the URL ended with \\ when the dev server is running on Windows. Only apps explicitly exposing the Vite dev server to the network and running the dev server on Windows were affected. This issue has been patched in versions 5.4.21, 6.4.1, 7.0.8, and 7.1.11.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"category": "external",
"summary": "www.cve.org",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-62522"
},
{
"category": "external",
"summary": "cwe.mitre.org",
"url": "https://cwe.mitre.org/data/definitions/22.html"
},
{
"category": "external",
"summary": "www.first.org",
"url": "https://www.first.org/cvss/calculator/3.1#CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V4.0.800 or later version",
"product_ids": [
"CSAFPID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-0001"
]
}
],
"title": "CVE-2025-62522"
},
{
"cve": "CVE-2025-64718",
"cwe": {
"id": "CWE-1321",
"name": "Improperly Controlled Modification of Object Prototype Attributes (\u0027Prototype Pollution\u0027)"
},
"notes": [
{
"category": "summary",
"text": "js-yaml is a JavaScript YAML parser and dumper. In js-yaml before 4.1.1 and 3.14.2, it\u0027s possible for an attacker to modify the prototype of the result of a parsed yaml document via prototype pollution (`__proto__`). All users who parse untrusted yaml documents may be impacted. The problem is patched in js-yaml 4.1.1 and 3.14.2. Users can protect against this kind of attack on the server by using `node --disable-proto=delete` or `deno` (in Deno, pollution protection is on by default).",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"category": "external",
"summary": "www.cve.org",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-64718"
},
{
"category": "external",
"summary": "cwe.mitre.org",
"url": "https://cwe.mitre.org/data/definitions/1321.html"
},
{
"category": "external",
"summary": "www.first.org",
"url": "https://www.first.org/cvss/calculator/3.1#CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V4.0.800 or later version",
"product_ids": [
"CSAFPID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-0001"
]
}
],
"title": "CVE-2025-64718"
},
{
"cve": "CVE-2025-64756",
"cwe": {
"id": "CWE-78",
"name": "Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)"
},
"notes": [
{
"category": "summary",
"text": "Glob matches files using patterns the shell uses. Starting in version 10.2.0 and prior to versions 10.5.0 and 11.1.0, the glob CLI contains a command injection vulnerability in its -c/--cmd option that allows arbitrary command execution when processing files with malicious names. When glob -c \u003ccommand\u003e \u003cpatterns\u003e are used, matched filenames are passed to a shell with shell: true, enabling shell metacharacters in filenames to trigger command injection and achieve arbitrary code execution under the user or CI account privileges. This issue has been patched in versions 10.5.0 and 11.1.0.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"category": "external",
"summary": "www.cve.org",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-64756"
},
{
"category": "external",
"summary": "cwe.mitre.org",
"url": "https://cwe.mitre.org/data/definitions/78.html"
},
{
"category": "external",
"summary": "www.first.org",
"url": "https://www.first.org/cvss/calculator/3.1#CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V4.0.800 or later version",
"product_ids": [
"CSAFPID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-0001"
]
}
],
"title": "CVE-2025-64756"
},
{
"cve": "CVE-2025-66030",
"cwe": {
"id": "CWE-190",
"name": "Integer Overflow or Wraparound"
},
"notes": [
{
"category": "summary",
"text": "Forge (also called `node-forge`) is a native implementation of Transport Layer Security in JavaScript. An Integer Overflow vulnerability in node-forge versions 1.3.1 and below enables remote, unauthenticated attackers to craft ASN.1 structures containing OIDs with oversized arcs. These arcs may be decoded as smaller, trusted OIDs due to 32-bit bitwise truncation, enabling the bypass of downstream OID-based security decisions. This issue has been patched in version 1.3.2.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"category": "external",
"summary": "www.cve.org",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-66030"
},
{
"category": "external",
"summary": "cwe.mitre.org",
"url": "https://cwe.mitre.org/data/definitions/190.html"
},
{
"category": "external",
"summary": "www.first.org",
"url": "https://www.first.org/cvss/calculator/3.1#CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V4.0.800 or later version",
"product_ids": [
"CSAFPID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-0001"
]
}
],
"title": "CVE-2025-66030"
},
{
"cve": "CVE-2025-66031",
"cwe": {
"id": "CWE-674",
"name": "Uncontrolled Recursion"
},
"notes": [
{
"category": "summary",
"text": "Forge (also called `node-forge`) is a native implementation of Transport Layer Security in JavaScript. An Uncontrolled Recursion vulnerability in node-forge versions 1.3.1 and below enables remote, unauthenticated attackers to craft deep ASN.1 structures that trigger unbounded recursive parsing. This leads to a Denial-of-Service (DoS) via stack exhaustion when parsing untrusted DER inputs. This issue has been patched in version 1.3.2.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"category": "external",
"summary": "www.cve.org",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-66031"
},
{
"category": "external",
"summary": "cwe.mitre.org",
"url": "https://cwe.mitre.org/data/definitions/674.html"
},
{
"category": "external",
"summary": "www.first.org",
"url": "https://www.first.org/cvss/calculator/3.1#CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V4.0.800 or later version",
"product_ids": [
"CSAFPID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-0001"
]
}
],
"title": "CVE-2025-66031"
},
{
"cve": "CVE-2025-66035",
"cwe": {
"id": "CWE-201",
"name": "Insertion of Sensitive Information Into Sent Data"
},
"notes": [
{
"category": "summary",
"text": "Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. Prior to versions 19.2.16, 20.3.14, and 21.0.1, there is a XSRF token leakage via protocol-relative URLs in angular HTTP clients. The vulnerability is a Credential Leak by App Logic that leads to the unauthorized disclosure of the Cross-Site Request Forgery (XSRF) token to an attacker-controlled domain. Angular\u0027s HttpClient has a built-in XSRF protection mechanism that works by checking if a request URL starts with a protocol (http:// or https://) to determine if it is cross-origin. If the URL starts with protocol-relative URL (//), it is incorrectly treated as a same-origin request, and the XSRF token is automatically added to the X-XSRF-TOKEN header. This issue has been patched in versions 19.2.16, 20.3.14, and 21.0.1. A workaround for this issue involves avoiding using protocol-relative URLs (URLs starting with //) in HttpClient requests. All backend communication URLs should be hardcoded as relative paths (starting with a single /) or fully qualified, trusted absolute URLs.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"category": "external",
"summary": "www.cve.org",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-66035"
},
{
"category": "external",
"summary": "cwe.mitre.org",
"url": "https://cwe.mitre.org/data/definitions/201.html"
},
{
"category": "external",
"summary": "www.first.org",
"url": "https://www.first.org/cvss/calculator/3.1#CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V4.0.800 or later version",
"product_ids": [
"CSAFPID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.6,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-0001"
]
}
],
"title": "CVE-2025-66035"
},
{
"cve": "CVE-2025-66412",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"notes": [
{
"category": "summary",
"text": "Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. Prior to 21.0.2, 20.3.15, and 19.2.17, A Stored Cross-Site Scripting (XSS) vulnerability has been identified in the Angular Template Compiler. It occurs because the compiler\u0027s internal security schema is incomplete, allowing attackers to bypass Angular\u0027s built-in security sanitization. Specifically, the schema fails to classify certain URL-holding attributes (e.g., those that could contain javascript: URLs) as requiring strict URL security, enabling the injection of malicious scripts. This vulnerability is fixed in 21.0.2, 20.3.15, and 19.2.17.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"category": "external",
"summary": "www.cve.org",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-66412"
},
{
"category": "external",
"summary": "cwe.mitre.org",
"url": "https://cwe.mitre.org/data/definitions/79.html"
},
{
"category": "external",
"summary": "www.first.org",
"url": "https://www.first.org/cvss/calculator/3.1#CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V4.0.800 or later version",
"product_ids": [
"CSAFPID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.0,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-0001"
]
}
],
"title": "CVE-2025-66412"
},
{
"cve": "CVE-2025-69277",
"cwe": {
"id": "CWE-184",
"name": "Incomplete List of Disallowed Inputs"
},
"notes": [
{
"category": "summary",
"text": "libsodium before ad3004e, in atypical use cases involving certain custom cryptography or untrusted data to crypto_core_ed25519_is_valid_point, mishandles checks for whether an elliptic curve point is valid because it sometimes allows points that aren\u0027t in the main cryptographic group.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"category": "external",
"summary": "www.cve.org",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-69277"
},
{
"category": "external",
"summary": "cwe.mitre.org",
"url": "https://cwe.mitre.org/data/definitions/184.html"
},
{
"category": "external",
"summary": "www.first.org",
"url": "https://www.first.org/cvss/calculator/3.1#CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:L/I:L/A:N"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V4.0.800 or later version",
"product_ids": [
"CSAFPID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-0001"
]
}
],
"title": "CVE-2025-69277"
},
{
"cve": "CVE-2026-22610",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"notes": [
{
"category": "summary",
"text": "Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. Prior to versions 19.2.18, 20.3.16, 21.0.7, and 21.1.0-rc.0, a cross-site scripting (XSS) vulnerability has been identified in the Angular Template Compiler. The vulnerability exists because Angular\u2019s internal sanitization schema fails to recognize the href and xlink:href attributes of SVG \u003cscript\u003e elements as a Resource URL context. This issue has been patched in versions 19.2.18, 20.3.16, 21.0.7, and 21.1.0-rc.0.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"category": "external",
"summary": "www.cve.org",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22610"
},
{
"category": "external",
"summary": "cwe.mitre.org",
"url": "https://cwe.mitre.org/data/definitions/79.html"
},
{
"category": "external",
"summary": "www.first.org",
"url": "https://www.first.org/cvss/calculator/3.1#CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V4.0.800 or later version",
"product_ids": [
"CSAFPID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.0,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-0001"
]
}
],
"title": "CVE-2026-22610"
}
]
}
NCSC-2026-0022
Vulnerability from csaf_ncscnl - Published: 2026-01-21 09:25 - Updated: 2026-01-21 09:25Multiple vulnerabilities across Oracle Communications products and GNU libtasn1 versions could allow unauthenticated attackers to execute partial denial of service attacks, with CVSS scores of 5.3 for affected versions.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Oracle / Communications
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Cloud Native Session Border Controller
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications ASAP
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications BRM - Elastic Charging Engine
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Billing and Revenue Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Element Manager
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications IP Service Activator
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Network Analytics Data Director
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Network Integrity
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Operations Monitor
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Order and Service Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Policy Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Pricing Design Center
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Session Border Controller
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Session Report Manager
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Unified Assurance
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Unified Inventory Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Enterprise Communications Broker
|
vers:unknown/* |
Recent vulnerabilities in Oracle Communications Unified Assurance and Apache Subversion, including denial-of-service risks and insufficient filename validation, highlight critical security concerns across multiple versions.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Oracle / Communications
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Cloud Native Session Border Controller
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications ASAP
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications BRM - Elastic Charging Engine
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Billing and Revenue Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Element Manager
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications IP Service Activator
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Network Analytics Data Director
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Network Integrity
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Operations Monitor
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Order and Service Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Policy Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Pricing Design Center
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Session Border Controller
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Session Report Manager
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Unified Assurance
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Unified Inventory Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Enterprise Communications Broker
|
vers:unknown/* |
Multiple vulnerabilities, including the 'MadeYouReset' attack in HTTP/2 and unauthenticated issues in Oracle products, can lead to denial of service across various platforms such as Eclipse Jetty and SAP Commerce Cloud.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Oracle / Communications
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Cloud Native Session Border Controller
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications ASAP
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications BRM - Elastic Charging Engine
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Billing and Revenue Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Element Manager
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications IP Service Activator
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Network Analytics Data Director
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Network Integrity
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Operations Monitor
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Order and Service Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Policy Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Pricing Design Center
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Session Border Controller
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Session Report Manager
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Unified Assurance
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Unified Inventory Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Enterprise Communications Broker
|
vers:unknown/* |
Multiple vulnerabilities across MySQL Workbench, Oracle Communications Policy Management, and libssh expose sensitive data and integrity risks, with CVSS scores of 5.4 and moderate severity for certain libssh flaws.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Oracle / Communications
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Cloud Native Session Border Controller
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications ASAP
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications BRM - Elastic Charging Engine
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Billing and Revenue Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Element Manager
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications IP Service Activator
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Network Analytics Data Director
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Network Integrity
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Operations Monitor
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Order and Service Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Policy Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Pricing Design Center
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Session Border Controller
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Session Report Manager
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Unified Assurance
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Unified Inventory Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Enterprise Communications Broker
|
vers:unknown/* |
Multiple vulnerabilities in Oracle Communications products and libssh could allow low privileged attackers to manipulate data, disclose sensitive information, or cause system disruptions.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Oracle / Communications
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Cloud Native Session Border Controller
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications ASAP
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications BRM - Elastic Charging Engine
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Billing and Revenue Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Element Manager
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications IP Service Activator
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Network Analytics Data Director
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Network Integrity
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Operations Monitor
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Order and Service Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Policy Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Pricing Design Center
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Session Border Controller
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Session Report Manager
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Unified Assurance
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Unified Inventory Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Enterprise Communications Broker
|
vers:unknown/* |
Recent updates for Python 3 address multiple vulnerabilities, including denial of service risks in the tarfile module and HTML parsing, affecting various versions and leading to potential infinite loops and deadlocks.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Oracle / Communications
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Cloud Native Session Border Controller
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications ASAP
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications BRM - Elastic Charging Engine
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Billing and Revenue Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Element Manager
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications IP Service Activator
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Network Analytics Data Director
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Network Integrity
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Operations Monitor
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Order and Service Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Policy Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Pricing Design Center
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Session Border Controller
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Session Report Manager
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Unified Assurance
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Unified Inventory Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Enterprise Communications Broker
|
vers:unknown/* |
Multiple vulnerabilities have been identified across various products, including Bouncy Castle for Java, Oracle Communications, and Siebel CRM, allowing for excessive resource allocation and potential denial of service by unauthenticated attackers.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Oracle / Communications
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Cloud Native Session Border Controller
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications ASAP
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications BRM - Elastic Charging Engine
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Billing and Revenue Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Element Manager
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications IP Service Activator
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Network Analytics Data Director
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Network Integrity
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Operations Monitor
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Order and Service Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Policy Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Pricing Design Center
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Session Border Controller
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Session Report Manager
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Unified Assurance
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Unified Inventory Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Enterprise Communications Broker
|
vers:unknown/* |
Recent vulnerabilities in Oracle Communications Policy Management and Libtiff, including a critical flaw in Libtiff allowing memory manipulation, pose significant risks to system integrity and confidentiality.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Oracle / Communications
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Cloud Native Session Border Controller
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications ASAP
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications BRM - Elastic Charging Engine
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Billing and Revenue Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Element Manager
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications IP Service Activator
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Network Analytics Data Director
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Network Integrity
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Operations Monitor
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Order and Service Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Policy Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Pricing Design Center
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Session Border Controller
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Session Report Manager
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Unified Assurance
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Unified Inventory Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Enterprise Communications Broker
|
vers:unknown/* |
Recent updates reveal critical vulnerabilities in Netty and various Oracle products, primarily leading to denial of service risks due to unsafe file handling and low privilege exploitability.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Oracle / Communications
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Cloud Native Session Border Controller
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications ASAP
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications BRM - Elastic Charging Engine
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Billing and Revenue Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Element Manager
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications IP Service Activator
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Network Analytics Data Director
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Network Integrity
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Operations Monitor
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Order and Service Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Policy Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Pricing Design Center
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Session Border Controller
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Session Report Manager
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Unified Assurance
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Unified Inventory Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Enterprise Communications Broker
|
vers:unknown/* |
Oracle Database Server and Oracle GoldenGate have Security-in-Depth issues related to Dell BSAFE Crypto-J, which cannot be exploited within their respective contexts, although error messages may expose sensitive information.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Oracle / Communications
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Cloud Native Session Border Controller
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications ASAP
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications BRM - Elastic Charging Engine
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Billing and Revenue Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Element Manager
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications IP Service Activator
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Network Analytics Data Director
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Network Integrity
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Operations Monitor
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Order and Service Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Policy Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Pricing Design Center
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Session Border Controller
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Session Report Manager
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Unified Assurance
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Unified Inventory Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Enterprise Communications Broker
|
vers:unknown/* |
Multiple vulnerabilities across Apache ActiveMQ and Oracle products allow unauthenticated attackers to exploit denial of service (DoS) conditions through various network access methods, affecting several versions.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Oracle / Communications
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Cloud Native Session Border Controller
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications ASAP
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications BRM - Elastic Charging Engine
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Billing and Revenue Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Element Manager
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications IP Service Activator
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Network Analytics Data Director
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Network Integrity
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Operations Monitor
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Order and Service Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Policy Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Pricing Design Center
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Session Border Controller
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Session Report Manager
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Unified Assurance
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Unified Inventory Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Enterprise Communications Broker
|
vers:unknown/* |
Multiple vulnerabilities have been identified in Oracle Cloud Native Session Border Controller, Oracle Communications Unified Inventory Management, and GnuTLS, allowing for denial of service and unauthorized data access or modification.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Oracle / Communications
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Cloud Native Session Border Controller
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications ASAP
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications BRM - Elastic Charging Engine
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Billing and Revenue Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Element Manager
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications IP Service Activator
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Network Analytics Data Director
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Network Integrity
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Operations Monitor
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Order and Service Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Policy Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Pricing Design Center
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Session Border Controller
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Session Report Manager
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Unified Assurance
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Unified Inventory Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Enterprise Communications Broker
|
vers:unknown/* |
Recent vulnerabilities in Oracle Communications products and GnuTLS's certtool utility expose systems to denial-of-service and unauthorized data access, with CVSS scores of 8.2 for Oracle and critical heap buffer overflow issues in GnuTLS.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Oracle / Communications
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Cloud Native Session Border Controller
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications ASAP
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications BRM - Elastic Charging Engine
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Billing and Revenue Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Element Manager
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications IP Service Activator
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Network Analytics Data Director
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Network Integrity
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Operations Monitor
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Order and Service Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Policy Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Pricing Design Center
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Session Border Controller
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Session Report Manager
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Unified Assurance
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Unified Inventory Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Enterprise Communications Broker
|
vers:unknown/* |
Multiple vulnerabilities have been identified in Oracle Financial Services and Retail products, as well as the Spring Framework, allowing unauthorized access to sensitive data and potentially leading to information disclosure.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Oracle / Communications
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Cloud Native Session Border Controller
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications ASAP
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications BRM - Elastic Charging Engine
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Billing and Revenue Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Element Manager
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications IP Service Activator
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Network Analytics Data Director
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Network Integrity
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Operations Monitor
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Order and Service Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Policy Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Pricing Design Center
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Session Border Controller
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Session Report Manager
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Unified Assurance
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Unified Inventory Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Enterprise Communications Broker
|
vers:unknown/* |
Recent vulnerabilities in Rack and Oracle Communications Unified Assurance allow denial of service through unbounded parameter parsing and unauthenticated HTTP requests, affecting multiple versions and leading to potential memory exhaustion.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Oracle / Communications
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Cloud Native Session Border Controller
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications ASAP
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications BRM - Elastic Charging Engine
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Billing and Revenue Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Element Manager
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications IP Service Activator
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Network Analytics Data Director
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Network Integrity
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Operations Monitor
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Order and Service Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Policy Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Pricing Design Center
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Session Border Controller
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Session Report Manager
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Unified Assurance
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Unified Inventory Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Enterprise Communications Broker
|
vers:unknown/* |
Recent vulnerabilities in Oracle Cloud Native Session Border Controller and the jq command-line JSON processor expose systems to denial of service attacks, with significant severity ratings.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Oracle / Communications
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Cloud Native Session Border Controller
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications ASAP
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications BRM - Elastic Charging Engine
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Billing and Revenue Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Element Manager
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications IP Service Activator
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Network Analytics Data Director
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Network Integrity
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Operations Monitor
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Order and Service Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Policy Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Pricing Design Center
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Session Border Controller
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Session Report Manager
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Unified Assurance
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Unified Inventory Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Enterprise Communications Broker
|
vers:unknown/* |
Recent updates to Apache Commons BeanUtils and Oracle products address multiple vulnerabilities, including remote code execution and system compromise risks, affecting various versions and components.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Oracle / Communications
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Cloud Native Session Border Controller
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications ASAP
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications BRM - Elastic Charging Engine
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Billing and Revenue Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Element Manager
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications IP Service Activator
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Network Analytics Data Director
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Network Integrity
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Operations Monitor
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Order and Service Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Policy Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Pricing Design Center
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Session Border Controller
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Session Report Manager
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Unified Assurance
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Unified Inventory Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Enterprise Communications Broker
|
vers:unknown/* |
Multiple vulnerabilities have been identified in Oracle WebLogic Server and Oracle Communications ASAP, both allowing unauthenticated partial denial of service, alongside an uncontrolled recursion issue in Apache Commons Lang leading to potential application crashes.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Oracle / Communications
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Cloud Native Session Border Controller
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications ASAP
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications BRM - Elastic Charging Engine
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Billing and Revenue Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Element Manager
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications IP Service Activator
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Network Analytics Data Director
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Network Integrity
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Operations Monitor
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Order and Service Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Policy Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Pricing Design Center
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Session Border Controller
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Session Report Manager
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Unified Assurance
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Unified Inventory Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Enterprise Communications Broker
|
vers:unknown/* |
Multiple denial-of-service vulnerabilities have been identified in Oracle Application Testing Suite, Oracle Agile PLM, Apache Commons FileUpload, and HPE IceWall Identity Manager, with CVSS scores of 7.5 for some products.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Oracle / Communications
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Cloud Native Session Border Controller
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications ASAP
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications BRM - Elastic Charging Engine
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Billing and Revenue Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Element Manager
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications IP Service Activator
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Network Analytics Data Director
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Network Integrity
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Operations Monitor
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Order and Service Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Policy Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Pricing Design Center
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Session Border Controller
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Session Report Manager
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Unified Assurance
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Unified Inventory Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Enterprise Communications Broker
|
vers:unknown/* |
Redis versions 8.2.1 and below, along with valkey version 8.0.6, have vulnerabilities in the Lua scripting engine that can lead to remote code execution, with fixes available in newer versions.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Oracle / Communications
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Cloud Native Session Border Controller
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications ASAP
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications BRM - Elastic Charging Engine
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Billing and Revenue Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Element Manager
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications IP Service Activator
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Network Analytics Data Director
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Network Integrity
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Operations Monitor
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Order and Service Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Policy Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Pricing Design Center
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Session Border Controller
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Session Report Manager
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Unified Assurance
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Unified Inventory Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Enterprise Communications Broker
|
vers:unknown/* |
Recent vulnerabilities in Oracle HTTP Server and ModSecurity allow for denial of service and potential XSS attacks, affecting specific versions with significant severity scores.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Oracle / Communications
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Cloud Native Session Border Controller
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications ASAP
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications BRM - Elastic Charging Engine
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Billing and Revenue Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Element Manager
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications IP Service Activator
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Network Analytics Data Director
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Network Integrity
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Operations Monitor
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Order and Service Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Policy Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Pricing Design Center
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Session Border Controller
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Session Report Manager
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Unified Assurance
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Unified Inventory Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Enterprise Communications Broker
|
vers:unknown/* |
Recent updates to Netty and Oracle Communications products address critical vulnerabilities, including the 'MadeYouReset' attack in HTTP/2, which can lead to denial of service and resource exhaustion.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Oracle / Communications
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Cloud Native Session Border Controller
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications ASAP
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications BRM - Elastic Charging Engine
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Billing and Revenue Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Element Manager
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications IP Service Activator
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Network Analytics Data Director
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Network Integrity
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Operations Monitor
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Order and Service Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Policy Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Pricing Design Center
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Session Border Controller
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Session Report Manager
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Unified Assurance
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Unified Inventory Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Enterprise Communications Broker
|
vers:unknown/* |
Multiple vulnerabilities across various products, including the `BrotliDecoder`, Oracle Communications Cloud Native Core Policy, and HPE Telco Intelligent Assurance, can lead to denial of service (DoS) through excessive resource allocation or malformed inputs.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Oracle / Communications
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Cloud Native Session Border Controller
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications ASAP
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications BRM - Elastic Charging Engine
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Billing and Revenue Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Element Manager
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications IP Service Activator
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Network Analytics Data Director
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Network Integrity
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Operations Monitor
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Order and Service Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Policy Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Pricing Design Center
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Session Border Controller
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Session Report Manager
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Unified Assurance
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Unified Inventory Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Enterprise Communications Broker
|
vers:unknown/* |
Recent vulnerabilities in Oracle Communications Unified Assurance and Apache HTTP Server versions prior to 2.4.66 expose systems to unauthorized access and denial of service risks, with CVSS scores indicating moderate severity.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Oracle / Communications
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Cloud Native Session Border Controller
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications ASAP
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications BRM - Elastic Charging Engine
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Billing and Revenue Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Element Manager
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications IP Service Activator
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Network Analytics Data Director
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Network Integrity
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Operations Monitor
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Order and Service Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Policy Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Pricing Design Center
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Session Border Controller
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Session Report Manager
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Unified Assurance
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Unified Inventory Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Enterprise Communications Broker
|
vers:unknown/* |
Multiple vulnerabilities, including a memory amplification issue in libexpat and a DoS vulnerability in Oracle Communications Network Analytics, can lead to denial-of-service attacks without enabling arbitrary code execution.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Oracle / Communications
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Cloud Native Session Border Controller
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications ASAP
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications BRM - Elastic Charging Engine
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Billing and Revenue Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Element Manager
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications IP Service Activator
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Network Analytics Data Director
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Network Integrity
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Operations Monitor
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Order and Service Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Policy Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Pricing Design Center
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Session Border Controller
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Session Report Manager
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Unified Assurance
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Unified Inventory Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Enterprise Communications Broker
|
vers:unknown/* |
Apache Tomcat and Oracle Communications Unified Assurance have critical vulnerabilities related to Denial of Service (DoS) risks, affecting multiple versions and requiring updates to address issues like improper resource shutdown and HTTP access exploitation.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Oracle / Communications
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Cloud Native Session Border Controller
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications ASAP
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications BRM - Elastic Charging Engine
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Billing and Revenue Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Element Manager
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications IP Service Activator
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Network Analytics Data Director
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Network Integrity
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Operations Monitor
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Order and Service Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Policy Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Pricing Design Center
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Session Border Controller
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Session Report Manager
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Unified Assurance
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Unified Inventory Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Enterprise Communications Broker
|
vers:unknown/* |
Vulnerabilities in js-yaml and Oracle Communications Unified Assurance products allow for prototype pollution and system compromise, respectively, with specific versions affected and available patches.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Oracle / Communications
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Cloud Native Session Border Controller
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications ASAP
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications BRM - Elastic Charging Engine
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Billing and Revenue Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Element Manager
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications IP Service Activator
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Network Analytics Data Director
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Network Integrity
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Operations Monitor
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Order and Service Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Policy Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Pricing Design Center
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Session Border Controller
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Session Report Manager
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Unified Assurance
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Unified Inventory Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Enterprise Communications Broker
|
vers:unknown/* |
Recent vulnerabilities in Oracle Communications Unified Assurance and libpng affect data integrity and system availability, with specific issues including buffer overflows and unauthorized access in various versions.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Oracle / Communications
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Cloud Native Session Border Controller
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications ASAP
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications BRM - Elastic Charging Engine
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Billing and Revenue Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Element Manager
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications IP Service Activator
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Network Analytics Data Director
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Network Integrity
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Operations Monitor
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Order and Service Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Policy Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Pricing Design Center
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Session Border Controller
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Session Report Manager
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Unified Assurance
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Unified Inventory Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Enterprise Communications Broker
|
vers:unknown/* |
The urllib3 library had a vulnerability allowing unbounded decompression chains, leading to potential Denial of Service (DoS) attacks due to excessive CPU and memory usage, fixed in version 2.6.0.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Oracle / Communications
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Cloud Native Session Border Controller
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications ASAP
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications BRM - Elastic Charging Engine
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Billing and Revenue Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Element Manager
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications IP Service Activator
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Network Analytics Data Director
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Network Integrity
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Operations Monitor
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Order and Service Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Policy Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Pricing Design Center
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Session Border Controller
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Session Report Manager
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Unified Assurance
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Unified Inventory Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Enterprise Communications Broker
|
vers:unknown/* |
Apache Tika has a critical XML External Entity (XXE) injection vulnerability affecting multiple modules, particularly in PDF parsing, allowing remote attackers to exploit crafted files for sensitive information disclosure or remote code execution.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Oracle / Communications
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Cloud Native Session Border Controller
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications ASAP
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications BRM - Elastic Charging Engine
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Billing and Revenue Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Element Manager
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications IP Service Activator
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Network Analytics Data Director
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Network Integrity
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Operations Monitor
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Order and Service Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Policy Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Pricing Design Center
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Session Border Controller
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Session Report Manager
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Unified Assurance
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Unified Inventory Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Enterprise Communications Broker
|
vers:unknown/* |
Apache Log4j Core versions 2.0-beta9 to 2.25.2 lack TLS hostname verification in the Socket Appender, while Oracle's Primavera Gateway has a vulnerability allowing unauthenticated access via TLS.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Oracle / Communications
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Cloud Native Session Border Controller
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications ASAP
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications BRM - Elastic Charging Engine
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Billing and Revenue Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Element Manager
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications IP Service Activator
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Network Analytics Data Director
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Network Integrity
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Operations Monitor
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Order and Service Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Policy Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Pricing Design Center
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Session Border Controller
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Session Report Manager
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Unified Assurance
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Communications Unified Inventory Management
|
vers:unknown/* | ||
|
vers:unknown/*
Oracle / Oracle Enterprise Communications Broker
|
vers:unknown/* |
{
"document": {
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE"
}
},
"lang": "nl",
"notes": [
{
"category": "legal_disclaimer",
"text": "The Netherlands Cyber Security Center (henceforth: NCSC-NL) maintains this page to enhance access to its information and security advisories. The use of this security advisory is subject to the following terms and conditions:\n\n NCSC-NL makes every reasonable effort to ensure that the content of this page is kept up to date, and that it is accurate and complete. Nevertheless, NCSC-NL cannot entirely rule out the possibility of errors, and therefore cannot give any warranty in respect of its completeness, accuracy or continuous keeping up-to-date. The information contained in this security advisory is intended solely for the purpose of providing general information to professional users. No rights can be derived from the information provided therein.\n\n NCSC-NL and the Kingdom of the Netherlands assume no legal liability or responsibility for any damage resulting from either the use or inability of use of this security advisory. This includes damage resulting from the inaccuracy of incompleteness of the information contained in the advisory.\n This security advisory is subject to Dutch law. All disputes related to or arising from the use of this advisory will be submitted to the competent court in The Hague. This choice of means also applies to the court in summary proceedings."
},
{
"category": "description",
"text": "Oracle heeft kwetsbaarheden verholpen in Oracle Communications producten.",
"title": "Feiten"
},
{
"category": "description",
"text": "De kwetsbaarheden stellen aanvallers in staat om ongeautoriseerde toegang te krijgen tot het systeem, wat kan leiden tot gegevensmanipulatie en gedeeltelijke denial-of-service. De aanvallers kunnen deze kwetsbaarheden misbruiken via HTTP-verzoeken, wat mogelijk resulteert in een significante impact op de beschikbaarheid en integriteit van de gegevens.",
"title": "Interpretaties"
},
{
"category": "description",
"text": "Oracle heeft updates uitgebracht om de kwetsbaarheden te verhelpen. Zie bijgevoegde referenties voor meer informatie.",
"title": "Oplossingen"
},
{
"category": "general",
"text": "medium",
"title": "Kans"
},
{
"category": "general",
"text": "high",
"title": "Schade"
},
{
"category": "general",
"text": "Incorrect Authorization",
"title": "CWE-863"
},
{
"category": "general",
"text": "CWE-937",
"title": "CWE-937"
},
{
"category": "general",
"text": "CWE-1035",
"title": "CWE-1035"
},
{
"category": "general",
"text": "Improperly Controlled Modification of Object Prototype Attributes (\u0027Prototype Pollution\u0027)",
"title": "CWE-1321"
},
{
"category": "general",
"text": "Improper Input Validation",
"title": "CWE-20"
},
{
"category": "general",
"text": "Improper Neutralization of Special Elements used in a Command (\u0027Command Injection\u0027)",
"title": "CWE-77"
},
{
"category": "general",
"text": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)",
"title": "CWE-79"
},
{
"category": "general",
"text": "Improper Encoding or Escaping of Output",
"title": "CWE-116"
},
{
"category": "general",
"text": "Stack-based Buffer Overflow",
"title": "CWE-121"
},
{
"category": "general",
"text": "Heap-based Buffer Overflow",
"title": "CWE-122"
},
{
"category": "general",
"text": "Write-what-where Condition",
"title": "CWE-123"
},
{
"category": "general",
"text": "Out-of-bounds Read",
"title": "CWE-125"
},
{
"category": "general",
"text": "Buffer Over-read",
"title": "CWE-126"
},
{
"category": "general",
"text": "Insertion of Sensitive Information Into Sent Data",
"title": "CWE-201"
},
{
"category": "general",
"text": "Generation of Error Message Containing Sensitive Information",
"title": "CWE-209"
},
{
"category": "general",
"text": "Unchecked Return Value",
"title": "CWE-252"
},
{
"category": "general",
"text": "Improper Access Control",
"title": "CWE-284"
},
{
"category": "general",
"text": "Improper Authorization",
"title": "CWE-285"
},
{
"category": "general",
"text": "Improper Certificate Validation",
"title": "CWE-295"
},
{
"category": "general",
"text": "Improper Validation of Certificate with Host Mismatch",
"title": "CWE-297"
},
{
"category": "general",
"text": "Return of Wrong Status Code",
"title": "CWE-393"
},
{
"category": "general",
"text": "Uncontrolled Resource Consumption",
"title": "CWE-400"
},
{
"category": "general",
"text": "Improper Resource Shutdown or Release",
"title": "CWE-404"
},
{
"category": "general",
"text": "Inefficient Algorithmic Complexity",
"title": "CWE-407"
},
{
"category": "general",
"text": "Improper Handling of Highly Compressed Data (Data Amplification)",
"title": "CWE-409"
},
{
"category": "general",
"text": "Double Free",
"title": "CWE-415"
},
{
"category": "general",
"text": "Use After Free",
"title": "CWE-416"
},
{
"category": "general",
"text": "Improper Restriction of XML External Entity Reference",
"title": "CWE-611"
},
{
"category": "general",
"text": "Uncontrolled Recursion",
"title": "CWE-674"
},
{
"category": "general",
"text": "Allocation of Resources Without Limits or Throttling",
"title": "CWE-770"
},
{
"category": "general",
"text": "Out-of-bounds Write",
"title": "CWE-787"
},
{
"category": "general",
"text": "Memory Allocation with Excessive Size Value",
"title": "CWE-789"
},
{
"category": "general",
"text": "Loop with Unreachable Exit Condition (\u0027Infinite Loop\u0027)",
"title": "CWE-835"
}
],
"publisher": {
"category": "coordinator",
"contact_details": "cert@ncsc.nl",
"name": "Nationaal Cyber Security Centrum",
"namespace": "https://www.ncsc.nl/"
},
"references": [
{
"category": "external",
"summary": "Reference",
"url": "https://www.oracle.com/security-alerts/cpujan2026.html"
}
],
"title": "Kwetsbaarheden verholpen in Oracle Communications producten",
"tracking": {
"current_release_date": "2026-01-21T09:25:39.876330Z",
"generator": {
"date": "2025-08-04T16:30:00Z",
"engine": {
"name": "V.A.",
"version": "1.3"
}
},
"id": "NCSC-2026-0022",
"initial_release_date": "2026-01-21T09:25:39.876330Z",
"revision_history": [
{
"date": "2026-01-21T09:25:39.876330Z",
"number": "1.0.0",
"summary": "Initiele versie"
}
],
"status": "final",
"version": "1.0.0"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-1"
}
}
],
"category": "product_name",
"name": "Communications"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-2"
}
}
],
"category": "product_name",
"name": "Oracle Cloud Native Session Border Controller"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-3"
}
}
],
"category": "product_name",
"name": "Oracle Communications ASAP"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-4"
}
}
],
"category": "product_name",
"name": "Oracle Communications BRM - Elastic Charging Engine"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-5"
}
}
],
"category": "product_name",
"name": "Oracle Communications Billing and Revenue Management"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-6"
}
}
],
"category": "product_name",
"name": "Oracle Communications Element Manager"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-7"
}
}
],
"category": "product_name",
"name": "Oracle Communications IP Service Activator"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-8"
}
}
],
"category": "product_name",
"name": "Oracle Communications Network Analytics Data Director"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-9"
}
}
],
"category": "product_name",
"name": "Oracle Communications Network Integrity"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-10"
}
}
],
"category": "product_name",
"name": "Oracle Communications Operations Monitor"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-11"
}
}
],
"category": "product_name",
"name": "Oracle Communications Order and Service Management"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-12"
}
}
],
"category": "product_name",
"name": "Oracle Communications Policy Management"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-13"
}
}
],
"category": "product_name",
"name": "Oracle Communications Pricing Design Center"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-14"
}
}
],
"category": "product_name",
"name": "Oracle Communications Session Border Controller"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-15"
}
}
],
"category": "product_name",
"name": "Oracle Communications Session Report Manager"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-16"
}
}
],
"category": "product_name",
"name": "Oracle Communications Unified Assurance"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-17"
}
}
],
"category": "product_name",
"name": "Oracle Communications Unified Inventory Management"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-18"
}
}
],
"category": "product_name",
"name": "Oracle Enterprise Communications Broker"
}
],
"category": "vendor",
"name": "Oracle"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-12133",
"cwe": {
"id": "CWE-407",
"name": "Inefficient Algorithmic Complexity"
},
"notes": [
{
"category": "other",
"text": "Inefficient Algorithmic Complexity",
"title": "CWE-407"
},
{
"category": "other",
"text": "Improper Resource Shutdown or Release",
"title": "CWE-404"
},
{
"category": "description",
"text": "Multiple vulnerabilities across Oracle Communications products and GNU libtasn1 versions could allow unauthenticated attackers to execute partial denial of service attacks, with CVSS scores of 5.3 for affected versions.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-12133 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2024/cve-2024-12133.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18"
]
}
],
"title": "CVE-2024-12133"
},
{
"cve": "CVE-2024-46901",
"cwe": {
"id": "CWE-116",
"name": "Improper Encoding or Escaping of Output"
},
"notes": [
{
"category": "other",
"text": "Improper Encoding or Escaping of Output",
"title": "CWE-116"
},
{
"category": "other",
"text": "Improper Input Validation",
"title": "CWE-20"
},
{
"category": "description",
"text": "Recent vulnerabilities in Oracle Communications Unified Assurance and Apache Subversion, including denial-of-service risks and insufficient filename validation, highlight critical security concerns across multiple versions.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:A/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-46901 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2024/cve-2024-46901.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18"
]
}
],
"title": "CVE-2024-46901"
},
{
"cve": "CVE-2025-5115",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"notes": [
{
"category": "other",
"text": "Uncontrolled Resource Consumption",
"title": "CWE-400"
},
{
"category": "other",
"text": "Allocation of Resources Without Limits or Throttling",
"title": "CWE-770"
},
{
"category": "description",
"text": "Multiple vulnerabilities, including the \u0027MadeYouReset\u0027 attack in HTTP/2 and unauthenticated issues in Oracle products, can lead to denial of service across various platforms such as Eclipse Jetty and SAP Commerce Cloud.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:N/SC:N/SI:N/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-5115 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-5115.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18"
]
}
],
"title": "CVE-2025-5115"
},
{
"cve": "CVE-2025-5318",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"notes": [
{
"category": "other",
"text": "Out-of-bounds Read",
"title": "CWE-125"
},
{
"category": "description",
"text": "Multiple vulnerabilities across MySQL Workbench, Oracle Communications Policy Management, and libssh expose sensitive data and integrity risks, with CVSS scores of 5.4 and moderate severity for certain libssh flaws.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-5318 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-5318.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18"
]
}
],
"title": "CVE-2025-5318"
},
{
"cve": "CVE-2025-5987",
"cwe": {
"id": "CWE-393",
"name": "Return of Wrong Status Code"
},
"notes": [
{
"category": "other",
"text": "Return of Wrong Status Code",
"title": "CWE-393"
},
{
"category": "description",
"text": "Multiple vulnerabilities in Oracle Communications products and libssh could allow low privileged attackers to manipulate data, disclose sensitive information, or cause system disruptions.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:A/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-5987 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-5987.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18"
]
}
],
"title": "CVE-2025-5987"
},
{
"cve": "CVE-2025-8194",
"cwe": {
"id": "CWE-835",
"name": "Loop with Unreachable Exit Condition (\u0027Infinite Loop\u0027)"
},
"notes": [
{
"category": "other",
"text": "Loop with Unreachable Exit Condition (\u0027Infinite Loop\u0027)",
"title": "CWE-835"
},
{
"category": "description",
"text": "Recent updates for Python 3 address multiple vulnerabilities, including denial of service risks in the tarfile module and HTML parsing, affecting various versions and leading to potential infinite loops and deadlocks.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-8194 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-8194.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18"
]
}
],
"title": "CVE-2025-8194"
},
{
"cve": "CVE-2025-8916",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"notes": [
{
"category": "other",
"text": "Allocation of Resources Without Limits or Throttling",
"title": "CWE-770"
},
{
"category": "other",
"text": "CWE-1035",
"title": "CWE-1035"
},
{
"category": "other",
"text": "CWE-937",
"title": "CWE-937"
},
{
"category": "description",
"text": "Multiple vulnerabilities have been identified across various products, including Bouncy Castle for Java, Oracle Communications, and Siebel CRM, allowing for excessive resource allocation and potential denial of service by unauthenticated attackers.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/S:P/R:U/RE:M/U:Amber",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-8916 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-8916.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18"
]
}
],
"title": "CVE-2025-8916"
},
{
"cve": "CVE-2025-9900",
"cwe": {
"id": "CWE-123",
"name": "Write-what-where Condition"
},
"notes": [
{
"category": "other",
"text": "Write-what-where Condition",
"title": "CWE-123"
},
{
"category": "description",
"text": "Recent vulnerabilities in Oracle Communications Policy Management and Libtiff, including a critical flaw in Libtiff allowing memory manipulation, pose significant risks to system integrity and confidentiality.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-9900 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-9900.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18"
]
}
],
"title": "CVE-2025-9900"
},
{
"cve": "CVE-2025-25193",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"notes": [
{
"category": "other",
"text": "Uncontrolled Resource Consumption",
"title": "CWE-400"
},
{
"category": "description",
"text": "Recent updates reveal critical vulnerabilities in Netty and various Oracle products, primarily leading to denial of service risks due to unsafe file handling and low privilege exploitability.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-25193 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-25193.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18"
]
}
],
"title": "CVE-2025-25193"
},
{
"cve": "CVE-2025-26333",
"cwe": {
"id": "CWE-209",
"name": "Generation of Error Message Containing Sensitive Information"
},
"notes": [
{
"category": "other",
"text": "Generation of Error Message Containing Sensitive Information",
"title": "CWE-209"
},
{
"category": "description",
"text": "Oracle Database Server and Oracle GoldenGate have Security-in-Depth issues related to Dell BSAFE Crypto-J, which cannot be exploited within their respective contexts, although error messages may expose sensitive information.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-26333 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-26333.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18"
]
}
],
"title": "CVE-2025-26333"
},
{
"cve": "CVE-2025-27533",
"cwe": {
"id": "CWE-789",
"name": "Memory Allocation with Excessive Size Value"
},
"notes": [
{
"category": "other",
"text": "Memory Allocation with Excessive Size Value",
"title": "CWE-789"
},
{
"category": "description",
"text": "Multiple vulnerabilities across Apache ActiveMQ and Oracle products allow unauthenticated attackers to exploit denial of service (DoS) conditions through various network access methods, affecting several versions.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:Y/R:A/V:D/RE:M/U:Red",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-27533 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-27533.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18"
]
}
],
"title": "CVE-2025-27533"
},
{
"cve": "CVE-2025-32988",
"cwe": {
"id": "CWE-415",
"name": "Double Free"
},
"notes": [
{
"category": "other",
"text": "Double Free",
"title": "CWE-415"
},
{
"category": "description",
"text": "Multiple vulnerabilities have been identified in Oracle Cloud Native Session Border Controller, Oracle Communications Unified Inventory Management, and GnuTLS, allowing for denial of service and unauthorized data access or modification.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-32988 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-32988.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.2,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18"
]
}
],
"title": "CVE-2025-32988"
},
{
"cve": "CVE-2025-32990",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"notes": [
{
"category": "other",
"text": "Heap-based Buffer Overflow",
"title": "CWE-122"
},
{
"category": "description",
"text": "Recent vulnerabilities in Oracle Communications products and GnuTLS\u0027s certtool utility expose systems to denial-of-service and unauthorized data access, with CVSS scores of 8.2 for Oracle and critical heap buffer overflow issues in GnuTLS.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-32990 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-32990.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.2,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18"
]
}
],
"title": "CVE-2025-32990"
},
{
"cve": "CVE-2025-41249",
"cwe": {
"id": "CWE-285",
"name": "Improper Authorization"
},
"notes": [
{
"category": "other",
"text": "Improper Authorization",
"title": "CWE-285"
},
{
"category": "other",
"text": "Incorrect Authorization",
"title": "CWE-863"
},
{
"category": "other",
"text": "CWE-1035",
"title": "CWE-1035"
},
{
"category": "other",
"text": "CWE-937",
"title": "CWE-937"
},
{
"category": "description",
"text": "Multiple vulnerabilities have been identified in Oracle Financial Services and Retail products, as well as the Spring Framework, allowing unauthorized access to sensitive data and potentially leading to information disclosure.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-41249 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-41249.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18"
]
}
],
"title": "CVE-2025-41249"
},
{
"cve": "CVE-2025-46727",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"notes": [
{
"category": "other",
"text": "Uncontrolled Resource Consumption",
"title": "CWE-400"
},
{
"category": "other",
"text": "Allocation of Resources Without Limits or Throttling",
"title": "CWE-770"
},
{
"category": "description",
"text": "Recent vulnerabilities in Rack and Oracle Communications Unified Assurance allow denial of service through unbounded parameter parsing and unauthenticated HTTP requests, affecting multiple versions and leading to potential memory exhaustion.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-46727 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-46727.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18"
]
}
],
"title": "CVE-2025-46727"
},
{
"cve": "CVE-2025-48060",
"cwe": {
"id": "CWE-121",
"name": "Stack-based Buffer Overflow"
},
"notes": [
{
"category": "other",
"text": "Stack-based Buffer Overflow",
"title": "CWE-121"
},
{
"category": "other",
"text": "Out-of-bounds Write",
"title": "CWE-787"
},
{
"category": "other",
"text": "Buffer Over-read",
"title": "CWE-126"
},
{
"category": "description",
"text": "Recent vulnerabilities in Oracle Cloud Native Session Border Controller and the jq command-line JSON processor expose systems to denial of service attacks, with significant severity ratings.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:P",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-48060 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-48060.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18"
]
}
],
"title": "CVE-2025-48060"
},
{
"cve": "CVE-2025-48734",
"cwe": {
"id": "CWE-284",
"name": "Improper Access Control"
},
"notes": [
{
"category": "other",
"text": "Improper Access Control",
"title": "CWE-284"
},
{
"category": "description",
"text": "Recent updates to Apache Commons BeanUtils and Oracle products address multiple vulnerabilities, including remote code execution and system compromise risks, affecting various versions and components.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-48734 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-48734.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18"
]
}
],
"title": "CVE-2025-48734"
},
{
"cve": "CVE-2025-48924",
"cwe": {
"id": "CWE-674",
"name": "Uncontrolled Recursion"
},
"notes": [
{
"category": "other",
"text": "Uncontrolled Recursion",
"title": "CWE-674"
},
{
"category": "description",
"text": "Multiple vulnerabilities have been identified in Oracle WebLogic Server and Oracle Communications ASAP, both allowing unauthenticated partial denial of service, alongside an uncontrolled recursion issue in Apache Commons Lang leading to potential application crashes.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-48924 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-48924.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18"
]
}
],
"title": "CVE-2025-48924"
},
{
"cve": "CVE-2025-48976",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"notes": [
{
"category": "other",
"text": "Allocation of Resources Without Limits or Throttling",
"title": "CWE-770"
},
{
"category": "description",
"text": "Multiple denial-of-service vulnerabilities have been identified in Oracle Application Testing Suite, Oracle Agile PLM, Apache Commons FileUpload, and HPE IceWall Identity Manager, with CVSS scores of 7.5 for some products.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-48976 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-48976.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18"
]
}
],
"title": "CVE-2025-48976"
},
{
"cve": "CVE-2025-49844",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"notes": [
{
"category": "other",
"text": "Use After Free",
"title": "CWE-416"
},
{
"category": "description",
"text": "Redis versions 8.2.1 and below, along with valkey version 8.0.6, have vulnerabilities in the Lua scripting engine that can lead to remote code execution, with fixes available in newer versions.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-49844 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-49844.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 10.0,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18"
]
}
],
"title": "CVE-2025-49844"
},
{
"cve": "CVE-2025-54571",
"cwe": {
"id": "CWE-252",
"name": "Unchecked Return Value"
},
"notes": [
{
"category": "other",
"text": "Unchecked Return Value",
"title": "CWE-252"
},
{
"category": "other",
"text": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)",
"title": "CWE-79"
},
{
"category": "description",
"text": "Recent vulnerabilities in Oracle HTTP Server and ModSecurity allow for denial of service and potential XSS attacks, affecting specific versions with significant severity scores.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-54571 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-54571.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18"
]
}
],
"title": "CVE-2025-54571"
},
{
"cve": "CVE-2025-55163",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"notes": [
{
"category": "other",
"text": "Allocation of Resources Without Limits or Throttling",
"title": "CWE-770"
},
{
"category": "other",
"text": "CWE-1035",
"title": "CWE-1035"
},
{
"category": "other",
"text": "CWE-937",
"title": "CWE-937"
},
{
"category": "description",
"text": "Recent updates to Netty and Oracle Communications products address critical vulnerabilities, including the \u0027MadeYouReset\u0027 attack in HTTP/2, which can lead to denial of service and resource exhaustion.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-55163 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-55163.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18"
]
}
],
"title": "CVE-2025-55163"
},
{
"cve": "CVE-2025-58057",
"cwe": {
"id": "CWE-409",
"name": "Improper Handling of Highly Compressed Data (Data Amplification)"
},
"notes": [
{
"category": "other",
"text": "Improper Handling of Highly Compressed Data (Data Amplification)",
"title": "CWE-409"
},
{
"category": "other",
"text": "CWE-1035",
"title": "CWE-1035"
},
{
"category": "other",
"text": "CWE-937",
"title": "CWE-937"
},
{
"category": "description",
"text": "Multiple vulnerabilities across various products, including the `BrotliDecoder`, Oracle Communications Cloud Native Core Policy, and HPE Telco Intelligent Assurance, can lead to denial of service (DoS) through excessive resource allocation or malformed inputs.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-58057 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-58057.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18"
]
}
],
"title": "CVE-2025-58057"
},
{
"cve": "CVE-2025-58098",
"cwe": {
"id": "CWE-201",
"name": "Insertion of Sensitive Information Into Sent Data"
},
"notes": [
{
"category": "other",
"text": "Insertion of Sensitive Information Into Sent Data",
"title": "CWE-201"
},
{
"category": "description",
"text": "Recent vulnerabilities in Oracle Communications Unified Assurance and Apache HTTP Server versions prior to 2.4.66 expose systems to unauthorized access and denial of service risks, with CVSS scores indicating moderate severity.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-58098 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-58098.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.3,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:L",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18"
]
}
],
"title": "CVE-2025-58098"
},
{
"cve": "CVE-2025-59375",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"notes": [
{
"category": "other",
"text": "Allocation of Resources Without Limits or Throttling",
"title": "CWE-770"
},
{
"category": "description",
"text": "Multiple vulnerabilities, including a memory amplification issue in libexpat and a DoS vulnerability in Oracle Communications Network Analytics, can lead to denial-of-service attacks without enabling arbitrary code execution.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-59375 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-59375.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18"
]
}
],
"title": "CVE-2025-59375"
},
{
"cve": "CVE-2025-61795",
"cwe": {
"id": "CWE-404",
"name": "Improper Resource Shutdown or Release"
},
"notes": [
{
"category": "other",
"text": "Improper Resource Shutdown or Release",
"title": "CWE-404"
},
{
"category": "other",
"text": "CWE-1035",
"title": "CWE-1035"
},
{
"category": "other",
"text": "CWE-937",
"title": "CWE-937"
},
{
"category": "description",
"text": "Apache Tomcat and Oracle Communications Unified Assurance have critical vulnerabilities related to Denial of Service (DoS) risks, affecting multiple versions and requiring updates to address issues like improper resource shutdown and HTTP access exploitation.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-61795 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-61795.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18"
]
}
],
"title": "CVE-2025-61795"
},
{
"cve": "CVE-2025-64718",
"cwe": {
"id": "CWE-1321",
"name": "Improperly Controlled Modification of Object Prototype Attributes (\u0027Prototype Pollution\u0027)"
},
"notes": [
{
"category": "other",
"text": "Improperly Controlled Modification of Object Prototype Attributes (\u0027Prototype Pollution\u0027)",
"title": "CWE-1321"
},
{
"category": "description",
"text": "Vulnerabilities in js-yaml and Oracle Communications Unified Assurance products allow for prototype pollution and system compromise, respectively, with specific versions affected and available patches.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-64718 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-64718.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18"
]
}
],
"title": "CVE-2025-64718"
},
{
"cve": "CVE-2025-65018",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"notes": [
{
"category": "other",
"text": "Heap-based Buffer Overflow",
"title": "CWE-122"
},
{
"category": "other",
"text": "Out-of-bounds Write",
"title": "CWE-787"
},
{
"category": "description",
"text": "Recent vulnerabilities in Oracle Communications Unified Assurance and libpng affect data integrity and system availability, with specific issues including buffer overflows and unauthorized access in various versions.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-65018 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-65018.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18"
]
}
],
"title": "CVE-2025-65018"
},
{
"cve": "CVE-2025-66418",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"notes": [
{
"category": "other",
"text": "Allocation of Resources Without Limits or Throttling",
"title": "CWE-770"
},
{
"category": "other",
"text": "CWE-1035",
"title": "CWE-1035"
},
{
"category": "other",
"text": "CWE-937",
"title": "CWE-937"
},
{
"category": "description",
"text": "The urllib3 library had a vulnerability allowing unbounded decompression chains, leading to potential Denial of Service (DoS) attacks due to excessive CPU and memory usage, fixed in version 2.6.0.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:H",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-66418 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-66418.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.6,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18"
]
}
],
"title": "CVE-2025-66418"
},
{
"cve": "CVE-2025-66516",
"cwe": {
"id": "CWE-611",
"name": "Improper Restriction of XML External Entity Reference"
},
"notes": [
{
"category": "other",
"text": "Improper Restriction of XML External Entity Reference",
"title": "CWE-611"
},
{
"category": "other",
"text": "CWE-1035",
"title": "CWE-1035"
},
{
"category": "other",
"text": "CWE-937",
"title": "CWE-937"
},
{
"category": "description",
"text": "Apache Tika has a critical XML External Entity (XXE) injection vulnerability affecting multiple modules, particularly in PDF parsing, allowing remote attackers to exploit crafted files for sensitive information disclosure or remote code execution.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-66516 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-66516.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 10.0,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18"
]
}
],
"title": "CVE-2025-66516"
},
{
"cve": "CVE-2025-68161",
"cwe": {
"id": "CWE-297",
"name": "Improper Validation of Certificate with Host Mismatch"
},
"notes": [
{
"category": "other",
"text": "Improper Validation of Certificate with Host Mismatch",
"title": "CWE-297"
},
{
"category": "other",
"text": "Improper Certificate Validation",
"title": "CWE-295"
},
{
"category": "other",
"text": "CWE-1035",
"title": "CWE-1035"
},
{
"category": "other",
"text": "CWE-937",
"title": "CWE-937"
},
{
"category": "description",
"text": "Apache Log4j Core versions 2.0-beta9 to 2.25.2 lack TLS hostname verification in the Socket Appender, while Oracle\u0027s Primavera Gateway has a vulnerability allowing unauthenticated access via TLS.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:L/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-68161 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-68161.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18"
]
}
],
"title": "CVE-2025-68161"
}
]
}
NCSC-2026-0079
Vulnerability from csaf_ncscnl - Published: 2026-03-10 12:39 - Updated: 2026-03-10 12:39Multiple vulnerabilities across Oracle products, including Utilities Application Framework, Fusion Middleware, and WebLogic Server, allow unauthenticated attackers to execute denial of service attacks, with CVSS scores of 7.5 and varying damage ratings.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Siemens / Heliox Flex 180 kW EV Charging Station
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Heliox Mobile DC 40 kW EV Charging Station
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / RUGGEDCOM APE1808
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SICAM SIAPP SDK
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIDIS Prime
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC Drive Controller CPU 1504D TF (6ES7615-4DF10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC Drive Controller CPU 1507D TF (6ES7615-7DF10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP F-1 PN (6ES7510-1SJ01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP F-1 PN (6ES7510-1SK03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP-1 PN (6ES7510-1DJ01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP-1 PN (6ES7510-1DK03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP F-1 PN (6ES7512-1SK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP F-1 PN (6ES7512-1SM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP-1 PN (6ES7512-1DK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP-1 PN (6ES7512-1DM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SP F-2 PN (6ES7514-2SN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SP-2 PN (6ES7514-2DN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SPT F-2 PN (6ES7514-2WN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SPT-2 PN (6ES7514-2VN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC (incl. SIPLUS variants)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) V2 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) V3 CPUs - Industrial OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) V3 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC3 (incl. SIPLUS variants) V2 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC3 (incl. SIPLUS variants) V3 CPUs - Industrial OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC3 (incl. SIPLUS variants) V3 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AK00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AK02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511C-1 PN (6ES7511-1CK00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511C-1 PN (6ES7511-1CK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511C-1 PN (6ES7511-1CL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511F-1 PN (6ES7511-1FK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511F-1 PN (6ES7511-1FK02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511F-1 PN (6ES7511-1FL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511T-1 PN (6ES7511-1TK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511T-1 PN (6ES7511-1TL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511TF-1 PN (6ES7511-1UK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511TF-1 PN (6ES7511-1UL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1512C-1 PN (6ES7512-1CK00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1512C-1 PN (6ES7512-1CK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1512C-1 PN (6ES7512-1CM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513-1 PN (6ES7513-1AL01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513-1 PN (6ES7513-1AL02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513-1 PN (6ES7513-1AM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513F-1 PN (6ES7513-1FL01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513F-1 PN (6ES7513-1FL02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513F-1 PN (6ES7513-1FM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513R-1 PN (6ES7513-1RL00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513R-1 PN (6ES7513-1RM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513pro F-2 PN (6ES7513-2GM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513pro-2 PN (6ES7513-2PM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515-2 PN (6ES7515-2AM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515-2 PN (6ES7515-2AM02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515-2 PN (6ES7515-2AN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515F-2 PN (6ES7515-2FM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515F-2 PN (6ES7515-2FM02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515F-2 PN (6ES7515-2FN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515R-2 PN (6ES7515-2RM00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515R-2 PN (6ES7515-2RN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515T-2 PN (6ES7515-2TM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515T-2 PN (6ES7515-2TN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515TF-2 PN (6ES7515-2UM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515TF-2 PN (6ES7515-2UN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516-3 PN/DP (6ES7516-3AN01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516-3 PN/DP (6ES7516-3AN02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516-3 PN/DP (6ES7516-3AP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516F-3 PN/DP (6ES7516-3FN01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516F-3 PN/DP (6ES7516-3FN02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516F-3 PN/DP (6ES7516-3FP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516T-3 PN (6ES7516-3TP10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516T-3 PN/DP (6ES7516-3TN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516TF-3 PN (6ES7516-3UP10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516TF-3 PN/DP (6ES7516-3UN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516pro F-2 PN (6ES7516-2GP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516pro-2 PN (6ES7516-2PP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517-3 PN (6ES7517-3AQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517-3 PN/DP (6ES7517-3AP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517F-3 PN (6ES7517-3FQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517F-3 PN/DP (6ES7517-3FP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517F-3 PN/DP (6ES7517-3FP01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517H-3 PN (6ES7517-3HP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517H-4 PN (6ES7517-4HQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517T-3 PN (6ES7517-3TQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517T-3 PN/DP (6ES7517-3TP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517TF-3 PN (6ES7517-3UQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517TF-3 PN/DP (6ES7517-3UP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-3 PN (6ES7518-3AT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP (6ES7518-4AP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP MFP (6ES7518-4AX00-1AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP MFP (6ES7518-4AX00-1AC0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-3 PN (6ES7518-3FT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP (6ES7518-4FP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP (6ES7518-4FX00-1AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP (6ES7518-4FX00-1AC0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518HF-4 PN (6ES7518-4JP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518HF-4 PN (6ES7518-4JT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518T-3 PN (6ES7518-3TT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518T-4 PN/DP (6ES7518-4TP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518TF-3 PN (6ES7518-3UT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518TF-4 PN/DP (6ES7518-4UP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU S7-1518-4 PN/DP ODK (6ES7518-4AP00-3AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU S7-1518F-4 PN/DP ODK (6ES7518-4FP00-3AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1513PRO F-2 PN (6ES7513-2GL00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1513PRO-2 PN (6ES7513-2PL00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1516PRO F-2 PN (6ES7516-2GN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1516PRO-2 PN (6ES7516-2PN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S F V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S F V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S F V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S F V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S F V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S F V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S T V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S TF V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller Linux V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller Linux V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 TM MFP - GNU/Linux subsystem
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-PLCSIM Advanced
|
vers:unknown/* |
Multiple vulnerabilities across Oracle Utilities, WebLogic Server, and Bouncy Castle libraries allow for denial of service attacks and sensitive data leakage through timing side-channel exploits.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Siemens / Heliox Flex 180 kW EV Charging Station
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Heliox Mobile DC 40 kW EV Charging Station
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / RUGGEDCOM APE1808
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SICAM SIAPP SDK
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIDIS Prime
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC Drive Controller CPU 1504D TF (6ES7615-4DF10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC Drive Controller CPU 1507D TF (6ES7615-7DF10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP F-1 PN (6ES7510-1SJ01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP F-1 PN (6ES7510-1SK03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP-1 PN (6ES7510-1DJ01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP-1 PN (6ES7510-1DK03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP F-1 PN (6ES7512-1SK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP F-1 PN (6ES7512-1SM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP-1 PN (6ES7512-1DK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP-1 PN (6ES7512-1DM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SP F-2 PN (6ES7514-2SN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SP-2 PN (6ES7514-2DN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SPT F-2 PN (6ES7514-2WN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SPT-2 PN (6ES7514-2VN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC (incl. SIPLUS variants)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) V2 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) V3 CPUs - Industrial OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) V3 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC3 (incl. SIPLUS variants) V2 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC3 (incl. SIPLUS variants) V3 CPUs - Industrial OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC3 (incl. SIPLUS variants) V3 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AK00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AK02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511C-1 PN (6ES7511-1CK00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511C-1 PN (6ES7511-1CK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511C-1 PN (6ES7511-1CL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511F-1 PN (6ES7511-1FK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511F-1 PN (6ES7511-1FK02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511F-1 PN (6ES7511-1FL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511T-1 PN (6ES7511-1TK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511T-1 PN (6ES7511-1TL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511TF-1 PN (6ES7511-1UK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511TF-1 PN (6ES7511-1UL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1512C-1 PN (6ES7512-1CK00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1512C-1 PN (6ES7512-1CK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1512C-1 PN (6ES7512-1CM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513-1 PN (6ES7513-1AL01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513-1 PN (6ES7513-1AL02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513-1 PN (6ES7513-1AM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513F-1 PN (6ES7513-1FL01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513F-1 PN (6ES7513-1FL02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513F-1 PN (6ES7513-1FM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513R-1 PN (6ES7513-1RL00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513R-1 PN (6ES7513-1RM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513pro F-2 PN (6ES7513-2GM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513pro-2 PN (6ES7513-2PM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515-2 PN (6ES7515-2AM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515-2 PN (6ES7515-2AM02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515-2 PN (6ES7515-2AN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515F-2 PN (6ES7515-2FM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515F-2 PN (6ES7515-2FM02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515F-2 PN (6ES7515-2FN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515R-2 PN (6ES7515-2RM00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515R-2 PN (6ES7515-2RN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515T-2 PN (6ES7515-2TM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515T-2 PN (6ES7515-2TN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515TF-2 PN (6ES7515-2UM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515TF-2 PN (6ES7515-2UN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516-3 PN/DP (6ES7516-3AN01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516-3 PN/DP (6ES7516-3AN02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516-3 PN/DP (6ES7516-3AP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516F-3 PN/DP (6ES7516-3FN01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516F-3 PN/DP (6ES7516-3FN02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516F-3 PN/DP (6ES7516-3FP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516T-3 PN (6ES7516-3TP10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516T-3 PN/DP (6ES7516-3TN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516TF-3 PN (6ES7516-3UP10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516TF-3 PN/DP (6ES7516-3UN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516pro F-2 PN (6ES7516-2GP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516pro-2 PN (6ES7516-2PP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517-3 PN (6ES7517-3AQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517-3 PN/DP (6ES7517-3AP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517F-3 PN (6ES7517-3FQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517F-3 PN/DP (6ES7517-3FP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517F-3 PN/DP (6ES7517-3FP01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517H-3 PN (6ES7517-3HP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517H-4 PN (6ES7517-4HQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517T-3 PN (6ES7517-3TQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517T-3 PN/DP (6ES7517-3TP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517TF-3 PN (6ES7517-3UQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517TF-3 PN/DP (6ES7517-3UP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-3 PN (6ES7518-3AT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP (6ES7518-4AP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP MFP (6ES7518-4AX00-1AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP MFP (6ES7518-4AX00-1AC0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-3 PN (6ES7518-3FT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP (6ES7518-4FP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP (6ES7518-4FX00-1AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP (6ES7518-4FX00-1AC0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518HF-4 PN (6ES7518-4JP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518HF-4 PN (6ES7518-4JT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518T-3 PN (6ES7518-3TT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518T-4 PN/DP (6ES7518-4TP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518TF-3 PN (6ES7518-3UT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518TF-4 PN/DP (6ES7518-4UP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU S7-1518-4 PN/DP ODK (6ES7518-4AP00-3AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU S7-1518F-4 PN/DP ODK (6ES7518-4FP00-3AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1513PRO F-2 PN (6ES7513-2GL00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1513PRO-2 PN (6ES7513-2PL00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1516PRO F-2 PN (6ES7516-2GN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1516PRO-2 PN (6ES7516-2PN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S F V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S F V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S F V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S F V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S F V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S F V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S T V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S TF V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller Linux V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller Linux V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 TM MFP - GNU/Linux subsystem
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-PLCSIM Advanced
|
vers:unknown/* |
Multiple vulnerabilities across Oracle Utilities Application Framework, WebLogic Server, and Business Intelligence Enterprise Edition, as well as Bouncy Castle libraries, allow unauthenticated attackers to induce denial of service, with CVSS scores of 7.5 for Oracle products.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Siemens / Heliox Flex 180 kW EV Charging Station
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Heliox Mobile DC 40 kW EV Charging Station
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / RUGGEDCOM APE1808
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SICAM SIAPP SDK
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIDIS Prime
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC Drive Controller CPU 1504D TF (6ES7615-4DF10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC Drive Controller CPU 1507D TF (6ES7615-7DF10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP F-1 PN (6ES7510-1SJ01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP F-1 PN (6ES7510-1SK03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP-1 PN (6ES7510-1DJ01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP-1 PN (6ES7510-1DK03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP F-1 PN (6ES7512-1SK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP F-1 PN (6ES7512-1SM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP-1 PN (6ES7512-1DK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP-1 PN (6ES7512-1DM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SP F-2 PN (6ES7514-2SN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SP-2 PN (6ES7514-2DN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SPT F-2 PN (6ES7514-2WN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SPT-2 PN (6ES7514-2VN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC (incl. SIPLUS variants)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) V2 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) V3 CPUs - Industrial OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) V3 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC3 (incl. SIPLUS variants) V2 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC3 (incl. SIPLUS variants) V3 CPUs - Industrial OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC3 (incl. SIPLUS variants) V3 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AK00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AK02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511C-1 PN (6ES7511-1CK00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511C-1 PN (6ES7511-1CK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511C-1 PN (6ES7511-1CL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511F-1 PN (6ES7511-1FK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511F-1 PN (6ES7511-1FK02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511F-1 PN (6ES7511-1FL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511T-1 PN (6ES7511-1TK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511T-1 PN (6ES7511-1TL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511TF-1 PN (6ES7511-1UK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511TF-1 PN (6ES7511-1UL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1512C-1 PN (6ES7512-1CK00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1512C-1 PN (6ES7512-1CK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1512C-1 PN (6ES7512-1CM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513-1 PN (6ES7513-1AL01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513-1 PN (6ES7513-1AL02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513-1 PN (6ES7513-1AM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513F-1 PN (6ES7513-1FL01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513F-1 PN (6ES7513-1FL02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513F-1 PN (6ES7513-1FM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513R-1 PN (6ES7513-1RL00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513R-1 PN (6ES7513-1RM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513pro F-2 PN (6ES7513-2GM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513pro-2 PN (6ES7513-2PM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515-2 PN (6ES7515-2AM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515-2 PN (6ES7515-2AM02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515-2 PN (6ES7515-2AN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515F-2 PN (6ES7515-2FM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515F-2 PN (6ES7515-2FM02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515F-2 PN (6ES7515-2FN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515R-2 PN (6ES7515-2RM00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515R-2 PN (6ES7515-2RN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515T-2 PN (6ES7515-2TM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515T-2 PN (6ES7515-2TN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515TF-2 PN (6ES7515-2UM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515TF-2 PN (6ES7515-2UN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516-3 PN/DP (6ES7516-3AN01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516-3 PN/DP (6ES7516-3AN02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516-3 PN/DP (6ES7516-3AP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516F-3 PN/DP (6ES7516-3FN01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516F-3 PN/DP (6ES7516-3FN02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516F-3 PN/DP (6ES7516-3FP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516T-3 PN (6ES7516-3TP10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516T-3 PN/DP (6ES7516-3TN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516TF-3 PN (6ES7516-3UP10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516TF-3 PN/DP (6ES7516-3UN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516pro F-2 PN (6ES7516-2GP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516pro-2 PN (6ES7516-2PP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517-3 PN (6ES7517-3AQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517-3 PN/DP (6ES7517-3AP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517F-3 PN (6ES7517-3FQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517F-3 PN/DP (6ES7517-3FP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517F-3 PN/DP (6ES7517-3FP01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517H-3 PN (6ES7517-3HP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517H-4 PN (6ES7517-4HQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517T-3 PN (6ES7517-3TQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517T-3 PN/DP (6ES7517-3TP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517TF-3 PN (6ES7517-3UQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517TF-3 PN/DP (6ES7517-3UP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-3 PN (6ES7518-3AT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP (6ES7518-4AP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP MFP (6ES7518-4AX00-1AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP MFP (6ES7518-4AX00-1AC0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-3 PN (6ES7518-3FT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP (6ES7518-4FP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP (6ES7518-4FX00-1AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP (6ES7518-4FX00-1AC0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518HF-4 PN (6ES7518-4JP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518HF-4 PN (6ES7518-4JT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518T-3 PN (6ES7518-3TT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518T-4 PN/DP (6ES7518-4TP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518TF-3 PN (6ES7518-3UT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518TF-4 PN/DP (6ES7518-4UP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU S7-1518-4 PN/DP ODK (6ES7518-4AP00-3AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU S7-1518F-4 PN/DP ODK (6ES7518-4FP00-3AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1513PRO F-2 PN (6ES7513-2GL00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1513PRO-2 PN (6ES7513-2PL00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1516PRO F-2 PN (6ES7516-2GN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1516PRO-2 PN (6ES7516-2PN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S F V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S F V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S F V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S F V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S F V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S F V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S T V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S TF V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller Linux V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller Linux V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 TM MFP - GNU/Linux subsystem
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-PLCSIM Advanced
|
vers:unknown/* |
A vulnerability in the Diffie-Hellman Key Agreement Protocol in OpenSSL allows remote attackers to cause excessive server-side computational load by exploiting public key order validation with approved safe primes, addressed in updates fixing CVE-2023-50782 and CVE-2024-41996.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Siemens / Heliox Flex 180 kW EV Charging Station
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Heliox Mobile DC 40 kW EV Charging Station
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / RUGGEDCOM APE1808
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SICAM SIAPP SDK
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIDIS Prime
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC Drive Controller CPU 1504D TF (6ES7615-4DF10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC Drive Controller CPU 1507D TF (6ES7615-7DF10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP F-1 PN (6ES7510-1SJ01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP F-1 PN (6ES7510-1SK03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP-1 PN (6ES7510-1DJ01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP-1 PN (6ES7510-1DK03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP F-1 PN (6ES7512-1SK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP F-1 PN (6ES7512-1SM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP-1 PN (6ES7512-1DK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP-1 PN (6ES7512-1DM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SP F-2 PN (6ES7514-2SN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SP-2 PN (6ES7514-2DN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SPT F-2 PN (6ES7514-2WN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SPT-2 PN (6ES7514-2VN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC (incl. SIPLUS variants)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) V2 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) V3 CPUs - Industrial OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) V3 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC3 (incl. SIPLUS variants) V2 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC3 (incl. SIPLUS variants) V3 CPUs - Industrial OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC3 (incl. SIPLUS variants) V3 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AK00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AK02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511C-1 PN (6ES7511-1CK00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511C-1 PN (6ES7511-1CK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511C-1 PN (6ES7511-1CL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511F-1 PN (6ES7511-1FK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511F-1 PN (6ES7511-1FK02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511F-1 PN (6ES7511-1FL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511T-1 PN (6ES7511-1TK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511T-1 PN (6ES7511-1TL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511TF-1 PN (6ES7511-1UK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511TF-1 PN (6ES7511-1UL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1512C-1 PN (6ES7512-1CK00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1512C-1 PN (6ES7512-1CK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1512C-1 PN (6ES7512-1CM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513-1 PN (6ES7513-1AL01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513-1 PN (6ES7513-1AL02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513-1 PN (6ES7513-1AM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513F-1 PN (6ES7513-1FL01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513F-1 PN (6ES7513-1FL02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513F-1 PN (6ES7513-1FM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513R-1 PN (6ES7513-1RL00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513R-1 PN (6ES7513-1RM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513pro F-2 PN (6ES7513-2GM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513pro-2 PN (6ES7513-2PM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515-2 PN (6ES7515-2AM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515-2 PN (6ES7515-2AM02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515-2 PN (6ES7515-2AN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515F-2 PN (6ES7515-2FM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515F-2 PN (6ES7515-2FM02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515F-2 PN (6ES7515-2FN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515R-2 PN (6ES7515-2RM00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515R-2 PN (6ES7515-2RN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515T-2 PN (6ES7515-2TM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515T-2 PN (6ES7515-2TN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515TF-2 PN (6ES7515-2UM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515TF-2 PN (6ES7515-2UN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516-3 PN/DP (6ES7516-3AN01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516-3 PN/DP (6ES7516-3AN02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516-3 PN/DP (6ES7516-3AP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516F-3 PN/DP (6ES7516-3FN01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516F-3 PN/DP (6ES7516-3FN02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516F-3 PN/DP (6ES7516-3FP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516T-3 PN (6ES7516-3TP10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516T-3 PN/DP (6ES7516-3TN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516TF-3 PN (6ES7516-3UP10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516TF-3 PN/DP (6ES7516-3UN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516pro F-2 PN (6ES7516-2GP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516pro-2 PN (6ES7516-2PP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517-3 PN (6ES7517-3AQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517-3 PN/DP (6ES7517-3AP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517F-3 PN (6ES7517-3FQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517F-3 PN/DP (6ES7517-3FP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517F-3 PN/DP (6ES7517-3FP01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517H-3 PN (6ES7517-3HP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517H-4 PN (6ES7517-4HQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517T-3 PN (6ES7517-3TQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517T-3 PN/DP (6ES7517-3TP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517TF-3 PN (6ES7517-3UQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517TF-3 PN/DP (6ES7517-3UP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-3 PN (6ES7518-3AT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP (6ES7518-4AP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP MFP (6ES7518-4AX00-1AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP MFP (6ES7518-4AX00-1AC0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-3 PN (6ES7518-3FT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP (6ES7518-4FP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP (6ES7518-4FX00-1AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP (6ES7518-4FX00-1AC0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518HF-4 PN (6ES7518-4JP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518HF-4 PN (6ES7518-4JT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518T-3 PN (6ES7518-3TT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518T-4 PN/DP (6ES7518-4TP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518TF-3 PN (6ES7518-3UT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518TF-4 PN/DP (6ES7518-4UP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU S7-1518-4 PN/DP ODK (6ES7518-4AP00-3AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU S7-1518F-4 PN/DP ODK (6ES7518-4FP00-3AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1513PRO F-2 PN (6ES7513-2GL00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1513PRO-2 PN (6ES7513-2PL00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1516PRO F-2 PN (6ES7516-2GN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1516PRO-2 PN (6ES7516-2PN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S F V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S F V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S F V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S F V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S F V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S F V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S T V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S TF V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller Linux V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller Linux V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 TM MFP - GNU/Linux subsystem
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-PLCSIM Advanced
|
vers:unknown/* |
Critical vulnerabilities in Oracle Communications Cloud Native Core Unified Data Repository and Oracle Siebel CRM Cloud Applications allow unauthenticated attackers full system compromise, while multiple SQLite-related flaws affect various products including NetApp and Apple software, causing memory corruption and integer truncation issues.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Siemens / Heliox Flex 180 kW EV Charging Station
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Heliox Mobile DC 40 kW EV Charging Station
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / RUGGEDCOM APE1808
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SICAM SIAPP SDK
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIDIS Prime
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC Drive Controller CPU 1504D TF (6ES7615-4DF10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC Drive Controller CPU 1507D TF (6ES7615-7DF10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP F-1 PN (6ES7510-1SJ01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP F-1 PN (6ES7510-1SK03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP-1 PN (6ES7510-1DJ01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP-1 PN (6ES7510-1DK03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP F-1 PN (6ES7512-1SK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP F-1 PN (6ES7512-1SM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP-1 PN (6ES7512-1DK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP-1 PN (6ES7512-1DM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SP F-2 PN (6ES7514-2SN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SP-2 PN (6ES7514-2DN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SPT F-2 PN (6ES7514-2WN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SPT-2 PN (6ES7514-2VN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC (incl. SIPLUS variants)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) V2 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) V3 CPUs - Industrial OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) V3 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC3 (incl. SIPLUS variants) V2 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC3 (incl. SIPLUS variants) V3 CPUs - Industrial OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC3 (incl. SIPLUS variants) V3 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AK00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AK02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511C-1 PN (6ES7511-1CK00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511C-1 PN (6ES7511-1CK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511C-1 PN (6ES7511-1CL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511F-1 PN (6ES7511-1FK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511F-1 PN (6ES7511-1FK02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511F-1 PN (6ES7511-1FL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511T-1 PN (6ES7511-1TK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511T-1 PN (6ES7511-1TL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511TF-1 PN (6ES7511-1UK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511TF-1 PN (6ES7511-1UL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1512C-1 PN (6ES7512-1CK00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1512C-1 PN (6ES7512-1CK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1512C-1 PN (6ES7512-1CM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513-1 PN (6ES7513-1AL01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513-1 PN (6ES7513-1AL02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513-1 PN (6ES7513-1AM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513F-1 PN (6ES7513-1FL01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513F-1 PN (6ES7513-1FL02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513F-1 PN (6ES7513-1FM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513R-1 PN (6ES7513-1RL00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513R-1 PN (6ES7513-1RM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513pro F-2 PN (6ES7513-2GM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513pro-2 PN (6ES7513-2PM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515-2 PN (6ES7515-2AM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515-2 PN (6ES7515-2AM02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515-2 PN (6ES7515-2AN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515F-2 PN (6ES7515-2FM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515F-2 PN (6ES7515-2FM02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515F-2 PN (6ES7515-2FN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515R-2 PN (6ES7515-2RM00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515R-2 PN (6ES7515-2RN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515T-2 PN (6ES7515-2TM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515T-2 PN (6ES7515-2TN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515TF-2 PN (6ES7515-2UM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515TF-2 PN (6ES7515-2UN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516-3 PN/DP (6ES7516-3AN01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516-3 PN/DP (6ES7516-3AN02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516-3 PN/DP (6ES7516-3AP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516F-3 PN/DP (6ES7516-3FN01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516F-3 PN/DP (6ES7516-3FN02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516F-3 PN/DP (6ES7516-3FP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516T-3 PN (6ES7516-3TP10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516T-3 PN/DP (6ES7516-3TN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516TF-3 PN (6ES7516-3UP10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516TF-3 PN/DP (6ES7516-3UN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516pro F-2 PN (6ES7516-2GP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516pro-2 PN (6ES7516-2PP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517-3 PN (6ES7517-3AQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517-3 PN/DP (6ES7517-3AP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517F-3 PN (6ES7517-3FQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517F-3 PN/DP (6ES7517-3FP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517F-3 PN/DP (6ES7517-3FP01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517H-3 PN (6ES7517-3HP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517H-4 PN (6ES7517-4HQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517T-3 PN (6ES7517-3TQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517T-3 PN/DP (6ES7517-3TP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517TF-3 PN (6ES7517-3UQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517TF-3 PN/DP (6ES7517-3UP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-3 PN (6ES7518-3AT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP (6ES7518-4AP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP MFP (6ES7518-4AX00-1AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP MFP (6ES7518-4AX00-1AC0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-3 PN (6ES7518-3FT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP (6ES7518-4FP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP (6ES7518-4FX00-1AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP (6ES7518-4FX00-1AC0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518HF-4 PN (6ES7518-4JP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518HF-4 PN (6ES7518-4JT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518T-3 PN (6ES7518-3TT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518T-4 PN/DP (6ES7518-4TP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518TF-3 PN (6ES7518-3UT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518TF-4 PN/DP (6ES7518-4UP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU S7-1518-4 PN/DP ODK (6ES7518-4AP00-3AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU S7-1518F-4 PN/DP ODK (6ES7518-4FP00-3AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1513PRO F-2 PN (6ES7513-2GL00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1513PRO-2 PN (6ES7513-2PL00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1516PRO F-2 PN (6ES7516-2GN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1516PRO-2 PN (6ES7516-2PN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S F V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S F V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S F V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S F V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S F V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S F V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S T V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S TF V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller Linux V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller Linux V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 TM MFP - GNU/Linux subsystem
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-PLCSIM Advanced
|
vers:unknown/* |
The form-data library's use of predictable random number generation for boundary values poses security risks, while vulnerabilities in HPE products allow for Remote Code Execution and Local Authentication Bypass.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Siemens / Heliox Flex 180 kW EV Charging Station
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Heliox Mobile DC 40 kW EV Charging Station
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / RUGGEDCOM APE1808
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SICAM SIAPP SDK
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIDIS Prime
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC Drive Controller CPU 1504D TF (6ES7615-4DF10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC Drive Controller CPU 1507D TF (6ES7615-7DF10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP F-1 PN (6ES7510-1SJ01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP F-1 PN (6ES7510-1SK03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP-1 PN (6ES7510-1DJ01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP-1 PN (6ES7510-1DK03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP F-1 PN (6ES7512-1SK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP F-1 PN (6ES7512-1SM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP-1 PN (6ES7512-1DK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP-1 PN (6ES7512-1DM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SP F-2 PN (6ES7514-2SN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SP-2 PN (6ES7514-2DN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SPT F-2 PN (6ES7514-2WN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SPT-2 PN (6ES7514-2VN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC (incl. SIPLUS variants)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) V2 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) V3 CPUs - Industrial OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) V3 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC3 (incl. SIPLUS variants) V2 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC3 (incl. SIPLUS variants) V3 CPUs - Industrial OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC3 (incl. SIPLUS variants) V3 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AK00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AK02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511C-1 PN (6ES7511-1CK00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511C-1 PN (6ES7511-1CK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511C-1 PN (6ES7511-1CL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511F-1 PN (6ES7511-1FK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511F-1 PN (6ES7511-1FK02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511F-1 PN (6ES7511-1FL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511T-1 PN (6ES7511-1TK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511T-1 PN (6ES7511-1TL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511TF-1 PN (6ES7511-1UK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511TF-1 PN (6ES7511-1UL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1512C-1 PN (6ES7512-1CK00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1512C-1 PN (6ES7512-1CK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1512C-1 PN (6ES7512-1CM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513-1 PN (6ES7513-1AL01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513-1 PN (6ES7513-1AL02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513-1 PN (6ES7513-1AM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513F-1 PN (6ES7513-1FL01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513F-1 PN (6ES7513-1FL02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513F-1 PN (6ES7513-1FM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513R-1 PN (6ES7513-1RL00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513R-1 PN (6ES7513-1RM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513pro F-2 PN (6ES7513-2GM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513pro-2 PN (6ES7513-2PM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515-2 PN (6ES7515-2AM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515-2 PN (6ES7515-2AM02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515-2 PN (6ES7515-2AN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515F-2 PN (6ES7515-2FM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515F-2 PN (6ES7515-2FM02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515F-2 PN (6ES7515-2FN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515R-2 PN (6ES7515-2RM00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515R-2 PN (6ES7515-2RN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515T-2 PN (6ES7515-2TM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515T-2 PN (6ES7515-2TN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515TF-2 PN (6ES7515-2UM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515TF-2 PN (6ES7515-2UN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516-3 PN/DP (6ES7516-3AN01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516-3 PN/DP (6ES7516-3AN02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516-3 PN/DP (6ES7516-3AP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516F-3 PN/DP (6ES7516-3FN01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516F-3 PN/DP (6ES7516-3FN02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516F-3 PN/DP (6ES7516-3FP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516T-3 PN (6ES7516-3TP10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516T-3 PN/DP (6ES7516-3TN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516TF-3 PN (6ES7516-3UP10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516TF-3 PN/DP (6ES7516-3UN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516pro F-2 PN (6ES7516-2GP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516pro-2 PN (6ES7516-2PP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517-3 PN (6ES7517-3AQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517-3 PN/DP (6ES7517-3AP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517F-3 PN (6ES7517-3FQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517F-3 PN/DP (6ES7517-3FP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517F-3 PN/DP (6ES7517-3FP01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517H-3 PN (6ES7517-3HP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517H-4 PN (6ES7517-4HQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517T-3 PN (6ES7517-3TQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517T-3 PN/DP (6ES7517-3TP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517TF-3 PN (6ES7517-3UQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517TF-3 PN/DP (6ES7517-3UP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-3 PN (6ES7518-3AT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP (6ES7518-4AP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP MFP (6ES7518-4AX00-1AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP MFP (6ES7518-4AX00-1AC0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-3 PN (6ES7518-3FT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP (6ES7518-4FP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP (6ES7518-4FX00-1AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP (6ES7518-4FX00-1AC0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518HF-4 PN (6ES7518-4JP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518HF-4 PN (6ES7518-4JT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518T-3 PN (6ES7518-3TT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518T-4 PN/DP (6ES7518-4TP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518TF-3 PN (6ES7518-3UT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518TF-4 PN/DP (6ES7518-4UP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU S7-1518-4 PN/DP ODK (6ES7518-4AP00-3AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU S7-1518F-4 PN/DP ODK (6ES7518-4FP00-3AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1513PRO F-2 PN (6ES7513-2GL00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1513PRO-2 PN (6ES7513-2PL00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1516PRO F-2 PN (6ES7516-2GN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1516PRO-2 PN (6ES7516-2PN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S F V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S F V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S F V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S F V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S F V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S F V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S T V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S TF V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller Linux V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller Linux V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 TM MFP - GNU/Linux subsystem
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-PLCSIM Advanced
|
vers:unknown/* |
Multiple OpenSSL versions have an out-of-bounds read/write vulnerability in RFC 3211 KEK unwrap related to password-based CMS decryption, with moderate severity due to low exploit likelihood, affecting products including NetApp, Oracle, and SAP components.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Siemens / Heliox Flex 180 kW EV Charging Station
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Heliox Mobile DC 40 kW EV Charging Station
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / RUGGEDCOM APE1808
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SICAM SIAPP SDK
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIDIS Prime
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC Drive Controller CPU 1504D TF (6ES7615-4DF10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC Drive Controller CPU 1507D TF (6ES7615-7DF10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP F-1 PN (6ES7510-1SJ01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP F-1 PN (6ES7510-1SK03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP-1 PN (6ES7510-1DJ01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP-1 PN (6ES7510-1DK03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP F-1 PN (6ES7512-1SK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP F-1 PN (6ES7512-1SM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP-1 PN (6ES7512-1DK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP-1 PN (6ES7512-1DM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SP F-2 PN (6ES7514-2SN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SP-2 PN (6ES7514-2DN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SPT F-2 PN (6ES7514-2WN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SPT-2 PN (6ES7514-2VN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC (incl. SIPLUS variants)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) V2 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) V3 CPUs - Industrial OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) V3 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC3 (incl. SIPLUS variants) V2 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC3 (incl. SIPLUS variants) V3 CPUs - Industrial OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC3 (incl. SIPLUS variants) V3 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AK00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AK02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511C-1 PN (6ES7511-1CK00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511C-1 PN (6ES7511-1CK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511C-1 PN (6ES7511-1CL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511F-1 PN (6ES7511-1FK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511F-1 PN (6ES7511-1FK02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511F-1 PN (6ES7511-1FL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511T-1 PN (6ES7511-1TK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511T-1 PN (6ES7511-1TL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511TF-1 PN (6ES7511-1UK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511TF-1 PN (6ES7511-1UL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1512C-1 PN (6ES7512-1CK00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1512C-1 PN (6ES7512-1CK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1512C-1 PN (6ES7512-1CM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513-1 PN (6ES7513-1AL01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513-1 PN (6ES7513-1AL02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513-1 PN (6ES7513-1AM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513F-1 PN (6ES7513-1FL01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513F-1 PN (6ES7513-1FL02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513F-1 PN (6ES7513-1FM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513R-1 PN (6ES7513-1RL00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513R-1 PN (6ES7513-1RM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513pro F-2 PN (6ES7513-2GM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513pro-2 PN (6ES7513-2PM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515-2 PN (6ES7515-2AM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515-2 PN (6ES7515-2AM02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515-2 PN (6ES7515-2AN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515F-2 PN (6ES7515-2FM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515F-2 PN (6ES7515-2FM02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515F-2 PN (6ES7515-2FN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515R-2 PN (6ES7515-2RM00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515R-2 PN (6ES7515-2RN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515T-2 PN (6ES7515-2TM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515T-2 PN (6ES7515-2TN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515TF-2 PN (6ES7515-2UM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515TF-2 PN (6ES7515-2UN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516-3 PN/DP (6ES7516-3AN01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516-3 PN/DP (6ES7516-3AN02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516-3 PN/DP (6ES7516-3AP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516F-3 PN/DP (6ES7516-3FN01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516F-3 PN/DP (6ES7516-3FN02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516F-3 PN/DP (6ES7516-3FP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516T-3 PN (6ES7516-3TP10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516T-3 PN/DP (6ES7516-3TN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516TF-3 PN (6ES7516-3UP10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516TF-3 PN/DP (6ES7516-3UN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516pro F-2 PN (6ES7516-2GP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516pro-2 PN (6ES7516-2PP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517-3 PN (6ES7517-3AQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517-3 PN/DP (6ES7517-3AP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517F-3 PN (6ES7517-3FQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517F-3 PN/DP (6ES7517-3FP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517F-3 PN/DP (6ES7517-3FP01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517H-3 PN (6ES7517-3HP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517H-4 PN (6ES7517-4HQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517T-3 PN (6ES7517-3TQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517T-3 PN/DP (6ES7517-3TP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517TF-3 PN (6ES7517-3UQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517TF-3 PN/DP (6ES7517-3UP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-3 PN (6ES7518-3AT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP (6ES7518-4AP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP MFP (6ES7518-4AX00-1AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP MFP (6ES7518-4AX00-1AC0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-3 PN (6ES7518-3FT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP (6ES7518-4FP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP (6ES7518-4FX00-1AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP (6ES7518-4FX00-1AC0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518HF-4 PN (6ES7518-4JP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518HF-4 PN (6ES7518-4JT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518T-3 PN (6ES7518-3TT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518T-4 PN/DP (6ES7518-4TP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518TF-3 PN (6ES7518-3UT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518TF-4 PN/DP (6ES7518-4UP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU S7-1518-4 PN/DP ODK (6ES7518-4AP00-3AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU S7-1518F-4 PN/DP ODK (6ES7518-4FP00-3AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1513PRO F-2 PN (6ES7513-2GL00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1513PRO-2 PN (6ES7513-2PL00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1516PRO F-2 PN (6ES7516-2GN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1516PRO-2 PN (6ES7516-2PN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S F V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S F V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S F V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S F V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S F V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S F V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S T V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S TF V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller Linux V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller Linux V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 TM MFP - GNU/Linux subsystem
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-PLCSIM Advanced
|
vers:unknown/* |
A low-severity out-of-bounds read vulnerability in OpenSSL HTTP client API occurs when the 'no_proxy' environment variable is set and the HTTP URL contains an IPv6 address, causing denial of service via application crash in multiple products including Oracle PeopleSoft and NetApp devices.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Siemens / Heliox Flex 180 kW EV Charging Station
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Heliox Mobile DC 40 kW EV Charging Station
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / RUGGEDCOM APE1808
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SICAM SIAPP SDK
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIDIS Prime
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC Drive Controller CPU 1504D TF (6ES7615-4DF10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC Drive Controller CPU 1507D TF (6ES7615-7DF10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP F-1 PN (6ES7510-1SJ01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP F-1 PN (6ES7510-1SK03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP-1 PN (6ES7510-1DJ01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP-1 PN (6ES7510-1DK03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP F-1 PN (6ES7512-1SK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP F-1 PN (6ES7512-1SM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP-1 PN (6ES7512-1DK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP-1 PN (6ES7512-1DM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SP F-2 PN (6ES7514-2SN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SP-2 PN (6ES7514-2DN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SPT F-2 PN (6ES7514-2WN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SPT-2 PN (6ES7514-2VN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC (incl. SIPLUS variants)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) V2 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) V3 CPUs - Industrial OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) V3 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC3 (incl. SIPLUS variants) V2 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC3 (incl. SIPLUS variants) V3 CPUs - Industrial OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC3 (incl. SIPLUS variants) V3 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AK00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AK02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511C-1 PN (6ES7511-1CK00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511C-1 PN (6ES7511-1CK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511C-1 PN (6ES7511-1CL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511F-1 PN (6ES7511-1FK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511F-1 PN (6ES7511-1FK02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511F-1 PN (6ES7511-1FL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511T-1 PN (6ES7511-1TK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511T-1 PN (6ES7511-1TL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511TF-1 PN (6ES7511-1UK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511TF-1 PN (6ES7511-1UL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1512C-1 PN (6ES7512-1CK00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1512C-1 PN (6ES7512-1CK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1512C-1 PN (6ES7512-1CM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513-1 PN (6ES7513-1AL01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513-1 PN (6ES7513-1AL02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513-1 PN (6ES7513-1AM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513F-1 PN (6ES7513-1FL01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513F-1 PN (6ES7513-1FL02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513F-1 PN (6ES7513-1FM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513R-1 PN (6ES7513-1RL00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513R-1 PN (6ES7513-1RM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513pro F-2 PN (6ES7513-2GM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513pro-2 PN (6ES7513-2PM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515-2 PN (6ES7515-2AM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515-2 PN (6ES7515-2AM02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515-2 PN (6ES7515-2AN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515F-2 PN (6ES7515-2FM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515F-2 PN (6ES7515-2FM02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515F-2 PN (6ES7515-2FN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515R-2 PN (6ES7515-2RM00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515R-2 PN (6ES7515-2RN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515T-2 PN (6ES7515-2TM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515T-2 PN (6ES7515-2TN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515TF-2 PN (6ES7515-2UM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515TF-2 PN (6ES7515-2UN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516-3 PN/DP (6ES7516-3AN01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516-3 PN/DP (6ES7516-3AN02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516-3 PN/DP (6ES7516-3AP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516F-3 PN/DP (6ES7516-3FN01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516F-3 PN/DP (6ES7516-3FN02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516F-3 PN/DP (6ES7516-3FP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516T-3 PN (6ES7516-3TP10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516T-3 PN/DP (6ES7516-3TN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516TF-3 PN (6ES7516-3UP10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516TF-3 PN/DP (6ES7516-3UN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516pro F-2 PN (6ES7516-2GP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516pro-2 PN (6ES7516-2PP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517-3 PN (6ES7517-3AQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517-3 PN/DP (6ES7517-3AP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517F-3 PN (6ES7517-3FQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517F-3 PN/DP (6ES7517-3FP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517F-3 PN/DP (6ES7517-3FP01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517H-3 PN (6ES7517-3HP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517H-4 PN (6ES7517-4HQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517T-3 PN (6ES7517-3TQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517T-3 PN/DP (6ES7517-3TP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517TF-3 PN (6ES7517-3UQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517TF-3 PN/DP (6ES7517-3UP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-3 PN (6ES7518-3AT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP (6ES7518-4AP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP MFP (6ES7518-4AX00-1AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP MFP (6ES7518-4AX00-1AC0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-3 PN (6ES7518-3FT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP (6ES7518-4FP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP (6ES7518-4FX00-1AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP (6ES7518-4FX00-1AC0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518HF-4 PN (6ES7518-4JP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518HF-4 PN (6ES7518-4JT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518T-3 PN (6ES7518-3TT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518T-4 PN/DP (6ES7518-4TP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518TF-3 PN (6ES7518-3UT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518TF-4 PN/DP (6ES7518-4UP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU S7-1518-4 PN/DP ODK (6ES7518-4AP00-3AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU S7-1518F-4 PN/DP ODK (6ES7518-4FP00-3AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1513PRO F-2 PN (6ES7513-2GL00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1513PRO-2 PN (6ES7513-2PL00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1516PRO F-2 PN (6ES7516-2GN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1516PRO-2 PN (6ES7516-2PN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S F V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S F V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S F V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S F V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S F V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S F V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S T V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S TF V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller Linux V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller Linux V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 TM MFP - GNU/Linux subsystem
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-PLCSIM Advanced
|
vers:unknown/* |
A security vulnerability in mixmark-io turndown up to version 7.2.1 allows remote attackers to exploit inefficient regular expression complexity in src/commonmark-rules.js, with a public exploit available.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Siemens / Heliox Flex 180 kW EV Charging Station
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Heliox Mobile DC 40 kW EV Charging Station
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / RUGGEDCOM APE1808
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SICAM SIAPP SDK
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIDIS Prime
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC Drive Controller CPU 1504D TF (6ES7615-4DF10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC Drive Controller CPU 1507D TF (6ES7615-7DF10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP F-1 PN (6ES7510-1SJ01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP F-1 PN (6ES7510-1SK03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP-1 PN (6ES7510-1DJ01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP-1 PN (6ES7510-1DK03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP F-1 PN (6ES7512-1SK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP F-1 PN (6ES7512-1SM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP-1 PN (6ES7512-1DK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP-1 PN (6ES7512-1DM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SP F-2 PN (6ES7514-2SN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SP-2 PN (6ES7514-2DN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SPT F-2 PN (6ES7514-2WN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SPT-2 PN (6ES7514-2VN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC (incl. SIPLUS variants)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) V2 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) V3 CPUs - Industrial OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) V3 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC3 (incl. SIPLUS variants) V2 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC3 (incl. SIPLUS variants) V3 CPUs - Industrial OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC3 (incl. SIPLUS variants) V3 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AK00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AK02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511C-1 PN (6ES7511-1CK00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511C-1 PN (6ES7511-1CK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511C-1 PN (6ES7511-1CL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511F-1 PN (6ES7511-1FK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511F-1 PN (6ES7511-1FK02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511F-1 PN (6ES7511-1FL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511T-1 PN (6ES7511-1TK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511T-1 PN (6ES7511-1TL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511TF-1 PN (6ES7511-1UK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511TF-1 PN (6ES7511-1UL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1512C-1 PN (6ES7512-1CK00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1512C-1 PN (6ES7512-1CK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1512C-1 PN (6ES7512-1CM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513-1 PN (6ES7513-1AL01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513-1 PN (6ES7513-1AL02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513-1 PN (6ES7513-1AM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513F-1 PN (6ES7513-1FL01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513F-1 PN (6ES7513-1FL02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513F-1 PN (6ES7513-1FM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513R-1 PN (6ES7513-1RL00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513R-1 PN (6ES7513-1RM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513pro F-2 PN (6ES7513-2GM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513pro-2 PN (6ES7513-2PM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515-2 PN (6ES7515-2AM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515-2 PN (6ES7515-2AM02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515-2 PN (6ES7515-2AN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515F-2 PN (6ES7515-2FM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515F-2 PN (6ES7515-2FM02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515F-2 PN (6ES7515-2FN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515R-2 PN (6ES7515-2RM00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515R-2 PN (6ES7515-2RN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515T-2 PN (6ES7515-2TM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515T-2 PN (6ES7515-2TN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515TF-2 PN (6ES7515-2UM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515TF-2 PN (6ES7515-2UN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516-3 PN/DP (6ES7516-3AN01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516-3 PN/DP (6ES7516-3AN02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516-3 PN/DP (6ES7516-3AP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516F-3 PN/DP (6ES7516-3FN01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516F-3 PN/DP (6ES7516-3FN02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516F-3 PN/DP (6ES7516-3FP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516T-3 PN (6ES7516-3TP10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516T-3 PN/DP (6ES7516-3TN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516TF-3 PN (6ES7516-3UP10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516TF-3 PN/DP (6ES7516-3UN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516pro F-2 PN (6ES7516-2GP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516pro-2 PN (6ES7516-2PP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517-3 PN (6ES7517-3AQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517-3 PN/DP (6ES7517-3AP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517F-3 PN (6ES7517-3FQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517F-3 PN/DP (6ES7517-3FP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517F-3 PN/DP (6ES7517-3FP01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517H-3 PN (6ES7517-3HP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517H-4 PN (6ES7517-4HQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517T-3 PN (6ES7517-3TQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517T-3 PN/DP (6ES7517-3TP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517TF-3 PN (6ES7517-3UQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517TF-3 PN/DP (6ES7517-3UP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-3 PN (6ES7518-3AT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP (6ES7518-4AP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP MFP (6ES7518-4AX00-1AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP MFP (6ES7518-4AX00-1AC0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-3 PN (6ES7518-3FT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP (6ES7518-4FP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP (6ES7518-4FX00-1AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP (6ES7518-4FX00-1AC0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518HF-4 PN (6ES7518-4JP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518HF-4 PN (6ES7518-4JT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518T-3 PN (6ES7518-3TT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518T-4 PN/DP (6ES7518-4TP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518TF-3 PN (6ES7518-3UT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518TF-4 PN/DP (6ES7518-4UP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU S7-1518-4 PN/DP ODK (6ES7518-4AP00-3AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU S7-1518F-4 PN/DP ODK (6ES7518-4FP00-3AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1513PRO F-2 PN (6ES7513-2GL00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1513PRO-2 PN (6ES7513-2PL00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1516PRO F-2 PN (6ES7516-2GN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1516PRO-2 PN (6ES7516-2PN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S F V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S F V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S F V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S F V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S F V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S F V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S T V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S TF V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller Linux V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller Linux V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 TM MFP - GNU/Linux subsystem
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-PLCSIM Advanced
|
vers:unknown/* |
This update addresses multiple golang exporter upgrades, fixes critical CVE-2025-12816 in Prometheus related to ASN.1 validation bypass in node-forge ≤1.3.1, and includes various bug fixes and optimizations across components like grafana, spacecmd, and uyuni-tools.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Siemens / Heliox Flex 180 kW EV Charging Station
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Heliox Mobile DC 40 kW EV Charging Station
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / RUGGEDCOM APE1808
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SICAM SIAPP SDK
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIDIS Prime
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC Drive Controller CPU 1504D TF (6ES7615-4DF10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC Drive Controller CPU 1507D TF (6ES7615-7DF10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP F-1 PN (6ES7510-1SJ01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP F-1 PN (6ES7510-1SK03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP-1 PN (6ES7510-1DJ01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP-1 PN (6ES7510-1DK03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP F-1 PN (6ES7512-1SK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP F-1 PN (6ES7512-1SM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP-1 PN (6ES7512-1DK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP-1 PN (6ES7512-1DM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SP F-2 PN (6ES7514-2SN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SP-2 PN (6ES7514-2DN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SPT F-2 PN (6ES7514-2WN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SPT-2 PN (6ES7514-2VN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC (incl. SIPLUS variants)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) V2 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) V3 CPUs - Industrial OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) V3 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC3 (incl. SIPLUS variants) V2 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC3 (incl. SIPLUS variants) V3 CPUs - Industrial OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC3 (incl. SIPLUS variants) V3 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AK00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AK02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511C-1 PN (6ES7511-1CK00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511C-1 PN (6ES7511-1CK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511C-1 PN (6ES7511-1CL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511F-1 PN (6ES7511-1FK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511F-1 PN (6ES7511-1FK02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511F-1 PN (6ES7511-1FL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511T-1 PN (6ES7511-1TK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511T-1 PN (6ES7511-1TL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511TF-1 PN (6ES7511-1UK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511TF-1 PN (6ES7511-1UL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1512C-1 PN (6ES7512-1CK00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1512C-1 PN (6ES7512-1CK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1512C-1 PN (6ES7512-1CM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513-1 PN (6ES7513-1AL01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513-1 PN (6ES7513-1AL02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513-1 PN (6ES7513-1AM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513F-1 PN (6ES7513-1FL01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513F-1 PN (6ES7513-1FL02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513F-1 PN (6ES7513-1FM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513R-1 PN (6ES7513-1RL00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513R-1 PN (6ES7513-1RM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513pro F-2 PN (6ES7513-2GM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513pro-2 PN (6ES7513-2PM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515-2 PN (6ES7515-2AM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515-2 PN (6ES7515-2AM02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515-2 PN (6ES7515-2AN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515F-2 PN (6ES7515-2FM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515F-2 PN (6ES7515-2FM02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515F-2 PN (6ES7515-2FN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515R-2 PN (6ES7515-2RM00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515R-2 PN (6ES7515-2RN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515T-2 PN (6ES7515-2TM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515T-2 PN (6ES7515-2TN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515TF-2 PN (6ES7515-2UM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515TF-2 PN (6ES7515-2UN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516-3 PN/DP (6ES7516-3AN01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516-3 PN/DP (6ES7516-3AN02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516-3 PN/DP (6ES7516-3AP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516F-3 PN/DP (6ES7516-3FN01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516F-3 PN/DP (6ES7516-3FN02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516F-3 PN/DP (6ES7516-3FP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516T-3 PN (6ES7516-3TP10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516T-3 PN/DP (6ES7516-3TN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516TF-3 PN (6ES7516-3UP10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516TF-3 PN/DP (6ES7516-3UN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516pro F-2 PN (6ES7516-2GP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516pro-2 PN (6ES7516-2PP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517-3 PN (6ES7517-3AQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517-3 PN/DP (6ES7517-3AP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517F-3 PN (6ES7517-3FQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517F-3 PN/DP (6ES7517-3FP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517F-3 PN/DP (6ES7517-3FP01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517H-3 PN (6ES7517-3HP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517H-4 PN (6ES7517-4HQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517T-3 PN (6ES7517-3TQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517T-3 PN/DP (6ES7517-3TP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517TF-3 PN (6ES7517-3UQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517TF-3 PN/DP (6ES7517-3UP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-3 PN (6ES7518-3AT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP (6ES7518-4AP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP MFP (6ES7518-4AX00-1AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP MFP (6ES7518-4AX00-1AC0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-3 PN (6ES7518-3FT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP (6ES7518-4FP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP (6ES7518-4FX00-1AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP (6ES7518-4FX00-1AC0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518HF-4 PN (6ES7518-4JP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518HF-4 PN (6ES7518-4JT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518T-3 PN (6ES7518-3TT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518T-4 PN/DP (6ES7518-4TP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518TF-3 PN (6ES7518-3UT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518TF-4 PN/DP (6ES7518-4UP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU S7-1518-4 PN/DP ODK (6ES7518-4AP00-3AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU S7-1518F-4 PN/DP ODK (6ES7518-4FP00-3AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1513PRO F-2 PN (6ES7513-2GL00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1513PRO-2 PN (6ES7513-2PL00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1516PRO F-2 PN (6ES7516-2GN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1516PRO-2 PN (6ES7516-2PN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S F V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S F V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S F V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S F V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S F V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S F V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S T V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S TF V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller Linux V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller Linux V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 TM MFP - GNU/Linux subsystem
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-PLCSIM Advanced
|
vers:unknown/* |
The qs library's `arrayLimit` option fails to enforce limits on bracket notation arrays, enabling denial-of-service attacks via memory exhaustion by parsing large arrays from user input.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Siemens / Heliox Flex 180 kW EV Charging Station
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Heliox Mobile DC 40 kW EV Charging Station
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / RUGGEDCOM APE1808
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SICAM SIAPP SDK
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIDIS Prime
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC Drive Controller CPU 1504D TF (6ES7615-4DF10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC Drive Controller CPU 1507D TF (6ES7615-7DF10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP F-1 PN (6ES7510-1SJ01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP F-1 PN (6ES7510-1SK03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP-1 PN (6ES7510-1DJ01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP-1 PN (6ES7510-1DK03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP F-1 PN (6ES7512-1SK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP F-1 PN (6ES7512-1SM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP-1 PN (6ES7512-1DK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP-1 PN (6ES7512-1DM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SP F-2 PN (6ES7514-2SN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SP-2 PN (6ES7514-2DN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SPT F-2 PN (6ES7514-2WN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SPT-2 PN (6ES7514-2VN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC (incl. SIPLUS variants)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) V2 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) V3 CPUs - Industrial OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) V3 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC3 (incl. SIPLUS variants) V2 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC3 (incl. SIPLUS variants) V3 CPUs - Industrial OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC3 (incl. SIPLUS variants) V3 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AK00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AK02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511C-1 PN (6ES7511-1CK00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511C-1 PN (6ES7511-1CK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511C-1 PN (6ES7511-1CL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511F-1 PN (6ES7511-1FK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511F-1 PN (6ES7511-1FK02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511F-1 PN (6ES7511-1FL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511T-1 PN (6ES7511-1TK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511T-1 PN (6ES7511-1TL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511TF-1 PN (6ES7511-1UK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511TF-1 PN (6ES7511-1UL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1512C-1 PN (6ES7512-1CK00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1512C-1 PN (6ES7512-1CK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1512C-1 PN (6ES7512-1CM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513-1 PN (6ES7513-1AL01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513-1 PN (6ES7513-1AL02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513-1 PN (6ES7513-1AM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513F-1 PN (6ES7513-1FL01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513F-1 PN (6ES7513-1FL02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513F-1 PN (6ES7513-1FM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513R-1 PN (6ES7513-1RL00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513R-1 PN (6ES7513-1RM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513pro F-2 PN (6ES7513-2GM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513pro-2 PN (6ES7513-2PM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515-2 PN (6ES7515-2AM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515-2 PN (6ES7515-2AM02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515-2 PN (6ES7515-2AN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515F-2 PN (6ES7515-2FM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515F-2 PN (6ES7515-2FM02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515F-2 PN (6ES7515-2FN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515R-2 PN (6ES7515-2RM00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515R-2 PN (6ES7515-2RN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515T-2 PN (6ES7515-2TM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515T-2 PN (6ES7515-2TN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515TF-2 PN (6ES7515-2UM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515TF-2 PN (6ES7515-2UN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516-3 PN/DP (6ES7516-3AN01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516-3 PN/DP (6ES7516-3AN02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516-3 PN/DP (6ES7516-3AP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516F-3 PN/DP (6ES7516-3FN01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516F-3 PN/DP (6ES7516-3FN02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516F-3 PN/DP (6ES7516-3FP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516T-3 PN (6ES7516-3TP10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516T-3 PN/DP (6ES7516-3TN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516TF-3 PN (6ES7516-3UP10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516TF-3 PN/DP (6ES7516-3UN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516pro F-2 PN (6ES7516-2GP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516pro-2 PN (6ES7516-2PP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517-3 PN (6ES7517-3AQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517-3 PN/DP (6ES7517-3AP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517F-3 PN (6ES7517-3FQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517F-3 PN/DP (6ES7517-3FP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517F-3 PN/DP (6ES7517-3FP01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517H-3 PN (6ES7517-3HP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517H-4 PN (6ES7517-4HQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517T-3 PN (6ES7517-3TQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517T-3 PN/DP (6ES7517-3TP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517TF-3 PN (6ES7517-3UQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517TF-3 PN/DP (6ES7517-3UP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-3 PN (6ES7518-3AT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP (6ES7518-4AP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP MFP (6ES7518-4AX00-1AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP MFP (6ES7518-4AX00-1AC0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-3 PN (6ES7518-3FT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP (6ES7518-4FP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP (6ES7518-4FX00-1AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP (6ES7518-4FX00-1AC0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518HF-4 PN (6ES7518-4JP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518HF-4 PN (6ES7518-4JT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518T-3 PN (6ES7518-3TT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518T-4 PN/DP (6ES7518-4TP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518TF-3 PN (6ES7518-3UT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518TF-4 PN/DP (6ES7518-4UP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU S7-1518-4 PN/DP ODK (6ES7518-4AP00-3AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU S7-1518F-4 PN/DP ODK (6ES7518-4FP00-3AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1513PRO F-2 PN (6ES7513-2GL00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1513PRO-2 PN (6ES7513-2PL00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1516PRO F-2 PN (6ES7516-2GN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1516PRO-2 PN (6ES7516-2PN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S F V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S F V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S F V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S F V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S F V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S F V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S T V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S TF V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller Linux V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller Linux V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 TM MFP - GNU/Linux subsystem
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-PLCSIM Advanced
|
vers:unknown/* |
Affected devices exhibit improper access control, enabling attackers to potentially access unauthorized services via the charging cable interface.
CWE-923 - Improper Restriction of Communication Channel to Intended Endpoints| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Siemens / Heliox Flex 180 kW EV Charging Station
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Heliox Mobile DC 40 kW EV Charging Station
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / RUGGEDCOM APE1808
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SICAM SIAPP SDK
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIDIS Prime
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC Drive Controller CPU 1504D TF (6ES7615-4DF10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC Drive Controller CPU 1507D TF (6ES7615-7DF10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP F-1 PN (6ES7510-1SJ01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP F-1 PN (6ES7510-1SK03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP-1 PN (6ES7510-1DJ01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP-1 PN (6ES7510-1DK03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP F-1 PN (6ES7512-1SK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP F-1 PN (6ES7512-1SM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP-1 PN (6ES7512-1DK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP-1 PN (6ES7512-1DM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SP F-2 PN (6ES7514-2SN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SP-2 PN (6ES7514-2DN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SPT F-2 PN (6ES7514-2WN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SPT-2 PN (6ES7514-2VN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC (incl. SIPLUS variants)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) V2 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) V3 CPUs - Industrial OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) V3 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC3 (incl. SIPLUS variants) V2 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC3 (incl. SIPLUS variants) V3 CPUs - Industrial OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC3 (incl. SIPLUS variants) V3 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AK00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AK02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511C-1 PN (6ES7511-1CK00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511C-1 PN (6ES7511-1CK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511C-1 PN (6ES7511-1CL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511F-1 PN (6ES7511-1FK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511F-1 PN (6ES7511-1FK02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511F-1 PN (6ES7511-1FL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511T-1 PN (6ES7511-1TK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511T-1 PN (6ES7511-1TL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511TF-1 PN (6ES7511-1UK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511TF-1 PN (6ES7511-1UL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1512C-1 PN (6ES7512-1CK00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1512C-1 PN (6ES7512-1CK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1512C-1 PN (6ES7512-1CM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513-1 PN (6ES7513-1AL01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513-1 PN (6ES7513-1AL02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513-1 PN (6ES7513-1AM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513F-1 PN (6ES7513-1FL01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513F-1 PN (6ES7513-1FL02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513F-1 PN (6ES7513-1FM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513R-1 PN (6ES7513-1RL00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513R-1 PN (6ES7513-1RM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513pro F-2 PN (6ES7513-2GM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513pro-2 PN (6ES7513-2PM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515-2 PN (6ES7515-2AM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515-2 PN (6ES7515-2AM02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515-2 PN (6ES7515-2AN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515F-2 PN (6ES7515-2FM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515F-2 PN (6ES7515-2FM02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515F-2 PN (6ES7515-2FN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515R-2 PN (6ES7515-2RM00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515R-2 PN (6ES7515-2RN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515T-2 PN (6ES7515-2TM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515T-2 PN (6ES7515-2TN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515TF-2 PN (6ES7515-2UM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515TF-2 PN (6ES7515-2UN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516-3 PN/DP (6ES7516-3AN01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516-3 PN/DP (6ES7516-3AN02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516-3 PN/DP (6ES7516-3AP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516F-3 PN/DP (6ES7516-3FN01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516F-3 PN/DP (6ES7516-3FN02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516F-3 PN/DP (6ES7516-3FP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516T-3 PN (6ES7516-3TP10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516T-3 PN/DP (6ES7516-3TN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516TF-3 PN (6ES7516-3UP10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516TF-3 PN/DP (6ES7516-3UN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516pro F-2 PN (6ES7516-2GP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516pro-2 PN (6ES7516-2PP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517-3 PN (6ES7517-3AQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517-3 PN/DP (6ES7517-3AP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517F-3 PN (6ES7517-3FQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517F-3 PN/DP (6ES7517-3FP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517F-3 PN/DP (6ES7517-3FP01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517H-3 PN (6ES7517-3HP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517H-4 PN (6ES7517-4HQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517T-3 PN (6ES7517-3TQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517T-3 PN/DP (6ES7517-3TP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517TF-3 PN (6ES7517-3UQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517TF-3 PN/DP (6ES7517-3UP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-3 PN (6ES7518-3AT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP (6ES7518-4AP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP MFP (6ES7518-4AX00-1AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP MFP (6ES7518-4AX00-1AC0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-3 PN (6ES7518-3FT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP (6ES7518-4FP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP (6ES7518-4FX00-1AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP (6ES7518-4FX00-1AC0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518HF-4 PN (6ES7518-4JP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518HF-4 PN (6ES7518-4JT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518T-3 PN (6ES7518-3TT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518T-4 PN/DP (6ES7518-4TP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518TF-3 PN (6ES7518-3UT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518TF-4 PN/DP (6ES7518-4UP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU S7-1518-4 PN/DP ODK (6ES7518-4AP00-3AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU S7-1518F-4 PN/DP ODK (6ES7518-4FP00-3AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1513PRO F-2 PN (6ES7513-2GL00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1513PRO-2 PN (6ES7513-2PL00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1516PRO F-2 PN (6ES7516-2GN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1516PRO-2 PN (6ES7516-2PN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S F V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S F V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S F V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S F V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S F V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S F V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S T V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S TF V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller Linux V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller Linux V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 TM MFP - GNU/Linux subsystem
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-PLCSIM Advanced
|
vers:unknown/* |
Certain devices contain a vulnerability where trace files are insufficiently sanitized, enabling attackers to execute code by deceiving users into importing malicious trace files.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Siemens / Heliox Flex 180 kW EV Charging Station
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Heliox Mobile DC 40 kW EV Charging Station
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / RUGGEDCOM APE1808
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SICAM SIAPP SDK
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIDIS Prime
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC Drive Controller CPU 1504D TF (6ES7615-4DF10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC Drive Controller CPU 1507D TF (6ES7615-7DF10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP F-1 PN (6ES7510-1SJ01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP F-1 PN (6ES7510-1SK03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP-1 PN (6ES7510-1DJ01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP-1 PN (6ES7510-1DK03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP F-1 PN (6ES7512-1SK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP F-1 PN (6ES7512-1SM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP-1 PN (6ES7512-1DK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP-1 PN (6ES7512-1DM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SP F-2 PN (6ES7514-2SN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SP-2 PN (6ES7514-2DN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SPT F-2 PN (6ES7514-2WN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SPT-2 PN (6ES7514-2VN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC (incl. SIPLUS variants)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) V2 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) V3 CPUs - Industrial OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) V3 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC3 (incl. SIPLUS variants) V2 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC3 (incl. SIPLUS variants) V3 CPUs - Industrial OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC3 (incl. SIPLUS variants) V3 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AK00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AK02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511C-1 PN (6ES7511-1CK00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511C-1 PN (6ES7511-1CK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511C-1 PN (6ES7511-1CL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511F-1 PN (6ES7511-1FK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511F-1 PN (6ES7511-1FK02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511F-1 PN (6ES7511-1FL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511T-1 PN (6ES7511-1TK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511T-1 PN (6ES7511-1TL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511TF-1 PN (6ES7511-1UK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511TF-1 PN (6ES7511-1UL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1512C-1 PN (6ES7512-1CK00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1512C-1 PN (6ES7512-1CK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1512C-1 PN (6ES7512-1CM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513-1 PN (6ES7513-1AL01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513-1 PN (6ES7513-1AL02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513-1 PN (6ES7513-1AM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513F-1 PN (6ES7513-1FL01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513F-1 PN (6ES7513-1FL02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513F-1 PN (6ES7513-1FM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513R-1 PN (6ES7513-1RL00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513R-1 PN (6ES7513-1RM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513pro F-2 PN (6ES7513-2GM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513pro-2 PN (6ES7513-2PM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515-2 PN (6ES7515-2AM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515-2 PN (6ES7515-2AM02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515-2 PN (6ES7515-2AN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515F-2 PN (6ES7515-2FM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515F-2 PN (6ES7515-2FM02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515F-2 PN (6ES7515-2FN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515R-2 PN (6ES7515-2RM00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515R-2 PN (6ES7515-2RN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515T-2 PN (6ES7515-2TM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515T-2 PN (6ES7515-2TN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515TF-2 PN (6ES7515-2UM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515TF-2 PN (6ES7515-2UN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516-3 PN/DP (6ES7516-3AN01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516-3 PN/DP (6ES7516-3AN02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516-3 PN/DP (6ES7516-3AP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516F-3 PN/DP (6ES7516-3FN01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516F-3 PN/DP (6ES7516-3FN02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516F-3 PN/DP (6ES7516-3FP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516T-3 PN (6ES7516-3TP10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516T-3 PN/DP (6ES7516-3TN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516TF-3 PN (6ES7516-3UP10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516TF-3 PN/DP (6ES7516-3UN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516pro F-2 PN (6ES7516-2GP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516pro-2 PN (6ES7516-2PP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517-3 PN (6ES7517-3AQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517-3 PN/DP (6ES7517-3AP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517F-3 PN (6ES7517-3FQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517F-3 PN/DP (6ES7517-3FP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517F-3 PN/DP (6ES7517-3FP01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517H-3 PN (6ES7517-3HP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517H-4 PN (6ES7517-4HQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517T-3 PN (6ES7517-3TQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517T-3 PN/DP (6ES7517-3TP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517TF-3 PN (6ES7517-3UQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517TF-3 PN/DP (6ES7517-3UP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-3 PN (6ES7518-3AT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP (6ES7518-4AP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP MFP (6ES7518-4AX00-1AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP MFP (6ES7518-4AX00-1AC0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-3 PN (6ES7518-3FT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP (6ES7518-4FP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP (6ES7518-4FX00-1AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP (6ES7518-4FX00-1AC0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518HF-4 PN (6ES7518-4JP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518HF-4 PN (6ES7518-4JT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518T-3 PN (6ES7518-3TT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518T-4 PN/DP (6ES7518-4TP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518TF-3 PN (6ES7518-3UT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518TF-4 PN/DP (6ES7518-4UP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU S7-1518-4 PN/DP ODK (6ES7518-4AP00-3AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU S7-1518F-4 PN/DP ODK (6ES7518-4FP00-3AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1513PRO F-2 PN (6ES7513-2GL00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1513PRO-2 PN (6ES7513-2PL00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1516PRO F-2 PN (6ES7516-2GN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1516PRO-2 PN (6ES7516-2PN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S F V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S F V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S F V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S F V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S F V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S F V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S T V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S TF V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller Linux V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller Linux V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 TM MFP - GNU/Linux subsystem
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-PLCSIM Advanced
|
vers:unknown/* |
An HTTP request smuggling vulnerability in Fortinet FortiOS allows unauthenticated attackers to bypass firewall policies by sending specially crafted headers, potentially compromising security.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Siemens / Heliox Flex 180 kW EV Charging Station
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Heliox Mobile DC 40 kW EV Charging Station
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / RUGGEDCOM APE1808
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SICAM SIAPP SDK
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIDIS Prime
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC Drive Controller CPU 1504D TF (6ES7615-4DF10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC Drive Controller CPU 1507D TF (6ES7615-7DF10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP F-1 PN (6ES7510-1SJ01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP F-1 PN (6ES7510-1SK03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP-1 PN (6ES7510-1DJ01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP-1 PN (6ES7510-1DK03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP F-1 PN (6ES7512-1SK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP F-1 PN (6ES7512-1SM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP-1 PN (6ES7512-1DK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP-1 PN (6ES7512-1DM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SP F-2 PN (6ES7514-2SN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SP-2 PN (6ES7514-2DN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SPT F-2 PN (6ES7514-2WN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SPT-2 PN (6ES7514-2VN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC (incl. SIPLUS variants)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) V2 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) V3 CPUs - Industrial OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) V3 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC3 (incl. SIPLUS variants) V2 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC3 (incl. SIPLUS variants) V3 CPUs - Industrial OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC3 (incl. SIPLUS variants) V3 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AK00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AK02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511C-1 PN (6ES7511-1CK00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511C-1 PN (6ES7511-1CK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511C-1 PN (6ES7511-1CL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511F-1 PN (6ES7511-1FK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511F-1 PN (6ES7511-1FK02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511F-1 PN (6ES7511-1FL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511T-1 PN (6ES7511-1TK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511T-1 PN (6ES7511-1TL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511TF-1 PN (6ES7511-1UK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511TF-1 PN (6ES7511-1UL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1512C-1 PN (6ES7512-1CK00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1512C-1 PN (6ES7512-1CK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1512C-1 PN (6ES7512-1CM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513-1 PN (6ES7513-1AL01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513-1 PN (6ES7513-1AL02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513-1 PN (6ES7513-1AM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513F-1 PN (6ES7513-1FL01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513F-1 PN (6ES7513-1FL02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513F-1 PN (6ES7513-1FM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513R-1 PN (6ES7513-1RL00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513R-1 PN (6ES7513-1RM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513pro F-2 PN (6ES7513-2GM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513pro-2 PN (6ES7513-2PM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515-2 PN (6ES7515-2AM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515-2 PN (6ES7515-2AM02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515-2 PN (6ES7515-2AN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515F-2 PN (6ES7515-2FM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515F-2 PN (6ES7515-2FM02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515F-2 PN (6ES7515-2FN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515R-2 PN (6ES7515-2RM00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515R-2 PN (6ES7515-2RN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515T-2 PN (6ES7515-2TM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515T-2 PN (6ES7515-2TN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515TF-2 PN (6ES7515-2UM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515TF-2 PN (6ES7515-2UN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516-3 PN/DP (6ES7516-3AN01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516-3 PN/DP (6ES7516-3AN02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516-3 PN/DP (6ES7516-3AP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516F-3 PN/DP (6ES7516-3FN01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516F-3 PN/DP (6ES7516-3FN02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516F-3 PN/DP (6ES7516-3FP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516T-3 PN (6ES7516-3TP10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516T-3 PN/DP (6ES7516-3TN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516TF-3 PN (6ES7516-3UP10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516TF-3 PN/DP (6ES7516-3UN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516pro F-2 PN (6ES7516-2GP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516pro-2 PN (6ES7516-2PP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517-3 PN (6ES7517-3AQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517-3 PN/DP (6ES7517-3AP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517F-3 PN (6ES7517-3FQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517F-3 PN/DP (6ES7517-3FP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517F-3 PN/DP (6ES7517-3FP01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517H-3 PN (6ES7517-3HP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517H-4 PN (6ES7517-4HQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517T-3 PN (6ES7517-3TQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517T-3 PN/DP (6ES7517-3TP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517TF-3 PN (6ES7517-3UQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517TF-3 PN/DP (6ES7517-3UP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-3 PN (6ES7518-3AT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP (6ES7518-4AP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP MFP (6ES7518-4AX00-1AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP MFP (6ES7518-4AX00-1AC0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-3 PN (6ES7518-3FT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP (6ES7518-4FP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP (6ES7518-4FX00-1AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP (6ES7518-4FX00-1AC0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518HF-4 PN (6ES7518-4JP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518HF-4 PN (6ES7518-4JT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518T-3 PN (6ES7518-3TT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518T-4 PN/DP (6ES7518-4TP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518TF-3 PN (6ES7518-3UT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518TF-4 PN/DP (6ES7518-4UP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU S7-1518-4 PN/DP ODK (6ES7518-4AP00-3AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU S7-1518F-4 PN/DP ODK (6ES7518-4FP00-3AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1513PRO F-2 PN (6ES7513-2GL00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1513PRO-2 PN (6ES7513-2PL00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1516PRO F-2 PN (6ES7516-2GN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1516PRO-2 PN (6ES7516-2PN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S F V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S F V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S F V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S F V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S F V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S F V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S T V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S TF V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller Linux V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller Linux V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 TM MFP - GNU/Linux subsystem
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-PLCSIM Advanced
|
vers:unknown/* |
Certain Vite applications allowed files in the public directory to be served without following `server.fs` settings, particularly when exposed to the network, with specific versions addressing this issue.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Siemens / Heliox Flex 180 kW EV Charging Station
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Heliox Mobile DC 40 kW EV Charging Station
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / RUGGEDCOM APE1808
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SICAM SIAPP SDK
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIDIS Prime
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC Drive Controller CPU 1504D TF (6ES7615-4DF10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC Drive Controller CPU 1507D TF (6ES7615-7DF10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP F-1 PN (6ES7510-1SJ01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP F-1 PN (6ES7510-1SK03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP-1 PN (6ES7510-1DJ01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP-1 PN (6ES7510-1DK03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP F-1 PN (6ES7512-1SK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP F-1 PN (6ES7512-1SM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP-1 PN (6ES7512-1DK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP-1 PN (6ES7512-1DM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SP F-2 PN (6ES7514-2SN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SP-2 PN (6ES7514-2DN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SPT F-2 PN (6ES7514-2WN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SPT-2 PN (6ES7514-2VN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC (incl. SIPLUS variants)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) V2 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) V3 CPUs - Industrial OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) V3 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC3 (incl. SIPLUS variants) V2 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC3 (incl. SIPLUS variants) V3 CPUs - Industrial OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC3 (incl. SIPLUS variants) V3 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AK00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AK02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511C-1 PN (6ES7511-1CK00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511C-1 PN (6ES7511-1CK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511C-1 PN (6ES7511-1CL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511F-1 PN (6ES7511-1FK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511F-1 PN (6ES7511-1FK02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511F-1 PN (6ES7511-1FL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511T-1 PN (6ES7511-1TK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511T-1 PN (6ES7511-1TL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511TF-1 PN (6ES7511-1UK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511TF-1 PN (6ES7511-1UL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1512C-1 PN (6ES7512-1CK00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1512C-1 PN (6ES7512-1CK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1512C-1 PN (6ES7512-1CM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513-1 PN (6ES7513-1AL01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513-1 PN (6ES7513-1AL02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513-1 PN (6ES7513-1AM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513F-1 PN (6ES7513-1FL01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513F-1 PN (6ES7513-1FL02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513F-1 PN (6ES7513-1FM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513R-1 PN (6ES7513-1RL00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513R-1 PN (6ES7513-1RM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513pro F-2 PN (6ES7513-2GM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513pro-2 PN (6ES7513-2PM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515-2 PN (6ES7515-2AM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515-2 PN (6ES7515-2AM02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515-2 PN (6ES7515-2AN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515F-2 PN (6ES7515-2FM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515F-2 PN (6ES7515-2FM02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515F-2 PN (6ES7515-2FN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515R-2 PN (6ES7515-2RM00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515R-2 PN (6ES7515-2RN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515T-2 PN (6ES7515-2TM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515T-2 PN (6ES7515-2TN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515TF-2 PN (6ES7515-2UM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515TF-2 PN (6ES7515-2UN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516-3 PN/DP (6ES7516-3AN01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516-3 PN/DP (6ES7516-3AN02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516-3 PN/DP (6ES7516-3AP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516F-3 PN/DP (6ES7516-3FN01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516F-3 PN/DP (6ES7516-3FN02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516F-3 PN/DP (6ES7516-3FP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516T-3 PN (6ES7516-3TP10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516T-3 PN/DP (6ES7516-3TN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516TF-3 PN (6ES7516-3UP10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516TF-3 PN/DP (6ES7516-3UN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516pro F-2 PN (6ES7516-2GP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516pro-2 PN (6ES7516-2PP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517-3 PN (6ES7517-3AQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517-3 PN/DP (6ES7517-3AP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517F-3 PN (6ES7517-3FQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517F-3 PN/DP (6ES7517-3FP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517F-3 PN/DP (6ES7517-3FP01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517H-3 PN (6ES7517-3HP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517H-4 PN (6ES7517-4HQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517T-3 PN (6ES7517-3TQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517T-3 PN/DP (6ES7517-3TP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517TF-3 PN (6ES7517-3UQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517TF-3 PN/DP (6ES7517-3UP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-3 PN (6ES7518-3AT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP (6ES7518-4AP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP MFP (6ES7518-4AX00-1AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP MFP (6ES7518-4AX00-1AC0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-3 PN (6ES7518-3FT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP (6ES7518-4FP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP (6ES7518-4FX00-1AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP (6ES7518-4FX00-1AC0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518HF-4 PN (6ES7518-4JP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518HF-4 PN (6ES7518-4JT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518T-3 PN (6ES7518-3TT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518T-4 PN/DP (6ES7518-4TP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518TF-3 PN (6ES7518-3UT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518TF-4 PN/DP (6ES7518-4UP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU S7-1518-4 PN/DP ODK (6ES7518-4AP00-3AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU S7-1518F-4 PN/DP ODK (6ES7518-4FP00-3AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1513PRO F-2 PN (6ES7513-2GL00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1513PRO-2 PN (6ES7513-2PL00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1516PRO F-2 PN (6ES7516-2GN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1516PRO-2 PN (6ES7516-2PN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S F V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S F V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S F V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S F V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S F V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S F V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S T V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S TF V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller Linux V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller Linux V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 TM MFP - GNU/Linux subsystem
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-PLCSIM Advanced
|
vers:unknown/* |
Vite versions prior to 7.1.5, 7.0.7, 6.3.6, and 5.4.20 contained a low-severity vulnerability allowing unauthorized access to HTML files outside configured directories via path traversal when the dev or preview server was exposed and appType was 'spa' or 'mpa'.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Siemens / Heliox Flex 180 kW EV Charging Station
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Heliox Mobile DC 40 kW EV Charging Station
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / RUGGEDCOM APE1808
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SICAM SIAPP SDK
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIDIS Prime
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC Drive Controller CPU 1504D TF (6ES7615-4DF10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC Drive Controller CPU 1507D TF (6ES7615-7DF10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP F-1 PN (6ES7510-1SJ01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP F-1 PN (6ES7510-1SK03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP-1 PN (6ES7510-1DJ01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP-1 PN (6ES7510-1DK03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP F-1 PN (6ES7512-1SK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP F-1 PN (6ES7512-1SM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP-1 PN (6ES7512-1DK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP-1 PN (6ES7512-1DM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SP F-2 PN (6ES7514-2SN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SP-2 PN (6ES7514-2DN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SPT F-2 PN (6ES7514-2WN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SPT-2 PN (6ES7514-2VN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC (incl. SIPLUS variants)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) V2 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) V3 CPUs - Industrial OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) V3 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC3 (incl. SIPLUS variants) V2 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC3 (incl. SIPLUS variants) V3 CPUs - Industrial OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC3 (incl. SIPLUS variants) V3 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AK00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AK02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511C-1 PN (6ES7511-1CK00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511C-1 PN (6ES7511-1CK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511C-1 PN (6ES7511-1CL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511F-1 PN (6ES7511-1FK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511F-1 PN (6ES7511-1FK02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511F-1 PN (6ES7511-1FL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511T-1 PN (6ES7511-1TK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511T-1 PN (6ES7511-1TL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511TF-1 PN (6ES7511-1UK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511TF-1 PN (6ES7511-1UL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1512C-1 PN (6ES7512-1CK00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1512C-1 PN (6ES7512-1CK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1512C-1 PN (6ES7512-1CM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513-1 PN (6ES7513-1AL01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513-1 PN (6ES7513-1AL02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513-1 PN (6ES7513-1AM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513F-1 PN (6ES7513-1FL01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513F-1 PN (6ES7513-1FL02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513F-1 PN (6ES7513-1FM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513R-1 PN (6ES7513-1RL00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513R-1 PN (6ES7513-1RM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513pro F-2 PN (6ES7513-2GM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513pro-2 PN (6ES7513-2PM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515-2 PN (6ES7515-2AM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515-2 PN (6ES7515-2AM02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515-2 PN (6ES7515-2AN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515F-2 PN (6ES7515-2FM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515F-2 PN (6ES7515-2FM02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515F-2 PN (6ES7515-2FN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515R-2 PN (6ES7515-2RM00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515R-2 PN (6ES7515-2RN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515T-2 PN (6ES7515-2TM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515T-2 PN (6ES7515-2TN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515TF-2 PN (6ES7515-2UM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515TF-2 PN (6ES7515-2UN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516-3 PN/DP (6ES7516-3AN01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516-3 PN/DP (6ES7516-3AN02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516-3 PN/DP (6ES7516-3AP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516F-3 PN/DP (6ES7516-3FN01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516F-3 PN/DP (6ES7516-3FN02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516F-3 PN/DP (6ES7516-3FP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516T-3 PN (6ES7516-3TP10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516T-3 PN/DP (6ES7516-3TN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516TF-3 PN (6ES7516-3UP10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516TF-3 PN/DP (6ES7516-3UN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516pro F-2 PN (6ES7516-2GP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516pro-2 PN (6ES7516-2PP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517-3 PN (6ES7517-3AQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517-3 PN/DP (6ES7517-3AP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517F-3 PN (6ES7517-3FQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517F-3 PN/DP (6ES7517-3FP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517F-3 PN/DP (6ES7517-3FP01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517H-3 PN (6ES7517-3HP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517H-4 PN (6ES7517-4HQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517T-3 PN (6ES7517-3TQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517T-3 PN/DP (6ES7517-3TP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517TF-3 PN (6ES7517-3UQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517TF-3 PN/DP (6ES7517-3UP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-3 PN (6ES7518-3AT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP (6ES7518-4AP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP MFP (6ES7518-4AX00-1AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP MFP (6ES7518-4AX00-1AC0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-3 PN (6ES7518-3FT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP (6ES7518-4FP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP (6ES7518-4FX00-1AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP (6ES7518-4FX00-1AC0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518HF-4 PN (6ES7518-4JP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518HF-4 PN (6ES7518-4JT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518T-3 PN (6ES7518-3TT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518T-4 PN/DP (6ES7518-4TP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518TF-3 PN (6ES7518-3UT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518TF-4 PN/DP (6ES7518-4UP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU S7-1518-4 PN/DP ODK (6ES7518-4AP00-3AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU S7-1518F-4 PN/DP ODK (6ES7518-4FP00-3AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1513PRO F-2 PN (6ES7513-2GL00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1513PRO-2 PN (6ES7513-2PL00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1516PRO F-2 PN (6ES7516-2GN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1516PRO-2 PN (6ES7516-2PN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S F V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S F V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S F V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S F V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S F V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S F V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S T V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S TF V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller Linux V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller Linux V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 TM MFP - GNU/Linux subsystem
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-PLCSIM Advanced
|
vers:unknown/* |
Axios is vulnerable to denial of service attacks due to unbounded memory allocation for `data:` URIs in versions prior to 0.30.2 and 1.12.0, with additional security issues noted in HPE and Oracle products.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Siemens / Heliox Flex 180 kW EV Charging Station
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Heliox Mobile DC 40 kW EV Charging Station
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / RUGGEDCOM APE1808
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SICAM SIAPP SDK
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIDIS Prime
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC Drive Controller CPU 1504D TF (6ES7615-4DF10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC Drive Controller CPU 1507D TF (6ES7615-7DF10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP F-1 PN (6ES7510-1SJ01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP F-1 PN (6ES7510-1SK03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP-1 PN (6ES7510-1DJ01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP-1 PN (6ES7510-1DK03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP F-1 PN (6ES7512-1SK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP F-1 PN (6ES7512-1SM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP-1 PN (6ES7512-1DK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP-1 PN (6ES7512-1DM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SP F-2 PN (6ES7514-2SN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SP-2 PN (6ES7514-2DN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SPT F-2 PN (6ES7514-2WN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SPT-2 PN (6ES7514-2VN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC (incl. SIPLUS variants)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) V2 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) V3 CPUs - Industrial OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) V3 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC3 (incl. SIPLUS variants) V2 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC3 (incl. SIPLUS variants) V3 CPUs - Industrial OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC3 (incl. SIPLUS variants) V3 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AK00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AK02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511C-1 PN (6ES7511-1CK00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511C-1 PN (6ES7511-1CK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511C-1 PN (6ES7511-1CL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511F-1 PN (6ES7511-1FK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511F-1 PN (6ES7511-1FK02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511F-1 PN (6ES7511-1FL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511T-1 PN (6ES7511-1TK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511T-1 PN (6ES7511-1TL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511TF-1 PN (6ES7511-1UK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511TF-1 PN (6ES7511-1UL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1512C-1 PN (6ES7512-1CK00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1512C-1 PN (6ES7512-1CK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1512C-1 PN (6ES7512-1CM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513-1 PN (6ES7513-1AL01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513-1 PN (6ES7513-1AL02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513-1 PN (6ES7513-1AM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513F-1 PN (6ES7513-1FL01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513F-1 PN (6ES7513-1FL02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513F-1 PN (6ES7513-1FM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513R-1 PN (6ES7513-1RL00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513R-1 PN (6ES7513-1RM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513pro F-2 PN (6ES7513-2GM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513pro-2 PN (6ES7513-2PM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515-2 PN (6ES7515-2AM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515-2 PN (6ES7515-2AM02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515-2 PN (6ES7515-2AN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515F-2 PN (6ES7515-2FM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515F-2 PN (6ES7515-2FM02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515F-2 PN (6ES7515-2FN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515R-2 PN (6ES7515-2RM00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515R-2 PN (6ES7515-2RN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515T-2 PN (6ES7515-2TM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515T-2 PN (6ES7515-2TN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515TF-2 PN (6ES7515-2UM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515TF-2 PN (6ES7515-2UN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516-3 PN/DP (6ES7516-3AN01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516-3 PN/DP (6ES7516-3AN02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516-3 PN/DP (6ES7516-3AP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516F-3 PN/DP (6ES7516-3FN01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516F-3 PN/DP (6ES7516-3FN02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516F-3 PN/DP (6ES7516-3FP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516T-3 PN (6ES7516-3TP10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516T-3 PN/DP (6ES7516-3TN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516TF-3 PN (6ES7516-3UP10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516TF-3 PN/DP (6ES7516-3UN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516pro F-2 PN (6ES7516-2GP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516pro-2 PN (6ES7516-2PP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517-3 PN (6ES7517-3AQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517-3 PN/DP (6ES7517-3AP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517F-3 PN (6ES7517-3FQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517F-3 PN/DP (6ES7517-3FP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517F-3 PN/DP (6ES7517-3FP01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517H-3 PN (6ES7517-3HP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517H-4 PN (6ES7517-4HQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517T-3 PN (6ES7517-3TQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517T-3 PN/DP (6ES7517-3TP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517TF-3 PN (6ES7517-3UQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517TF-3 PN/DP (6ES7517-3UP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-3 PN (6ES7518-3AT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP (6ES7518-4AP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP MFP (6ES7518-4AX00-1AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP MFP (6ES7518-4AX00-1AC0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-3 PN (6ES7518-3FT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP (6ES7518-4FP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP (6ES7518-4FX00-1AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP (6ES7518-4FX00-1AC0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518HF-4 PN (6ES7518-4JP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518HF-4 PN (6ES7518-4JT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518T-3 PN (6ES7518-3TT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518T-4 PN/DP (6ES7518-4TP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518TF-3 PN (6ES7518-3UT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518TF-4 PN/DP (6ES7518-4UP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU S7-1518-4 PN/DP ODK (6ES7518-4AP00-3AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU S7-1518F-4 PN/DP ODK (6ES7518-4FP00-3AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1513PRO F-2 PN (6ES7513-2GL00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1513PRO-2 PN (6ES7513-2PL00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1516PRO F-2 PN (6ES7516-2GN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1516PRO-2 PN (6ES7516-2PN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S F V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S F V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S F V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S F V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S F V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S F V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S T V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S TF V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller Linux V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller Linux V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 TM MFP - GNU/Linux subsystem
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-PLCSIM Advanced
|
vers:unknown/* |
A vulnerability in Fortinet FortiOS versions 7.0 through 7.6.4, specifically in the FSSO Terminal Services Agent, allows an authenticated user with knowledge of FSSO policy configurations to gain unauthorized access to protected network resources via crafted requests due to improper verification of the communication channel source.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Siemens / Heliox Flex 180 kW EV Charging Station
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Heliox Mobile DC 40 kW EV Charging Station
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / RUGGEDCOM APE1808
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SICAM SIAPP SDK
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIDIS Prime
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC Drive Controller CPU 1504D TF (6ES7615-4DF10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC Drive Controller CPU 1507D TF (6ES7615-7DF10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP F-1 PN (6ES7510-1SJ01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP F-1 PN (6ES7510-1SK03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP-1 PN (6ES7510-1DJ01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP-1 PN (6ES7510-1DK03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP F-1 PN (6ES7512-1SK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP F-1 PN (6ES7512-1SM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP-1 PN (6ES7512-1DK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP-1 PN (6ES7512-1DM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SP F-2 PN (6ES7514-2SN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SP-2 PN (6ES7514-2DN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SPT F-2 PN (6ES7514-2WN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SPT-2 PN (6ES7514-2VN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC (incl. SIPLUS variants)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) V2 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) V3 CPUs - Industrial OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) V3 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC3 (incl. SIPLUS variants) V2 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC3 (incl. SIPLUS variants) V3 CPUs - Industrial OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC3 (incl. SIPLUS variants) V3 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AK00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AK02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511C-1 PN (6ES7511-1CK00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511C-1 PN (6ES7511-1CK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511C-1 PN (6ES7511-1CL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511F-1 PN (6ES7511-1FK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511F-1 PN (6ES7511-1FK02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511F-1 PN (6ES7511-1FL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511T-1 PN (6ES7511-1TK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511T-1 PN (6ES7511-1TL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511TF-1 PN (6ES7511-1UK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511TF-1 PN (6ES7511-1UL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1512C-1 PN (6ES7512-1CK00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1512C-1 PN (6ES7512-1CK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1512C-1 PN (6ES7512-1CM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513-1 PN (6ES7513-1AL01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513-1 PN (6ES7513-1AL02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513-1 PN (6ES7513-1AM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513F-1 PN (6ES7513-1FL01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513F-1 PN (6ES7513-1FL02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513F-1 PN (6ES7513-1FM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513R-1 PN (6ES7513-1RL00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513R-1 PN (6ES7513-1RM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513pro F-2 PN (6ES7513-2GM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513pro-2 PN (6ES7513-2PM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515-2 PN (6ES7515-2AM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515-2 PN (6ES7515-2AM02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515-2 PN (6ES7515-2AN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515F-2 PN (6ES7515-2FM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515F-2 PN (6ES7515-2FM02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515F-2 PN (6ES7515-2FN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515R-2 PN (6ES7515-2RM00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515R-2 PN (6ES7515-2RN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515T-2 PN (6ES7515-2TM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515T-2 PN (6ES7515-2TN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515TF-2 PN (6ES7515-2UM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515TF-2 PN (6ES7515-2UN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516-3 PN/DP (6ES7516-3AN01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516-3 PN/DP (6ES7516-3AN02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516-3 PN/DP (6ES7516-3AP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516F-3 PN/DP (6ES7516-3FN01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516F-3 PN/DP (6ES7516-3FN02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516F-3 PN/DP (6ES7516-3FP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516T-3 PN (6ES7516-3TP10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516T-3 PN/DP (6ES7516-3TN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516TF-3 PN (6ES7516-3UP10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516TF-3 PN/DP (6ES7516-3UN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516pro F-2 PN (6ES7516-2GP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516pro-2 PN (6ES7516-2PP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517-3 PN (6ES7517-3AQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517-3 PN/DP (6ES7517-3AP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517F-3 PN (6ES7517-3FQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517F-3 PN/DP (6ES7517-3FP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517F-3 PN/DP (6ES7517-3FP01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517H-3 PN (6ES7517-3HP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517H-4 PN (6ES7517-4HQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517T-3 PN (6ES7517-3TQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517T-3 PN/DP (6ES7517-3TP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517TF-3 PN (6ES7517-3UQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517TF-3 PN/DP (6ES7517-3UP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-3 PN (6ES7518-3AT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP (6ES7518-4AP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP MFP (6ES7518-4AX00-1AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP MFP (6ES7518-4AX00-1AC0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-3 PN (6ES7518-3FT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP (6ES7518-4FP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP (6ES7518-4FX00-1AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP (6ES7518-4FX00-1AC0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518HF-4 PN (6ES7518-4JP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518HF-4 PN (6ES7518-4JT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518T-3 PN (6ES7518-3TT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518T-4 PN/DP (6ES7518-4TP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518TF-3 PN (6ES7518-3UT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518TF-4 PN/DP (6ES7518-4UP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU S7-1518-4 PN/DP ODK (6ES7518-4AP00-3AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU S7-1518F-4 PN/DP ODK (6ES7518-4FP00-3AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1513PRO F-2 PN (6ES7513-2GL00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1513PRO-2 PN (6ES7513-2PL00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1516PRO F-2 PN (6ES7516-2GN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1516PRO-2 PN (6ES7516-2PN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S F V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S F V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S F V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S F V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S F V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S F V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S T V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S TF V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller Linux V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller Linux V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 TM MFP - GNU/Linux subsystem
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-PLCSIM Advanced
|
vers:unknown/* |
Vite versions from 2.9.18 to 7.1.11 had a vulnerability on Windows allowing access to files denied by `server.fs.deny` if the URL ended with `\\`, which has been patched in later releases.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Siemens / Heliox Flex 180 kW EV Charging Station
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Heliox Mobile DC 40 kW EV Charging Station
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / RUGGEDCOM APE1808
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SICAM SIAPP SDK
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIDIS Prime
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC Drive Controller CPU 1504D TF (6ES7615-4DF10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC Drive Controller CPU 1507D TF (6ES7615-7DF10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP F-1 PN (6ES7510-1SJ01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP F-1 PN (6ES7510-1SK03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP-1 PN (6ES7510-1DJ01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP-1 PN (6ES7510-1DK03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP F-1 PN (6ES7512-1SK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP F-1 PN (6ES7512-1SM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP-1 PN (6ES7512-1DK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP-1 PN (6ES7512-1DM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SP F-2 PN (6ES7514-2SN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SP-2 PN (6ES7514-2DN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SPT F-2 PN (6ES7514-2WN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SPT-2 PN (6ES7514-2VN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC (incl. SIPLUS variants)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) V2 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) V3 CPUs - Industrial OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) V3 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC3 (incl. SIPLUS variants) V2 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC3 (incl. SIPLUS variants) V3 CPUs - Industrial OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC3 (incl. SIPLUS variants) V3 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AK00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AK02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511C-1 PN (6ES7511-1CK00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511C-1 PN (6ES7511-1CK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511C-1 PN (6ES7511-1CL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511F-1 PN (6ES7511-1FK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511F-1 PN (6ES7511-1FK02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511F-1 PN (6ES7511-1FL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511T-1 PN (6ES7511-1TK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511T-1 PN (6ES7511-1TL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511TF-1 PN (6ES7511-1UK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511TF-1 PN (6ES7511-1UL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1512C-1 PN (6ES7512-1CK00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1512C-1 PN (6ES7512-1CK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1512C-1 PN (6ES7512-1CM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513-1 PN (6ES7513-1AL01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513-1 PN (6ES7513-1AL02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513-1 PN (6ES7513-1AM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513F-1 PN (6ES7513-1FL01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513F-1 PN (6ES7513-1FL02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513F-1 PN (6ES7513-1FM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513R-1 PN (6ES7513-1RL00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513R-1 PN (6ES7513-1RM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513pro F-2 PN (6ES7513-2GM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513pro-2 PN (6ES7513-2PM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515-2 PN (6ES7515-2AM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515-2 PN (6ES7515-2AM02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515-2 PN (6ES7515-2AN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515F-2 PN (6ES7515-2FM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515F-2 PN (6ES7515-2FM02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515F-2 PN (6ES7515-2FN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515R-2 PN (6ES7515-2RM00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515R-2 PN (6ES7515-2RN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515T-2 PN (6ES7515-2TM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515T-2 PN (6ES7515-2TN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515TF-2 PN (6ES7515-2UM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515TF-2 PN (6ES7515-2UN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516-3 PN/DP (6ES7516-3AN01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516-3 PN/DP (6ES7516-3AN02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516-3 PN/DP (6ES7516-3AP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516F-3 PN/DP (6ES7516-3FN01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516F-3 PN/DP (6ES7516-3FN02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516F-3 PN/DP (6ES7516-3FP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516T-3 PN (6ES7516-3TP10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516T-3 PN/DP (6ES7516-3TN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516TF-3 PN (6ES7516-3UP10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516TF-3 PN/DP (6ES7516-3UN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516pro F-2 PN (6ES7516-2GP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516pro-2 PN (6ES7516-2PP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517-3 PN (6ES7517-3AQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517-3 PN/DP (6ES7517-3AP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517F-3 PN (6ES7517-3FQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517F-3 PN/DP (6ES7517-3FP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517F-3 PN/DP (6ES7517-3FP01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517H-3 PN (6ES7517-3HP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517H-4 PN (6ES7517-4HQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517T-3 PN (6ES7517-3TQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517T-3 PN/DP (6ES7517-3TP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517TF-3 PN (6ES7517-3UQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517TF-3 PN/DP (6ES7517-3UP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-3 PN (6ES7518-3AT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP (6ES7518-4AP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP MFP (6ES7518-4AX00-1AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP MFP (6ES7518-4AX00-1AC0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-3 PN (6ES7518-3FT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP (6ES7518-4FP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP (6ES7518-4FX00-1AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP (6ES7518-4FX00-1AC0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518HF-4 PN (6ES7518-4JP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518HF-4 PN (6ES7518-4JT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518T-3 PN (6ES7518-3TT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518T-4 PN/DP (6ES7518-4TP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518TF-3 PN (6ES7518-3UT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518TF-4 PN/DP (6ES7518-4UP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU S7-1518-4 PN/DP ODK (6ES7518-4AP00-3AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU S7-1518F-4 PN/DP ODK (6ES7518-4FP00-3AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1513PRO F-2 PN (6ES7513-2GL00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1513PRO-2 PN (6ES7513-2PL00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1516PRO F-2 PN (6ES7516-2GN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1516PRO-2 PN (6ES7516-2PN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S F V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S F V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S F V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S F V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S F V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S F V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S T V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S TF V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller Linux V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller Linux V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 TM MFP - GNU/Linux subsystem
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-PLCSIM Advanced
|
vers:unknown/* |
Fortinet FortiOS versions 7.0 through 7.6.4, including FortiGate devices, contain a CWE-134 externally-controlled format string vulnerability that allows an authenticated admin to execute unauthorized code or commands via crafted configurations.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Siemens / Heliox Flex 180 kW EV Charging Station
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Heliox Mobile DC 40 kW EV Charging Station
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / RUGGEDCOM APE1808
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SICAM SIAPP SDK
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIDIS Prime
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC Drive Controller CPU 1504D TF (6ES7615-4DF10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC Drive Controller CPU 1507D TF (6ES7615-7DF10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP F-1 PN (6ES7510-1SJ01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP F-1 PN (6ES7510-1SK03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP-1 PN (6ES7510-1DJ01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP-1 PN (6ES7510-1DK03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP F-1 PN (6ES7512-1SK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP F-1 PN (6ES7512-1SM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP-1 PN (6ES7512-1DK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP-1 PN (6ES7512-1DM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SP F-2 PN (6ES7514-2SN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SP-2 PN (6ES7514-2DN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SPT F-2 PN (6ES7514-2WN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SPT-2 PN (6ES7514-2VN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC (incl. SIPLUS variants)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) V2 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) V3 CPUs - Industrial OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) V3 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC3 (incl. SIPLUS variants) V2 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC3 (incl. SIPLUS variants) V3 CPUs - Industrial OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC3 (incl. SIPLUS variants) V3 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AK00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AK02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511C-1 PN (6ES7511-1CK00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511C-1 PN (6ES7511-1CK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511C-1 PN (6ES7511-1CL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511F-1 PN (6ES7511-1FK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511F-1 PN (6ES7511-1FK02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511F-1 PN (6ES7511-1FL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511T-1 PN (6ES7511-1TK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511T-1 PN (6ES7511-1TL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511TF-1 PN (6ES7511-1UK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511TF-1 PN (6ES7511-1UL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1512C-1 PN (6ES7512-1CK00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1512C-1 PN (6ES7512-1CK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1512C-1 PN (6ES7512-1CM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513-1 PN (6ES7513-1AL01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513-1 PN (6ES7513-1AL02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513-1 PN (6ES7513-1AM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513F-1 PN (6ES7513-1FL01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513F-1 PN (6ES7513-1FL02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513F-1 PN (6ES7513-1FM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513R-1 PN (6ES7513-1RL00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513R-1 PN (6ES7513-1RM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513pro F-2 PN (6ES7513-2GM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513pro-2 PN (6ES7513-2PM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515-2 PN (6ES7515-2AM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515-2 PN (6ES7515-2AM02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515-2 PN (6ES7515-2AN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515F-2 PN (6ES7515-2FM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515F-2 PN (6ES7515-2FM02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515F-2 PN (6ES7515-2FN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515R-2 PN (6ES7515-2RM00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515R-2 PN (6ES7515-2RN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515T-2 PN (6ES7515-2TM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515T-2 PN (6ES7515-2TN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515TF-2 PN (6ES7515-2UM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515TF-2 PN (6ES7515-2UN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516-3 PN/DP (6ES7516-3AN01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516-3 PN/DP (6ES7516-3AN02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516-3 PN/DP (6ES7516-3AP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516F-3 PN/DP (6ES7516-3FN01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516F-3 PN/DP (6ES7516-3FN02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516F-3 PN/DP (6ES7516-3FP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516T-3 PN (6ES7516-3TP10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516T-3 PN/DP (6ES7516-3TN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516TF-3 PN (6ES7516-3UP10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516TF-3 PN/DP (6ES7516-3UN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516pro F-2 PN (6ES7516-2GP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516pro-2 PN (6ES7516-2PP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517-3 PN (6ES7517-3AQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517-3 PN/DP (6ES7517-3AP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517F-3 PN (6ES7517-3FQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517F-3 PN/DP (6ES7517-3FP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517F-3 PN/DP (6ES7517-3FP01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517H-3 PN (6ES7517-3HP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517H-4 PN (6ES7517-4HQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517T-3 PN (6ES7517-3TQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517T-3 PN/DP (6ES7517-3TP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517TF-3 PN (6ES7517-3UQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517TF-3 PN/DP (6ES7517-3UP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-3 PN (6ES7518-3AT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP (6ES7518-4AP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP MFP (6ES7518-4AX00-1AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP MFP (6ES7518-4AX00-1AC0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-3 PN (6ES7518-3FT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP (6ES7518-4FP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP (6ES7518-4FX00-1AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP (6ES7518-4FX00-1AC0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518HF-4 PN (6ES7518-4JP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518HF-4 PN (6ES7518-4JT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518T-3 PN (6ES7518-3TT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518T-4 PN/DP (6ES7518-4TP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518TF-3 PN (6ES7518-3UT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518TF-4 PN/DP (6ES7518-4UP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU S7-1518-4 PN/DP ODK (6ES7518-4AP00-3AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU S7-1518F-4 PN/DP ODK (6ES7518-4FP00-3AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1513PRO F-2 PN (6ES7513-2GL00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1513PRO-2 PN (6ES7513-2PL00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1516PRO F-2 PN (6ES7516-2GN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1516PRO-2 PN (6ES7516-2PN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S F V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S F V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S F V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S F V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S F V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S F V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S T V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S TF V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller Linux V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller Linux V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 TM MFP - GNU/Linux subsystem
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-PLCSIM Advanced
|
vers:unknown/* |
Multiple vulnerabilities have been identified in js-yaml, Oracle Communications Unified Assurance, and HPE Telco software, allowing for prototype pollution and unauthorized access, with varying severity and available patches.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Siemens / Heliox Flex 180 kW EV Charging Station
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Heliox Mobile DC 40 kW EV Charging Station
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / RUGGEDCOM APE1808
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SICAM SIAPP SDK
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIDIS Prime
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC Drive Controller CPU 1504D TF (6ES7615-4DF10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC Drive Controller CPU 1507D TF (6ES7615-7DF10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP F-1 PN (6ES7510-1SJ01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP F-1 PN (6ES7510-1SK03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP-1 PN (6ES7510-1DJ01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP-1 PN (6ES7510-1DK03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP F-1 PN (6ES7512-1SK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP F-1 PN (6ES7512-1SM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP-1 PN (6ES7512-1DK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP-1 PN (6ES7512-1DM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SP F-2 PN (6ES7514-2SN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SP-2 PN (6ES7514-2DN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SPT F-2 PN (6ES7514-2WN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SPT-2 PN (6ES7514-2VN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC (incl. SIPLUS variants)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) V2 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) V3 CPUs - Industrial OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) V3 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC3 (incl. SIPLUS variants) V2 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC3 (incl. SIPLUS variants) V3 CPUs - Industrial OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC3 (incl. SIPLUS variants) V3 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AK00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AK02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511C-1 PN (6ES7511-1CK00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511C-1 PN (6ES7511-1CK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511C-1 PN (6ES7511-1CL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511F-1 PN (6ES7511-1FK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511F-1 PN (6ES7511-1FK02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511F-1 PN (6ES7511-1FL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511T-1 PN (6ES7511-1TK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511T-1 PN (6ES7511-1TL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511TF-1 PN (6ES7511-1UK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511TF-1 PN (6ES7511-1UL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1512C-1 PN (6ES7512-1CK00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1512C-1 PN (6ES7512-1CK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1512C-1 PN (6ES7512-1CM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513-1 PN (6ES7513-1AL01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513-1 PN (6ES7513-1AL02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513-1 PN (6ES7513-1AM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513F-1 PN (6ES7513-1FL01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513F-1 PN (6ES7513-1FL02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513F-1 PN (6ES7513-1FM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513R-1 PN (6ES7513-1RL00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513R-1 PN (6ES7513-1RM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513pro F-2 PN (6ES7513-2GM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513pro-2 PN (6ES7513-2PM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515-2 PN (6ES7515-2AM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515-2 PN (6ES7515-2AM02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515-2 PN (6ES7515-2AN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515F-2 PN (6ES7515-2FM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515F-2 PN (6ES7515-2FM02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515F-2 PN (6ES7515-2FN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515R-2 PN (6ES7515-2RM00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515R-2 PN (6ES7515-2RN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515T-2 PN (6ES7515-2TM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515T-2 PN (6ES7515-2TN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515TF-2 PN (6ES7515-2UM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515TF-2 PN (6ES7515-2UN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516-3 PN/DP (6ES7516-3AN01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516-3 PN/DP (6ES7516-3AN02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516-3 PN/DP (6ES7516-3AP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516F-3 PN/DP (6ES7516-3FN01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516F-3 PN/DP (6ES7516-3FN02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516F-3 PN/DP (6ES7516-3FP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516T-3 PN (6ES7516-3TP10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516T-3 PN/DP (6ES7516-3TN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516TF-3 PN (6ES7516-3UP10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516TF-3 PN/DP (6ES7516-3UN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516pro F-2 PN (6ES7516-2GP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516pro-2 PN (6ES7516-2PP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517-3 PN (6ES7517-3AQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517-3 PN/DP (6ES7517-3AP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517F-3 PN (6ES7517-3FQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517F-3 PN/DP (6ES7517-3FP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517F-3 PN/DP (6ES7517-3FP01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517H-3 PN (6ES7517-3HP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517H-4 PN (6ES7517-4HQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517T-3 PN (6ES7517-3TQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517T-3 PN/DP (6ES7517-3TP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517TF-3 PN (6ES7517-3UQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517TF-3 PN/DP (6ES7517-3UP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-3 PN (6ES7518-3AT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP (6ES7518-4AP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP MFP (6ES7518-4AX00-1AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP MFP (6ES7518-4AX00-1AC0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-3 PN (6ES7518-3FT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP (6ES7518-4FP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP (6ES7518-4FX00-1AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP (6ES7518-4FX00-1AC0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518HF-4 PN (6ES7518-4JP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518HF-4 PN (6ES7518-4JT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518T-3 PN (6ES7518-3TT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518T-4 PN/DP (6ES7518-4TP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518TF-3 PN (6ES7518-3UT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518TF-4 PN/DP (6ES7518-4UP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU S7-1518-4 PN/DP ODK (6ES7518-4AP00-3AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU S7-1518F-4 PN/DP ODK (6ES7518-4FP00-3AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1513PRO F-2 PN (6ES7513-2GL00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1513PRO-2 PN (6ES7513-2PL00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1516PRO F-2 PN (6ES7516-2GN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1516PRO-2 PN (6ES7516-2PN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S F V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S F V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S F V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S F V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S F V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S F V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S T V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S TF V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller Linux V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller Linux V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 TM MFP - GNU/Linux subsystem
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-PLCSIM Advanced
|
vers:unknown/* |
The glob CLI has a command injection vulnerability in its `-c/--cmd` option, allowing arbitrary command execution through malicious filenames, which has been patched in versions 10.5.0 and 11.1.0.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Siemens / Heliox Flex 180 kW EV Charging Station
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Heliox Mobile DC 40 kW EV Charging Station
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / RUGGEDCOM APE1808
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SICAM SIAPP SDK
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIDIS Prime
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC Drive Controller CPU 1504D TF (6ES7615-4DF10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC Drive Controller CPU 1507D TF (6ES7615-7DF10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP F-1 PN (6ES7510-1SJ01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP F-1 PN (6ES7510-1SK03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP-1 PN (6ES7510-1DJ01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP-1 PN (6ES7510-1DK03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP F-1 PN (6ES7512-1SK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP F-1 PN (6ES7512-1SM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP-1 PN (6ES7512-1DK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP-1 PN (6ES7512-1DM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SP F-2 PN (6ES7514-2SN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SP-2 PN (6ES7514-2DN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SPT F-2 PN (6ES7514-2WN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SPT-2 PN (6ES7514-2VN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC (incl. SIPLUS variants)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) V2 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) V3 CPUs - Industrial OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) V3 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC3 (incl. SIPLUS variants) V2 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC3 (incl. SIPLUS variants) V3 CPUs - Industrial OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC3 (incl. SIPLUS variants) V3 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AK00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AK02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511C-1 PN (6ES7511-1CK00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511C-1 PN (6ES7511-1CK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511C-1 PN (6ES7511-1CL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511F-1 PN (6ES7511-1FK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511F-1 PN (6ES7511-1FK02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511F-1 PN (6ES7511-1FL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511T-1 PN (6ES7511-1TK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511T-1 PN (6ES7511-1TL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511TF-1 PN (6ES7511-1UK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511TF-1 PN (6ES7511-1UL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1512C-1 PN (6ES7512-1CK00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1512C-1 PN (6ES7512-1CK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1512C-1 PN (6ES7512-1CM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513-1 PN (6ES7513-1AL01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513-1 PN (6ES7513-1AL02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513-1 PN (6ES7513-1AM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513F-1 PN (6ES7513-1FL01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513F-1 PN (6ES7513-1FL02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513F-1 PN (6ES7513-1FM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513R-1 PN (6ES7513-1RL00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513R-1 PN (6ES7513-1RM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513pro F-2 PN (6ES7513-2GM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513pro-2 PN (6ES7513-2PM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515-2 PN (6ES7515-2AM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515-2 PN (6ES7515-2AM02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515-2 PN (6ES7515-2AN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515F-2 PN (6ES7515-2FM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515F-2 PN (6ES7515-2FM02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515F-2 PN (6ES7515-2FN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515R-2 PN (6ES7515-2RM00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515R-2 PN (6ES7515-2RN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515T-2 PN (6ES7515-2TM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515T-2 PN (6ES7515-2TN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515TF-2 PN (6ES7515-2UM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515TF-2 PN (6ES7515-2UN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516-3 PN/DP (6ES7516-3AN01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516-3 PN/DP (6ES7516-3AN02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516-3 PN/DP (6ES7516-3AP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516F-3 PN/DP (6ES7516-3FN01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516F-3 PN/DP (6ES7516-3FN02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516F-3 PN/DP (6ES7516-3FP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516T-3 PN (6ES7516-3TP10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516T-3 PN/DP (6ES7516-3TN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516TF-3 PN (6ES7516-3UP10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516TF-3 PN/DP (6ES7516-3UN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516pro F-2 PN (6ES7516-2GP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516pro-2 PN (6ES7516-2PP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517-3 PN (6ES7517-3AQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517-3 PN/DP (6ES7517-3AP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517F-3 PN (6ES7517-3FQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517F-3 PN/DP (6ES7517-3FP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517F-3 PN/DP (6ES7517-3FP01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517H-3 PN (6ES7517-3HP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517H-4 PN (6ES7517-4HQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517T-3 PN (6ES7517-3TQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517T-3 PN/DP (6ES7517-3TP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517TF-3 PN (6ES7517-3UQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517TF-3 PN/DP (6ES7517-3UP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-3 PN (6ES7518-3AT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP (6ES7518-4AP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP MFP (6ES7518-4AX00-1AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP MFP (6ES7518-4AX00-1AC0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-3 PN (6ES7518-3FT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP (6ES7518-4FP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP (6ES7518-4FX00-1AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP (6ES7518-4FX00-1AC0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518HF-4 PN (6ES7518-4JP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518HF-4 PN (6ES7518-4JT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518T-3 PN (6ES7518-3TT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518T-4 PN/DP (6ES7518-4TP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518TF-3 PN (6ES7518-3UT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518TF-4 PN/DP (6ES7518-4UP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU S7-1518-4 PN/DP ODK (6ES7518-4AP00-3AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU S7-1518F-4 PN/DP ODK (6ES7518-4FP00-3AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1513PRO F-2 PN (6ES7513-2GL00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1513PRO-2 PN (6ES7513-2PL00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1516PRO F-2 PN (6ES7516-2GN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1516PRO-2 PN (6ES7516-2PN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S F V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S F V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S F V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S F V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S F V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S F V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S T V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S TF V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller Linux V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller Linux V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 TM MFP - GNU/Linux subsystem
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-PLCSIM Advanced
|
vers:unknown/* |
An Integer Overflow vulnerability in node-forge versions up to 1.3.1 allows remote attackers to craft ASN.1 OIDs with oversized arcs that bypass security controls via 32-bit truncation, fixed in version 1.3.2.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Siemens / Heliox Flex 180 kW EV Charging Station
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Heliox Mobile DC 40 kW EV Charging Station
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / RUGGEDCOM APE1808
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SICAM SIAPP SDK
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIDIS Prime
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC Drive Controller CPU 1504D TF (6ES7615-4DF10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC Drive Controller CPU 1507D TF (6ES7615-7DF10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP F-1 PN (6ES7510-1SJ01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP F-1 PN (6ES7510-1SK03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP-1 PN (6ES7510-1DJ01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP-1 PN (6ES7510-1DK03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP F-1 PN (6ES7512-1SK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP F-1 PN (6ES7512-1SM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP-1 PN (6ES7512-1DK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP-1 PN (6ES7512-1DM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SP F-2 PN (6ES7514-2SN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SP-2 PN (6ES7514-2DN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SPT F-2 PN (6ES7514-2WN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SPT-2 PN (6ES7514-2VN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC (incl. SIPLUS variants)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) V2 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) V3 CPUs - Industrial OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) V3 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC3 (incl. SIPLUS variants) V2 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC3 (incl. SIPLUS variants) V3 CPUs - Industrial OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC3 (incl. SIPLUS variants) V3 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AK00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AK02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511C-1 PN (6ES7511-1CK00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511C-1 PN (6ES7511-1CK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511C-1 PN (6ES7511-1CL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511F-1 PN (6ES7511-1FK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511F-1 PN (6ES7511-1FK02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511F-1 PN (6ES7511-1FL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511T-1 PN (6ES7511-1TK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511T-1 PN (6ES7511-1TL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511TF-1 PN (6ES7511-1UK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511TF-1 PN (6ES7511-1UL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1512C-1 PN (6ES7512-1CK00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1512C-1 PN (6ES7512-1CK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1512C-1 PN (6ES7512-1CM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513-1 PN (6ES7513-1AL01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513-1 PN (6ES7513-1AL02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513-1 PN (6ES7513-1AM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513F-1 PN (6ES7513-1FL01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513F-1 PN (6ES7513-1FL02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513F-1 PN (6ES7513-1FM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513R-1 PN (6ES7513-1RL00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513R-1 PN (6ES7513-1RM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513pro F-2 PN (6ES7513-2GM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513pro-2 PN (6ES7513-2PM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515-2 PN (6ES7515-2AM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515-2 PN (6ES7515-2AM02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515-2 PN (6ES7515-2AN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515F-2 PN (6ES7515-2FM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515F-2 PN (6ES7515-2FM02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515F-2 PN (6ES7515-2FN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515R-2 PN (6ES7515-2RM00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515R-2 PN (6ES7515-2RN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515T-2 PN (6ES7515-2TM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515T-2 PN (6ES7515-2TN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515TF-2 PN (6ES7515-2UM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515TF-2 PN (6ES7515-2UN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516-3 PN/DP (6ES7516-3AN01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516-3 PN/DP (6ES7516-3AN02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516-3 PN/DP (6ES7516-3AP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516F-3 PN/DP (6ES7516-3FN01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516F-3 PN/DP (6ES7516-3FN02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516F-3 PN/DP (6ES7516-3FP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516T-3 PN (6ES7516-3TP10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516T-3 PN/DP (6ES7516-3TN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516TF-3 PN (6ES7516-3UP10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516TF-3 PN/DP (6ES7516-3UN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516pro F-2 PN (6ES7516-2GP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516pro-2 PN (6ES7516-2PP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517-3 PN (6ES7517-3AQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517-3 PN/DP (6ES7517-3AP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517F-3 PN (6ES7517-3FQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517F-3 PN/DP (6ES7517-3FP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517F-3 PN/DP (6ES7517-3FP01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517H-3 PN (6ES7517-3HP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517H-4 PN (6ES7517-4HQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517T-3 PN (6ES7517-3TQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517T-3 PN/DP (6ES7517-3TP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517TF-3 PN (6ES7517-3UQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517TF-3 PN/DP (6ES7517-3UP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-3 PN (6ES7518-3AT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP (6ES7518-4AP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP MFP (6ES7518-4AX00-1AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP MFP (6ES7518-4AX00-1AC0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-3 PN (6ES7518-3FT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP (6ES7518-4FP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP (6ES7518-4FX00-1AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP (6ES7518-4FX00-1AC0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518HF-4 PN (6ES7518-4JP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518HF-4 PN (6ES7518-4JT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518T-3 PN (6ES7518-3TT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518T-4 PN/DP (6ES7518-4TP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518TF-3 PN (6ES7518-3UT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518TF-4 PN/DP (6ES7518-4UP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU S7-1518-4 PN/DP ODK (6ES7518-4AP00-3AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU S7-1518F-4 PN/DP ODK (6ES7518-4FP00-3AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1513PRO F-2 PN (6ES7513-2GL00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1513PRO-2 PN (6ES7513-2PL00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1516PRO F-2 PN (6ES7516-2GN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1516PRO-2 PN (6ES7516-2PN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S F V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S F V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S F V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S F V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S F V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S F V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S T V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S TF V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller Linux V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller Linux V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 TM MFP - GNU/Linux subsystem
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-PLCSIM Advanced
|
vers:unknown/* |
An Uncontrolled Recursion vulnerability in node-forge versions 1.3.1 and below allows remote attackers to exploit ASN.1 structures, leading to Denial-of-Service via stack exhaustion during TLS connections or certificate parsing.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Siemens / Heliox Flex 180 kW EV Charging Station
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Heliox Mobile DC 40 kW EV Charging Station
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / RUGGEDCOM APE1808
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SICAM SIAPP SDK
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIDIS Prime
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC Drive Controller CPU 1504D TF (6ES7615-4DF10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC Drive Controller CPU 1507D TF (6ES7615-7DF10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP F-1 PN (6ES7510-1SJ01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP F-1 PN (6ES7510-1SK03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP-1 PN (6ES7510-1DJ01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP-1 PN (6ES7510-1DK03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP F-1 PN (6ES7512-1SK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP F-1 PN (6ES7512-1SM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP-1 PN (6ES7512-1DK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP-1 PN (6ES7512-1DM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SP F-2 PN (6ES7514-2SN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SP-2 PN (6ES7514-2DN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SPT F-2 PN (6ES7514-2WN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SPT-2 PN (6ES7514-2VN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC (incl. SIPLUS variants)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) V2 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) V3 CPUs - Industrial OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) V3 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC3 (incl. SIPLUS variants) V2 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC3 (incl. SIPLUS variants) V3 CPUs - Industrial OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC3 (incl. SIPLUS variants) V3 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AK00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AK02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511C-1 PN (6ES7511-1CK00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511C-1 PN (6ES7511-1CK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511C-1 PN (6ES7511-1CL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511F-1 PN (6ES7511-1FK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511F-1 PN (6ES7511-1FK02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511F-1 PN (6ES7511-1FL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511T-1 PN (6ES7511-1TK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511T-1 PN (6ES7511-1TL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511TF-1 PN (6ES7511-1UK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511TF-1 PN (6ES7511-1UL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1512C-1 PN (6ES7512-1CK00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1512C-1 PN (6ES7512-1CK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1512C-1 PN (6ES7512-1CM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513-1 PN (6ES7513-1AL01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513-1 PN (6ES7513-1AL02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513-1 PN (6ES7513-1AM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513F-1 PN (6ES7513-1FL01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513F-1 PN (6ES7513-1FL02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513F-1 PN (6ES7513-1FM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513R-1 PN (6ES7513-1RL00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513R-1 PN (6ES7513-1RM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513pro F-2 PN (6ES7513-2GM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513pro-2 PN (6ES7513-2PM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515-2 PN (6ES7515-2AM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515-2 PN (6ES7515-2AM02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515-2 PN (6ES7515-2AN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515F-2 PN (6ES7515-2FM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515F-2 PN (6ES7515-2FM02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515F-2 PN (6ES7515-2FN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515R-2 PN (6ES7515-2RM00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515R-2 PN (6ES7515-2RN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515T-2 PN (6ES7515-2TM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515T-2 PN (6ES7515-2TN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515TF-2 PN (6ES7515-2UM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515TF-2 PN (6ES7515-2UN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516-3 PN/DP (6ES7516-3AN01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516-3 PN/DP (6ES7516-3AN02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516-3 PN/DP (6ES7516-3AP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516F-3 PN/DP (6ES7516-3FN01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516F-3 PN/DP (6ES7516-3FN02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516F-3 PN/DP (6ES7516-3FP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516T-3 PN (6ES7516-3TP10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516T-3 PN/DP (6ES7516-3TN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516TF-3 PN (6ES7516-3UP10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516TF-3 PN/DP (6ES7516-3UN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516pro F-2 PN (6ES7516-2GP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516pro-2 PN (6ES7516-2PP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517-3 PN (6ES7517-3AQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517-3 PN/DP (6ES7517-3AP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517F-3 PN (6ES7517-3FQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517F-3 PN/DP (6ES7517-3FP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517F-3 PN/DP (6ES7517-3FP01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517H-3 PN (6ES7517-3HP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517H-4 PN (6ES7517-4HQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517T-3 PN (6ES7517-3TQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517T-3 PN/DP (6ES7517-3TP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517TF-3 PN (6ES7517-3UQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517TF-3 PN/DP (6ES7517-3UP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-3 PN (6ES7518-3AT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP (6ES7518-4AP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP MFP (6ES7518-4AX00-1AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP MFP (6ES7518-4AX00-1AC0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-3 PN (6ES7518-3FT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP (6ES7518-4FP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP (6ES7518-4FX00-1AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP (6ES7518-4FX00-1AC0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518HF-4 PN (6ES7518-4JP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518HF-4 PN (6ES7518-4JT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518T-3 PN (6ES7518-3TT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518T-4 PN/DP (6ES7518-4TP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518TF-3 PN (6ES7518-3UT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518TF-4 PN/DP (6ES7518-4UP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU S7-1518-4 PN/DP ODK (6ES7518-4AP00-3AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU S7-1518F-4 PN/DP ODK (6ES7518-4FP00-3AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1513PRO F-2 PN (6ES7513-2GL00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1513PRO-2 PN (6ES7513-2PL00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1516PRO F-2 PN (6ES7516-2GN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1516PRO-2 PN (6ES7516-2PN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S F V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S F V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S F V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S F V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S F V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S F V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S T V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S TF V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller Linux V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller Linux V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 TM MFP - GNU/Linux subsystem
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-PLCSIM Advanced
|
vers:unknown/* |
The document outlines a vulnerability in Angular's HttpClient that allows unauthorized disclosure of the XSRF token due to improper handling of protocol-relative URLs, affecting versions prior to 19.2.16, 20.3.14, and 21.0.1.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Siemens / Heliox Flex 180 kW EV Charging Station
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Heliox Mobile DC 40 kW EV Charging Station
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / RUGGEDCOM APE1808
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SICAM SIAPP SDK
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIDIS Prime
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC Drive Controller CPU 1504D TF (6ES7615-4DF10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC Drive Controller CPU 1507D TF (6ES7615-7DF10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP F-1 PN (6ES7510-1SJ01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP F-1 PN (6ES7510-1SK03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP-1 PN (6ES7510-1DJ01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP-1 PN (6ES7510-1DK03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP F-1 PN (6ES7512-1SK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP F-1 PN (6ES7512-1SM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP-1 PN (6ES7512-1DK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP-1 PN (6ES7512-1DM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SP F-2 PN (6ES7514-2SN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SP-2 PN (6ES7514-2DN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SPT F-2 PN (6ES7514-2WN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SPT-2 PN (6ES7514-2VN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC (incl. SIPLUS variants)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) V2 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) V3 CPUs - Industrial OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) V3 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC3 (incl. SIPLUS variants) V2 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC3 (incl. SIPLUS variants) V3 CPUs - Industrial OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC3 (incl. SIPLUS variants) V3 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AK00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AK02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511C-1 PN (6ES7511-1CK00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511C-1 PN (6ES7511-1CK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511C-1 PN (6ES7511-1CL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511F-1 PN (6ES7511-1FK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511F-1 PN (6ES7511-1FK02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511F-1 PN (6ES7511-1FL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511T-1 PN (6ES7511-1TK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511T-1 PN (6ES7511-1TL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511TF-1 PN (6ES7511-1UK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511TF-1 PN (6ES7511-1UL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1512C-1 PN (6ES7512-1CK00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1512C-1 PN (6ES7512-1CK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1512C-1 PN (6ES7512-1CM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513-1 PN (6ES7513-1AL01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513-1 PN (6ES7513-1AL02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513-1 PN (6ES7513-1AM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513F-1 PN (6ES7513-1FL01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513F-1 PN (6ES7513-1FL02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513F-1 PN (6ES7513-1FM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513R-1 PN (6ES7513-1RL00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513R-1 PN (6ES7513-1RM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513pro F-2 PN (6ES7513-2GM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513pro-2 PN (6ES7513-2PM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515-2 PN (6ES7515-2AM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515-2 PN (6ES7515-2AM02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515-2 PN (6ES7515-2AN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515F-2 PN (6ES7515-2FM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515F-2 PN (6ES7515-2FM02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515F-2 PN (6ES7515-2FN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515R-2 PN (6ES7515-2RM00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515R-2 PN (6ES7515-2RN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515T-2 PN (6ES7515-2TM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515T-2 PN (6ES7515-2TN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515TF-2 PN (6ES7515-2UM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515TF-2 PN (6ES7515-2UN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516-3 PN/DP (6ES7516-3AN01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516-3 PN/DP (6ES7516-3AN02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516-3 PN/DP (6ES7516-3AP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516F-3 PN/DP (6ES7516-3FN01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516F-3 PN/DP (6ES7516-3FN02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516F-3 PN/DP (6ES7516-3FP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516T-3 PN (6ES7516-3TP10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516T-3 PN/DP (6ES7516-3TN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516TF-3 PN (6ES7516-3UP10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516TF-3 PN/DP (6ES7516-3UN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516pro F-2 PN (6ES7516-2GP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516pro-2 PN (6ES7516-2PP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517-3 PN (6ES7517-3AQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517-3 PN/DP (6ES7517-3AP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517F-3 PN (6ES7517-3FQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517F-3 PN/DP (6ES7517-3FP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517F-3 PN/DP (6ES7517-3FP01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517H-3 PN (6ES7517-3HP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517H-4 PN (6ES7517-4HQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517T-3 PN (6ES7517-3TQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517T-3 PN/DP (6ES7517-3TP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517TF-3 PN (6ES7517-3UQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517TF-3 PN/DP (6ES7517-3UP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-3 PN (6ES7518-3AT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP (6ES7518-4AP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP MFP (6ES7518-4AX00-1AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP MFP (6ES7518-4AX00-1AC0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-3 PN (6ES7518-3FT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP (6ES7518-4FP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP (6ES7518-4FX00-1AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP (6ES7518-4FX00-1AC0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518HF-4 PN (6ES7518-4JP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518HF-4 PN (6ES7518-4JT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518T-3 PN (6ES7518-3TT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518T-4 PN/DP (6ES7518-4TP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518TF-3 PN (6ES7518-3UT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518TF-4 PN/DP (6ES7518-4UP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU S7-1518-4 PN/DP ODK (6ES7518-4AP00-3AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU S7-1518F-4 PN/DP ODK (6ES7518-4FP00-3AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1513PRO F-2 PN (6ES7513-2GL00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1513PRO-2 PN (6ES7513-2PL00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1516PRO F-2 PN (6ES7516-2GN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1516PRO-2 PN (6ES7516-2PN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S F V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S F V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S F V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S F V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S F V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S F V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S T V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S TF V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller Linux V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller Linux V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 TM MFP - GNU/Linux subsystem
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-PLCSIM Advanced
|
vers:unknown/* |
A Stored Cross-Site Scripting vulnerability in Angular Template Compiler prior to versions 21.0.2, 20.3.15, and 19.2.17 allows attackers to inject malicious scripts via improperly validated URL attributes and SVG elements.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Siemens / Heliox Flex 180 kW EV Charging Station
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Heliox Mobile DC 40 kW EV Charging Station
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / RUGGEDCOM APE1808
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SICAM SIAPP SDK
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIDIS Prime
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC Drive Controller CPU 1504D TF (6ES7615-4DF10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC Drive Controller CPU 1507D TF (6ES7615-7DF10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP F-1 PN (6ES7510-1SJ01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP F-1 PN (6ES7510-1SK03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP-1 PN (6ES7510-1DJ01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP-1 PN (6ES7510-1DK03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP F-1 PN (6ES7512-1SK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP F-1 PN (6ES7512-1SM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP-1 PN (6ES7512-1DK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP-1 PN (6ES7512-1DM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SP F-2 PN (6ES7514-2SN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SP-2 PN (6ES7514-2DN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SPT F-2 PN (6ES7514-2WN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SPT-2 PN (6ES7514-2VN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC (incl. SIPLUS variants)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) V2 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) V3 CPUs - Industrial OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) V3 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC3 (incl. SIPLUS variants) V2 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC3 (incl. SIPLUS variants) V3 CPUs - Industrial OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC3 (incl. SIPLUS variants) V3 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AK00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AK02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511C-1 PN (6ES7511-1CK00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511C-1 PN (6ES7511-1CK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511C-1 PN (6ES7511-1CL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511F-1 PN (6ES7511-1FK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511F-1 PN (6ES7511-1FK02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511F-1 PN (6ES7511-1FL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511T-1 PN (6ES7511-1TK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511T-1 PN (6ES7511-1TL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511TF-1 PN (6ES7511-1UK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511TF-1 PN (6ES7511-1UL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1512C-1 PN (6ES7512-1CK00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1512C-1 PN (6ES7512-1CK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1512C-1 PN (6ES7512-1CM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513-1 PN (6ES7513-1AL01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513-1 PN (6ES7513-1AL02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513-1 PN (6ES7513-1AM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513F-1 PN (6ES7513-1FL01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513F-1 PN (6ES7513-1FL02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513F-1 PN (6ES7513-1FM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513R-1 PN (6ES7513-1RL00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513R-1 PN (6ES7513-1RM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513pro F-2 PN (6ES7513-2GM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513pro-2 PN (6ES7513-2PM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515-2 PN (6ES7515-2AM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515-2 PN (6ES7515-2AM02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515-2 PN (6ES7515-2AN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515F-2 PN (6ES7515-2FM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515F-2 PN (6ES7515-2FM02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515F-2 PN (6ES7515-2FN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515R-2 PN (6ES7515-2RM00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515R-2 PN (6ES7515-2RN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515T-2 PN (6ES7515-2TM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515T-2 PN (6ES7515-2TN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515TF-2 PN (6ES7515-2UM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515TF-2 PN (6ES7515-2UN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516-3 PN/DP (6ES7516-3AN01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516-3 PN/DP (6ES7516-3AN02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516-3 PN/DP (6ES7516-3AP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516F-3 PN/DP (6ES7516-3FN01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516F-3 PN/DP (6ES7516-3FN02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516F-3 PN/DP (6ES7516-3FP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516T-3 PN (6ES7516-3TP10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516T-3 PN/DP (6ES7516-3TN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516TF-3 PN (6ES7516-3UP10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516TF-3 PN/DP (6ES7516-3UN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516pro F-2 PN (6ES7516-2GP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516pro-2 PN (6ES7516-2PP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517-3 PN (6ES7517-3AQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517-3 PN/DP (6ES7517-3AP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517F-3 PN (6ES7517-3FQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517F-3 PN/DP (6ES7517-3FP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517F-3 PN/DP (6ES7517-3FP01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517H-3 PN (6ES7517-3HP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517H-4 PN (6ES7517-4HQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517T-3 PN (6ES7517-3TQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517T-3 PN/DP (6ES7517-3TP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517TF-3 PN (6ES7517-3UQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517TF-3 PN/DP (6ES7517-3UP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-3 PN (6ES7518-3AT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP (6ES7518-4AP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP MFP (6ES7518-4AX00-1AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP MFP (6ES7518-4AX00-1AC0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-3 PN (6ES7518-3FT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP (6ES7518-4FP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP (6ES7518-4FX00-1AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP (6ES7518-4FX00-1AC0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518HF-4 PN (6ES7518-4JP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518HF-4 PN (6ES7518-4JT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518T-3 PN (6ES7518-3TT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518T-4 PN/DP (6ES7518-4TP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518TF-3 PN (6ES7518-3UT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518TF-4 PN/DP (6ES7518-4UP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU S7-1518-4 PN/DP ODK (6ES7518-4AP00-3AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU S7-1518F-4 PN/DP ODK (6ES7518-4FP00-3AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1513PRO F-2 PN (6ES7513-2GL00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1513PRO-2 PN (6ES7513-2PL00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1516PRO F-2 PN (6ES7516-2GN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1516PRO-2 PN (6ES7516-2PN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S F V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S F V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S F V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S F V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S F V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S F V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S T V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S TF V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller Linux V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller Linux V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 TM MFP - GNU/Linux subsystem
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-PLCSIM Advanced
|
vers:unknown/* |
Libsodium versions prior to ad3004e contain vulnerabilities in the crypto_core_ed25519_is_valid_point function that cause improper validation of elliptic curve points, potentially allowing security bypasses in custom cryptographic scenarios.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Siemens / Heliox Flex 180 kW EV Charging Station
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Heliox Mobile DC 40 kW EV Charging Station
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / RUGGEDCOM APE1808
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SICAM SIAPP SDK
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIDIS Prime
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC Drive Controller CPU 1504D TF (6ES7615-4DF10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC Drive Controller CPU 1507D TF (6ES7615-7DF10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP F-1 PN (6ES7510-1SJ01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP F-1 PN (6ES7510-1SK03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP-1 PN (6ES7510-1DJ01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP-1 PN (6ES7510-1DK03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP F-1 PN (6ES7512-1SK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP F-1 PN (6ES7512-1SM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP-1 PN (6ES7512-1DK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP-1 PN (6ES7512-1DM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SP F-2 PN (6ES7514-2SN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SP-2 PN (6ES7514-2DN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SPT F-2 PN (6ES7514-2WN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SPT-2 PN (6ES7514-2VN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC (incl. SIPLUS variants)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) V2 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) V3 CPUs - Industrial OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) V3 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC3 (incl. SIPLUS variants) V2 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC3 (incl. SIPLUS variants) V3 CPUs - Industrial OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC3 (incl. SIPLUS variants) V3 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AK00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AK02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511C-1 PN (6ES7511-1CK00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511C-1 PN (6ES7511-1CK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511C-1 PN (6ES7511-1CL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511F-1 PN (6ES7511-1FK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511F-1 PN (6ES7511-1FK02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511F-1 PN (6ES7511-1FL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511T-1 PN (6ES7511-1TK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511T-1 PN (6ES7511-1TL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511TF-1 PN (6ES7511-1UK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511TF-1 PN (6ES7511-1UL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1512C-1 PN (6ES7512-1CK00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1512C-1 PN (6ES7512-1CK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1512C-1 PN (6ES7512-1CM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513-1 PN (6ES7513-1AL01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513-1 PN (6ES7513-1AL02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513-1 PN (6ES7513-1AM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513F-1 PN (6ES7513-1FL01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513F-1 PN (6ES7513-1FL02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513F-1 PN (6ES7513-1FM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513R-1 PN (6ES7513-1RL00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513R-1 PN (6ES7513-1RM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513pro F-2 PN (6ES7513-2GM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513pro-2 PN (6ES7513-2PM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515-2 PN (6ES7515-2AM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515-2 PN (6ES7515-2AM02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515-2 PN (6ES7515-2AN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515F-2 PN (6ES7515-2FM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515F-2 PN (6ES7515-2FM02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515F-2 PN (6ES7515-2FN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515R-2 PN (6ES7515-2RM00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515R-2 PN (6ES7515-2RN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515T-2 PN (6ES7515-2TM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515T-2 PN (6ES7515-2TN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515TF-2 PN (6ES7515-2UM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515TF-2 PN (6ES7515-2UN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516-3 PN/DP (6ES7516-3AN01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516-3 PN/DP (6ES7516-3AN02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516-3 PN/DP (6ES7516-3AP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516F-3 PN/DP (6ES7516-3FN01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516F-3 PN/DP (6ES7516-3FN02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516F-3 PN/DP (6ES7516-3FP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516T-3 PN (6ES7516-3TP10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516T-3 PN/DP (6ES7516-3TN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516TF-3 PN (6ES7516-3UP10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516TF-3 PN/DP (6ES7516-3UN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516pro F-2 PN (6ES7516-2GP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516pro-2 PN (6ES7516-2PP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517-3 PN (6ES7517-3AQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517-3 PN/DP (6ES7517-3AP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517F-3 PN (6ES7517-3FQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517F-3 PN/DP (6ES7517-3FP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517F-3 PN/DP (6ES7517-3FP01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517H-3 PN (6ES7517-3HP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517H-4 PN (6ES7517-4HQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517T-3 PN (6ES7517-3TQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517T-3 PN/DP (6ES7517-3TP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517TF-3 PN (6ES7517-3UQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517TF-3 PN/DP (6ES7517-3UP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-3 PN (6ES7518-3AT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP (6ES7518-4AP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP MFP (6ES7518-4AX00-1AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP MFP (6ES7518-4AX00-1AC0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-3 PN (6ES7518-3FT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP (6ES7518-4FP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP (6ES7518-4FX00-1AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP (6ES7518-4FX00-1AC0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518HF-4 PN (6ES7518-4JP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518HF-4 PN (6ES7518-4JT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518T-3 PN (6ES7518-3TT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518T-4 PN/DP (6ES7518-4TP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518TF-3 PN (6ES7518-3UT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518TF-4 PN/DP (6ES7518-4UP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU S7-1518-4 PN/DP ODK (6ES7518-4AP00-3AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU S7-1518F-4 PN/DP ODK (6ES7518-4FP00-3AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1513PRO F-2 PN (6ES7513-2GL00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1513PRO-2 PN (6ES7513-2PL00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1516PRO F-2 PN (6ES7516-2GN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1516PRO-2 PN (6ES7516-2PN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S F V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S F V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S F V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S F V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S F V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S F V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S T V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S TF V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller Linux V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller Linux V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 TM MFP - GNU/Linux subsystem
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-PLCSIM Advanced
|
vers:unknown/* |
A Cross-Site Scripting (XSS) vulnerability in the Angular Template Compiler allows for arbitrary JavaScript execution via improperly sanitized SVG `<script>` attributes, affecting several Red Hat products with a moderate severity rating.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Siemens / Heliox Flex 180 kW EV Charging Station
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Heliox Mobile DC 40 kW EV Charging Station
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / RUGGEDCOM APE1808
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SICAM SIAPP SDK
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIDIS Prime
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC Drive Controller CPU 1504D TF (6ES7615-4DF10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC Drive Controller CPU 1507D TF (6ES7615-7DF10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP F-1 PN (6ES7510-1SJ01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP F-1 PN (6ES7510-1SK03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP-1 PN (6ES7510-1DJ01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP-1 PN (6ES7510-1DK03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP F-1 PN (6ES7512-1SK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP F-1 PN (6ES7512-1SM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP-1 PN (6ES7512-1DK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP-1 PN (6ES7512-1DM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SP F-2 PN (6ES7514-2SN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SP-2 PN (6ES7514-2DN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SPT F-2 PN (6ES7514-2WN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SPT-2 PN (6ES7514-2VN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC (incl. SIPLUS variants)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) V2 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) V3 CPUs - Industrial OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) V3 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC3 (incl. SIPLUS variants) V2 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC3 (incl. SIPLUS variants) V3 CPUs - Industrial OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC3 (incl. SIPLUS variants) V3 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AK00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AK02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511C-1 PN (6ES7511-1CK00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511C-1 PN (6ES7511-1CK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511C-1 PN (6ES7511-1CL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511F-1 PN (6ES7511-1FK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511F-1 PN (6ES7511-1FK02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511F-1 PN (6ES7511-1FL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511T-1 PN (6ES7511-1TK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511T-1 PN (6ES7511-1TL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511TF-1 PN (6ES7511-1UK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511TF-1 PN (6ES7511-1UL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1512C-1 PN (6ES7512-1CK00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1512C-1 PN (6ES7512-1CK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1512C-1 PN (6ES7512-1CM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513-1 PN (6ES7513-1AL01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513-1 PN (6ES7513-1AL02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513-1 PN (6ES7513-1AM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513F-1 PN (6ES7513-1FL01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513F-1 PN (6ES7513-1FL02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513F-1 PN (6ES7513-1FM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513R-1 PN (6ES7513-1RL00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513R-1 PN (6ES7513-1RM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513pro F-2 PN (6ES7513-2GM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513pro-2 PN (6ES7513-2PM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515-2 PN (6ES7515-2AM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515-2 PN (6ES7515-2AM02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515-2 PN (6ES7515-2AN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515F-2 PN (6ES7515-2FM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515F-2 PN (6ES7515-2FM02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515F-2 PN (6ES7515-2FN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515R-2 PN (6ES7515-2RM00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515R-2 PN (6ES7515-2RN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515T-2 PN (6ES7515-2TM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515T-2 PN (6ES7515-2TN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515TF-2 PN (6ES7515-2UM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515TF-2 PN (6ES7515-2UN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516-3 PN/DP (6ES7516-3AN01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516-3 PN/DP (6ES7516-3AN02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516-3 PN/DP (6ES7516-3AP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516F-3 PN/DP (6ES7516-3FN01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516F-3 PN/DP (6ES7516-3FN02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516F-3 PN/DP (6ES7516-3FP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516T-3 PN (6ES7516-3TP10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516T-3 PN/DP (6ES7516-3TN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516TF-3 PN (6ES7516-3UP10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516TF-3 PN/DP (6ES7516-3UN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516pro F-2 PN (6ES7516-2GP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516pro-2 PN (6ES7516-2PP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517-3 PN (6ES7517-3AQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517-3 PN/DP (6ES7517-3AP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517F-3 PN (6ES7517-3FQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517F-3 PN/DP (6ES7517-3FP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517F-3 PN/DP (6ES7517-3FP01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517H-3 PN (6ES7517-3HP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517H-4 PN (6ES7517-4HQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517T-3 PN (6ES7517-3TQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517T-3 PN/DP (6ES7517-3TP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517TF-3 PN (6ES7517-3UQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517TF-3 PN/DP (6ES7517-3UP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-3 PN (6ES7518-3AT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP (6ES7518-4AP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP MFP (6ES7518-4AX00-1AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP MFP (6ES7518-4AX00-1AC0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-3 PN (6ES7518-3FT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP (6ES7518-4FP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP (6ES7518-4FX00-1AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP (6ES7518-4FX00-1AC0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518HF-4 PN (6ES7518-4JP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518HF-4 PN (6ES7518-4JT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518T-3 PN (6ES7518-3TT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518T-4 PN/DP (6ES7518-4TP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518TF-3 PN (6ES7518-3UT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518TF-4 PN/DP (6ES7518-4UP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU S7-1518-4 PN/DP ODK (6ES7518-4AP00-3AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU S7-1518F-4 PN/DP ODK (6ES7518-4FP00-3AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1513PRO F-2 PN (6ES7513-2GL00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1513PRO-2 PN (6ES7513-2PL00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1516PRO F-2 PN (6ES7516-2GN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1516PRO-2 PN (6ES7516-2PN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S F V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S F V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S F V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S F V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S F V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S F V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S T V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S TF V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller Linux V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller Linux V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 TM MFP - GNU/Linux subsystem
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-PLCSIM Advanced
|
vers:unknown/* |
Multiple Fortinet products including FortiAnalyzer, FortiManager, FortiOS, and FortiProxy have an authentication bypass vulnerability exploitable via FortiCloud SSO, allowing attackers with FortiCloud credentials to access other users' devices.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Siemens / Heliox Flex 180 kW EV Charging Station
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Heliox Mobile DC 40 kW EV Charging Station
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / RUGGEDCOM APE1808
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SICAM SIAPP SDK
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIDIS Prime
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC Drive Controller CPU 1504D TF (6ES7615-4DF10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC Drive Controller CPU 1507D TF (6ES7615-7DF10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP F-1 PN (6ES7510-1SJ01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP F-1 PN (6ES7510-1SK03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP-1 PN (6ES7510-1DJ01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP-1 PN (6ES7510-1DK03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP F-1 PN (6ES7512-1SK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP F-1 PN (6ES7512-1SM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP-1 PN (6ES7512-1DK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP-1 PN (6ES7512-1DM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SP F-2 PN (6ES7514-2SN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SP-2 PN (6ES7514-2DN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SPT F-2 PN (6ES7514-2WN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SPT-2 PN (6ES7514-2VN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC (incl. SIPLUS variants)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) V2 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) V3 CPUs - Industrial OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) V3 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC3 (incl. SIPLUS variants) V2 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC3 (incl. SIPLUS variants) V3 CPUs - Industrial OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC3 (incl. SIPLUS variants) V3 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AK00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AK02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511C-1 PN (6ES7511-1CK00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511C-1 PN (6ES7511-1CK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511C-1 PN (6ES7511-1CL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511F-1 PN (6ES7511-1FK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511F-1 PN (6ES7511-1FK02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511F-1 PN (6ES7511-1FL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511T-1 PN (6ES7511-1TK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511T-1 PN (6ES7511-1TL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511TF-1 PN (6ES7511-1UK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511TF-1 PN (6ES7511-1UL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1512C-1 PN (6ES7512-1CK00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1512C-1 PN (6ES7512-1CK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1512C-1 PN (6ES7512-1CM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513-1 PN (6ES7513-1AL01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513-1 PN (6ES7513-1AL02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513-1 PN (6ES7513-1AM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513F-1 PN (6ES7513-1FL01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513F-1 PN (6ES7513-1FL02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513F-1 PN (6ES7513-1FM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513R-1 PN (6ES7513-1RL00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513R-1 PN (6ES7513-1RM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513pro F-2 PN (6ES7513-2GM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513pro-2 PN (6ES7513-2PM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515-2 PN (6ES7515-2AM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515-2 PN (6ES7515-2AM02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515-2 PN (6ES7515-2AN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515F-2 PN (6ES7515-2FM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515F-2 PN (6ES7515-2FM02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515F-2 PN (6ES7515-2FN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515R-2 PN (6ES7515-2RM00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515R-2 PN (6ES7515-2RN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515T-2 PN (6ES7515-2TM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515T-2 PN (6ES7515-2TN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515TF-2 PN (6ES7515-2UM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515TF-2 PN (6ES7515-2UN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516-3 PN/DP (6ES7516-3AN01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516-3 PN/DP (6ES7516-3AN02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516-3 PN/DP (6ES7516-3AP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516F-3 PN/DP (6ES7516-3FN01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516F-3 PN/DP (6ES7516-3FN02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516F-3 PN/DP (6ES7516-3FP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516T-3 PN (6ES7516-3TP10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516T-3 PN/DP (6ES7516-3TN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516TF-3 PN (6ES7516-3UP10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516TF-3 PN/DP (6ES7516-3UN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516pro F-2 PN (6ES7516-2GP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516pro-2 PN (6ES7516-2PP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517-3 PN (6ES7517-3AQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517-3 PN/DP (6ES7517-3AP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517F-3 PN (6ES7517-3FQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517F-3 PN/DP (6ES7517-3FP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517F-3 PN/DP (6ES7517-3FP01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517H-3 PN (6ES7517-3HP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517H-4 PN (6ES7517-4HQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517T-3 PN (6ES7517-3TQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517T-3 PN/DP (6ES7517-3TP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517TF-3 PN (6ES7517-3UQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517TF-3 PN/DP (6ES7517-3UP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-3 PN (6ES7518-3AT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP (6ES7518-4AP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP MFP (6ES7518-4AX00-1AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP MFP (6ES7518-4AX00-1AC0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-3 PN (6ES7518-3FT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP (6ES7518-4FP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP (6ES7518-4FX00-1AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP (6ES7518-4FX00-1AC0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518HF-4 PN (6ES7518-4JP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518HF-4 PN (6ES7518-4JT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518T-3 PN (6ES7518-3TT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518T-4 PN/DP (6ES7518-4TP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518TF-3 PN (6ES7518-3UT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518TF-4 PN/DP (6ES7518-4UP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU S7-1518-4 PN/DP ODK (6ES7518-4AP00-3AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU S7-1518F-4 PN/DP ODK (6ES7518-4FP00-3AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1513PRO F-2 PN (6ES7513-2GL00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1513PRO-2 PN (6ES7513-2PL00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1516PRO F-2 PN (6ES7516-2GN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1516PRO-2 PN (6ES7516-2PN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S F V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S F V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S F V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S F V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S F V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S F V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S T V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S TF V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller Linux V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller Linux V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 TM MFP - GNU/Linux subsystem
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-PLCSIM Advanced
|
vers:unknown/* |
An out-of-bounds write vulnerability in the SICAM SIAPP SDK could allow attackers to cause denial of service or execute arbitrary code, posing significant security risks.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Siemens / Heliox Flex 180 kW EV Charging Station
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Heliox Mobile DC 40 kW EV Charging Station
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / RUGGEDCOM APE1808
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SICAM SIAPP SDK
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIDIS Prime
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC Drive Controller CPU 1504D TF (6ES7615-4DF10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC Drive Controller CPU 1507D TF (6ES7615-7DF10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP F-1 PN (6ES7510-1SJ01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP F-1 PN (6ES7510-1SK03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP-1 PN (6ES7510-1DJ01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP-1 PN (6ES7510-1DK03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP F-1 PN (6ES7512-1SK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP F-1 PN (6ES7512-1SM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP-1 PN (6ES7512-1DK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP-1 PN (6ES7512-1DM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SP F-2 PN (6ES7514-2SN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SP-2 PN (6ES7514-2DN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SPT F-2 PN (6ES7514-2WN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SPT-2 PN (6ES7514-2VN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC (incl. SIPLUS variants)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) V2 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) V3 CPUs - Industrial OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) V3 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC3 (incl. SIPLUS variants) V2 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC3 (incl. SIPLUS variants) V3 CPUs - Industrial OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC3 (incl. SIPLUS variants) V3 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AK00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AK02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511C-1 PN (6ES7511-1CK00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511C-1 PN (6ES7511-1CK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511C-1 PN (6ES7511-1CL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511F-1 PN (6ES7511-1FK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511F-1 PN (6ES7511-1FK02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511F-1 PN (6ES7511-1FL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511T-1 PN (6ES7511-1TK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511T-1 PN (6ES7511-1TL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511TF-1 PN (6ES7511-1UK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511TF-1 PN (6ES7511-1UL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1512C-1 PN (6ES7512-1CK00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1512C-1 PN (6ES7512-1CK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1512C-1 PN (6ES7512-1CM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513-1 PN (6ES7513-1AL01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513-1 PN (6ES7513-1AL02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513-1 PN (6ES7513-1AM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513F-1 PN (6ES7513-1FL01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513F-1 PN (6ES7513-1FL02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513F-1 PN (6ES7513-1FM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513R-1 PN (6ES7513-1RL00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513R-1 PN (6ES7513-1RM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513pro F-2 PN (6ES7513-2GM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513pro-2 PN (6ES7513-2PM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515-2 PN (6ES7515-2AM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515-2 PN (6ES7515-2AM02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515-2 PN (6ES7515-2AN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515F-2 PN (6ES7515-2FM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515F-2 PN (6ES7515-2FM02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515F-2 PN (6ES7515-2FN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515R-2 PN (6ES7515-2RM00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515R-2 PN (6ES7515-2RN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515T-2 PN (6ES7515-2TM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515T-2 PN (6ES7515-2TN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515TF-2 PN (6ES7515-2UM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515TF-2 PN (6ES7515-2UN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516-3 PN/DP (6ES7516-3AN01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516-3 PN/DP (6ES7516-3AN02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516-3 PN/DP (6ES7516-3AP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516F-3 PN/DP (6ES7516-3FN01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516F-3 PN/DP (6ES7516-3FN02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516F-3 PN/DP (6ES7516-3FP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516T-3 PN (6ES7516-3TP10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516T-3 PN/DP (6ES7516-3TN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516TF-3 PN (6ES7516-3UP10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516TF-3 PN/DP (6ES7516-3UN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516pro F-2 PN (6ES7516-2GP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516pro-2 PN (6ES7516-2PP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517-3 PN (6ES7517-3AQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517-3 PN/DP (6ES7517-3AP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517F-3 PN (6ES7517-3FQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517F-3 PN/DP (6ES7517-3FP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517F-3 PN/DP (6ES7517-3FP01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517H-3 PN (6ES7517-3HP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517H-4 PN (6ES7517-4HQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517T-3 PN (6ES7517-3TQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517T-3 PN/DP (6ES7517-3TP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517TF-3 PN (6ES7517-3UQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517TF-3 PN/DP (6ES7517-3UP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-3 PN (6ES7518-3AT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP (6ES7518-4AP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP MFP (6ES7518-4AX00-1AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP MFP (6ES7518-4AX00-1AC0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-3 PN (6ES7518-3FT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP (6ES7518-4FP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP (6ES7518-4FX00-1AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP (6ES7518-4FX00-1AC0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518HF-4 PN (6ES7518-4JP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518HF-4 PN (6ES7518-4JT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518T-3 PN (6ES7518-3TT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518T-4 PN/DP (6ES7518-4TP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518TF-3 PN (6ES7518-3UT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518TF-4 PN/DP (6ES7518-4UP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU S7-1518-4 PN/DP ODK (6ES7518-4AP00-3AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU S7-1518F-4 PN/DP ODK (6ES7518-4FP00-3AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1513PRO F-2 PN (6ES7513-2GL00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1513PRO-2 PN (6ES7513-2PL00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1516PRO F-2 PN (6ES7516-2GN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1516PRO-2 PN (6ES7516-2PN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S F V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S F V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S F V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S F V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S F V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S F V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S T V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S TF V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller Linux V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller Linux V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 TM MFP - GNU/Linux subsystem
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-PLCSIM Advanced
|
vers:unknown/* |
The SICAM SIAPP SDK contains a vulnerability caused by insufficient input validation, which may result in stack overflow, enabling potential code execution and denial of service attacks.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Siemens / Heliox Flex 180 kW EV Charging Station
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Heliox Mobile DC 40 kW EV Charging Station
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / RUGGEDCOM APE1808
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SICAM SIAPP SDK
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIDIS Prime
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC Drive Controller CPU 1504D TF (6ES7615-4DF10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC Drive Controller CPU 1507D TF (6ES7615-7DF10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP F-1 PN (6ES7510-1SJ01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP F-1 PN (6ES7510-1SK03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP-1 PN (6ES7510-1DJ01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP-1 PN (6ES7510-1DK03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP F-1 PN (6ES7512-1SK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP F-1 PN (6ES7512-1SM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP-1 PN (6ES7512-1DK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP-1 PN (6ES7512-1DM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SP F-2 PN (6ES7514-2SN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SP-2 PN (6ES7514-2DN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SPT F-2 PN (6ES7514-2WN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SPT-2 PN (6ES7514-2VN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC (incl. SIPLUS variants)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) V2 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) V3 CPUs - Industrial OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) V3 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC3 (incl. SIPLUS variants) V2 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC3 (incl. SIPLUS variants) V3 CPUs - Industrial OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC3 (incl. SIPLUS variants) V3 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AK00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AK02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511C-1 PN (6ES7511-1CK00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511C-1 PN (6ES7511-1CK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511C-1 PN (6ES7511-1CL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511F-1 PN (6ES7511-1FK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511F-1 PN (6ES7511-1FK02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511F-1 PN (6ES7511-1FL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511T-1 PN (6ES7511-1TK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511T-1 PN (6ES7511-1TL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511TF-1 PN (6ES7511-1UK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511TF-1 PN (6ES7511-1UL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1512C-1 PN (6ES7512-1CK00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1512C-1 PN (6ES7512-1CK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1512C-1 PN (6ES7512-1CM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513-1 PN (6ES7513-1AL01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513-1 PN (6ES7513-1AL02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513-1 PN (6ES7513-1AM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513F-1 PN (6ES7513-1FL01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513F-1 PN (6ES7513-1FL02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513F-1 PN (6ES7513-1FM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513R-1 PN (6ES7513-1RL00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513R-1 PN (6ES7513-1RM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513pro F-2 PN (6ES7513-2GM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513pro-2 PN (6ES7513-2PM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515-2 PN (6ES7515-2AM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515-2 PN (6ES7515-2AM02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515-2 PN (6ES7515-2AN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515F-2 PN (6ES7515-2FM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515F-2 PN (6ES7515-2FM02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515F-2 PN (6ES7515-2FN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515R-2 PN (6ES7515-2RM00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515R-2 PN (6ES7515-2RN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515T-2 PN (6ES7515-2TM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515T-2 PN (6ES7515-2TN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515TF-2 PN (6ES7515-2UM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515TF-2 PN (6ES7515-2UN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516-3 PN/DP (6ES7516-3AN01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516-3 PN/DP (6ES7516-3AN02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516-3 PN/DP (6ES7516-3AP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516F-3 PN/DP (6ES7516-3FN01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516F-3 PN/DP (6ES7516-3FN02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516F-3 PN/DP (6ES7516-3FP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516T-3 PN (6ES7516-3TP10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516T-3 PN/DP (6ES7516-3TN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516TF-3 PN (6ES7516-3UP10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516TF-3 PN/DP (6ES7516-3UN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516pro F-2 PN (6ES7516-2GP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516pro-2 PN (6ES7516-2PP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517-3 PN (6ES7517-3AQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517-3 PN/DP (6ES7517-3AP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517F-3 PN (6ES7517-3FQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517F-3 PN/DP (6ES7517-3FP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517F-3 PN/DP (6ES7517-3FP01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517H-3 PN (6ES7517-3HP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517H-4 PN (6ES7517-4HQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517T-3 PN (6ES7517-3TQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517T-3 PN/DP (6ES7517-3TP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517TF-3 PN (6ES7517-3UQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517TF-3 PN/DP (6ES7517-3UP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-3 PN (6ES7518-3AT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP (6ES7518-4AP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP MFP (6ES7518-4AX00-1AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP MFP (6ES7518-4AX00-1AC0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-3 PN (6ES7518-3FT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP (6ES7518-4FP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP (6ES7518-4FX00-1AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP (6ES7518-4FX00-1AC0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518HF-4 PN (6ES7518-4JP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518HF-4 PN (6ES7518-4JT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518T-3 PN (6ES7518-3TT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518T-4 PN/DP (6ES7518-4TP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518TF-3 PN (6ES7518-3UT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518TF-4 PN/DP (6ES7518-4UP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU S7-1518-4 PN/DP ODK (6ES7518-4AP00-3AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU S7-1518F-4 PN/DP ODK (6ES7518-4FP00-3AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1513PRO F-2 PN (6ES7513-2GL00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1513PRO-2 PN (6ES7513-2PL00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1516PRO F-2 PN (6ES7516-2GN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1516PRO-2 PN (6ES7516-2PN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S F V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S F V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S F V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S F V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S F V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S F V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S T V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S TF V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller Linux V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller Linux V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 TM MFP - GNU/Linux subsystem
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-PLCSIM Advanced
|
vers:unknown/* |
The SICAM SIAPP SDK client component contains a stack overflow vulnerability caused by insufficient maximum length checks on certain variables, which can result in process crashes and denial of service.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Siemens / Heliox Flex 180 kW EV Charging Station
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Heliox Mobile DC 40 kW EV Charging Station
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / RUGGEDCOM APE1808
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SICAM SIAPP SDK
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIDIS Prime
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC Drive Controller CPU 1504D TF (6ES7615-4DF10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC Drive Controller CPU 1507D TF (6ES7615-7DF10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP F-1 PN (6ES7510-1SJ01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP F-1 PN (6ES7510-1SK03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP-1 PN (6ES7510-1DJ01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP-1 PN (6ES7510-1DK03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP F-1 PN (6ES7512-1SK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP F-1 PN (6ES7512-1SM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP-1 PN (6ES7512-1DK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP-1 PN (6ES7512-1DM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SP F-2 PN (6ES7514-2SN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SP-2 PN (6ES7514-2DN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SPT F-2 PN (6ES7514-2WN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SPT-2 PN (6ES7514-2VN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC (incl. SIPLUS variants)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) V2 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) V3 CPUs - Industrial OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) V3 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC3 (incl. SIPLUS variants) V2 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC3 (incl. SIPLUS variants) V3 CPUs - Industrial OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC3 (incl. SIPLUS variants) V3 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AK00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AK02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511C-1 PN (6ES7511-1CK00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511C-1 PN (6ES7511-1CK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511C-1 PN (6ES7511-1CL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511F-1 PN (6ES7511-1FK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511F-1 PN (6ES7511-1FK02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511F-1 PN (6ES7511-1FL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511T-1 PN (6ES7511-1TK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511T-1 PN (6ES7511-1TL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511TF-1 PN (6ES7511-1UK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511TF-1 PN (6ES7511-1UL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1512C-1 PN (6ES7512-1CK00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1512C-1 PN (6ES7512-1CK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1512C-1 PN (6ES7512-1CM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513-1 PN (6ES7513-1AL01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513-1 PN (6ES7513-1AL02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513-1 PN (6ES7513-1AM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513F-1 PN (6ES7513-1FL01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513F-1 PN (6ES7513-1FL02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513F-1 PN (6ES7513-1FM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513R-1 PN (6ES7513-1RL00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513R-1 PN (6ES7513-1RM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513pro F-2 PN (6ES7513-2GM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513pro-2 PN (6ES7513-2PM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515-2 PN (6ES7515-2AM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515-2 PN (6ES7515-2AM02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515-2 PN (6ES7515-2AN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515F-2 PN (6ES7515-2FM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515F-2 PN (6ES7515-2FM02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515F-2 PN (6ES7515-2FN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515R-2 PN (6ES7515-2RM00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515R-2 PN (6ES7515-2RN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515T-2 PN (6ES7515-2TM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515T-2 PN (6ES7515-2TN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515TF-2 PN (6ES7515-2UM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515TF-2 PN (6ES7515-2UN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516-3 PN/DP (6ES7516-3AN01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516-3 PN/DP (6ES7516-3AN02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516-3 PN/DP (6ES7516-3AP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516F-3 PN/DP (6ES7516-3FN01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516F-3 PN/DP (6ES7516-3FN02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516F-3 PN/DP (6ES7516-3FP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516T-3 PN (6ES7516-3TP10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516T-3 PN/DP (6ES7516-3TN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516TF-3 PN (6ES7516-3UP10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516TF-3 PN/DP (6ES7516-3UN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516pro F-2 PN (6ES7516-2GP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516pro-2 PN (6ES7516-2PP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517-3 PN (6ES7517-3AQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517-3 PN/DP (6ES7517-3AP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517F-3 PN (6ES7517-3FQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517F-3 PN/DP (6ES7517-3FP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517F-3 PN/DP (6ES7517-3FP01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517H-3 PN (6ES7517-3HP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517H-4 PN (6ES7517-4HQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517T-3 PN (6ES7517-3TQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517T-3 PN/DP (6ES7517-3TP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517TF-3 PN (6ES7517-3UQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517TF-3 PN/DP (6ES7517-3UP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-3 PN (6ES7518-3AT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP (6ES7518-4AP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP MFP (6ES7518-4AX00-1AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP MFP (6ES7518-4AX00-1AC0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-3 PN (6ES7518-3FT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP (6ES7518-4FP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP (6ES7518-4FX00-1AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP (6ES7518-4FX00-1AC0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518HF-4 PN (6ES7518-4JP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518HF-4 PN (6ES7518-4JT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518T-3 PN (6ES7518-3TT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518T-4 PN/DP (6ES7518-4TP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518TF-3 PN (6ES7518-3UT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518TF-4 PN/DP (6ES7518-4UP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU S7-1518-4 PN/DP ODK (6ES7518-4AP00-3AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU S7-1518F-4 PN/DP ODK (6ES7518-4FP00-3AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1513PRO F-2 PN (6ES7513-2GL00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1513PRO-2 PN (6ES7513-2PL00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1516PRO F-2 PN (6ES7516-2GN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1516PRO-2 PN (6ES7516-2PN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S F V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S F V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S F V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S F V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S F V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S F V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S T V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S TF V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller Linux V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller Linux V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 TM MFP - GNU/Linux subsystem
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-PLCSIM Advanced
|
vers:unknown/* |
The SICAM SIAPP SDK server component contains a stack overflow vulnerability caused by insufficient maximum length checks on certain variables, which can result in process crashes and denial of service.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Siemens / Heliox Flex 180 kW EV Charging Station
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Heliox Mobile DC 40 kW EV Charging Station
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / RUGGEDCOM APE1808
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SICAM SIAPP SDK
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIDIS Prime
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC Drive Controller CPU 1504D TF (6ES7615-4DF10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC Drive Controller CPU 1507D TF (6ES7615-7DF10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP F-1 PN (6ES7510-1SJ01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP F-1 PN (6ES7510-1SK03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP-1 PN (6ES7510-1DJ01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP-1 PN (6ES7510-1DK03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP F-1 PN (6ES7512-1SK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP F-1 PN (6ES7512-1SM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP-1 PN (6ES7512-1DK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP-1 PN (6ES7512-1DM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SP F-2 PN (6ES7514-2SN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SP-2 PN (6ES7514-2DN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SPT F-2 PN (6ES7514-2WN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SPT-2 PN (6ES7514-2VN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC (incl. SIPLUS variants)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) V2 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) V3 CPUs - Industrial OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) V3 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC3 (incl. SIPLUS variants) V2 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC3 (incl. SIPLUS variants) V3 CPUs - Industrial OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC3 (incl. SIPLUS variants) V3 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AK00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AK02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511C-1 PN (6ES7511-1CK00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511C-1 PN (6ES7511-1CK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511C-1 PN (6ES7511-1CL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511F-1 PN (6ES7511-1FK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511F-1 PN (6ES7511-1FK02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511F-1 PN (6ES7511-1FL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511T-1 PN (6ES7511-1TK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511T-1 PN (6ES7511-1TL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511TF-1 PN (6ES7511-1UK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511TF-1 PN (6ES7511-1UL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1512C-1 PN (6ES7512-1CK00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1512C-1 PN (6ES7512-1CK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1512C-1 PN (6ES7512-1CM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513-1 PN (6ES7513-1AL01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513-1 PN (6ES7513-1AL02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513-1 PN (6ES7513-1AM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513F-1 PN (6ES7513-1FL01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513F-1 PN (6ES7513-1FL02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513F-1 PN (6ES7513-1FM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513R-1 PN (6ES7513-1RL00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513R-1 PN (6ES7513-1RM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513pro F-2 PN (6ES7513-2GM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513pro-2 PN (6ES7513-2PM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515-2 PN (6ES7515-2AM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515-2 PN (6ES7515-2AM02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515-2 PN (6ES7515-2AN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515F-2 PN (6ES7515-2FM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515F-2 PN (6ES7515-2FM02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515F-2 PN (6ES7515-2FN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515R-2 PN (6ES7515-2RM00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515R-2 PN (6ES7515-2RN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515T-2 PN (6ES7515-2TM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515T-2 PN (6ES7515-2TN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515TF-2 PN (6ES7515-2UM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515TF-2 PN (6ES7515-2UN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516-3 PN/DP (6ES7516-3AN01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516-3 PN/DP (6ES7516-3AN02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516-3 PN/DP (6ES7516-3AP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516F-3 PN/DP (6ES7516-3FN01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516F-3 PN/DP (6ES7516-3FN02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516F-3 PN/DP (6ES7516-3FP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516T-3 PN (6ES7516-3TP10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516T-3 PN/DP (6ES7516-3TN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516TF-3 PN (6ES7516-3UP10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516TF-3 PN/DP (6ES7516-3UN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516pro F-2 PN (6ES7516-2GP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516pro-2 PN (6ES7516-2PP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517-3 PN (6ES7517-3AQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517-3 PN/DP (6ES7517-3AP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517F-3 PN (6ES7517-3FQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517F-3 PN/DP (6ES7517-3FP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517F-3 PN/DP (6ES7517-3FP01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517H-3 PN (6ES7517-3HP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517H-4 PN (6ES7517-4HQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517T-3 PN (6ES7517-3TQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517T-3 PN/DP (6ES7517-3TP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517TF-3 PN (6ES7517-3UQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517TF-3 PN/DP (6ES7517-3UP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-3 PN (6ES7518-3AT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP (6ES7518-4AP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP MFP (6ES7518-4AX00-1AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP MFP (6ES7518-4AX00-1AC0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-3 PN (6ES7518-3FT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP (6ES7518-4FP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP (6ES7518-4FX00-1AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP (6ES7518-4FX00-1AC0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518HF-4 PN (6ES7518-4JP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518HF-4 PN (6ES7518-4JT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518T-3 PN (6ES7518-3TT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518T-4 PN/DP (6ES7518-4TP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518TF-3 PN (6ES7518-3UT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518TF-4 PN/DP (6ES7518-4UP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU S7-1518-4 PN/DP ODK (6ES7518-4AP00-3AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU S7-1518F-4 PN/DP ODK (6ES7518-4FP00-3AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1513PRO F-2 PN (6ES7513-2GL00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1513PRO-2 PN (6ES7513-2PL00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1516PRO F-2 PN (6ES7516-2GN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1516PRO-2 PN (6ES7516-2PN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S F V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S F V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S F V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S F V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S F V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S F V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S T V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S TF V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller Linux V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller Linux V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 TM MFP - GNU/Linux subsystem
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-PLCSIM Advanced
|
vers:unknown/* |
The application executes shell commands constructed from user input, exposing it to command injection vulnerabilities that can lead to full system compromise.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Siemens / Heliox Flex 180 kW EV Charging Station
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Heliox Mobile DC 40 kW EV Charging Station
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / RUGGEDCOM APE1808
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SICAM SIAPP SDK
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIDIS Prime
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC Drive Controller CPU 1504D TF (6ES7615-4DF10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC Drive Controller CPU 1507D TF (6ES7615-7DF10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP F-1 PN (6ES7510-1SJ01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP F-1 PN (6ES7510-1SK03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP-1 PN (6ES7510-1DJ01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP-1 PN (6ES7510-1DK03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP F-1 PN (6ES7512-1SK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP F-1 PN (6ES7512-1SM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP-1 PN (6ES7512-1DK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP-1 PN (6ES7512-1DM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SP F-2 PN (6ES7514-2SN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SP-2 PN (6ES7514-2DN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SPT F-2 PN (6ES7514-2WN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SPT-2 PN (6ES7514-2VN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC (incl. SIPLUS variants)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) V2 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) V3 CPUs - Industrial OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) V3 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC3 (incl. SIPLUS variants) V2 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC3 (incl. SIPLUS variants) V3 CPUs - Industrial OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC3 (incl. SIPLUS variants) V3 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AK00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AK02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511C-1 PN (6ES7511-1CK00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511C-1 PN (6ES7511-1CK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511C-1 PN (6ES7511-1CL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511F-1 PN (6ES7511-1FK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511F-1 PN (6ES7511-1FK02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511F-1 PN (6ES7511-1FL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511T-1 PN (6ES7511-1TK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511T-1 PN (6ES7511-1TL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511TF-1 PN (6ES7511-1UK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511TF-1 PN (6ES7511-1UL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1512C-1 PN (6ES7512-1CK00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1512C-1 PN (6ES7512-1CK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1512C-1 PN (6ES7512-1CM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513-1 PN (6ES7513-1AL01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513-1 PN (6ES7513-1AL02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513-1 PN (6ES7513-1AM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513F-1 PN (6ES7513-1FL01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513F-1 PN (6ES7513-1FL02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513F-1 PN (6ES7513-1FM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513R-1 PN (6ES7513-1RL00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513R-1 PN (6ES7513-1RM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513pro F-2 PN (6ES7513-2GM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513pro-2 PN (6ES7513-2PM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515-2 PN (6ES7515-2AM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515-2 PN (6ES7515-2AM02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515-2 PN (6ES7515-2AN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515F-2 PN (6ES7515-2FM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515F-2 PN (6ES7515-2FM02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515F-2 PN (6ES7515-2FN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515R-2 PN (6ES7515-2RM00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515R-2 PN (6ES7515-2RN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515T-2 PN (6ES7515-2TM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515T-2 PN (6ES7515-2TN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515TF-2 PN (6ES7515-2UM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515TF-2 PN (6ES7515-2UN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516-3 PN/DP (6ES7516-3AN01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516-3 PN/DP (6ES7516-3AN02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516-3 PN/DP (6ES7516-3AP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516F-3 PN/DP (6ES7516-3FN01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516F-3 PN/DP (6ES7516-3FN02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516F-3 PN/DP (6ES7516-3FP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516T-3 PN (6ES7516-3TP10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516T-3 PN/DP (6ES7516-3TN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516TF-3 PN (6ES7516-3UP10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516TF-3 PN/DP (6ES7516-3UN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516pro F-2 PN (6ES7516-2GP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516pro-2 PN (6ES7516-2PP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517-3 PN (6ES7517-3AQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517-3 PN/DP (6ES7517-3AP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517F-3 PN (6ES7517-3FQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517F-3 PN/DP (6ES7517-3FP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517F-3 PN/DP (6ES7517-3FP01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517H-3 PN (6ES7517-3HP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517H-4 PN (6ES7517-4HQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517T-3 PN (6ES7517-3TQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517T-3 PN/DP (6ES7517-3TP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517TF-3 PN (6ES7517-3UQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517TF-3 PN/DP (6ES7517-3UP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-3 PN (6ES7518-3AT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP (6ES7518-4AP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP MFP (6ES7518-4AX00-1AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP MFP (6ES7518-4AX00-1AC0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-3 PN (6ES7518-3FT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP (6ES7518-4FP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP (6ES7518-4FX00-1AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP (6ES7518-4FX00-1AC0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518HF-4 PN (6ES7518-4JP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518HF-4 PN (6ES7518-4JT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518T-3 PN (6ES7518-3TT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518T-4 PN/DP (6ES7518-4TP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518TF-3 PN (6ES7518-3UT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518TF-4 PN/DP (6ES7518-4UP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU S7-1518-4 PN/DP ODK (6ES7518-4AP00-3AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU S7-1518F-4 PN/DP ODK (6ES7518-4FP00-3AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1513PRO F-2 PN (6ES7513-2GL00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1513PRO-2 PN (6ES7513-2PL00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1516PRO F-2 PN (6ES7516-2GN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1516PRO-2 PN (6ES7516-2PN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S F V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S F V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S F V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S F V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S F V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S F V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S T V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S TF V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller Linux V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller Linux V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 TM MFP - GNU/Linux subsystem
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-PLCSIM Advanced
|
vers:unknown/* |
The application fails to properly validate file paths during deletion, enabling attackers to delete authorized files or sockets, potentially causing service disruption or denial of service.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Siemens / Heliox Flex 180 kW EV Charging Station
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / Heliox Mobile DC 40 kW EV Charging Station
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / RUGGEDCOM APE1808
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SICAM SIAPP SDK
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIDIS Prime
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC Drive Controller CPU 1504D TF (6ES7615-4DF10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC Drive Controller CPU 1507D TF (6ES7615-7DF10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP F-1 PN (6ES7510-1SJ01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP F-1 PN (6ES7510-1SK03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP-1 PN (6ES7510-1DJ01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1510SP-1 PN (6ES7510-1DK03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP F-1 PN (6ES7512-1SK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP F-1 PN (6ES7512-1SM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP-1 PN (6ES7512-1DK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1512SP-1 PN (6ES7512-1DM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SP F-2 PN (6ES7514-2SN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SP-2 PN (6ES7514-2DN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SPT F-2 PN (6ES7514-2WN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP CPU 1514SPT-2 PN (6ES7514-2VN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC (incl. SIPLUS variants)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) V2 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) V3 CPUs - Industrial OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) V3 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC3 (incl. SIPLUS variants) V2 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC3 (incl. SIPLUS variants) V3 CPUs - Industrial OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC3 (incl. SIPLUS variants) V3 CPUs - Windows OS
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AK00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AK02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511C-1 PN (6ES7511-1CK00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511C-1 PN (6ES7511-1CK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511C-1 PN (6ES7511-1CL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511F-1 PN (6ES7511-1FK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511F-1 PN (6ES7511-1FK02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511F-1 PN (6ES7511-1FL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511T-1 PN (6ES7511-1TK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511T-1 PN (6ES7511-1TL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511TF-1 PN (6ES7511-1UK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1511TF-1 PN (6ES7511-1UL03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1512C-1 PN (6ES7512-1CK00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1512C-1 PN (6ES7512-1CK01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1512C-1 PN (6ES7512-1CM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513-1 PN (6ES7513-1AL01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513-1 PN (6ES7513-1AL02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513-1 PN (6ES7513-1AM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513F-1 PN (6ES7513-1FL01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513F-1 PN (6ES7513-1FL02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513F-1 PN (6ES7513-1FM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513R-1 PN (6ES7513-1RL00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513R-1 PN (6ES7513-1RM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513pro F-2 PN (6ES7513-2GM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1513pro-2 PN (6ES7513-2PM03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515-2 PN (6ES7515-2AM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515-2 PN (6ES7515-2AM02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515-2 PN (6ES7515-2AN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515F-2 PN (6ES7515-2FM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515F-2 PN (6ES7515-2FM02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515F-2 PN (6ES7515-2FN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515R-2 PN (6ES7515-2RM00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515R-2 PN (6ES7515-2RN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515T-2 PN (6ES7515-2TM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515T-2 PN (6ES7515-2TN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515TF-2 PN (6ES7515-2UM01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1515TF-2 PN (6ES7515-2UN03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516-3 PN/DP (6ES7516-3AN01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516-3 PN/DP (6ES7516-3AN02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516-3 PN/DP (6ES7516-3AP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516F-3 PN/DP (6ES7516-3FN01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516F-3 PN/DP (6ES7516-3FN02-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516F-3 PN/DP (6ES7516-3FP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516T-3 PN (6ES7516-3TP10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516T-3 PN/DP (6ES7516-3TN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516TF-3 PN (6ES7516-3UP10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516TF-3 PN/DP (6ES7516-3UN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516pro F-2 PN (6ES7516-2GP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1516pro-2 PN (6ES7516-2PP03-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517-3 PN (6ES7517-3AQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517-3 PN/DP (6ES7517-3AP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517F-3 PN (6ES7517-3FQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517F-3 PN/DP (6ES7517-3FP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517F-3 PN/DP (6ES7517-3FP01-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517H-3 PN (6ES7517-3HP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517H-4 PN (6ES7517-4HQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517T-3 PN (6ES7517-3TQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517T-3 PN/DP (6ES7517-3TP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517TF-3 PN (6ES7517-3UQ10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1517TF-3 PN/DP (6ES7517-3UP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-3 PN (6ES7518-3AT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP (6ES7518-4AP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP MFP (6ES7518-4AX00-1AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518-4 PN/DP MFP (6ES7518-4AX00-1AC0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-3 PN (6ES7518-3FT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP (6ES7518-4FP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP (6ES7518-4FX00-1AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP (6ES7518-4FX00-1AC0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518HF-4 PN (6ES7518-4JP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518HF-4 PN (6ES7518-4JT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518T-3 PN (6ES7518-3TT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518T-4 PN/DP (6ES7518-4TP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518TF-3 PN (6ES7518-3UT10-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU 1518TF-4 PN/DP (6ES7518-4UP00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU S7-1518-4 PN/DP ODK (6ES7518-4AP00-3AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 CPU S7-1518F-4 PN/DP ODK (6ES7518-4FP00-3AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1513PRO F-2 PN (6ES7513-2GL00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1513PRO-2 PN (6ES7513-2PL00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1516PRO F-2 PN (6ES7516-2GN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 ET 200pro: CPU 1516PRO-2 PN (6ES7516-2PN00-0AB0)
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S F V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S F V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S F V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1507S V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S F V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S F V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S F V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S T V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S TF V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller CPU 1508S V4
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller Linux V2
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 Software Controller Linux V3
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-1500 TM MFP - GNU/Linux subsystem
|
vers:unknown/* | ||
|
vers:unknown/*
Siemens / SIMATIC S7-PLCSIM Advanced
|
vers:unknown/* |
{
"document": {
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE"
}
},
"lang": "nl",
"notes": [
{
"category": "legal_disclaimer",
"text": "The Netherlands Cyber Security Center (henceforth: NCSC-NL) maintains this page to enhance access to its information and security advisories. The use of this security advisory is subject to the following terms and conditions:\n\n NCSC-NL makes every reasonable effort to ensure that the content of this page is kept up to date, and that it is accurate and complete. Nevertheless, NCSC-NL cannot entirely rule out the possibility of errors, and therefore cannot give any warranty in respect of its completeness, accuracy or continuous keeping up-to-date. The information contained in this security advisory is intended solely for the purpose of providing general information to professional users. No rights can be derived from the information provided therein.\n\n NCSC-NL and the Kingdom of the Netherlands assume no legal liability or responsibility for any damage resulting from either the use or inability of use of this security advisory. This includes damage resulting from the inaccuracy of incompleteness of the information contained in the advisory.\n This security advisory is subject to Dutch law. All disputes related to or arising from the use of this advisory will be submitted to the competent court in The Hague. This choice of means also applies to the court in summary proceedings."
},
{
"category": "description",
"text": "Siemens heeft kwetsbaarheden verholpen in diverse producten als Heliox, Ruggedcom, SICAM, SIDIS en SIMATIC.",
"title": "Feiten"
},
{
"category": "description",
"text": "De kwetsbaarheden stellen een kwaadwillende mogelijk in staat aanvallen uit te voeren die kunnen leiden tot de volgende categorie\u00ebn schade:\n\n- Denial-of-Service (DoS)\n- Manipulatie van gegevens\n- Omzeilen van een beveiligingsmaatregel\n- (Remote) code execution (root/admin rechten)\n- Toegang tot systeemgegevens\n- Verhogen van rechten\n\nVoor succesvol misbruik van de genoemde kwetsbaarheden moet de kwaadwillende toegang hebben tot de productie-omgeving. Het is goed gebruik een dergelijke omgeving niet publiek toegankelijk te hebben.",
"title": "Interpretaties"
},
{
"category": "description",
"text": "Siemens heeft beveiligingsupdates uitgebracht om de kwetsbaarheden te verhelpen. Voor de kwetsbaarheden waar nog geen updates voor zijn, heeft Siemens mitigerende maatregelen gepubliceerd om de risico\u0027s zoveel als mogelijk te beperken. Zie de bijgevoegde referenties voor meer informatie.",
"title": "Oplossingen"
},
{
"category": "general",
"text": "medium",
"title": "Kans"
},
{
"category": "general",
"text": "high",
"title": "Schade"
},
{
"category": "general",
"text": "Improper Input Validation",
"title": "CWE-20"
},
{
"category": "general",
"text": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)",
"title": "CWE-22"
},
{
"category": "general",
"text": "Relative Path Traversal",
"title": "CWE-23"
},
{
"category": "general",
"text": "External Control of File Name or Path",
"title": "CWE-73"
},
{
"category": "general",
"text": "Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)",
"title": "CWE-78"
},
{
"category": "general",
"text": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)",
"title": "CWE-79"
},
{
"category": "general",
"text": "Stack-based Buffer Overflow",
"title": "CWE-121"
},
{
"category": "general",
"text": "Out-of-bounds Read",
"title": "CWE-125"
},
{
"category": "general",
"text": "Improper Handling of Length Parameter Inconsistency",
"title": "CWE-130"
},
{
"category": "general",
"text": "Use of Externally-Controlled Format String",
"title": "CWE-134"
},
{
"category": "general",
"text": "Incorrect Behavior Order: Early Validation",
"title": "CWE-179"
},
{
"category": "general",
"text": "Incomplete List of Disallowed Inputs",
"title": "CWE-184"
},
{
"category": "general",
"text": "Integer Overflow or Wraparound",
"title": "CWE-190"
},
{
"category": "general",
"text": "Numeric Truncation Error",
"title": "CWE-197"
},
{
"category": "general",
"text": "Exposure of Sensitive Information to an Unauthorized Actor",
"title": "CWE-200"
},
{
"category": "general",
"text": "Insertion of Sensitive Information Into Sent Data",
"title": "CWE-201"
},
{
"category": "general",
"text": "Observable Discrepancy",
"title": "CWE-203"
},
{
"category": "general",
"text": "Observable Timing Discrepancy",
"title": "CWE-208"
},
{
"category": "general",
"text": "Improper Access Control",
"title": "CWE-284"
},
{
"category": "general",
"text": "Authentication Bypass Using an Alternate Path or Channel",
"title": "CWE-288"
},
{
"category": "general",
"text": "Improper Certificate Validation",
"title": "CWE-295"
},
{
"category": "general",
"text": "Use of Insufficiently Random Values",
"title": "CWE-330"
},
{
"category": "general",
"text": "Exposure of Private Personal Information to an Unauthorized Actor",
"title": "CWE-359"
},
{
"category": "general",
"text": "Uncontrolled Resource Consumption",
"title": "CWE-400"
},
{
"category": "general",
"text": "Improper Resource Shutdown or Release",
"title": "CWE-404"
},
{
"category": "general",
"text": "Interpretation Conflict",
"title": "CWE-436"
},
{
"category": "general",
"text": "Inconsistent Interpretation of HTTP Requests (\u0027HTTP Request/Response Smuggling\u0027)",
"title": "CWE-444"
},
{
"category": "general",
"text": "Uncontrolled Recursion",
"title": "CWE-674"
},
{
"category": "general",
"text": "Allocation of Resources Without Limits or Throttling",
"title": "CWE-770"
},
{
"category": "general",
"text": "Out-of-bounds Write",
"title": "CWE-787"
},
{
"category": "general",
"text": "Loop with Unreachable Exit Condition (\u0027Infinite Loop\u0027)",
"title": "CWE-835"
},
{
"category": "general",
"text": "Improper Restriction of Communication Channel to Intended Endpoints",
"title": "CWE-923"
},
{
"category": "general",
"text": "CWE-937",
"title": "CWE-937"
},
{
"category": "general",
"text": "Improper Verification of Source of a Communication Channel",
"title": "CWE-940"
},
{
"category": "general",
"text": "CWE-1035",
"title": "CWE-1035"
},
{
"category": "general",
"text": "Improperly Controlled Modification of Object Prototype Attributes (\u0027Prototype Pollution\u0027)",
"title": "CWE-1321"
},
{
"category": "general",
"text": "Inefficient Regular Expression Complexity",
"title": "CWE-1333"
}
],
"publisher": {
"category": "coordinator",
"contact_details": "cert@ncsc.nl",
"name": "Nationaal Cyber Security Centrum",
"namespace": "https://www.ncsc.nl/"
},
"references": [
{
"category": "external",
"summary": "Reference",
"url": "https://cert-portal.siemens.com/productcert/html/ssa-126399.html"
},
{
"category": "external",
"summary": "Reference",
"url": "https://cert-portal.siemens.com/productcert/html/ssa-452276.html"
},
{
"category": "external",
"summary": "Reference",
"url": "https://cert-portal.siemens.com/productcert/html/ssa-485750.html"
},
{
"category": "external",
"summary": "Reference",
"url": "https://cert-portal.siemens.com/productcert/html/ssa-903736.html"
},
{
"category": "external",
"summary": "Reference",
"url": "https://cert-portal.siemens.com/productcert/html/ssa-975644.html"
}
],
"title": "Kwetsbaarheden verholpen in Siemens producten",
"tracking": {
"current_release_date": "2026-03-10T12:39:14.474522Z",
"generator": {
"date": "2025-08-04T16:30:00Z",
"engine": {
"name": "V.A.",
"version": "1.3"
}
},
"id": "NCSC-2026-0079",
"initial_release_date": "2026-03-10T12:39:14.474522Z",
"revision_history": [
{
"date": "2026-03-10T12:39:14.474522Z",
"number": "1.0.0",
"summary": "Initiele versie"
}
],
"status": "final",
"version": "1.0.0"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-1"
}
}
],
"category": "product_name",
"name": "Heliox Flex 180 kW EV Charging Station"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-2"
}
}
],
"category": "product_name",
"name": "Heliox Mobile DC 40 kW EV Charging Station"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-3"
}
}
],
"category": "product_name",
"name": "RUGGEDCOM APE1808"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-4"
}
}
],
"category": "product_name",
"name": "SICAM SIAPP SDK"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-5"
}
}
],
"category": "product_name",
"name": "SIDIS Prime"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-6"
}
}
],
"category": "product_name",
"name": "SIMATIC Drive Controller CPU 1504D TF (6ES7615-4DF10-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-7"
}
}
],
"category": "product_name",
"name": "SIMATIC Drive Controller CPU 1507D TF (6ES7615-7DF10-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-8"
}
}
],
"category": "product_name",
"name": "SIMATIC ET 200SP CPU 1510SP F-1 PN (6ES7510-1SJ01-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-9"
}
}
],
"category": "product_name",
"name": "SIMATIC ET 200SP CPU 1510SP F-1 PN (6ES7510-1SK03-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-10"
}
}
],
"category": "product_name",
"name": "SIMATIC ET 200SP CPU 1510SP-1 PN (6ES7510-1DJ01-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-11"
}
}
],
"category": "product_name",
"name": "SIMATIC ET 200SP CPU 1510SP-1 PN (6ES7510-1DK03-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-12"
}
}
],
"category": "product_name",
"name": "SIMATIC ET 200SP CPU 1512SP F-1 PN (6ES7512-1SK01-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-13"
}
}
],
"category": "product_name",
"name": "SIMATIC ET 200SP CPU 1512SP F-1 PN (6ES7512-1SM03-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-14"
}
}
],
"category": "product_name",
"name": "SIMATIC ET 200SP CPU 1512SP-1 PN (6ES7512-1DK01-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-15"
}
}
],
"category": "product_name",
"name": "SIMATIC ET 200SP CPU 1512SP-1 PN (6ES7512-1DM03-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-16"
}
}
],
"category": "product_name",
"name": "SIMATIC ET 200SP CPU 1514SP F-2 PN (6ES7514-2SN03-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-17"
}
}
],
"category": "product_name",
"name": "SIMATIC ET 200SP CPU 1514SP-2 PN (6ES7514-2DN03-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-18"
}
}
],
"category": "product_name",
"name": "SIMATIC ET 200SP CPU 1514SPT F-2 PN (6ES7514-2WN03-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-19"
}
}
],
"category": "product_name",
"name": "SIMATIC ET 200SP CPU 1514SPT-2 PN (6ES7514-2VN03-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-20"
}
}
],
"category": "product_name",
"name": "SIMATIC ET 200SP Open Controller CPU 1515SP PC (incl. SIPLUS variants)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-21"
}
}
],
"category": "product_name",
"name": "SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) V2 CPUs - Windows OS"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-22"
}
}
],
"category": "product_name",
"name": "SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) V3 CPUs - Industrial OS"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-23"
}
}
],
"category": "product_name",
"name": "SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) V3 CPUs - Windows OS"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-24"
}
}
],
"category": "product_name",
"name": "SIMATIC ET 200SP Open Controller CPU 1515SP PC3 (incl. SIPLUS variants) V2 CPUs - Windows OS"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-25"
}
}
],
"category": "product_name",
"name": "SIMATIC ET 200SP Open Controller CPU 1515SP PC3 (incl. SIPLUS variants) V3 CPUs - Industrial OS"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-26"
}
}
],
"category": "product_name",
"name": "SIMATIC ET 200SP Open Controller CPU 1515SP PC3 (incl. SIPLUS variants) V3 CPUs - Windows OS"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-27"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AK00-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-28"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AK01-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-29"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AK02-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-30"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 CPU 1511-1 PN (6ES7511-1AL03-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-31"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 CPU 1511C-1 PN (6ES7511-1CK00-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-32"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 CPU 1511C-1 PN (6ES7511-1CK01-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-33"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 CPU 1511C-1 PN (6ES7511-1CL03-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-34"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 CPU 1511F-1 PN (6ES7511-1FK01-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-35"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 CPU 1511F-1 PN (6ES7511-1FK02-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-36"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 CPU 1511F-1 PN (6ES7511-1FL03-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-37"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 CPU 1511T-1 PN (6ES7511-1TK01-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-38"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 CPU 1511T-1 PN (6ES7511-1TL03-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-39"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 CPU 1511TF-1 PN (6ES7511-1UK01-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-40"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 CPU 1511TF-1 PN (6ES7511-1UL03-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-41"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 CPU 1512C-1 PN (6ES7512-1CK00-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-42"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 CPU 1512C-1 PN (6ES7512-1CK01-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-43"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 CPU 1512C-1 PN (6ES7512-1CM03-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-44"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 CPU 1513-1 PN (6ES7513-1AL01-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-45"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 CPU 1513-1 PN (6ES7513-1AL02-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-46"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 CPU 1513-1 PN (6ES7513-1AM03-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-47"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 CPU 1513F-1 PN (6ES7513-1FL01-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-48"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 CPU 1513F-1 PN (6ES7513-1FL02-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-49"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 CPU 1513F-1 PN (6ES7513-1FM03-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-50"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 CPU 1513R-1 PN (6ES7513-1RL00-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-51"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 CPU 1513R-1 PN (6ES7513-1RM03-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-52"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 CPU 1513pro F-2 PN (6ES7513-2GM03-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-53"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 CPU 1513pro-2 PN (6ES7513-2PM03-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-54"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 CPU 1515-2 PN (6ES7515-2AM01-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-55"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 CPU 1515-2 PN (6ES7515-2AM02-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-56"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 CPU 1515-2 PN (6ES7515-2AN03-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-57"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 CPU 1515F-2 PN (6ES7515-2FM01-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-58"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 CPU 1515F-2 PN (6ES7515-2FM02-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-59"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 CPU 1515F-2 PN (6ES7515-2FN03-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-60"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 CPU 1515R-2 PN (6ES7515-2RM00-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-61"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 CPU 1515R-2 PN (6ES7515-2RN03-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-62"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 CPU 1515T-2 PN (6ES7515-2TM01-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-63"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 CPU 1515T-2 PN (6ES7515-2TN03-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-64"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 CPU 1515TF-2 PN (6ES7515-2UM01-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-65"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 CPU 1515TF-2 PN (6ES7515-2UN03-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-66"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 CPU 1516-3 PN/DP (6ES7516-3AN01-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-67"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 CPU 1516-3 PN/DP (6ES7516-3AN02-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-68"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 CPU 1516-3 PN/DP (6ES7516-3AP03-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-69"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 CPU 1516F-3 PN/DP (6ES7516-3FN01-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-70"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 CPU 1516F-3 PN/DP (6ES7516-3FN02-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-71"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 CPU 1516F-3 PN/DP (6ES7516-3FP03-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-72"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 CPU 1516T-3 PN (6ES7516-3TP10-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-73"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 CPU 1516T-3 PN/DP (6ES7516-3TN00-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-74"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 CPU 1516TF-3 PN (6ES7516-3UP10-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-75"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 CPU 1516TF-3 PN/DP (6ES7516-3UN00-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-76"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 CPU 1516pro F-2 PN (6ES7516-2GP03-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-77"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 CPU 1516pro-2 PN (6ES7516-2PP03-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-78"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 CPU 1517-3 PN (6ES7517-3AQ10-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-79"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 CPU 1517-3 PN/DP (6ES7517-3AP00-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-80"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 CPU 1517F-3 PN (6ES7517-3FQ10-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-81"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 CPU 1517F-3 PN/DP (6ES7517-3FP00-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-82"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 CPU 1517F-3 PN/DP (6ES7517-3FP01-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-83"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 CPU 1517H-3 PN (6ES7517-3HP00-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-84"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 CPU 1517H-4 PN (6ES7517-4HQ10-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-85"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 CPU 1517T-3 PN (6ES7517-3TQ10-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-86"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 CPU 1517T-3 PN/DP (6ES7517-3TP00-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-87"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 CPU 1517TF-3 PN (6ES7517-3UQ10-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-88"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 CPU 1517TF-3 PN/DP (6ES7517-3UP00-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-89"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 CPU 1518-3 PN (6ES7518-3AT10-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-90"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 CPU 1518-4 PN/DP (6ES7518-4AP00-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-91"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 CPU 1518-4 PN/DP MFP (6ES7518-4AX00-1AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-92"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 CPU 1518-4 PN/DP MFP (6ES7518-4AX00-1AC0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-93"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 CPU 1518F-3 PN (6ES7518-3FT10-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-94"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 CPU 1518F-4 PN/DP (6ES7518-4FP00-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-95"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP (6ES7518-4FX00-1AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-96"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP (6ES7518-4FX00-1AC0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-97"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 CPU 1518HF-4 PN (6ES7518-4JP00-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-98"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 CPU 1518HF-4 PN (6ES7518-4JT10-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-99"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 CPU 1518T-3 PN (6ES7518-3TT10-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-100"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 CPU 1518T-4 PN/DP (6ES7518-4TP00-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-101"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 CPU 1518TF-3 PN (6ES7518-3UT10-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-102"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 CPU 1518TF-4 PN/DP (6ES7518-4UP00-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-103"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 CPU S7-1518-4 PN/DP ODK (6ES7518-4AP00-3AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-104"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 CPU S7-1518F-4 PN/DP ODK (6ES7518-4FP00-3AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-105"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 ET 200pro: CPU 1513PRO F-2 PN (6ES7513-2GL00-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-106"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 ET 200pro: CPU 1513PRO-2 PN (6ES7513-2PL00-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-107"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 ET 200pro: CPU 1516PRO F-2 PN (6ES7516-2GN00-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-108"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 ET 200pro: CPU 1516PRO-2 PN (6ES7516-2PN00-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-109"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 Software Controller CPU 1507S F V2"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-110"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 Software Controller CPU 1507S F V3"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-111"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 Software Controller CPU 1507S F V4"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-112"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 Software Controller CPU 1507S V2"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-113"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 Software Controller CPU 1507S V3"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-114"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 Software Controller CPU 1507S V4"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-115"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 Software Controller CPU 1508S F V2"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-116"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 Software Controller CPU 1508S F V3"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-117"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 Software Controller CPU 1508S F V4"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-118"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 Software Controller CPU 1508S T V3"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-119"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 Software Controller CPU 1508S TF V3"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-120"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 Software Controller CPU 1508S V2"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-121"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 Software Controller CPU 1508S V3"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-122"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 Software Controller CPU 1508S V4"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-123"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 Software Controller Linux V2"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-124"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 Software Controller Linux V3"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-125"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 TM MFP - GNU/Linux subsystem"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-126"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-PLCSIM Advanced"
}
],
"category": "vendor",
"name": "Siemens"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-29857",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "other",
"text": "Improper Input Validation",
"title": "CWE-20"
},
{
"category": "other",
"text": "Uncontrolled Resource Consumption",
"title": "CWE-400"
},
{
"category": "other",
"text": "Out-of-bounds Read",
"title": "CWE-125"
},
{
"category": "description",
"text": "Multiple vulnerabilities across Oracle products, including Utilities Application Framework, Fusion Middleware, and WebLogic Server, allow unauthenticated attackers to execute denial of service attacks, with CVSS scores of 7.5 and varying damage ratings.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36",
"CSAFPID-37",
"CSAFPID-38",
"CSAFPID-39",
"CSAFPID-40",
"CSAFPID-41",
"CSAFPID-42",
"CSAFPID-43",
"CSAFPID-44",
"CSAFPID-45",
"CSAFPID-46",
"CSAFPID-47",
"CSAFPID-48",
"CSAFPID-49",
"CSAFPID-50",
"CSAFPID-51",
"CSAFPID-52",
"CSAFPID-53",
"CSAFPID-54",
"CSAFPID-55",
"CSAFPID-56",
"CSAFPID-57",
"CSAFPID-58",
"CSAFPID-59",
"CSAFPID-60",
"CSAFPID-61",
"CSAFPID-62",
"CSAFPID-63",
"CSAFPID-64",
"CSAFPID-65",
"CSAFPID-66",
"CSAFPID-67",
"CSAFPID-68",
"CSAFPID-69",
"CSAFPID-70",
"CSAFPID-71",
"CSAFPID-72",
"CSAFPID-73",
"CSAFPID-74",
"CSAFPID-75",
"CSAFPID-76",
"CSAFPID-77",
"CSAFPID-78",
"CSAFPID-79",
"CSAFPID-80",
"CSAFPID-81",
"CSAFPID-82",
"CSAFPID-83",
"CSAFPID-84",
"CSAFPID-85",
"CSAFPID-86",
"CSAFPID-87",
"CSAFPID-88",
"CSAFPID-89",
"CSAFPID-90",
"CSAFPID-91",
"CSAFPID-92",
"CSAFPID-93",
"CSAFPID-94",
"CSAFPID-95",
"CSAFPID-96",
"CSAFPID-97",
"CSAFPID-98",
"CSAFPID-99",
"CSAFPID-100",
"CSAFPID-101",
"CSAFPID-102",
"CSAFPID-103",
"CSAFPID-104",
"CSAFPID-105",
"CSAFPID-106",
"CSAFPID-107",
"CSAFPID-108",
"CSAFPID-109",
"CSAFPID-110",
"CSAFPID-111",
"CSAFPID-112",
"CSAFPID-113",
"CSAFPID-114",
"CSAFPID-115",
"CSAFPID-116",
"CSAFPID-117",
"CSAFPID-118",
"CSAFPID-119",
"CSAFPID-120",
"CSAFPID-121",
"CSAFPID-122",
"CSAFPID-123",
"CSAFPID-124",
"CSAFPID-125",
"CSAFPID-126"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-29857 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2024/cve-2024-29857.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36",
"CSAFPID-37",
"CSAFPID-38",
"CSAFPID-39",
"CSAFPID-40",
"CSAFPID-41",
"CSAFPID-42",
"CSAFPID-43",
"CSAFPID-44",
"CSAFPID-45",
"CSAFPID-46",
"CSAFPID-47",
"CSAFPID-48",
"CSAFPID-49",
"CSAFPID-50",
"CSAFPID-51",
"CSAFPID-52",
"CSAFPID-53",
"CSAFPID-54",
"CSAFPID-55",
"CSAFPID-56",
"CSAFPID-57",
"CSAFPID-58",
"CSAFPID-59",
"CSAFPID-60",
"CSAFPID-61",
"CSAFPID-62",
"CSAFPID-63",
"CSAFPID-64",
"CSAFPID-65",
"CSAFPID-66",
"CSAFPID-67",
"CSAFPID-68",
"CSAFPID-69",
"CSAFPID-70",
"CSAFPID-71",
"CSAFPID-72",
"CSAFPID-73",
"CSAFPID-74",
"CSAFPID-75",
"CSAFPID-76",
"CSAFPID-77",
"CSAFPID-78",
"CSAFPID-79",
"CSAFPID-80",
"CSAFPID-81",
"CSAFPID-82",
"CSAFPID-83",
"CSAFPID-84",
"CSAFPID-85",
"CSAFPID-86",
"CSAFPID-87",
"CSAFPID-88",
"CSAFPID-89",
"CSAFPID-90",
"CSAFPID-91",
"CSAFPID-92",
"CSAFPID-93",
"CSAFPID-94",
"CSAFPID-95",
"CSAFPID-96",
"CSAFPID-97",
"CSAFPID-98",
"CSAFPID-99",
"CSAFPID-100",
"CSAFPID-101",
"CSAFPID-102",
"CSAFPID-103",
"CSAFPID-104",
"CSAFPID-105",
"CSAFPID-106",
"CSAFPID-107",
"CSAFPID-108",
"CSAFPID-109",
"CSAFPID-110",
"CSAFPID-111",
"CSAFPID-112",
"CSAFPID-113",
"CSAFPID-114",
"CSAFPID-115",
"CSAFPID-116",
"CSAFPID-117",
"CSAFPID-118",
"CSAFPID-119",
"CSAFPID-120",
"CSAFPID-121",
"CSAFPID-122",
"CSAFPID-123",
"CSAFPID-124",
"CSAFPID-125",
"CSAFPID-126"
]
}
],
"title": "CVE-2024-29857"
},
{
"cve": "CVE-2024-30171",
"cwe": {
"id": "CWE-208",
"name": "Observable Timing Discrepancy"
},
"notes": [
{
"category": "other",
"text": "Observable Timing Discrepancy",
"title": "CWE-208"
},
{
"category": "other",
"text": "Observable Discrepancy",
"title": "CWE-203"
},
{
"category": "description",
"text": "Multiple vulnerabilities across Oracle Utilities, WebLogic Server, and Bouncy Castle libraries allow for denial of service attacks and sensitive data leakage through timing side-channel exploits.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36",
"CSAFPID-37",
"CSAFPID-38",
"CSAFPID-39",
"CSAFPID-40",
"CSAFPID-41",
"CSAFPID-42",
"CSAFPID-43",
"CSAFPID-44",
"CSAFPID-45",
"CSAFPID-46",
"CSAFPID-47",
"CSAFPID-48",
"CSAFPID-49",
"CSAFPID-50",
"CSAFPID-51",
"CSAFPID-52",
"CSAFPID-53",
"CSAFPID-54",
"CSAFPID-55",
"CSAFPID-56",
"CSAFPID-57",
"CSAFPID-58",
"CSAFPID-59",
"CSAFPID-60",
"CSAFPID-61",
"CSAFPID-62",
"CSAFPID-63",
"CSAFPID-64",
"CSAFPID-65",
"CSAFPID-66",
"CSAFPID-67",
"CSAFPID-68",
"CSAFPID-69",
"CSAFPID-70",
"CSAFPID-71",
"CSAFPID-72",
"CSAFPID-73",
"CSAFPID-74",
"CSAFPID-75",
"CSAFPID-76",
"CSAFPID-77",
"CSAFPID-78",
"CSAFPID-79",
"CSAFPID-80",
"CSAFPID-81",
"CSAFPID-82",
"CSAFPID-83",
"CSAFPID-84",
"CSAFPID-85",
"CSAFPID-86",
"CSAFPID-87",
"CSAFPID-88",
"CSAFPID-89",
"CSAFPID-90",
"CSAFPID-91",
"CSAFPID-92",
"CSAFPID-93",
"CSAFPID-94",
"CSAFPID-95",
"CSAFPID-96",
"CSAFPID-97",
"CSAFPID-98",
"CSAFPID-99",
"CSAFPID-100",
"CSAFPID-101",
"CSAFPID-102",
"CSAFPID-103",
"CSAFPID-104",
"CSAFPID-105",
"CSAFPID-106",
"CSAFPID-107",
"CSAFPID-108",
"CSAFPID-109",
"CSAFPID-110",
"CSAFPID-111",
"CSAFPID-112",
"CSAFPID-113",
"CSAFPID-114",
"CSAFPID-115",
"CSAFPID-116",
"CSAFPID-117",
"CSAFPID-118",
"CSAFPID-119",
"CSAFPID-120",
"CSAFPID-121",
"CSAFPID-122",
"CSAFPID-123",
"CSAFPID-124",
"CSAFPID-125",
"CSAFPID-126"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-30171 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2024/cve-2024-30171.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36",
"CSAFPID-37",
"CSAFPID-38",
"CSAFPID-39",
"CSAFPID-40",
"CSAFPID-41",
"CSAFPID-42",
"CSAFPID-43",
"CSAFPID-44",
"CSAFPID-45",
"CSAFPID-46",
"CSAFPID-47",
"CSAFPID-48",
"CSAFPID-49",
"CSAFPID-50",
"CSAFPID-51",
"CSAFPID-52",
"CSAFPID-53",
"CSAFPID-54",
"CSAFPID-55",
"CSAFPID-56",
"CSAFPID-57",
"CSAFPID-58",
"CSAFPID-59",
"CSAFPID-60",
"CSAFPID-61",
"CSAFPID-62",
"CSAFPID-63",
"CSAFPID-64",
"CSAFPID-65",
"CSAFPID-66",
"CSAFPID-67",
"CSAFPID-68",
"CSAFPID-69",
"CSAFPID-70",
"CSAFPID-71",
"CSAFPID-72",
"CSAFPID-73",
"CSAFPID-74",
"CSAFPID-75",
"CSAFPID-76",
"CSAFPID-77",
"CSAFPID-78",
"CSAFPID-79",
"CSAFPID-80",
"CSAFPID-81",
"CSAFPID-82",
"CSAFPID-83",
"CSAFPID-84",
"CSAFPID-85",
"CSAFPID-86",
"CSAFPID-87",
"CSAFPID-88",
"CSAFPID-89",
"CSAFPID-90",
"CSAFPID-91",
"CSAFPID-92",
"CSAFPID-93",
"CSAFPID-94",
"CSAFPID-95",
"CSAFPID-96",
"CSAFPID-97",
"CSAFPID-98",
"CSAFPID-99",
"CSAFPID-100",
"CSAFPID-101",
"CSAFPID-102",
"CSAFPID-103",
"CSAFPID-104",
"CSAFPID-105",
"CSAFPID-106",
"CSAFPID-107",
"CSAFPID-108",
"CSAFPID-109",
"CSAFPID-110",
"CSAFPID-111",
"CSAFPID-112",
"CSAFPID-113",
"CSAFPID-114",
"CSAFPID-115",
"CSAFPID-116",
"CSAFPID-117",
"CSAFPID-118",
"CSAFPID-119",
"CSAFPID-120",
"CSAFPID-121",
"CSAFPID-122",
"CSAFPID-123",
"CSAFPID-124",
"CSAFPID-125",
"CSAFPID-126"
]
}
],
"title": "CVE-2024-30171"
},
{
"cve": "CVE-2024-30172",
"cwe": {
"id": "CWE-835",
"name": "Loop with Unreachable Exit Condition (\u0027Infinite Loop\u0027)"
},
"notes": [
{
"category": "other",
"text": "Loop with Unreachable Exit Condition (\u0027Infinite Loop\u0027)",
"title": "CWE-835"
},
{
"category": "other",
"text": "Improper Input Validation",
"title": "CWE-20"
},
{
"category": "description",
"text": "Multiple vulnerabilities across Oracle Utilities Application Framework, WebLogic Server, and Business Intelligence Enterprise Edition, as well as Bouncy Castle libraries, allow unauthenticated attackers to induce denial of service, with CVSS scores of 7.5 for Oracle products.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36",
"CSAFPID-37",
"CSAFPID-38",
"CSAFPID-39",
"CSAFPID-40",
"CSAFPID-41",
"CSAFPID-42",
"CSAFPID-43",
"CSAFPID-44",
"CSAFPID-45",
"CSAFPID-46",
"CSAFPID-47",
"CSAFPID-48",
"CSAFPID-49",
"CSAFPID-50",
"CSAFPID-51",
"CSAFPID-52",
"CSAFPID-53",
"CSAFPID-54",
"CSAFPID-55",
"CSAFPID-56",
"CSAFPID-57",
"CSAFPID-58",
"CSAFPID-59",
"CSAFPID-60",
"CSAFPID-61",
"CSAFPID-62",
"CSAFPID-63",
"CSAFPID-64",
"CSAFPID-65",
"CSAFPID-66",
"CSAFPID-67",
"CSAFPID-68",
"CSAFPID-69",
"CSAFPID-70",
"CSAFPID-71",
"CSAFPID-72",
"CSAFPID-73",
"CSAFPID-74",
"CSAFPID-75",
"CSAFPID-76",
"CSAFPID-77",
"CSAFPID-78",
"CSAFPID-79",
"CSAFPID-80",
"CSAFPID-81",
"CSAFPID-82",
"CSAFPID-83",
"CSAFPID-84",
"CSAFPID-85",
"CSAFPID-86",
"CSAFPID-87",
"CSAFPID-88",
"CSAFPID-89",
"CSAFPID-90",
"CSAFPID-91",
"CSAFPID-92",
"CSAFPID-93",
"CSAFPID-94",
"CSAFPID-95",
"CSAFPID-96",
"CSAFPID-97",
"CSAFPID-98",
"CSAFPID-99",
"CSAFPID-100",
"CSAFPID-101",
"CSAFPID-102",
"CSAFPID-103",
"CSAFPID-104",
"CSAFPID-105",
"CSAFPID-106",
"CSAFPID-107",
"CSAFPID-108",
"CSAFPID-109",
"CSAFPID-110",
"CSAFPID-111",
"CSAFPID-112",
"CSAFPID-113",
"CSAFPID-114",
"CSAFPID-115",
"CSAFPID-116",
"CSAFPID-117",
"CSAFPID-118",
"CSAFPID-119",
"CSAFPID-120",
"CSAFPID-121",
"CSAFPID-122",
"CSAFPID-123",
"CSAFPID-124",
"CSAFPID-125",
"CSAFPID-126"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-30172 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2024/cve-2024-30172.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36",
"CSAFPID-37",
"CSAFPID-38",
"CSAFPID-39",
"CSAFPID-40",
"CSAFPID-41",
"CSAFPID-42",
"CSAFPID-43",
"CSAFPID-44",
"CSAFPID-45",
"CSAFPID-46",
"CSAFPID-47",
"CSAFPID-48",
"CSAFPID-49",
"CSAFPID-50",
"CSAFPID-51",
"CSAFPID-52",
"CSAFPID-53",
"CSAFPID-54",
"CSAFPID-55",
"CSAFPID-56",
"CSAFPID-57",
"CSAFPID-58",
"CSAFPID-59",
"CSAFPID-60",
"CSAFPID-61",
"CSAFPID-62",
"CSAFPID-63",
"CSAFPID-64",
"CSAFPID-65",
"CSAFPID-66",
"CSAFPID-67",
"CSAFPID-68",
"CSAFPID-69",
"CSAFPID-70",
"CSAFPID-71",
"CSAFPID-72",
"CSAFPID-73",
"CSAFPID-74",
"CSAFPID-75",
"CSAFPID-76",
"CSAFPID-77",
"CSAFPID-78",
"CSAFPID-79",
"CSAFPID-80",
"CSAFPID-81",
"CSAFPID-82",
"CSAFPID-83",
"CSAFPID-84",
"CSAFPID-85",
"CSAFPID-86",
"CSAFPID-87",
"CSAFPID-88",
"CSAFPID-89",
"CSAFPID-90",
"CSAFPID-91",
"CSAFPID-92",
"CSAFPID-93",
"CSAFPID-94",
"CSAFPID-95",
"CSAFPID-96",
"CSAFPID-97",
"CSAFPID-98",
"CSAFPID-99",
"CSAFPID-100",
"CSAFPID-101",
"CSAFPID-102",
"CSAFPID-103",
"CSAFPID-104",
"CSAFPID-105",
"CSAFPID-106",
"CSAFPID-107",
"CSAFPID-108",
"CSAFPID-109",
"CSAFPID-110",
"CSAFPID-111",
"CSAFPID-112",
"CSAFPID-113",
"CSAFPID-114",
"CSAFPID-115",
"CSAFPID-116",
"CSAFPID-117",
"CSAFPID-118",
"CSAFPID-119",
"CSAFPID-120",
"CSAFPID-121",
"CSAFPID-122",
"CSAFPID-123",
"CSAFPID-124",
"CSAFPID-125",
"CSAFPID-126"
]
}
],
"title": "CVE-2024-30172"
},
{
"cve": "CVE-2024-41996",
"cwe": {
"id": "CWE-295",
"name": "Improper Certificate Validation"
},
"notes": [
{
"category": "other",
"text": "Improper Certificate Validation",
"title": "CWE-295"
},
{
"category": "description",
"text": "A vulnerability in the Diffie-Hellman Key Agreement Protocol in OpenSSL allows remote attackers to cause excessive server-side computational load by exploiting public key order validation with approved safe primes, addressed in updates fixing CVE-2023-50782 and CVE-2024-41996.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36",
"CSAFPID-37",
"CSAFPID-38",
"CSAFPID-39",
"CSAFPID-40",
"CSAFPID-41",
"CSAFPID-42",
"CSAFPID-43",
"CSAFPID-44",
"CSAFPID-45",
"CSAFPID-46",
"CSAFPID-47",
"CSAFPID-48",
"CSAFPID-49",
"CSAFPID-50",
"CSAFPID-51",
"CSAFPID-52",
"CSAFPID-53",
"CSAFPID-54",
"CSAFPID-55",
"CSAFPID-56",
"CSAFPID-57",
"CSAFPID-58",
"CSAFPID-59",
"CSAFPID-60",
"CSAFPID-61",
"CSAFPID-62",
"CSAFPID-63",
"CSAFPID-64",
"CSAFPID-65",
"CSAFPID-66",
"CSAFPID-67",
"CSAFPID-68",
"CSAFPID-69",
"CSAFPID-70",
"CSAFPID-71",
"CSAFPID-72",
"CSAFPID-73",
"CSAFPID-74",
"CSAFPID-75",
"CSAFPID-76",
"CSAFPID-77",
"CSAFPID-78",
"CSAFPID-79",
"CSAFPID-80",
"CSAFPID-81",
"CSAFPID-82",
"CSAFPID-83",
"CSAFPID-84",
"CSAFPID-85",
"CSAFPID-86",
"CSAFPID-87",
"CSAFPID-88",
"CSAFPID-89",
"CSAFPID-90",
"CSAFPID-91",
"CSAFPID-92",
"CSAFPID-93",
"CSAFPID-94",
"CSAFPID-95",
"CSAFPID-96",
"CSAFPID-97",
"CSAFPID-98",
"CSAFPID-99",
"CSAFPID-100",
"CSAFPID-101",
"CSAFPID-102",
"CSAFPID-103",
"CSAFPID-104",
"CSAFPID-105",
"CSAFPID-106",
"CSAFPID-107",
"CSAFPID-108",
"CSAFPID-109",
"CSAFPID-110",
"CSAFPID-111",
"CSAFPID-112",
"CSAFPID-113",
"CSAFPID-114",
"CSAFPID-115",
"CSAFPID-116",
"CSAFPID-117",
"CSAFPID-118",
"CSAFPID-119",
"CSAFPID-120",
"CSAFPID-121",
"CSAFPID-122",
"CSAFPID-123",
"CSAFPID-124",
"CSAFPID-125",
"CSAFPID-126"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-41996 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2024/cve-2024-41996.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36",
"CSAFPID-37",
"CSAFPID-38",
"CSAFPID-39",
"CSAFPID-40",
"CSAFPID-41",
"CSAFPID-42",
"CSAFPID-43",
"CSAFPID-44",
"CSAFPID-45",
"CSAFPID-46",
"CSAFPID-47",
"CSAFPID-48",
"CSAFPID-49",
"CSAFPID-50",
"CSAFPID-51",
"CSAFPID-52",
"CSAFPID-53",
"CSAFPID-54",
"CSAFPID-55",
"CSAFPID-56",
"CSAFPID-57",
"CSAFPID-58",
"CSAFPID-59",
"CSAFPID-60",
"CSAFPID-61",
"CSAFPID-62",
"CSAFPID-63",
"CSAFPID-64",
"CSAFPID-65",
"CSAFPID-66",
"CSAFPID-67",
"CSAFPID-68",
"CSAFPID-69",
"CSAFPID-70",
"CSAFPID-71",
"CSAFPID-72",
"CSAFPID-73",
"CSAFPID-74",
"CSAFPID-75",
"CSAFPID-76",
"CSAFPID-77",
"CSAFPID-78",
"CSAFPID-79",
"CSAFPID-80",
"CSAFPID-81",
"CSAFPID-82",
"CSAFPID-83",
"CSAFPID-84",
"CSAFPID-85",
"CSAFPID-86",
"CSAFPID-87",
"CSAFPID-88",
"CSAFPID-89",
"CSAFPID-90",
"CSAFPID-91",
"CSAFPID-92",
"CSAFPID-93",
"CSAFPID-94",
"CSAFPID-95",
"CSAFPID-96",
"CSAFPID-97",
"CSAFPID-98",
"CSAFPID-99",
"CSAFPID-100",
"CSAFPID-101",
"CSAFPID-102",
"CSAFPID-103",
"CSAFPID-104",
"CSAFPID-105",
"CSAFPID-106",
"CSAFPID-107",
"CSAFPID-108",
"CSAFPID-109",
"CSAFPID-110",
"CSAFPID-111",
"CSAFPID-112",
"CSAFPID-113",
"CSAFPID-114",
"CSAFPID-115",
"CSAFPID-116",
"CSAFPID-117",
"CSAFPID-118",
"CSAFPID-119",
"CSAFPID-120",
"CSAFPID-121",
"CSAFPID-122",
"CSAFPID-123",
"CSAFPID-124",
"CSAFPID-125",
"CSAFPID-126"
]
}
],
"title": "CVE-2024-41996"
},
{
"cve": "CVE-2025-6965",
"cwe": {
"id": "CWE-197",
"name": "Numeric Truncation Error"
},
"notes": [
{
"category": "other",
"text": "Numeric Truncation Error",
"title": "CWE-197"
},
{
"category": "description",
"text": "Critical vulnerabilities in Oracle Communications Cloud Native Core Unified Data Repository and Oracle Siebel CRM Cloud Applications allow unauthenticated attackers full system compromise, while multiple SQLite-related flaws affect various products including NetApp and Apple software, causing memory corruption and integer truncation issues.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:H/AT:P/PR:L/UI:N/VC:L/VI:H/VA:L/SC:L/SI:H/SA:L/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:N/AU:N/R:U/V:D/RE:L/U:Green",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36",
"CSAFPID-37",
"CSAFPID-38",
"CSAFPID-39",
"CSAFPID-40",
"CSAFPID-41",
"CSAFPID-42",
"CSAFPID-43",
"CSAFPID-44",
"CSAFPID-45",
"CSAFPID-46",
"CSAFPID-47",
"CSAFPID-48",
"CSAFPID-49",
"CSAFPID-50",
"CSAFPID-51",
"CSAFPID-52",
"CSAFPID-53",
"CSAFPID-54",
"CSAFPID-55",
"CSAFPID-56",
"CSAFPID-57",
"CSAFPID-58",
"CSAFPID-59",
"CSAFPID-60",
"CSAFPID-61",
"CSAFPID-62",
"CSAFPID-63",
"CSAFPID-64",
"CSAFPID-65",
"CSAFPID-66",
"CSAFPID-67",
"CSAFPID-68",
"CSAFPID-69",
"CSAFPID-70",
"CSAFPID-71",
"CSAFPID-72",
"CSAFPID-73",
"CSAFPID-74",
"CSAFPID-75",
"CSAFPID-76",
"CSAFPID-77",
"CSAFPID-78",
"CSAFPID-79",
"CSAFPID-80",
"CSAFPID-81",
"CSAFPID-82",
"CSAFPID-83",
"CSAFPID-84",
"CSAFPID-85",
"CSAFPID-86",
"CSAFPID-87",
"CSAFPID-88",
"CSAFPID-89",
"CSAFPID-90",
"CSAFPID-91",
"CSAFPID-92",
"CSAFPID-93",
"CSAFPID-94",
"CSAFPID-95",
"CSAFPID-96",
"CSAFPID-97",
"CSAFPID-98",
"CSAFPID-99",
"CSAFPID-100",
"CSAFPID-101",
"CSAFPID-102",
"CSAFPID-103",
"CSAFPID-104",
"CSAFPID-105",
"CSAFPID-106",
"CSAFPID-107",
"CSAFPID-108",
"CSAFPID-109",
"CSAFPID-110",
"CSAFPID-111",
"CSAFPID-112",
"CSAFPID-113",
"CSAFPID-114",
"CSAFPID-115",
"CSAFPID-116",
"CSAFPID-117",
"CSAFPID-118",
"CSAFPID-119",
"CSAFPID-120",
"CSAFPID-121",
"CSAFPID-122",
"CSAFPID-123",
"CSAFPID-124",
"CSAFPID-125",
"CSAFPID-126"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-6965 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-6965.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36",
"CSAFPID-37",
"CSAFPID-38",
"CSAFPID-39",
"CSAFPID-40",
"CSAFPID-41",
"CSAFPID-42",
"CSAFPID-43",
"CSAFPID-44",
"CSAFPID-45",
"CSAFPID-46",
"CSAFPID-47",
"CSAFPID-48",
"CSAFPID-49",
"CSAFPID-50",
"CSAFPID-51",
"CSAFPID-52",
"CSAFPID-53",
"CSAFPID-54",
"CSAFPID-55",
"CSAFPID-56",
"CSAFPID-57",
"CSAFPID-58",
"CSAFPID-59",
"CSAFPID-60",
"CSAFPID-61",
"CSAFPID-62",
"CSAFPID-63",
"CSAFPID-64",
"CSAFPID-65",
"CSAFPID-66",
"CSAFPID-67",
"CSAFPID-68",
"CSAFPID-69",
"CSAFPID-70",
"CSAFPID-71",
"CSAFPID-72",
"CSAFPID-73",
"CSAFPID-74",
"CSAFPID-75",
"CSAFPID-76",
"CSAFPID-77",
"CSAFPID-78",
"CSAFPID-79",
"CSAFPID-80",
"CSAFPID-81",
"CSAFPID-82",
"CSAFPID-83",
"CSAFPID-84",
"CSAFPID-85",
"CSAFPID-86",
"CSAFPID-87",
"CSAFPID-88",
"CSAFPID-89",
"CSAFPID-90",
"CSAFPID-91",
"CSAFPID-92",
"CSAFPID-93",
"CSAFPID-94",
"CSAFPID-95",
"CSAFPID-96",
"CSAFPID-97",
"CSAFPID-98",
"CSAFPID-99",
"CSAFPID-100",
"CSAFPID-101",
"CSAFPID-102",
"CSAFPID-103",
"CSAFPID-104",
"CSAFPID-105",
"CSAFPID-106",
"CSAFPID-107",
"CSAFPID-108",
"CSAFPID-109",
"CSAFPID-110",
"CSAFPID-111",
"CSAFPID-112",
"CSAFPID-113",
"CSAFPID-114",
"CSAFPID-115",
"CSAFPID-116",
"CSAFPID-117",
"CSAFPID-118",
"CSAFPID-119",
"CSAFPID-120",
"CSAFPID-121",
"CSAFPID-122",
"CSAFPID-123",
"CSAFPID-124",
"CSAFPID-125",
"CSAFPID-126"
]
}
],
"title": "CVE-2025-6965"
},
{
"cve": "CVE-2025-7783",
"cwe": {
"id": "CWE-330",
"name": "Use of Insufficiently Random Values"
},
"notes": [
{
"category": "other",
"text": "Use of Insufficiently Random Values",
"title": "CWE-330"
},
{
"category": "description",
"text": "The form-data library\u0027s use of predictable random number generation for boundary values poses security risks, while vulnerabilities in HPE products allow for Remote Code Execution and Local Authentication Bypass.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:H/VI:H/VA:N/SC:H/SI:H/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36",
"CSAFPID-37",
"CSAFPID-38",
"CSAFPID-39",
"CSAFPID-40",
"CSAFPID-41",
"CSAFPID-42",
"CSAFPID-43",
"CSAFPID-44",
"CSAFPID-45",
"CSAFPID-46",
"CSAFPID-47",
"CSAFPID-48",
"CSAFPID-49",
"CSAFPID-50",
"CSAFPID-51",
"CSAFPID-52",
"CSAFPID-53",
"CSAFPID-54",
"CSAFPID-55",
"CSAFPID-56",
"CSAFPID-57",
"CSAFPID-58",
"CSAFPID-59",
"CSAFPID-60",
"CSAFPID-61",
"CSAFPID-62",
"CSAFPID-63",
"CSAFPID-64",
"CSAFPID-65",
"CSAFPID-66",
"CSAFPID-67",
"CSAFPID-68",
"CSAFPID-69",
"CSAFPID-70",
"CSAFPID-71",
"CSAFPID-72",
"CSAFPID-73",
"CSAFPID-74",
"CSAFPID-75",
"CSAFPID-76",
"CSAFPID-77",
"CSAFPID-78",
"CSAFPID-79",
"CSAFPID-80",
"CSAFPID-81",
"CSAFPID-82",
"CSAFPID-83",
"CSAFPID-84",
"CSAFPID-85",
"CSAFPID-86",
"CSAFPID-87",
"CSAFPID-88",
"CSAFPID-89",
"CSAFPID-90",
"CSAFPID-91",
"CSAFPID-92",
"CSAFPID-93",
"CSAFPID-94",
"CSAFPID-95",
"CSAFPID-96",
"CSAFPID-97",
"CSAFPID-98",
"CSAFPID-99",
"CSAFPID-100",
"CSAFPID-101",
"CSAFPID-102",
"CSAFPID-103",
"CSAFPID-104",
"CSAFPID-105",
"CSAFPID-106",
"CSAFPID-107",
"CSAFPID-108",
"CSAFPID-109",
"CSAFPID-110",
"CSAFPID-111",
"CSAFPID-112",
"CSAFPID-113",
"CSAFPID-114",
"CSAFPID-115",
"CSAFPID-116",
"CSAFPID-117",
"CSAFPID-118",
"CSAFPID-119",
"CSAFPID-120",
"CSAFPID-121",
"CSAFPID-122",
"CSAFPID-123",
"CSAFPID-124",
"CSAFPID-125",
"CSAFPID-126"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-7783 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-7783.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36",
"CSAFPID-37",
"CSAFPID-38",
"CSAFPID-39",
"CSAFPID-40",
"CSAFPID-41",
"CSAFPID-42",
"CSAFPID-43",
"CSAFPID-44",
"CSAFPID-45",
"CSAFPID-46",
"CSAFPID-47",
"CSAFPID-48",
"CSAFPID-49",
"CSAFPID-50",
"CSAFPID-51",
"CSAFPID-52",
"CSAFPID-53",
"CSAFPID-54",
"CSAFPID-55",
"CSAFPID-56",
"CSAFPID-57",
"CSAFPID-58",
"CSAFPID-59",
"CSAFPID-60",
"CSAFPID-61",
"CSAFPID-62",
"CSAFPID-63",
"CSAFPID-64",
"CSAFPID-65",
"CSAFPID-66",
"CSAFPID-67",
"CSAFPID-68",
"CSAFPID-69",
"CSAFPID-70",
"CSAFPID-71",
"CSAFPID-72",
"CSAFPID-73",
"CSAFPID-74",
"CSAFPID-75",
"CSAFPID-76",
"CSAFPID-77",
"CSAFPID-78",
"CSAFPID-79",
"CSAFPID-80",
"CSAFPID-81",
"CSAFPID-82",
"CSAFPID-83",
"CSAFPID-84",
"CSAFPID-85",
"CSAFPID-86",
"CSAFPID-87",
"CSAFPID-88",
"CSAFPID-89",
"CSAFPID-90",
"CSAFPID-91",
"CSAFPID-92",
"CSAFPID-93",
"CSAFPID-94",
"CSAFPID-95",
"CSAFPID-96",
"CSAFPID-97",
"CSAFPID-98",
"CSAFPID-99",
"CSAFPID-100",
"CSAFPID-101",
"CSAFPID-102",
"CSAFPID-103",
"CSAFPID-104",
"CSAFPID-105",
"CSAFPID-106",
"CSAFPID-107",
"CSAFPID-108",
"CSAFPID-109",
"CSAFPID-110",
"CSAFPID-111",
"CSAFPID-112",
"CSAFPID-113",
"CSAFPID-114",
"CSAFPID-115",
"CSAFPID-116",
"CSAFPID-117",
"CSAFPID-118",
"CSAFPID-119",
"CSAFPID-120",
"CSAFPID-121",
"CSAFPID-122",
"CSAFPID-123",
"CSAFPID-124",
"CSAFPID-125",
"CSAFPID-126"
]
}
],
"title": "CVE-2025-7783"
},
{
"cve": "CVE-2025-9230",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"notes": [
{
"category": "other",
"text": "Out-of-bounds Read",
"title": "CWE-125"
},
{
"category": "other",
"text": "Out-of-bounds Write",
"title": "CWE-787"
},
{
"category": "description",
"text": "Multiple OpenSSL versions have an out-of-bounds read/write vulnerability in RFC 3211 KEK unwrap related to password-based CMS decryption, with moderate severity due to low exploit likelihood, affecting products including NetApp, Oracle, and SAP components.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36",
"CSAFPID-37",
"CSAFPID-38",
"CSAFPID-39",
"CSAFPID-40",
"CSAFPID-41",
"CSAFPID-42",
"CSAFPID-43",
"CSAFPID-44",
"CSAFPID-45",
"CSAFPID-46",
"CSAFPID-47",
"CSAFPID-48",
"CSAFPID-49",
"CSAFPID-50",
"CSAFPID-51",
"CSAFPID-52",
"CSAFPID-53",
"CSAFPID-54",
"CSAFPID-55",
"CSAFPID-56",
"CSAFPID-57",
"CSAFPID-58",
"CSAFPID-59",
"CSAFPID-60",
"CSAFPID-61",
"CSAFPID-62",
"CSAFPID-63",
"CSAFPID-64",
"CSAFPID-65",
"CSAFPID-66",
"CSAFPID-67",
"CSAFPID-68",
"CSAFPID-69",
"CSAFPID-70",
"CSAFPID-71",
"CSAFPID-72",
"CSAFPID-73",
"CSAFPID-74",
"CSAFPID-75",
"CSAFPID-76",
"CSAFPID-77",
"CSAFPID-78",
"CSAFPID-79",
"CSAFPID-80",
"CSAFPID-81",
"CSAFPID-82",
"CSAFPID-83",
"CSAFPID-84",
"CSAFPID-85",
"CSAFPID-86",
"CSAFPID-87",
"CSAFPID-88",
"CSAFPID-89",
"CSAFPID-90",
"CSAFPID-91",
"CSAFPID-92",
"CSAFPID-93",
"CSAFPID-94",
"CSAFPID-95",
"CSAFPID-96",
"CSAFPID-97",
"CSAFPID-98",
"CSAFPID-99",
"CSAFPID-100",
"CSAFPID-101",
"CSAFPID-102",
"CSAFPID-103",
"CSAFPID-104",
"CSAFPID-105",
"CSAFPID-106",
"CSAFPID-107",
"CSAFPID-108",
"CSAFPID-109",
"CSAFPID-110",
"CSAFPID-111",
"CSAFPID-112",
"CSAFPID-113",
"CSAFPID-114",
"CSAFPID-115",
"CSAFPID-116",
"CSAFPID-117",
"CSAFPID-118",
"CSAFPID-119",
"CSAFPID-120",
"CSAFPID-121",
"CSAFPID-122",
"CSAFPID-123",
"CSAFPID-124",
"CSAFPID-125",
"CSAFPID-126"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-9230 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-9230.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36",
"CSAFPID-37",
"CSAFPID-38",
"CSAFPID-39",
"CSAFPID-40",
"CSAFPID-41",
"CSAFPID-42",
"CSAFPID-43",
"CSAFPID-44",
"CSAFPID-45",
"CSAFPID-46",
"CSAFPID-47",
"CSAFPID-48",
"CSAFPID-49",
"CSAFPID-50",
"CSAFPID-51",
"CSAFPID-52",
"CSAFPID-53",
"CSAFPID-54",
"CSAFPID-55",
"CSAFPID-56",
"CSAFPID-57",
"CSAFPID-58",
"CSAFPID-59",
"CSAFPID-60",
"CSAFPID-61",
"CSAFPID-62",
"CSAFPID-63",
"CSAFPID-64",
"CSAFPID-65",
"CSAFPID-66",
"CSAFPID-67",
"CSAFPID-68",
"CSAFPID-69",
"CSAFPID-70",
"CSAFPID-71",
"CSAFPID-72",
"CSAFPID-73",
"CSAFPID-74",
"CSAFPID-75",
"CSAFPID-76",
"CSAFPID-77",
"CSAFPID-78",
"CSAFPID-79",
"CSAFPID-80",
"CSAFPID-81",
"CSAFPID-82",
"CSAFPID-83",
"CSAFPID-84",
"CSAFPID-85",
"CSAFPID-86",
"CSAFPID-87",
"CSAFPID-88",
"CSAFPID-89",
"CSAFPID-90",
"CSAFPID-91",
"CSAFPID-92",
"CSAFPID-93",
"CSAFPID-94",
"CSAFPID-95",
"CSAFPID-96",
"CSAFPID-97",
"CSAFPID-98",
"CSAFPID-99",
"CSAFPID-100",
"CSAFPID-101",
"CSAFPID-102",
"CSAFPID-103",
"CSAFPID-104",
"CSAFPID-105",
"CSAFPID-106",
"CSAFPID-107",
"CSAFPID-108",
"CSAFPID-109",
"CSAFPID-110",
"CSAFPID-111",
"CSAFPID-112",
"CSAFPID-113",
"CSAFPID-114",
"CSAFPID-115",
"CSAFPID-116",
"CSAFPID-117",
"CSAFPID-118",
"CSAFPID-119",
"CSAFPID-120",
"CSAFPID-121",
"CSAFPID-122",
"CSAFPID-123",
"CSAFPID-124",
"CSAFPID-125",
"CSAFPID-126"
]
}
],
"title": "CVE-2025-9230"
},
{
"cve": "CVE-2025-9232",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"notes": [
{
"category": "other",
"text": "Out-of-bounds Read",
"title": "CWE-125"
},
{
"category": "description",
"text": "A low-severity out-of-bounds read vulnerability in OpenSSL HTTP client API occurs when the \u0027no_proxy\u0027 environment variable is set and the HTTP URL contains an IPv6 address, causing denial of service via application crash in multiple products including Oracle PeopleSoft and NetApp devices.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36",
"CSAFPID-37",
"CSAFPID-38",
"CSAFPID-39",
"CSAFPID-40",
"CSAFPID-41",
"CSAFPID-42",
"CSAFPID-43",
"CSAFPID-44",
"CSAFPID-45",
"CSAFPID-46",
"CSAFPID-47",
"CSAFPID-48",
"CSAFPID-49",
"CSAFPID-50",
"CSAFPID-51",
"CSAFPID-52",
"CSAFPID-53",
"CSAFPID-54",
"CSAFPID-55",
"CSAFPID-56",
"CSAFPID-57",
"CSAFPID-58",
"CSAFPID-59",
"CSAFPID-60",
"CSAFPID-61",
"CSAFPID-62",
"CSAFPID-63",
"CSAFPID-64",
"CSAFPID-65",
"CSAFPID-66",
"CSAFPID-67",
"CSAFPID-68",
"CSAFPID-69",
"CSAFPID-70",
"CSAFPID-71",
"CSAFPID-72",
"CSAFPID-73",
"CSAFPID-74",
"CSAFPID-75",
"CSAFPID-76",
"CSAFPID-77",
"CSAFPID-78",
"CSAFPID-79",
"CSAFPID-80",
"CSAFPID-81",
"CSAFPID-82",
"CSAFPID-83",
"CSAFPID-84",
"CSAFPID-85",
"CSAFPID-86",
"CSAFPID-87",
"CSAFPID-88",
"CSAFPID-89",
"CSAFPID-90",
"CSAFPID-91",
"CSAFPID-92",
"CSAFPID-93",
"CSAFPID-94",
"CSAFPID-95",
"CSAFPID-96",
"CSAFPID-97",
"CSAFPID-98",
"CSAFPID-99",
"CSAFPID-100",
"CSAFPID-101",
"CSAFPID-102",
"CSAFPID-103",
"CSAFPID-104",
"CSAFPID-105",
"CSAFPID-106",
"CSAFPID-107",
"CSAFPID-108",
"CSAFPID-109",
"CSAFPID-110",
"CSAFPID-111",
"CSAFPID-112",
"CSAFPID-113",
"CSAFPID-114",
"CSAFPID-115",
"CSAFPID-116",
"CSAFPID-117",
"CSAFPID-118",
"CSAFPID-119",
"CSAFPID-120",
"CSAFPID-121",
"CSAFPID-122",
"CSAFPID-123",
"CSAFPID-124",
"CSAFPID-125",
"CSAFPID-126"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-9232 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-9232.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36",
"CSAFPID-37",
"CSAFPID-38",
"CSAFPID-39",
"CSAFPID-40",
"CSAFPID-41",
"CSAFPID-42",
"CSAFPID-43",
"CSAFPID-44",
"CSAFPID-45",
"CSAFPID-46",
"CSAFPID-47",
"CSAFPID-48",
"CSAFPID-49",
"CSAFPID-50",
"CSAFPID-51",
"CSAFPID-52",
"CSAFPID-53",
"CSAFPID-54",
"CSAFPID-55",
"CSAFPID-56",
"CSAFPID-57",
"CSAFPID-58",
"CSAFPID-59",
"CSAFPID-60",
"CSAFPID-61",
"CSAFPID-62",
"CSAFPID-63",
"CSAFPID-64",
"CSAFPID-65",
"CSAFPID-66",
"CSAFPID-67",
"CSAFPID-68",
"CSAFPID-69",
"CSAFPID-70",
"CSAFPID-71",
"CSAFPID-72",
"CSAFPID-73",
"CSAFPID-74",
"CSAFPID-75",
"CSAFPID-76",
"CSAFPID-77",
"CSAFPID-78",
"CSAFPID-79",
"CSAFPID-80",
"CSAFPID-81",
"CSAFPID-82",
"CSAFPID-83",
"CSAFPID-84",
"CSAFPID-85",
"CSAFPID-86",
"CSAFPID-87",
"CSAFPID-88",
"CSAFPID-89",
"CSAFPID-90",
"CSAFPID-91",
"CSAFPID-92",
"CSAFPID-93",
"CSAFPID-94",
"CSAFPID-95",
"CSAFPID-96",
"CSAFPID-97",
"CSAFPID-98",
"CSAFPID-99",
"CSAFPID-100",
"CSAFPID-101",
"CSAFPID-102",
"CSAFPID-103",
"CSAFPID-104",
"CSAFPID-105",
"CSAFPID-106",
"CSAFPID-107",
"CSAFPID-108",
"CSAFPID-109",
"CSAFPID-110",
"CSAFPID-111",
"CSAFPID-112",
"CSAFPID-113",
"CSAFPID-114",
"CSAFPID-115",
"CSAFPID-116",
"CSAFPID-117",
"CSAFPID-118",
"CSAFPID-119",
"CSAFPID-120",
"CSAFPID-121",
"CSAFPID-122",
"CSAFPID-123",
"CSAFPID-124",
"CSAFPID-125",
"CSAFPID-126"
]
}
],
"title": "CVE-2025-9232"
},
{
"cve": "CVE-2025-9670",
"cwe": {
"id": "CWE-1333",
"name": "Inefficient Regular Expression Complexity"
},
"notes": [
{
"category": "other",
"text": "Inefficient Regular Expression Complexity",
"title": "CWE-1333"
},
{
"category": "other",
"text": "Uncontrolled Resource Consumption",
"title": "CWE-400"
},
{
"category": "description",
"text": "A security vulnerability in mixmark-io turndown up to version 7.2.1 allows remote attackers to exploit inefficient regular expression complexity in src/commonmark-rules.js, with a public exploit available.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36",
"CSAFPID-37",
"CSAFPID-38",
"CSAFPID-39",
"CSAFPID-40",
"CSAFPID-41",
"CSAFPID-42",
"CSAFPID-43",
"CSAFPID-44",
"CSAFPID-45",
"CSAFPID-46",
"CSAFPID-47",
"CSAFPID-48",
"CSAFPID-49",
"CSAFPID-50",
"CSAFPID-51",
"CSAFPID-52",
"CSAFPID-53",
"CSAFPID-54",
"CSAFPID-55",
"CSAFPID-56",
"CSAFPID-57",
"CSAFPID-58",
"CSAFPID-59",
"CSAFPID-60",
"CSAFPID-61",
"CSAFPID-62",
"CSAFPID-63",
"CSAFPID-64",
"CSAFPID-65",
"CSAFPID-66",
"CSAFPID-67",
"CSAFPID-68",
"CSAFPID-69",
"CSAFPID-70",
"CSAFPID-71",
"CSAFPID-72",
"CSAFPID-73",
"CSAFPID-74",
"CSAFPID-75",
"CSAFPID-76",
"CSAFPID-77",
"CSAFPID-78",
"CSAFPID-79",
"CSAFPID-80",
"CSAFPID-81",
"CSAFPID-82",
"CSAFPID-83",
"CSAFPID-84",
"CSAFPID-85",
"CSAFPID-86",
"CSAFPID-87",
"CSAFPID-88",
"CSAFPID-89",
"CSAFPID-90",
"CSAFPID-91",
"CSAFPID-92",
"CSAFPID-93",
"CSAFPID-94",
"CSAFPID-95",
"CSAFPID-96",
"CSAFPID-97",
"CSAFPID-98",
"CSAFPID-99",
"CSAFPID-100",
"CSAFPID-101",
"CSAFPID-102",
"CSAFPID-103",
"CSAFPID-104",
"CSAFPID-105",
"CSAFPID-106",
"CSAFPID-107",
"CSAFPID-108",
"CSAFPID-109",
"CSAFPID-110",
"CSAFPID-111",
"CSAFPID-112",
"CSAFPID-113",
"CSAFPID-114",
"CSAFPID-115",
"CSAFPID-116",
"CSAFPID-117",
"CSAFPID-118",
"CSAFPID-119",
"CSAFPID-120",
"CSAFPID-121",
"CSAFPID-122",
"CSAFPID-123",
"CSAFPID-124",
"CSAFPID-125",
"CSAFPID-126"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-9670 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-9670.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36",
"CSAFPID-37",
"CSAFPID-38",
"CSAFPID-39",
"CSAFPID-40",
"CSAFPID-41",
"CSAFPID-42",
"CSAFPID-43",
"CSAFPID-44",
"CSAFPID-45",
"CSAFPID-46",
"CSAFPID-47",
"CSAFPID-48",
"CSAFPID-49",
"CSAFPID-50",
"CSAFPID-51",
"CSAFPID-52",
"CSAFPID-53",
"CSAFPID-54",
"CSAFPID-55",
"CSAFPID-56",
"CSAFPID-57",
"CSAFPID-58",
"CSAFPID-59",
"CSAFPID-60",
"CSAFPID-61",
"CSAFPID-62",
"CSAFPID-63",
"CSAFPID-64",
"CSAFPID-65",
"CSAFPID-66",
"CSAFPID-67",
"CSAFPID-68",
"CSAFPID-69",
"CSAFPID-70",
"CSAFPID-71",
"CSAFPID-72",
"CSAFPID-73",
"CSAFPID-74",
"CSAFPID-75",
"CSAFPID-76",
"CSAFPID-77",
"CSAFPID-78",
"CSAFPID-79",
"CSAFPID-80",
"CSAFPID-81",
"CSAFPID-82",
"CSAFPID-83",
"CSAFPID-84",
"CSAFPID-85",
"CSAFPID-86",
"CSAFPID-87",
"CSAFPID-88",
"CSAFPID-89",
"CSAFPID-90",
"CSAFPID-91",
"CSAFPID-92",
"CSAFPID-93",
"CSAFPID-94",
"CSAFPID-95",
"CSAFPID-96",
"CSAFPID-97",
"CSAFPID-98",
"CSAFPID-99",
"CSAFPID-100",
"CSAFPID-101",
"CSAFPID-102",
"CSAFPID-103",
"CSAFPID-104",
"CSAFPID-105",
"CSAFPID-106",
"CSAFPID-107",
"CSAFPID-108",
"CSAFPID-109",
"CSAFPID-110",
"CSAFPID-111",
"CSAFPID-112",
"CSAFPID-113",
"CSAFPID-114",
"CSAFPID-115",
"CSAFPID-116",
"CSAFPID-117",
"CSAFPID-118",
"CSAFPID-119",
"CSAFPID-120",
"CSAFPID-121",
"CSAFPID-122",
"CSAFPID-123",
"CSAFPID-124",
"CSAFPID-125",
"CSAFPID-126"
]
}
],
"title": "CVE-2025-9670"
},
{
"cve": "CVE-2025-12816",
"cwe": {
"id": "CWE-436",
"name": "Interpretation Conflict"
},
"notes": [
{
"category": "other",
"text": "Interpretation Conflict",
"title": "CWE-436"
},
{
"category": "other",
"text": "Incorrect Behavior Order: Early Validation",
"title": "CWE-179"
},
{
"category": "description",
"text": "This update addresses multiple golang exporter upgrades, fixes critical CVE-2025-12816 in Prometheus related to ASN.1 validation bypass in node-forge \u22641.3.1, and includes various bug fixes and optimizations across components like grafana, spacecmd, and uyuni-tools.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36",
"CSAFPID-37",
"CSAFPID-38",
"CSAFPID-39",
"CSAFPID-40",
"CSAFPID-41",
"CSAFPID-42",
"CSAFPID-43",
"CSAFPID-44",
"CSAFPID-45",
"CSAFPID-46",
"CSAFPID-47",
"CSAFPID-48",
"CSAFPID-49",
"CSAFPID-50",
"CSAFPID-51",
"CSAFPID-52",
"CSAFPID-53",
"CSAFPID-54",
"CSAFPID-55",
"CSAFPID-56",
"CSAFPID-57",
"CSAFPID-58",
"CSAFPID-59",
"CSAFPID-60",
"CSAFPID-61",
"CSAFPID-62",
"CSAFPID-63",
"CSAFPID-64",
"CSAFPID-65",
"CSAFPID-66",
"CSAFPID-67",
"CSAFPID-68",
"CSAFPID-69",
"CSAFPID-70",
"CSAFPID-71",
"CSAFPID-72",
"CSAFPID-73",
"CSAFPID-74",
"CSAFPID-75",
"CSAFPID-76",
"CSAFPID-77",
"CSAFPID-78",
"CSAFPID-79",
"CSAFPID-80",
"CSAFPID-81",
"CSAFPID-82",
"CSAFPID-83",
"CSAFPID-84",
"CSAFPID-85",
"CSAFPID-86",
"CSAFPID-87",
"CSAFPID-88",
"CSAFPID-89",
"CSAFPID-90",
"CSAFPID-91",
"CSAFPID-92",
"CSAFPID-93",
"CSAFPID-94",
"CSAFPID-95",
"CSAFPID-96",
"CSAFPID-97",
"CSAFPID-98",
"CSAFPID-99",
"CSAFPID-100",
"CSAFPID-101",
"CSAFPID-102",
"CSAFPID-103",
"CSAFPID-104",
"CSAFPID-105",
"CSAFPID-106",
"CSAFPID-107",
"CSAFPID-108",
"CSAFPID-109",
"CSAFPID-110",
"CSAFPID-111",
"CSAFPID-112",
"CSAFPID-113",
"CSAFPID-114",
"CSAFPID-115",
"CSAFPID-116",
"CSAFPID-117",
"CSAFPID-118",
"CSAFPID-119",
"CSAFPID-120",
"CSAFPID-121",
"CSAFPID-122",
"CSAFPID-123",
"CSAFPID-124",
"CSAFPID-125",
"CSAFPID-126"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-12816 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-12816.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36",
"CSAFPID-37",
"CSAFPID-38",
"CSAFPID-39",
"CSAFPID-40",
"CSAFPID-41",
"CSAFPID-42",
"CSAFPID-43",
"CSAFPID-44",
"CSAFPID-45",
"CSAFPID-46",
"CSAFPID-47",
"CSAFPID-48",
"CSAFPID-49",
"CSAFPID-50",
"CSAFPID-51",
"CSAFPID-52",
"CSAFPID-53",
"CSAFPID-54",
"CSAFPID-55",
"CSAFPID-56",
"CSAFPID-57",
"CSAFPID-58",
"CSAFPID-59",
"CSAFPID-60",
"CSAFPID-61",
"CSAFPID-62",
"CSAFPID-63",
"CSAFPID-64",
"CSAFPID-65",
"CSAFPID-66",
"CSAFPID-67",
"CSAFPID-68",
"CSAFPID-69",
"CSAFPID-70",
"CSAFPID-71",
"CSAFPID-72",
"CSAFPID-73",
"CSAFPID-74",
"CSAFPID-75",
"CSAFPID-76",
"CSAFPID-77",
"CSAFPID-78",
"CSAFPID-79",
"CSAFPID-80",
"CSAFPID-81",
"CSAFPID-82",
"CSAFPID-83",
"CSAFPID-84",
"CSAFPID-85",
"CSAFPID-86",
"CSAFPID-87",
"CSAFPID-88",
"CSAFPID-89",
"CSAFPID-90",
"CSAFPID-91",
"CSAFPID-92",
"CSAFPID-93",
"CSAFPID-94",
"CSAFPID-95",
"CSAFPID-96",
"CSAFPID-97",
"CSAFPID-98",
"CSAFPID-99",
"CSAFPID-100",
"CSAFPID-101",
"CSAFPID-102",
"CSAFPID-103",
"CSAFPID-104",
"CSAFPID-105",
"CSAFPID-106",
"CSAFPID-107",
"CSAFPID-108",
"CSAFPID-109",
"CSAFPID-110",
"CSAFPID-111",
"CSAFPID-112",
"CSAFPID-113",
"CSAFPID-114",
"CSAFPID-115",
"CSAFPID-116",
"CSAFPID-117",
"CSAFPID-118",
"CSAFPID-119",
"CSAFPID-120",
"CSAFPID-121",
"CSAFPID-122",
"CSAFPID-123",
"CSAFPID-124",
"CSAFPID-125",
"CSAFPID-126"
]
}
],
"title": "CVE-2025-12816"
},
{
"cve": "CVE-2025-15284",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "other",
"text": "Improper Input Validation",
"title": "CWE-20"
},
{
"category": "other",
"text": "Allocation of Resources Without Limits or Throttling",
"title": "CWE-770"
},
{
"category": "other",
"text": "CWE-1035",
"title": "CWE-1035"
},
{
"category": "other",
"text": "CWE-937",
"title": "CWE-937"
},
{
"category": "description",
"text": "The qs library\u0027s `arrayLimit` option fails to enforce limits on bracket notation arrays, enabling denial-of-service attacks via memory exhaustion by parsing large arrays from user input.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36",
"CSAFPID-37",
"CSAFPID-38",
"CSAFPID-39",
"CSAFPID-40",
"CSAFPID-41",
"CSAFPID-42",
"CSAFPID-43",
"CSAFPID-44",
"CSAFPID-45",
"CSAFPID-46",
"CSAFPID-47",
"CSAFPID-48",
"CSAFPID-49",
"CSAFPID-50",
"CSAFPID-51",
"CSAFPID-52",
"CSAFPID-53",
"CSAFPID-54",
"CSAFPID-55",
"CSAFPID-56",
"CSAFPID-57",
"CSAFPID-58",
"CSAFPID-59",
"CSAFPID-60",
"CSAFPID-61",
"CSAFPID-62",
"CSAFPID-63",
"CSAFPID-64",
"CSAFPID-65",
"CSAFPID-66",
"CSAFPID-67",
"CSAFPID-68",
"CSAFPID-69",
"CSAFPID-70",
"CSAFPID-71",
"CSAFPID-72",
"CSAFPID-73",
"CSAFPID-74",
"CSAFPID-75",
"CSAFPID-76",
"CSAFPID-77",
"CSAFPID-78",
"CSAFPID-79",
"CSAFPID-80",
"CSAFPID-81",
"CSAFPID-82",
"CSAFPID-83",
"CSAFPID-84",
"CSAFPID-85",
"CSAFPID-86",
"CSAFPID-87",
"CSAFPID-88",
"CSAFPID-89",
"CSAFPID-90",
"CSAFPID-91",
"CSAFPID-92",
"CSAFPID-93",
"CSAFPID-94",
"CSAFPID-95",
"CSAFPID-96",
"CSAFPID-97",
"CSAFPID-98",
"CSAFPID-99",
"CSAFPID-100",
"CSAFPID-101",
"CSAFPID-102",
"CSAFPID-103",
"CSAFPID-104",
"CSAFPID-105",
"CSAFPID-106",
"CSAFPID-107",
"CSAFPID-108",
"CSAFPID-109",
"CSAFPID-110",
"CSAFPID-111",
"CSAFPID-112",
"CSAFPID-113",
"CSAFPID-114",
"CSAFPID-115",
"CSAFPID-116",
"CSAFPID-117",
"CSAFPID-118",
"CSAFPID-119",
"CSAFPID-120",
"CSAFPID-121",
"CSAFPID-122",
"CSAFPID-123",
"CSAFPID-124",
"CSAFPID-125",
"CSAFPID-126"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-15284 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-15284.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36",
"CSAFPID-37",
"CSAFPID-38",
"CSAFPID-39",
"CSAFPID-40",
"CSAFPID-41",
"CSAFPID-42",
"CSAFPID-43",
"CSAFPID-44",
"CSAFPID-45",
"CSAFPID-46",
"CSAFPID-47",
"CSAFPID-48",
"CSAFPID-49",
"CSAFPID-50",
"CSAFPID-51",
"CSAFPID-52",
"CSAFPID-53",
"CSAFPID-54",
"CSAFPID-55",
"CSAFPID-56",
"CSAFPID-57",
"CSAFPID-58",
"CSAFPID-59",
"CSAFPID-60",
"CSAFPID-61",
"CSAFPID-62",
"CSAFPID-63",
"CSAFPID-64",
"CSAFPID-65",
"CSAFPID-66",
"CSAFPID-67",
"CSAFPID-68",
"CSAFPID-69",
"CSAFPID-70",
"CSAFPID-71",
"CSAFPID-72",
"CSAFPID-73",
"CSAFPID-74",
"CSAFPID-75",
"CSAFPID-76",
"CSAFPID-77",
"CSAFPID-78",
"CSAFPID-79",
"CSAFPID-80",
"CSAFPID-81",
"CSAFPID-82",
"CSAFPID-83",
"CSAFPID-84",
"CSAFPID-85",
"CSAFPID-86",
"CSAFPID-87",
"CSAFPID-88",
"CSAFPID-89",
"CSAFPID-90",
"CSAFPID-91",
"CSAFPID-92",
"CSAFPID-93",
"CSAFPID-94",
"CSAFPID-95",
"CSAFPID-96",
"CSAFPID-97",
"CSAFPID-98",
"CSAFPID-99",
"CSAFPID-100",
"CSAFPID-101",
"CSAFPID-102",
"CSAFPID-103",
"CSAFPID-104",
"CSAFPID-105",
"CSAFPID-106",
"CSAFPID-107",
"CSAFPID-108",
"CSAFPID-109",
"CSAFPID-110",
"CSAFPID-111",
"CSAFPID-112",
"CSAFPID-113",
"CSAFPID-114",
"CSAFPID-115",
"CSAFPID-116",
"CSAFPID-117",
"CSAFPID-118",
"CSAFPID-119",
"CSAFPID-120",
"CSAFPID-121",
"CSAFPID-122",
"CSAFPID-123",
"CSAFPID-124",
"CSAFPID-125",
"CSAFPID-126"
]
}
],
"title": "CVE-2025-15284"
},
{
"cve": "CVE-2025-27769",
"cwe": {
"id": "CWE-923",
"name": "Improper Restriction of Communication Channel to Intended Endpoints"
},
"notes": [
{
"category": "other",
"text": "Improper Restriction of Communication Channel to Intended Endpoints",
"title": "CWE-923"
},
{
"category": "description",
"text": "Affected devices exhibit improper access control, enabling attackers to potentially access unauthorized services via the charging cable interface.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36",
"CSAFPID-37",
"CSAFPID-38",
"CSAFPID-39",
"CSAFPID-40",
"CSAFPID-41",
"CSAFPID-42",
"CSAFPID-43",
"CSAFPID-44",
"CSAFPID-45",
"CSAFPID-46",
"CSAFPID-47",
"CSAFPID-48",
"CSAFPID-49",
"CSAFPID-50",
"CSAFPID-51",
"CSAFPID-52",
"CSAFPID-53",
"CSAFPID-54",
"CSAFPID-55",
"CSAFPID-56",
"CSAFPID-57",
"CSAFPID-58",
"CSAFPID-59",
"CSAFPID-60",
"CSAFPID-61",
"CSAFPID-62",
"CSAFPID-63",
"CSAFPID-64",
"CSAFPID-65",
"CSAFPID-66",
"CSAFPID-67",
"CSAFPID-68",
"CSAFPID-69",
"CSAFPID-70",
"CSAFPID-71",
"CSAFPID-72",
"CSAFPID-73",
"CSAFPID-74",
"CSAFPID-75",
"CSAFPID-76",
"CSAFPID-77",
"CSAFPID-78",
"CSAFPID-79",
"CSAFPID-80",
"CSAFPID-81",
"CSAFPID-82",
"CSAFPID-83",
"CSAFPID-84",
"CSAFPID-85",
"CSAFPID-86",
"CSAFPID-87",
"CSAFPID-88",
"CSAFPID-89",
"CSAFPID-90",
"CSAFPID-91",
"CSAFPID-92",
"CSAFPID-93",
"CSAFPID-94",
"CSAFPID-95",
"CSAFPID-96",
"CSAFPID-97",
"CSAFPID-98",
"CSAFPID-99",
"CSAFPID-100",
"CSAFPID-101",
"CSAFPID-102",
"CSAFPID-103",
"CSAFPID-104",
"CSAFPID-105",
"CSAFPID-106",
"CSAFPID-107",
"CSAFPID-108",
"CSAFPID-109",
"CSAFPID-110",
"CSAFPID-111",
"CSAFPID-112",
"CSAFPID-113",
"CSAFPID-114",
"CSAFPID-115",
"CSAFPID-116",
"CSAFPID-117",
"CSAFPID-118",
"CSAFPID-119",
"CSAFPID-120",
"CSAFPID-121",
"CSAFPID-122",
"CSAFPID-123",
"CSAFPID-124",
"CSAFPID-125",
"CSAFPID-126"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-27769 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-27769.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 2.6,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36",
"CSAFPID-37",
"CSAFPID-38",
"CSAFPID-39",
"CSAFPID-40",
"CSAFPID-41",
"CSAFPID-42",
"CSAFPID-43",
"CSAFPID-44",
"CSAFPID-45",
"CSAFPID-46",
"CSAFPID-47",
"CSAFPID-48",
"CSAFPID-49",
"CSAFPID-50",
"CSAFPID-51",
"CSAFPID-52",
"CSAFPID-53",
"CSAFPID-54",
"CSAFPID-55",
"CSAFPID-56",
"CSAFPID-57",
"CSAFPID-58",
"CSAFPID-59",
"CSAFPID-60",
"CSAFPID-61",
"CSAFPID-62",
"CSAFPID-63",
"CSAFPID-64",
"CSAFPID-65",
"CSAFPID-66",
"CSAFPID-67",
"CSAFPID-68",
"CSAFPID-69",
"CSAFPID-70",
"CSAFPID-71",
"CSAFPID-72",
"CSAFPID-73",
"CSAFPID-74",
"CSAFPID-75",
"CSAFPID-76",
"CSAFPID-77",
"CSAFPID-78",
"CSAFPID-79",
"CSAFPID-80",
"CSAFPID-81",
"CSAFPID-82",
"CSAFPID-83",
"CSAFPID-84",
"CSAFPID-85",
"CSAFPID-86",
"CSAFPID-87",
"CSAFPID-88",
"CSAFPID-89",
"CSAFPID-90",
"CSAFPID-91",
"CSAFPID-92",
"CSAFPID-93",
"CSAFPID-94",
"CSAFPID-95",
"CSAFPID-96",
"CSAFPID-97",
"CSAFPID-98",
"CSAFPID-99",
"CSAFPID-100",
"CSAFPID-101",
"CSAFPID-102",
"CSAFPID-103",
"CSAFPID-104",
"CSAFPID-105",
"CSAFPID-106",
"CSAFPID-107",
"CSAFPID-108",
"CSAFPID-109",
"CSAFPID-110",
"CSAFPID-111",
"CSAFPID-112",
"CSAFPID-113",
"CSAFPID-114",
"CSAFPID-115",
"CSAFPID-116",
"CSAFPID-117",
"CSAFPID-118",
"CSAFPID-119",
"CSAFPID-120",
"CSAFPID-121",
"CSAFPID-122",
"CSAFPID-123",
"CSAFPID-124",
"CSAFPID-125",
"CSAFPID-126"
]
}
],
"title": "CVE-2025-27769"
},
{
"cve": "CVE-2025-40943",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"notes": [
{
"category": "other",
"text": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)",
"title": "CWE-79"
},
{
"category": "description",
"text": "Certain devices contain a vulnerability where trace files are insufficiently sanitized, enabling attackers to execute code by deceiving users into importing malicious trace files.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36",
"CSAFPID-37",
"CSAFPID-38",
"CSAFPID-39",
"CSAFPID-40",
"CSAFPID-41",
"CSAFPID-42",
"CSAFPID-43",
"CSAFPID-44",
"CSAFPID-45",
"CSAFPID-46",
"CSAFPID-47",
"CSAFPID-48",
"CSAFPID-49",
"CSAFPID-50",
"CSAFPID-51",
"CSAFPID-52",
"CSAFPID-53",
"CSAFPID-54",
"CSAFPID-55",
"CSAFPID-56",
"CSAFPID-57",
"CSAFPID-58",
"CSAFPID-59",
"CSAFPID-60",
"CSAFPID-61",
"CSAFPID-62",
"CSAFPID-63",
"CSAFPID-64",
"CSAFPID-65",
"CSAFPID-66",
"CSAFPID-67",
"CSAFPID-68",
"CSAFPID-69",
"CSAFPID-70",
"CSAFPID-71",
"CSAFPID-72",
"CSAFPID-73",
"CSAFPID-74",
"CSAFPID-75",
"CSAFPID-76",
"CSAFPID-77",
"CSAFPID-78",
"CSAFPID-79",
"CSAFPID-80",
"CSAFPID-81",
"CSAFPID-82",
"CSAFPID-83",
"CSAFPID-84",
"CSAFPID-85",
"CSAFPID-86",
"CSAFPID-87",
"CSAFPID-88",
"CSAFPID-89",
"CSAFPID-90",
"CSAFPID-91",
"CSAFPID-92",
"CSAFPID-93",
"CSAFPID-94",
"CSAFPID-95",
"CSAFPID-96",
"CSAFPID-97",
"CSAFPID-98",
"CSAFPID-99",
"CSAFPID-100",
"CSAFPID-101",
"CSAFPID-102",
"CSAFPID-103",
"CSAFPID-104",
"CSAFPID-105",
"CSAFPID-106",
"CSAFPID-107",
"CSAFPID-108",
"CSAFPID-109",
"CSAFPID-110",
"CSAFPID-111",
"CSAFPID-112",
"CSAFPID-113",
"CSAFPID-114",
"CSAFPID-115",
"CSAFPID-116",
"CSAFPID-117",
"CSAFPID-118",
"CSAFPID-119",
"CSAFPID-120",
"CSAFPID-121",
"CSAFPID-122",
"CSAFPID-123",
"CSAFPID-124",
"CSAFPID-125",
"CSAFPID-126"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-40943 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-40943.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.6,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36",
"CSAFPID-37",
"CSAFPID-38",
"CSAFPID-39",
"CSAFPID-40",
"CSAFPID-41",
"CSAFPID-42",
"CSAFPID-43",
"CSAFPID-44",
"CSAFPID-45",
"CSAFPID-46",
"CSAFPID-47",
"CSAFPID-48",
"CSAFPID-49",
"CSAFPID-50",
"CSAFPID-51",
"CSAFPID-52",
"CSAFPID-53",
"CSAFPID-54",
"CSAFPID-55",
"CSAFPID-56",
"CSAFPID-57",
"CSAFPID-58",
"CSAFPID-59",
"CSAFPID-60",
"CSAFPID-61",
"CSAFPID-62",
"CSAFPID-63",
"CSAFPID-64",
"CSAFPID-65",
"CSAFPID-66",
"CSAFPID-67",
"CSAFPID-68",
"CSAFPID-69",
"CSAFPID-70",
"CSAFPID-71",
"CSAFPID-72",
"CSAFPID-73",
"CSAFPID-74",
"CSAFPID-75",
"CSAFPID-76",
"CSAFPID-77",
"CSAFPID-78",
"CSAFPID-79",
"CSAFPID-80",
"CSAFPID-81",
"CSAFPID-82",
"CSAFPID-83",
"CSAFPID-84",
"CSAFPID-85",
"CSAFPID-86",
"CSAFPID-87",
"CSAFPID-88",
"CSAFPID-89",
"CSAFPID-90",
"CSAFPID-91",
"CSAFPID-92",
"CSAFPID-93",
"CSAFPID-94",
"CSAFPID-95",
"CSAFPID-96",
"CSAFPID-97",
"CSAFPID-98",
"CSAFPID-99",
"CSAFPID-100",
"CSAFPID-101",
"CSAFPID-102",
"CSAFPID-103",
"CSAFPID-104",
"CSAFPID-105",
"CSAFPID-106",
"CSAFPID-107",
"CSAFPID-108",
"CSAFPID-109",
"CSAFPID-110",
"CSAFPID-111",
"CSAFPID-112",
"CSAFPID-113",
"CSAFPID-114",
"CSAFPID-115",
"CSAFPID-116",
"CSAFPID-117",
"CSAFPID-118",
"CSAFPID-119",
"CSAFPID-120",
"CSAFPID-121",
"CSAFPID-122",
"CSAFPID-123",
"CSAFPID-124",
"CSAFPID-125",
"CSAFPID-126"
]
}
],
"title": "CVE-2025-40943"
},
{
"cve": "CVE-2025-55018",
"cwe": {
"id": "CWE-444",
"name": "Inconsistent Interpretation of HTTP Requests (\u0027HTTP Request/Response Smuggling\u0027)"
},
"notes": [
{
"category": "other",
"text": "Inconsistent Interpretation of HTTP Requests (\u0027HTTP Request/Response Smuggling\u0027)",
"title": "CWE-444"
},
{
"category": "description",
"text": "An HTTP request smuggling vulnerability in Fortinet FortiOS allows unauthenticated attackers to bypass firewall policies by sending specially crafted headers, potentially compromising security.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36",
"CSAFPID-37",
"CSAFPID-38",
"CSAFPID-39",
"CSAFPID-40",
"CSAFPID-41",
"CSAFPID-42",
"CSAFPID-43",
"CSAFPID-44",
"CSAFPID-45",
"CSAFPID-46",
"CSAFPID-47",
"CSAFPID-48",
"CSAFPID-49",
"CSAFPID-50",
"CSAFPID-51",
"CSAFPID-52",
"CSAFPID-53",
"CSAFPID-54",
"CSAFPID-55",
"CSAFPID-56",
"CSAFPID-57",
"CSAFPID-58",
"CSAFPID-59",
"CSAFPID-60",
"CSAFPID-61",
"CSAFPID-62",
"CSAFPID-63",
"CSAFPID-64",
"CSAFPID-65",
"CSAFPID-66",
"CSAFPID-67",
"CSAFPID-68",
"CSAFPID-69",
"CSAFPID-70",
"CSAFPID-71",
"CSAFPID-72",
"CSAFPID-73",
"CSAFPID-74",
"CSAFPID-75",
"CSAFPID-76",
"CSAFPID-77",
"CSAFPID-78",
"CSAFPID-79",
"CSAFPID-80",
"CSAFPID-81",
"CSAFPID-82",
"CSAFPID-83",
"CSAFPID-84",
"CSAFPID-85",
"CSAFPID-86",
"CSAFPID-87",
"CSAFPID-88",
"CSAFPID-89",
"CSAFPID-90",
"CSAFPID-91",
"CSAFPID-92",
"CSAFPID-93",
"CSAFPID-94",
"CSAFPID-95",
"CSAFPID-96",
"CSAFPID-97",
"CSAFPID-98",
"CSAFPID-99",
"CSAFPID-100",
"CSAFPID-101",
"CSAFPID-102",
"CSAFPID-103",
"CSAFPID-104",
"CSAFPID-105",
"CSAFPID-106",
"CSAFPID-107",
"CSAFPID-108",
"CSAFPID-109",
"CSAFPID-110",
"CSAFPID-111",
"CSAFPID-112",
"CSAFPID-113",
"CSAFPID-114",
"CSAFPID-115",
"CSAFPID-116",
"CSAFPID-117",
"CSAFPID-118",
"CSAFPID-119",
"CSAFPID-120",
"CSAFPID-121",
"CSAFPID-122",
"CSAFPID-123",
"CSAFPID-124",
"CSAFPID-125",
"CSAFPID-126"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-55018 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-55018.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36",
"CSAFPID-37",
"CSAFPID-38",
"CSAFPID-39",
"CSAFPID-40",
"CSAFPID-41",
"CSAFPID-42",
"CSAFPID-43",
"CSAFPID-44",
"CSAFPID-45",
"CSAFPID-46",
"CSAFPID-47",
"CSAFPID-48",
"CSAFPID-49",
"CSAFPID-50",
"CSAFPID-51",
"CSAFPID-52",
"CSAFPID-53",
"CSAFPID-54",
"CSAFPID-55",
"CSAFPID-56",
"CSAFPID-57",
"CSAFPID-58",
"CSAFPID-59",
"CSAFPID-60",
"CSAFPID-61",
"CSAFPID-62",
"CSAFPID-63",
"CSAFPID-64",
"CSAFPID-65",
"CSAFPID-66",
"CSAFPID-67",
"CSAFPID-68",
"CSAFPID-69",
"CSAFPID-70",
"CSAFPID-71",
"CSAFPID-72",
"CSAFPID-73",
"CSAFPID-74",
"CSAFPID-75",
"CSAFPID-76",
"CSAFPID-77",
"CSAFPID-78",
"CSAFPID-79",
"CSAFPID-80",
"CSAFPID-81",
"CSAFPID-82",
"CSAFPID-83",
"CSAFPID-84",
"CSAFPID-85",
"CSAFPID-86",
"CSAFPID-87",
"CSAFPID-88",
"CSAFPID-89",
"CSAFPID-90",
"CSAFPID-91",
"CSAFPID-92",
"CSAFPID-93",
"CSAFPID-94",
"CSAFPID-95",
"CSAFPID-96",
"CSAFPID-97",
"CSAFPID-98",
"CSAFPID-99",
"CSAFPID-100",
"CSAFPID-101",
"CSAFPID-102",
"CSAFPID-103",
"CSAFPID-104",
"CSAFPID-105",
"CSAFPID-106",
"CSAFPID-107",
"CSAFPID-108",
"CSAFPID-109",
"CSAFPID-110",
"CSAFPID-111",
"CSAFPID-112",
"CSAFPID-113",
"CSAFPID-114",
"CSAFPID-115",
"CSAFPID-116",
"CSAFPID-117",
"CSAFPID-118",
"CSAFPID-119",
"CSAFPID-120",
"CSAFPID-121",
"CSAFPID-122",
"CSAFPID-123",
"CSAFPID-124",
"CSAFPID-125",
"CSAFPID-126"
]
}
],
"title": "CVE-2025-55018"
},
{
"cve": "CVE-2025-58751",
"cwe": {
"id": "CWE-200",
"name": "Exposure of Sensitive Information to an Unauthorized Actor"
},
"notes": [
{
"category": "other",
"text": "Exposure of Sensitive Information to an Unauthorized Actor",
"title": "CWE-200"
},
{
"category": "other",
"text": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)",
"title": "CWE-22"
},
{
"category": "other",
"text": "Improper Access Control",
"title": "CWE-284"
},
{
"category": "description",
"text": "Certain Vite applications allowed files in the public directory to be served without following `server.fs` settings, particularly when exposed to the network, with specific versions addressing this issue.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36",
"CSAFPID-37",
"CSAFPID-38",
"CSAFPID-39",
"CSAFPID-40",
"CSAFPID-41",
"CSAFPID-42",
"CSAFPID-43",
"CSAFPID-44",
"CSAFPID-45",
"CSAFPID-46",
"CSAFPID-47",
"CSAFPID-48",
"CSAFPID-49",
"CSAFPID-50",
"CSAFPID-51",
"CSAFPID-52",
"CSAFPID-53",
"CSAFPID-54",
"CSAFPID-55",
"CSAFPID-56",
"CSAFPID-57",
"CSAFPID-58",
"CSAFPID-59",
"CSAFPID-60",
"CSAFPID-61",
"CSAFPID-62",
"CSAFPID-63",
"CSAFPID-64",
"CSAFPID-65",
"CSAFPID-66",
"CSAFPID-67",
"CSAFPID-68",
"CSAFPID-69",
"CSAFPID-70",
"CSAFPID-71",
"CSAFPID-72",
"CSAFPID-73",
"CSAFPID-74",
"CSAFPID-75",
"CSAFPID-76",
"CSAFPID-77",
"CSAFPID-78",
"CSAFPID-79",
"CSAFPID-80",
"CSAFPID-81",
"CSAFPID-82",
"CSAFPID-83",
"CSAFPID-84",
"CSAFPID-85",
"CSAFPID-86",
"CSAFPID-87",
"CSAFPID-88",
"CSAFPID-89",
"CSAFPID-90",
"CSAFPID-91",
"CSAFPID-92",
"CSAFPID-93",
"CSAFPID-94",
"CSAFPID-95",
"CSAFPID-96",
"CSAFPID-97",
"CSAFPID-98",
"CSAFPID-99",
"CSAFPID-100",
"CSAFPID-101",
"CSAFPID-102",
"CSAFPID-103",
"CSAFPID-104",
"CSAFPID-105",
"CSAFPID-106",
"CSAFPID-107",
"CSAFPID-108",
"CSAFPID-109",
"CSAFPID-110",
"CSAFPID-111",
"CSAFPID-112",
"CSAFPID-113",
"CSAFPID-114",
"CSAFPID-115",
"CSAFPID-116",
"CSAFPID-117",
"CSAFPID-118",
"CSAFPID-119",
"CSAFPID-120",
"CSAFPID-121",
"CSAFPID-122",
"CSAFPID-123",
"CSAFPID-124",
"CSAFPID-125",
"CSAFPID-126"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-58751 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-58751.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36",
"CSAFPID-37",
"CSAFPID-38",
"CSAFPID-39",
"CSAFPID-40",
"CSAFPID-41",
"CSAFPID-42",
"CSAFPID-43",
"CSAFPID-44",
"CSAFPID-45",
"CSAFPID-46",
"CSAFPID-47",
"CSAFPID-48",
"CSAFPID-49",
"CSAFPID-50",
"CSAFPID-51",
"CSAFPID-52",
"CSAFPID-53",
"CSAFPID-54",
"CSAFPID-55",
"CSAFPID-56",
"CSAFPID-57",
"CSAFPID-58",
"CSAFPID-59",
"CSAFPID-60",
"CSAFPID-61",
"CSAFPID-62",
"CSAFPID-63",
"CSAFPID-64",
"CSAFPID-65",
"CSAFPID-66",
"CSAFPID-67",
"CSAFPID-68",
"CSAFPID-69",
"CSAFPID-70",
"CSAFPID-71",
"CSAFPID-72",
"CSAFPID-73",
"CSAFPID-74",
"CSAFPID-75",
"CSAFPID-76",
"CSAFPID-77",
"CSAFPID-78",
"CSAFPID-79",
"CSAFPID-80",
"CSAFPID-81",
"CSAFPID-82",
"CSAFPID-83",
"CSAFPID-84",
"CSAFPID-85",
"CSAFPID-86",
"CSAFPID-87",
"CSAFPID-88",
"CSAFPID-89",
"CSAFPID-90",
"CSAFPID-91",
"CSAFPID-92",
"CSAFPID-93",
"CSAFPID-94",
"CSAFPID-95",
"CSAFPID-96",
"CSAFPID-97",
"CSAFPID-98",
"CSAFPID-99",
"CSAFPID-100",
"CSAFPID-101",
"CSAFPID-102",
"CSAFPID-103",
"CSAFPID-104",
"CSAFPID-105",
"CSAFPID-106",
"CSAFPID-107",
"CSAFPID-108",
"CSAFPID-109",
"CSAFPID-110",
"CSAFPID-111",
"CSAFPID-112",
"CSAFPID-113",
"CSAFPID-114",
"CSAFPID-115",
"CSAFPID-116",
"CSAFPID-117",
"CSAFPID-118",
"CSAFPID-119",
"CSAFPID-120",
"CSAFPID-121",
"CSAFPID-122",
"CSAFPID-123",
"CSAFPID-124",
"CSAFPID-125",
"CSAFPID-126"
]
}
],
"title": "CVE-2025-58751"
},
{
"cve": "CVE-2025-58752",
"cwe": {
"id": "CWE-200",
"name": "Exposure of Sensitive Information to an Unauthorized Actor"
},
"notes": [
{
"category": "other",
"text": "Exposure of Sensitive Information to an Unauthorized Actor",
"title": "CWE-200"
},
{
"category": "other",
"text": "Relative Path Traversal",
"title": "CWE-23"
},
{
"category": "other",
"text": "Improper Access Control",
"title": "CWE-284"
},
{
"category": "description",
"text": "Vite versions prior to 7.1.5, 7.0.7, 6.3.6, and 5.4.20 contained a low-severity vulnerability allowing unauthorized access to HTML files outside configured directories via path traversal when the dev or preview server was exposed and appType was \u0027spa\u0027 or \u0027mpa\u0027.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:P/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36",
"CSAFPID-37",
"CSAFPID-38",
"CSAFPID-39",
"CSAFPID-40",
"CSAFPID-41",
"CSAFPID-42",
"CSAFPID-43",
"CSAFPID-44",
"CSAFPID-45",
"CSAFPID-46",
"CSAFPID-47",
"CSAFPID-48",
"CSAFPID-49",
"CSAFPID-50",
"CSAFPID-51",
"CSAFPID-52",
"CSAFPID-53",
"CSAFPID-54",
"CSAFPID-55",
"CSAFPID-56",
"CSAFPID-57",
"CSAFPID-58",
"CSAFPID-59",
"CSAFPID-60",
"CSAFPID-61",
"CSAFPID-62",
"CSAFPID-63",
"CSAFPID-64",
"CSAFPID-65",
"CSAFPID-66",
"CSAFPID-67",
"CSAFPID-68",
"CSAFPID-69",
"CSAFPID-70",
"CSAFPID-71",
"CSAFPID-72",
"CSAFPID-73",
"CSAFPID-74",
"CSAFPID-75",
"CSAFPID-76",
"CSAFPID-77",
"CSAFPID-78",
"CSAFPID-79",
"CSAFPID-80",
"CSAFPID-81",
"CSAFPID-82",
"CSAFPID-83",
"CSAFPID-84",
"CSAFPID-85",
"CSAFPID-86",
"CSAFPID-87",
"CSAFPID-88",
"CSAFPID-89",
"CSAFPID-90",
"CSAFPID-91",
"CSAFPID-92",
"CSAFPID-93",
"CSAFPID-94",
"CSAFPID-95",
"CSAFPID-96",
"CSAFPID-97",
"CSAFPID-98",
"CSAFPID-99",
"CSAFPID-100",
"CSAFPID-101",
"CSAFPID-102",
"CSAFPID-103",
"CSAFPID-104",
"CSAFPID-105",
"CSAFPID-106",
"CSAFPID-107",
"CSAFPID-108",
"CSAFPID-109",
"CSAFPID-110",
"CSAFPID-111",
"CSAFPID-112",
"CSAFPID-113",
"CSAFPID-114",
"CSAFPID-115",
"CSAFPID-116",
"CSAFPID-117",
"CSAFPID-118",
"CSAFPID-119",
"CSAFPID-120",
"CSAFPID-121",
"CSAFPID-122",
"CSAFPID-123",
"CSAFPID-124",
"CSAFPID-125",
"CSAFPID-126"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-58752 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-58752.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36",
"CSAFPID-37",
"CSAFPID-38",
"CSAFPID-39",
"CSAFPID-40",
"CSAFPID-41",
"CSAFPID-42",
"CSAFPID-43",
"CSAFPID-44",
"CSAFPID-45",
"CSAFPID-46",
"CSAFPID-47",
"CSAFPID-48",
"CSAFPID-49",
"CSAFPID-50",
"CSAFPID-51",
"CSAFPID-52",
"CSAFPID-53",
"CSAFPID-54",
"CSAFPID-55",
"CSAFPID-56",
"CSAFPID-57",
"CSAFPID-58",
"CSAFPID-59",
"CSAFPID-60",
"CSAFPID-61",
"CSAFPID-62",
"CSAFPID-63",
"CSAFPID-64",
"CSAFPID-65",
"CSAFPID-66",
"CSAFPID-67",
"CSAFPID-68",
"CSAFPID-69",
"CSAFPID-70",
"CSAFPID-71",
"CSAFPID-72",
"CSAFPID-73",
"CSAFPID-74",
"CSAFPID-75",
"CSAFPID-76",
"CSAFPID-77",
"CSAFPID-78",
"CSAFPID-79",
"CSAFPID-80",
"CSAFPID-81",
"CSAFPID-82",
"CSAFPID-83",
"CSAFPID-84",
"CSAFPID-85",
"CSAFPID-86",
"CSAFPID-87",
"CSAFPID-88",
"CSAFPID-89",
"CSAFPID-90",
"CSAFPID-91",
"CSAFPID-92",
"CSAFPID-93",
"CSAFPID-94",
"CSAFPID-95",
"CSAFPID-96",
"CSAFPID-97",
"CSAFPID-98",
"CSAFPID-99",
"CSAFPID-100",
"CSAFPID-101",
"CSAFPID-102",
"CSAFPID-103",
"CSAFPID-104",
"CSAFPID-105",
"CSAFPID-106",
"CSAFPID-107",
"CSAFPID-108",
"CSAFPID-109",
"CSAFPID-110",
"CSAFPID-111",
"CSAFPID-112",
"CSAFPID-113",
"CSAFPID-114",
"CSAFPID-115",
"CSAFPID-116",
"CSAFPID-117",
"CSAFPID-118",
"CSAFPID-119",
"CSAFPID-120",
"CSAFPID-121",
"CSAFPID-122",
"CSAFPID-123",
"CSAFPID-124",
"CSAFPID-125",
"CSAFPID-126"
]
}
],
"title": "CVE-2025-58752"
},
{
"cve": "CVE-2025-58754",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"notes": [
{
"category": "other",
"text": "Allocation of Resources Without Limits or Throttling",
"title": "CWE-770"
},
{
"category": "other",
"text": "CWE-1035",
"title": "CWE-1035"
},
{
"category": "other",
"text": "CWE-937",
"title": "CWE-937"
},
{
"category": "description",
"text": "Axios is vulnerable to denial of service attacks due to unbounded memory allocation for `data:` URIs in versions prior to 0.30.2 and 1.12.0, with additional security issues noted in HPE and Oracle products.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36",
"CSAFPID-37",
"CSAFPID-38",
"CSAFPID-39",
"CSAFPID-40",
"CSAFPID-41",
"CSAFPID-42",
"CSAFPID-43",
"CSAFPID-44",
"CSAFPID-45",
"CSAFPID-46",
"CSAFPID-47",
"CSAFPID-48",
"CSAFPID-49",
"CSAFPID-50",
"CSAFPID-51",
"CSAFPID-52",
"CSAFPID-53",
"CSAFPID-54",
"CSAFPID-55",
"CSAFPID-56",
"CSAFPID-57",
"CSAFPID-58",
"CSAFPID-59",
"CSAFPID-60",
"CSAFPID-61",
"CSAFPID-62",
"CSAFPID-63",
"CSAFPID-64",
"CSAFPID-65",
"CSAFPID-66",
"CSAFPID-67",
"CSAFPID-68",
"CSAFPID-69",
"CSAFPID-70",
"CSAFPID-71",
"CSAFPID-72",
"CSAFPID-73",
"CSAFPID-74",
"CSAFPID-75",
"CSAFPID-76",
"CSAFPID-77",
"CSAFPID-78",
"CSAFPID-79",
"CSAFPID-80",
"CSAFPID-81",
"CSAFPID-82",
"CSAFPID-83",
"CSAFPID-84",
"CSAFPID-85",
"CSAFPID-86",
"CSAFPID-87",
"CSAFPID-88",
"CSAFPID-89",
"CSAFPID-90",
"CSAFPID-91",
"CSAFPID-92",
"CSAFPID-93",
"CSAFPID-94",
"CSAFPID-95",
"CSAFPID-96",
"CSAFPID-97",
"CSAFPID-98",
"CSAFPID-99",
"CSAFPID-100",
"CSAFPID-101",
"CSAFPID-102",
"CSAFPID-103",
"CSAFPID-104",
"CSAFPID-105",
"CSAFPID-106",
"CSAFPID-107",
"CSAFPID-108",
"CSAFPID-109",
"CSAFPID-110",
"CSAFPID-111",
"CSAFPID-112",
"CSAFPID-113",
"CSAFPID-114",
"CSAFPID-115",
"CSAFPID-116",
"CSAFPID-117",
"CSAFPID-118",
"CSAFPID-119",
"CSAFPID-120",
"CSAFPID-121",
"CSAFPID-122",
"CSAFPID-123",
"CSAFPID-124",
"CSAFPID-125",
"CSAFPID-126"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-58754 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-58754.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36",
"CSAFPID-37",
"CSAFPID-38",
"CSAFPID-39",
"CSAFPID-40",
"CSAFPID-41",
"CSAFPID-42",
"CSAFPID-43",
"CSAFPID-44",
"CSAFPID-45",
"CSAFPID-46",
"CSAFPID-47",
"CSAFPID-48",
"CSAFPID-49",
"CSAFPID-50",
"CSAFPID-51",
"CSAFPID-52",
"CSAFPID-53",
"CSAFPID-54",
"CSAFPID-55",
"CSAFPID-56",
"CSAFPID-57",
"CSAFPID-58",
"CSAFPID-59",
"CSAFPID-60",
"CSAFPID-61",
"CSAFPID-62",
"CSAFPID-63",
"CSAFPID-64",
"CSAFPID-65",
"CSAFPID-66",
"CSAFPID-67",
"CSAFPID-68",
"CSAFPID-69",
"CSAFPID-70",
"CSAFPID-71",
"CSAFPID-72",
"CSAFPID-73",
"CSAFPID-74",
"CSAFPID-75",
"CSAFPID-76",
"CSAFPID-77",
"CSAFPID-78",
"CSAFPID-79",
"CSAFPID-80",
"CSAFPID-81",
"CSAFPID-82",
"CSAFPID-83",
"CSAFPID-84",
"CSAFPID-85",
"CSAFPID-86",
"CSAFPID-87",
"CSAFPID-88",
"CSAFPID-89",
"CSAFPID-90",
"CSAFPID-91",
"CSAFPID-92",
"CSAFPID-93",
"CSAFPID-94",
"CSAFPID-95",
"CSAFPID-96",
"CSAFPID-97",
"CSAFPID-98",
"CSAFPID-99",
"CSAFPID-100",
"CSAFPID-101",
"CSAFPID-102",
"CSAFPID-103",
"CSAFPID-104",
"CSAFPID-105",
"CSAFPID-106",
"CSAFPID-107",
"CSAFPID-108",
"CSAFPID-109",
"CSAFPID-110",
"CSAFPID-111",
"CSAFPID-112",
"CSAFPID-113",
"CSAFPID-114",
"CSAFPID-115",
"CSAFPID-116",
"CSAFPID-117",
"CSAFPID-118",
"CSAFPID-119",
"CSAFPID-120",
"CSAFPID-121",
"CSAFPID-122",
"CSAFPID-123",
"CSAFPID-124",
"CSAFPID-125",
"CSAFPID-126"
]
}
],
"title": "CVE-2025-58754"
},
{
"cve": "CVE-2025-62439",
"cwe": {
"id": "CWE-940",
"name": "Improper Verification of Source of a Communication Channel"
},
"notes": [
{
"category": "other",
"text": "Improper Verification of Source of a Communication Channel",
"title": "CWE-940"
},
{
"category": "description",
"text": "A vulnerability in Fortinet FortiOS versions 7.0 through 7.6.4, specifically in the FSSO Terminal Services Agent, allows an authenticated user with knowledge of FSSO policy configurations to gain unauthorized access to protected network resources via crafted requests due to improper verification of the communication channel source.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36",
"CSAFPID-37",
"CSAFPID-38",
"CSAFPID-39",
"CSAFPID-40",
"CSAFPID-41",
"CSAFPID-42",
"CSAFPID-43",
"CSAFPID-44",
"CSAFPID-45",
"CSAFPID-46",
"CSAFPID-47",
"CSAFPID-48",
"CSAFPID-49",
"CSAFPID-50",
"CSAFPID-51",
"CSAFPID-52",
"CSAFPID-53",
"CSAFPID-54",
"CSAFPID-55",
"CSAFPID-56",
"CSAFPID-57",
"CSAFPID-58",
"CSAFPID-59",
"CSAFPID-60",
"CSAFPID-61",
"CSAFPID-62",
"CSAFPID-63",
"CSAFPID-64",
"CSAFPID-65",
"CSAFPID-66",
"CSAFPID-67",
"CSAFPID-68",
"CSAFPID-69",
"CSAFPID-70",
"CSAFPID-71",
"CSAFPID-72",
"CSAFPID-73",
"CSAFPID-74",
"CSAFPID-75",
"CSAFPID-76",
"CSAFPID-77",
"CSAFPID-78",
"CSAFPID-79",
"CSAFPID-80",
"CSAFPID-81",
"CSAFPID-82",
"CSAFPID-83",
"CSAFPID-84",
"CSAFPID-85",
"CSAFPID-86",
"CSAFPID-87",
"CSAFPID-88",
"CSAFPID-89",
"CSAFPID-90",
"CSAFPID-91",
"CSAFPID-92",
"CSAFPID-93",
"CSAFPID-94",
"CSAFPID-95",
"CSAFPID-96",
"CSAFPID-97",
"CSAFPID-98",
"CSAFPID-99",
"CSAFPID-100",
"CSAFPID-101",
"CSAFPID-102",
"CSAFPID-103",
"CSAFPID-104",
"CSAFPID-105",
"CSAFPID-106",
"CSAFPID-107",
"CSAFPID-108",
"CSAFPID-109",
"CSAFPID-110",
"CSAFPID-111",
"CSAFPID-112",
"CSAFPID-113",
"CSAFPID-114",
"CSAFPID-115",
"CSAFPID-116",
"CSAFPID-117",
"CSAFPID-118",
"CSAFPID-119",
"CSAFPID-120",
"CSAFPID-121",
"CSAFPID-122",
"CSAFPID-123",
"CSAFPID-124",
"CSAFPID-125",
"CSAFPID-126"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-62439 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-62439.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.2,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36",
"CSAFPID-37",
"CSAFPID-38",
"CSAFPID-39",
"CSAFPID-40",
"CSAFPID-41",
"CSAFPID-42",
"CSAFPID-43",
"CSAFPID-44",
"CSAFPID-45",
"CSAFPID-46",
"CSAFPID-47",
"CSAFPID-48",
"CSAFPID-49",
"CSAFPID-50",
"CSAFPID-51",
"CSAFPID-52",
"CSAFPID-53",
"CSAFPID-54",
"CSAFPID-55",
"CSAFPID-56",
"CSAFPID-57",
"CSAFPID-58",
"CSAFPID-59",
"CSAFPID-60",
"CSAFPID-61",
"CSAFPID-62",
"CSAFPID-63",
"CSAFPID-64",
"CSAFPID-65",
"CSAFPID-66",
"CSAFPID-67",
"CSAFPID-68",
"CSAFPID-69",
"CSAFPID-70",
"CSAFPID-71",
"CSAFPID-72",
"CSAFPID-73",
"CSAFPID-74",
"CSAFPID-75",
"CSAFPID-76",
"CSAFPID-77",
"CSAFPID-78",
"CSAFPID-79",
"CSAFPID-80",
"CSAFPID-81",
"CSAFPID-82",
"CSAFPID-83",
"CSAFPID-84",
"CSAFPID-85",
"CSAFPID-86",
"CSAFPID-87",
"CSAFPID-88",
"CSAFPID-89",
"CSAFPID-90",
"CSAFPID-91",
"CSAFPID-92",
"CSAFPID-93",
"CSAFPID-94",
"CSAFPID-95",
"CSAFPID-96",
"CSAFPID-97",
"CSAFPID-98",
"CSAFPID-99",
"CSAFPID-100",
"CSAFPID-101",
"CSAFPID-102",
"CSAFPID-103",
"CSAFPID-104",
"CSAFPID-105",
"CSAFPID-106",
"CSAFPID-107",
"CSAFPID-108",
"CSAFPID-109",
"CSAFPID-110",
"CSAFPID-111",
"CSAFPID-112",
"CSAFPID-113",
"CSAFPID-114",
"CSAFPID-115",
"CSAFPID-116",
"CSAFPID-117",
"CSAFPID-118",
"CSAFPID-119",
"CSAFPID-120",
"CSAFPID-121",
"CSAFPID-122",
"CSAFPID-123",
"CSAFPID-124",
"CSAFPID-125",
"CSAFPID-126"
]
}
],
"title": "CVE-2025-62439"
},
{
"cve": "CVE-2025-62522",
"cwe": {
"id": "CWE-22",
"name": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)"
},
"notes": [
{
"category": "other",
"text": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)",
"title": "CWE-22"
},
{
"category": "other",
"text": "CWE-1035",
"title": "CWE-1035"
},
{
"category": "other",
"text": "CWE-937",
"title": "CWE-937"
},
{
"category": "description",
"text": "Vite versions from 2.9.18 to 7.1.11 had a vulnerability on Windows allowing access to files denied by `server.fs.deny` if the URL ended with `\\\\`, which has been patched in later releases.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:P/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36",
"CSAFPID-37",
"CSAFPID-38",
"CSAFPID-39",
"CSAFPID-40",
"CSAFPID-41",
"CSAFPID-42",
"CSAFPID-43",
"CSAFPID-44",
"CSAFPID-45",
"CSAFPID-46",
"CSAFPID-47",
"CSAFPID-48",
"CSAFPID-49",
"CSAFPID-50",
"CSAFPID-51",
"CSAFPID-52",
"CSAFPID-53",
"CSAFPID-54",
"CSAFPID-55",
"CSAFPID-56",
"CSAFPID-57",
"CSAFPID-58",
"CSAFPID-59",
"CSAFPID-60",
"CSAFPID-61",
"CSAFPID-62",
"CSAFPID-63",
"CSAFPID-64",
"CSAFPID-65",
"CSAFPID-66",
"CSAFPID-67",
"CSAFPID-68",
"CSAFPID-69",
"CSAFPID-70",
"CSAFPID-71",
"CSAFPID-72",
"CSAFPID-73",
"CSAFPID-74",
"CSAFPID-75",
"CSAFPID-76",
"CSAFPID-77",
"CSAFPID-78",
"CSAFPID-79",
"CSAFPID-80",
"CSAFPID-81",
"CSAFPID-82",
"CSAFPID-83",
"CSAFPID-84",
"CSAFPID-85",
"CSAFPID-86",
"CSAFPID-87",
"CSAFPID-88",
"CSAFPID-89",
"CSAFPID-90",
"CSAFPID-91",
"CSAFPID-92",
"CSAFPID-93",
"CSAFPID-94",
"CSAFPID-95",
"CSAFPID-96",
"CSAFPID-97",
"CSAFPID-98",
"CSAFPID-99",
"CSAFPID-100",
"CSAFPID-101",
"CSAFPID-102",
"CSAFPID-103",
"CSAFPID-104",
"CSAFPID-105",
"CSAFPID-106",
"CSAFPID-107",
"CSAFPID-108",
"CSAFPID-109",
"CSAFPID-110",
"CSAFPID-111",
"CSAFPID-112",
"CSAFPID-113",
"CSAFPID-114",
"CSAFPID-115",
"CSAFPID-116",
"CSAFPID-117",
"CSAFPID-118",
"CSAFPID-119",
"CSAFPID-120",
"CSAFPID-121",
"CSAFPID-122",
"CSAFPID-123",
"CSAFPID-124",
"CSAFPID-125",
"CSAFPID-126"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-62522 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-62522.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36",
"CSAFPID-37",
"CSAFPID-38",
"CSAFPID-39",
"CSAFPID-40",
"CSAFPID-41",
"CSAFPID-42",
"CSAFPID-43",
"CSAFPID-44",
"CSAFPID-45",
"CSAFPID-46",
"CSAFPID-47",
"CSAFPID-48",
"CSAFPID-49",
"CSAFPID-50",
"CSAFPID-51",
"CSAFPID-52",
"CSAFPID-53",
"CSAFPID-54",
"CSAFPID-55",
"CSAFPID-56",
"CSAFPID-57",
"CSAFPID-58",
"CSAFPID-59",
"CSAFPID-60",
"CSAFPID-61",
"CSAFPID-62",
"CSAFPID-63",
"CSAFPID-64",
"CSAFPID-65",
"CSAFPID-66",
"CSAFPID-67",
"CSAFPID-68",
"CSAFPID-69",
"CSAFPID-70",
"CSAFPID-71",
"CSAFPID-72",
"CSAFPID-73",
"CSAFPID-74",
"CSAFPID-75",
"CSAFPID-76",
"CSAFPID-77",
"CSAFPID-78",
"CSAFPID-79",
"CSAFPID-80",
"CSAFPID-81",
"CSAFPID-82",
"CSAFPID-83",
"CSAFPID-84",
"CSAFPID-85",
"CSAFPID-86",
"CSAFPID-87",
"CSAFPID-88",
"CSAFPID-89",
"CSAFPID-90",
"CSAFPID-91",
"CSAFPID-92",
"CSAFPID-93",
"CSAFPID-94",
"CSAFPID-95",
"CSAFPID-96",
"CSAFPID-97",
"CSAFPID-98",
"CSAFPID-99",
"CSAFPID-100",
"CSAFPID-101",
"CSAFPID-102",
"CSAFPID-103",
"CSAFPID-104",
"CSAFPID-105",
"CSAFPID-106",
"CSAFPID-107",
"CSAFPID-108",
"CSAFPID-109",
"CSAFPID-110",
"CSAFPID-111",
"CSAFPID-112",
"CSAFPID-113",
"CSAFPID-114",
"CSAFPID-115",
"CSAFPID-116",
"CSAFPID-117",
"CSAFPID-118",
"CSAFPID-119",
"CSAFPID-120",
"CSAFPID-121",
"CSAFPID-122",
"CSAFPID-123",
"CSAFPID-124",
"CSAFPID-125",
"CSAFPID-126"
]
}
],
"title": "CVE-2025-62522"
},
{
"cve": "CVE-2025-64157",
"cwe": {
"id": "CWE-134",
"name": "Use of Externally-Controlled Format String"
},
"notes": [
{
"category": "other",
"text": "Use of Externally-Controlled Format String",
"title": "CWE-134"
},
{
"category": "description",
"text": "Fortinet FortiOS versions 7.0 through 7.6.4, including FortiGate devices, contain a CWE-134 externally-controlled format string vulnerability that allows an authenticated admin to execute unauthorized code or commands via crafted configurations.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36",
"CSAFPID-37",
"CSAFPID-38",
"CSAFPID-39",
"CSAFPID-40",
"CSAFPID-41",
"CSAFPID-42",
"CSAFPID-43",
"CSAFPID-44",
"CSAFPID-45",
"CSAFPID-46",
"CSAFPID-47",
"CSAFPID-48",
"CSAFPID-49",
"CSAFPID-50",
"CSAFPID-51",
"CSAFPID-52",
"CSAFPID-53",
"CSAFPID-54",
"CSAFPID-55",
"CSAFPID-56",
"CSAFPID-57",
"CSAFPID-58",
"CSAFPID-59",
"CSAFPID-60",
"CSAFPID-61",
"CSAFPID-62",
"CSAFPID-63",
"CSAFPID-64",
"CSAFPID-65",
"CSAFPID-66",
"CSAFPID-67",
"CSAFPID-68",
"CSAFPID-69",
"CSAFPID-70",
"CSAFPID-71",
"CSAFPID-72",
"CSAFPID-73",
"CSAFPID-74",
"CSAFPID-75",
"CSAFPID-76",
"CSAFPID-77",
"CSAFPID-78",
"CSAFPID-79",
"CSAFPID-80",
"CSAFPID-81",
"CSAFPID-82",
"CSAFPID-83",
"CSAFPID-84",
"CSAFPID-85",
"CSAFPID-86",
"CSAFPID-87",
"CSAFPID-88",
"CSAFPID-89",
"CSAFPID-90",
"CSAFPID-91",
"CSAFPID-92",
"CSAFPID-93",
"CSAFPID-94",
"CSAFPID-95",
"CSAFPID-96",
"CSAFPID-97",
"CSAFPID-98",
"CSAFPID-99",
"CSAFPID-100",
"CSAFPID-101",
"CSAFPID-102",
"CSAFPID-103",
"CSAFPID-104",
"CSAFPID-105",
"CSAFPID-106",
"CSAFPID-107",
"CSAFPID-108",
"CSAFPID-109",
"CSAFPID-110",
"CSAFPID-111",
"CSAFPID-112",
"CSAFPID-113",
"CSAFPID-114",
"CSAFPID-115",
"CSAFPID-116",
"CSAFPID-117",
"CSAFPID-118",
"CSAFPID-119",
"CSAFPID-120",
"CSAFPID-121",
"CSAFPID-122",
"CSAFPID-123",
"CSAFPID-124",
"CSAFPID-125",
"CSAFPID-126"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-64157 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-64157.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36",
"CSAFPID-37",
"CSAFPID-38",
"CSAFPID-39",
"CSAFPID-40",
"CSAFPID-41",
"CSAFPID-42",
"CSAFPID-43",
"CSAFPID-44",
"CSAFPID-45",
"CSAFPID-46",
"CSAFPID-47",
"CSAFPID-48",
"CSAFPID-49",
"CSAFPID-50",
"CSAFPID-51",
"CSAFPID-52",
"CSAFPID-53",
"CSAFPID-54",
"CSAFPID-55",
"CSAFPID-56",
"CSAFPID-57",
"CSAFPID-58",
"CSAFPID-59",
"CSAFPID-60",
"CSAFPID-61",
"CSAFPID-62",
"CSAFPID-63",
"CSAFPID-64",
"CSAFPID-65",
"CSAFPID-66",
"CSAFPID-67",
"CSAFPID-68",
"CSAFPID-69",
"CSAFPID-70",
"CSAFPID-71",
"CSAFPID-72",
"CSAFPID-73",
"CSAFPID-74",
"CSAFPID-75",
"CSAFPID-76",
"CSAFPID-77",
"CSAFPID-78",
"CSAFPID-79",
"CSAFPID-80",
"CSAFPID-81",
"CSAFPID-82",
"CSAFPID-83",
"CSAFPID-84",
"CSAFPID-85",
"CSAFPID-86",
"CSAFPID-87",
"CSAFPID-88",
"CSAFPID-89",
"CSAFPID-90",
"CSAFPID-91",
"CSAFPID-92",
"CSAFPID-93",
"CSAFPID-94",
"CSAFPID-95",
"CSAFPID-96",
"CSAFPID-97",
"CSAFPID-98",
"CSAFPID-99",
"CSAFPID-100",
"CSAFPID-101",
"CSAFPID-102",
"CSAFPID-103",
"CSAFPID-104",
"CSAFPID-105",
"CSAFPID-106",
"CSAFPID-107",
"CSAFPID-108",
"CSAFPID-109",
"CSAFPID-110",
"CSAFPID-111",
"CSAFPID-112",
"CSAFPID-113",
"CSAFPID-114",
"CSAFPID-115",
"CSAFPID-116",
"CSAFPID-117",
"CSAFPID-118",
"CSAFPID-119",
"CSAFPID-120",
"CSAFPID-121",
"CSAFPID-122",
"CSAFPID-123",
"CSAFPID-124",
"CSAFPID-125",
"CSAFPID-126"
]
}
],
"title": "CVE-2025-64157"
},
{
"cve": "CVE-2025-64718",
"cwe": {
"id": "CWE-1321",
"name": "Improperly Controlled Modification of Object Prototype Attributes (\u0027Prototype Pollution\u0027)"
},
"notes": [
{
"category": "other",
"text": "Improperly Controlled Modification of Object Prototype Attributes (\u0027Prototype Pollution\u0027)",
"title": "CWE-1321"
},
{
"category": "other",
"text": "CWE-1035",
"title": "CWE-1035"
},
{
"category": "other",
"text": "CWE-937",
"title": "CWE-937"
},
{
"category": "description",
"text": "Multiple vulnerabilities have been identified in js-yaml, Oracle Communications Unified Assurance, and HPE Telco software, allowing for prototype pollution and unauthorized access, with varying severity and available patches.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36",
"CSAFPID-37",
"CSAFPID-38",
"CSAFPID-39",
"CSAFPID-40",
"CSAFPID-41",
"CSAFPID-42",
"CSAFPID-43",
"CSAFPID-44",
"CSAFPID-45",
"CSAFPID-46",
"CSAFPID-47",
"CSAFPID-48",
"CSAFPID-49",
"CSAFPID-50",
"CSAFPID-51",
"CSAFPID-52",
"CSAFPID-53",
"CSAFPID-54",
"CSAFPID-55",
"CSAFPID-56",
"CSAFPID-57",
"CSAFPID-58",
"CSAFPID-59",
"CSAFPID-60",
"CSAFPID-61",
"CSAFPID-62",
"CSAFPID-63",
"CSAFPID-64",
"CSAFPID-65",
"CSAFPID-66",
"CSAFPID-67",
"CSAFPID-68",
"CSAFPID-69",
"CSAFPID-70",
"CSAFPID-71",
"CSAFPID-72",
"CSAFPID-73",
"CSAFPID-74",
"CSAFPID-75",
"CSAFPID-76",
"CSAFPID-77",
"CSAFPID-78",
"CSAFPID-79",
"CSAFPID-80",
"CSAFPID-81",
"CSAFPID-82",
"CSAFPID-83",
"CSAFPID-84",
"CSAFPID-85",
"CSAFPID-86",
"CSAFPID-87",
"CSAFPID-88",
"CSAFPID-89",
"CSAFPID-90",
"CSAFPID-91",
"CSAFPID-92",
"CSAFPID-93",
"CSAFPID-94",
"CSAFPID-95",
"CSAFPID-96",
"CSAFPID-97",
"CSAFPID-98",
"CSAFPID-99",
"CSAFPID-100",
"CSAFPID-101",
"CSAFPID-102",
"CSAFPID-103",
"CSAFPID-104",
"CSAFPID-105",
"CSAFPID-106",
"CSAFPID-107",
"CSAFPID-108",
"CSAFPID-109",
"CSAFPID-110",
"CSAFPID-111",
"CSAFPID-112",
"CSAFPID-113",
"CSAFPID-114",
"CSAFPID-115",
"CSAFPID-116",
"CSAFPID-117",
"CSAFPID-118",
"CSAFPID-119",
"CSAFPID-120",
"CSAFPID-121",
"CSAFPID-122",
"CSAFPID-123",
"CSAFPID-124",
"CSAFPID-125",
"CSAFPID-126"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-64718 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-64718.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36",
"CSAFPID-37",
"CSAFPID-38",
"CSAFPID-39",
"CSAFPID-40",
"CSAFPID-41",
"CSAFPID-42",
"CSAFPID-43",
"CSAFPID-44",
"CSAFPID-45",
"CSAFPID-46",
"CSAFPID-47",
"CSAFPID-48",
"CSAFPID-49",
"CSAFPID-50",
"CSAFPID-51",
"CSAFPID-52",
"CSAFPID-53",
"CSAFPID-54",
"CSAFPID-55",
"CSAFPID-56",
"CSAFPID-57",
"CSAFPID-58",
"CSAFPID-59",
"CSAFPID-60",
"CSAFPID-61",
"CSAFPID-62",
"CSAFPID-63",
"CSAFPID-64",
"CSAFPID-65",
"CSAFPID-66",
"CSAFPID-67",
"CSAFPID-68",
"CSAFPID-69",
"CSAFPID-70",
"CSAFPID-71",
"CSAFPID-72",
"CSAFPID-73",
"CSAFPID-74",
"CSAFPID-75",
"CSAFPID-76",
"CSAFPID-77",
"CSAFPID-78",
"CSAFPID-79",
"CSAFPID-80",
"CSAFPID-81",
"CSAFPID-82",
"CSAFPID-83",
"CSAFPID-84",
"CSAFPID-85",
"CSAFPID-86",
"CSAFPID-87",
"CSAFPID-88",
"CSAFPID-89",
"CSAFPID-90",
"CSAFPID-91",
"CSAFPID-92",
"CSAFPID-93",
"CSAFPID-94",
"CSAFPID-95",
"CSAFPID-96",
"CSAFPID-97",
"CSAFPID-98",
"CSAFPID-99",
"CSAFPID-100",
"CSAFPID-101",
"CSAFPID-102",
"CSAFPID-103",
"CSAFPID-104",
"CSAFPID-105",
"CSAFPID-106",
"CSAFPID-107",
"CSAFPID-108",
"CSAFPID-109",
"CSAFPID-110",
"CSAFPID-111",
"CSAFPID-112",
"CSAFPID-113",
"CSAFPID-114",
"CSAFPID-115",
"CSAFPID-116",
"CSAFPID-117",
"CSAFPID-118",
"CSAFPID-119",
"CSAFPID-120",
"CSAFPID-121",
"CSAFPID-122",
"CSAFPID-123",
"CSAFPID-124",
"CSAFPID-125",
"CSAFPID-126"
]
}
],
"title": "CVE-2025-64718"
},
{
"cve": "CVE-2025-64756",
"cwe": {
"id": "CWE-78",
"name": "Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)"
},
"notes": [
{
"category": "other",
"text": "Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)",
"title": "CWE-78"
},
{
"category": "description",
"text": "The glob CLI has a command injection vulnerability in its `-c/--cmd` option, allowing arbitrary command execution through malicious filenames, which has been patched in versions 10.5.0 and 11.1.0.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36",
"CSAFPID-37",
"CSAFPID-38",
"CSAFPID-39",
"CSAFPID-40",
"CSAFPID-41",
"CSAFPID-42",
"CSAFPID-43",
"CSAFPID-44",
"CSAFPID-45",
"CSAFPID-46",
"CSAFPID-47",
"CSAFPID-48",
"CSAFPID-49",
"CSAFPID-50",
"CSAFPID-51",
"CSAFPID-52",
"CSAFPID-53",
"CSAFPID-54",
"CSAFPID-55",
"CSAFPID-56",
"CSAFPID-57",
"CSAFPID-58",
"CSAFPID-59",
"CSAFPID-60",
"CSAFPID-61",
"CSAFPID-62",
"CSAFPID-63",
"CSAFPID-64",
"CSAFPID-65",
"CSAFPID-66",
"CSAFPID-67",
"CSAFPID-68",
"CSAFPID-69",
"CSAFPID-70",
"CSAFPID-71",
"CSAFPID-72",
"CSAFPID-73",
"CSAFPID-74",
"CSAFPID-75",
"CSAFPID-76",
"CSAFPID-77",
"CSAFPID-78",
"CSAFPID-79",
"CSAFPID-80",
"CSAFPID-81",
"CSAFPID-82",
"CSAFPID-83",
"CSAFPID-84",
"CSAFPID-85",
"CSAFPID-86",
"CSAFPID-87",
"CSAFPID-88",
"CSAFPID-89",
"CSAFPID-90",
"CSAFPID-91",
"CSAFPID-92",
"CSAFPID-93",
"CSAFPID-94",
"CSAFPID-95",
"CSAFPID-96",
"CSAFPID-97",
"CSAFPID-98",
"CSAFPID-99",
"CSAFPID-100",
"CSAFPID-101",
"CSAFPID-102",
"CSAFPID-103",
"CSAFPID-104",
"CSAFPID-105",
"CSAFPID-106",
"CSAFPID-107",
"CSAFPID-108",
"CSAFPID-109",
"CSAFPID-110",
"CSAFPID-111",
"CSAFPID-112",
"CSAFPID-113",
"CSAFPID-114",
"CSAFPID-115",
"CSAFPID-116",
"CSAFPID-117",
"CSAFPID-118",
"CSAFPID-119",
"CSAFPID-120",
"CSAFPID-121",
"CSAFPID-122",
"CSAFPID-123",
"CSAFPID-124",
"CSAFPID-125",
"CSAFPID-126"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-64756 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-64756.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36",
"CSAFPID-37",
"CSAFPID-38",
"CSAFPID-39",
"CSAFPID-40",
"CSAFPID-41",
"CSAFPID-42",
"CSAFPID-43",
"CSAFPID-44",
"CSAFPID-45",
"CSAFPID-46",
"CSAFPID-47",
"CSAFPID-48",
"CSAFPID-49",
"CSAFPID-50",
"CSAFPID-51",
"CSAFPID-52",
"CSAFPID-53",
"CSAFPID-54",
"CSAFPID-55",
"CSAFPID-56",
"CSAFPID-57",
"CSAFPID-58",
"CSAFPID-59",
"CSAFPID-60",
"CSAFPID-61",
"CSAFPID-62",
"CSAFPID-63",
"CSAFPID-64",
"CSAFPID-65",
"CSAFPID-66",
"CSAFPID-67",
"CSAFPID-68",
"CSAFPID-69",
"CSAFPID-70",
"CSAFPID-71",
"CSAFPID-72",
"CSAFPID-73",
"CSAFPID-74",
"CSAFPID-75",
"CSAFPID-76",
"CSAFPID-77",
"CSAFPID-78",
"CSAFPID-79",
"CSAFPID-80",
"CSAFPID-81",
"CSAFPID-82",
"CSAFPID-83",
"CSAFPID-84",
"CSAFPID-85",
"CSAFPID-86",
"CSAFPID-87",
"CSAFPID-88",
"CSAFPID-89",
"CSAFPID-90",
"CSAFPID-91",
"CSAFPID-92",
"CSAFPID-93",
"CSAFPID-94",
"CSAFPID-95",
"CSAFPID-96",
"CSAFPID-97",
"CSAFPID-98",
"CSAFPID-99",
"CSAFPID-100",
"CSAFPID-101",
"CSAFPID-102",
"CSAFPID-103",
"CSAFPID-104",
"CSAFPID-105",
"CSAFPID-106",
"CSAFPID-107",
"CSAFPID-108",
"CSAFPID-109",
"CSAFPID-110",
"CSAFPID-111",
"CSAFPID-112",
"CSAFPID-113",
"CSAFPID-114",
"CSAFPID-115",
"CSAFPID-116",
"CSAFPID-117",
"CSAFPID-118",
"CSAFPID-119",
"CSAFPID-120",
"CSAFPID-121",
"CSAFPID-122",
"CSAFPID-123",
"CSAFPID-124",
"CSAFPID-125",
"CSAFPID-126"
]
}
],
"title": "CVE-2025-64756"
},
{
"cve": "CVE-2025-66030",
"cwe": {
"id": "CWE-190",
"name": "Integer Overflow or Wraparound"
},
"notes": [
{
"category": "other",
"text": "Integer Overflow or Wraparound",
"title": "CWE-190"
},
{
"category": "description",
"text": "An Integer Overflow vulnerability in node-forge versions up to 1.3.1 allows remote attackers to craft ASN.1 OIDs with oversized arcs that bypass security controls via 32-bit truncation, fixed in version 1.3.2.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36",
"CSAFPID-37",
"CSAFPID-38",
"CSAFPID-39",
"CSAFPID-40",
"CSAFPID-41",
"CSAFPID-42",
"CSAFPID-43",
"CSAFPID-44",
"CSAFPID-45",
"CSAFPID-46",
"CSAFPID-47",
"CSAFPID-48",
"CSAFPID-49",
"CSAFPID-50",
"CSAFPID-51",
"CSAFPID-52",
"CSAFPID-53",
"CSAFPID-54",
"CSAFPID-55",
"CSAFPID-56",
"CSAFPID-57",
"CSAFPID-58",
"CSAFPID-59",
"CSAFPID-60",
"CSAFPID-61",
"CSAFPID-62",
"CSAFPID-63",
"CSAFPID-64",
"CSAFPID-65",
"CSAFPID-66",
"CSAFPID-67",
"CSAFPID-68",
"CSAFPID-69",
"CSAFPID-70",
"CSAFPID-71",
"CSAFPID-72",
"CSAFPID-73",
"CSAFPID-74",
"CSAFPID-75",
"CSAFPID-76",
"CSAFPID-77",
"CSAFPID-78",
"CSAFPID-79",
"CSAFPID-80",
"CSAFPID-81",
"CSAFPID-82",
"CSAFPID-83",
"CSAFPID-84",
"CSAFPID-85",
"CSAFPID-86",
"CSAFPID-87",
"CSAFPID-88",
"CSAFPID-89",
"CSAFPID-90",
"CSAFPID-91",
"CSAFPID-92",
"CSAFPID-93",
"CSAFPID-94",
"CSAFPID-95",
"CSAFPID-96",
"CSAFPID-97",
"CSAFPID-98",
"CSAFPID-99",
"CSAFPID-100",
"CSAFPID-101",
"CSAFPID-102",
"CSAFPID-103",
"CSAFPID-104",
"CSAFPID-105",
"CSAFPID-106",
"CSAFPID-107",
"CSAFPID-108",
"CSAFPID-109",
"CSAFPID-110",
"CSAFPID-111",
"CSAFPID-112",
"CSAFPID-113",
"CSAFPID-114",
"CSAFPID-115",
"CSAFPID-116",
"CSAFPID-117",
"CSAFPID-118",
"CSAFPID-119",
"CSAFPID-120",
"CSAFPID-121",
"CSAFPID-122",
"CSAFPID-123",
"CSAFPID-124",
"CSAFPID-125",
"CSAFPID-126"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-66030 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-66030.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36",
"CSAFPID-37",
"CSAFPID-38",
"CSAFPID-39",
"CSAFPID-40",
"CSAFPID-41",
"CSAFPID-42",
"CSAFPID-43",
"CSAFPID-44",
"CSAFPID-45",
"CSAFPID-46",
"CSAFPID-47",
"CSAFPID-48",
"CSAFPID-49",
"CSAFPID-50",
"CSAFPID-51",
"CSAFPID-52",
"CSAFPID-53",
"CSAFPID-54",
"CSAFPID-55",
"CSAFPID-56",
"CSAFPID-57",
"CSAFPID-58",
"CSAFPID-59",
"CSAFPID-60",
"CSAFPID-61",
"CSAFPID-62",
"CSAFPID-63",
"CSAFPID-64",
"CSAFPID-65",
"CSAFPID-66",
"CSAFPID-67",
"CSAFPID-68",
"CSAFPID-69",
"CSAFPID-70",
"CSAFPID-71",
"CSAFPID-72",
"CSAFPID-73",
"CSAFPID-74",
"CSAFPID-75",
"CSAFPID-76",
"CSAFPID-77",
"CSAFPID-78",
"CSAFPID-79",
"CSAFPID-80",
"CSAFPID-81",
"CSAFPID-82",
"CSAFPID-83",
"CSAFPID-84",
"CSAFPID-85",
"CSAFPID-86",
"CSAFPID-87",
"CSAFPID-88",
"CSAFPID-89",
"CSAFPID-90",
"CSAFPID-91",
"CSAFPID-92",
"CSAFPID-93",
"CSAFPID-94",
"CSAFPID-95",
"CSAFPID-96",
"CSAFPID-97",
"CSAFPID-98",
"CSAFPID-99",
"CSAFPID-100",
"CSAFPID-101",
"CSAFPID-102",
"CSAFPID-103",
"CSAFPID-104",
"CSAFPID-105",
"CSAFPID-106",
"CSAFPID-107",
"CSAFPID-108",
"CSAFPID-109",
"CSAFPID-110",
"CSAFPID-111",
"CSAFPID-112",
"CSAFPID-113",
"CSAFPID-114",
"CSAFPID-115",
"CSAFPID-116",
"CSAFPID-117",
"CSAFPID-118",
"CSAFPID-119",
"CSAFPID-120",
"CSAFPID-121",
"CSAFPID-122",
"CSAFPID-123",
"CSAFPID-124",
"CSAFPID-125",
"CSAFPID-126"
]
}
],
"title": "CVE-2025-66030"
},
{
"cve": "CVE-2025-66031",
"cwe": {
"id": "CWE-674",
"name": "Uncontrolled Recursion"
},
"notes": [
{
"category": "other",
"text": "Uncontrolled Recursion",
"title": "CWE-674"
},
{
"category": "description",
"text": "An Uncontrolled Recursion vulnerability in node-forge versions 1.3.1 and below allows remote attackers to exploit ASN.1 structures, leading to Denial-of-Service via stack exhaustion during TLS connections or certificate parsing.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36",
"CSAFPID-37",
"CSAFPID-38",
"CSAFPID-39",
"CSAFPID-40",
"CSAFPID-41",
"CSAFPID-42",
"CSAFPID-43",
"CSAFPID-44",
"CSAFPID-45",
"CSAFPID-46",
"CSAFPID-47",
"CSAFPID-48",
"CSAFPID-49",
"CSAFPID-50",
"CSAFPID-51",
"CSAFPID-52",
"CSAFPID-53",
"CSAFPID-54",
"CSAFPID-55",
"CSAFPID-56",
"CSAFPID-57",
"CSAFPID-58",
"CSAFPID-59",
"CSAFPID-60",
"CSAFPID-61",
"CSAFPID-62",
"CSAFPID-63",
"CSAFPID-64",
"CSAFPID-65",
"CSAFPID-66",
"CSAFPID-67",
"CSAFPID-68",
"CSAFPID-69",
"CSAFPID-70",
"CSAFPID-71",
"CSAFPID-72",
"CSAFPID-73",
"CSAFPID-74",
"CSAFPID-75",
"CSAFPID-76",
"CSAFPID-77",
"CSAFPID-78",
"CSAFPID-79",
"CSAFPID-80",
"CSAFPID-81",
"CSAFPID-82",
"CSAFPID-83",
"CSAFPID-84",
"CSAFPID-85",
"CSAFPID-86",
"CSAFPID-87",
"CSAFPID-88",
"CSAFPID-89",
"CSAFPID-90",
"CSAFPID-91",
"CSAFPID-92",
"CSAFPID-93",
"CSAFPID-94",
"CSAFPID-95",
"CSAFPID-96",
"CSAFPID-97",
"CSAFPID-98",
"CSAFPID-99",
"CSAFPID-100",
"CSAFPID-101",
"CSAFPID-102",
"CSAFPID-103",
"CSAFPID-104",
"CSAFPID-105",
"CSAFPID-106",
"CSAFPID-107",
"CSAFPID-108",
"CSAFPID-109",
"CSAFPID-110",
"CSAFPID-111",
"CSAFPID-112",
"CSAFPID-113",
"CSAFPID-114",
"CSAFPID-115",
"CSAFPID-116",
"CSAFPID-117",
"CSAFPID-118",
"CSAFPID-119",
"CSAFPID-120",
"CSAFPID-121",
"CSAFPID-122",
"CSAFPID-123",
"CSAFPID-124",
"CSAFPID-125",
"CSAFPID-126"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-66031 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-66031.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36",
"CSAFPID-37",
"CSAFPID-38",
"CSAFPID-39",
"CSAFPID-40",
"CSAFPID-41",
"CSAFPID-42",
"CSAFPID-43",
"CSAFPID-44",
"CSAFPID-45",
"CSAFPID-46",
"CSAFPID-47",
"CSAFPID-48",
"CSAFPID-49",
"CSAFPID-50",
"CSAFPID-51",
"CSAFPID-52",
"CSAFPID-53",
"CSAFPID-54",
"CSAFPID-55",
"CSAFPID-56",
"CSAFPID-57",
"CSAFPID-58",
"CSAFPID-59",
"CSAFPID-60",
"CSAFPID-61",
"CSAFPID-62",
"CSAFPID-63",
"CSAFPID-64",
"CSAFPID-65",
"CSAFPID-66",
"CSAFPID-67",
"CSAFPID-68",
"CSAFPID-69",
"CSAFPID-70",
"CSAFPID-71",
"CSAFPID-72",
"CSAFPID-73",
"CSAFPID-74",
"CSAFPID-75",
"CSAFPID-76",
"CSAFPID-77",
"CSAFPID-78",
"CSAFPID-79",
"CSAFPID-80",
"CSAFPID-81",
"CSAFPID-82",
"CSAFPID-83",
"CSAFPID-84",
"CSAFPID-85",
"CSAFPID-86",
"CSAFPID-87",
"CSAFPID-88",
"CSAFPID-89",
"CSAFPID-90",
"CSAFPID-91",
"CSAFPID-92",
"CSAFPID-93",
"CSAFPID-94",
"CSAFPID-95",
"CSAFPID-96",
"CSAFPID-97",
"CSAFPID-98",
"CSAFPID-99",
"CSAFPID-100",
"CSAFPID-101",
"CSAFPID-102",
"CSAFPID-103",
"CSAFPID-104",
"CSAFPID-105",
"CSAFPID-106",
"CSAFPID-107",
"CSAFPID-108",
"CSAFPID-109",
"CSAFPID-110",
"CSAFPID-111",
"CSAFPID-112",
"CSAFPID-113",
"CSAFPID-114",
"CSAFPID-115",
"CSAFPID-116",
"CSAFPID-117",
"CSAFPID-118",
"CSAFPID-119",
"CSAFPID-120",
"CSAFPID-121",
"CSAFPID-122",
"CSAFPID-123",
"CSAFPID-124",
"CSAFPID-125",
"CSAFPID-126"
]
}
],
"title": "CVE-2025-66031"
},
{
"cve": "CVE-2025-66035",
"cwe": {
"id": "CWE-201",
"name": "Insertion of Sensitive Information Into Sent Data"
},
"notes": [
{
"category": "other",
"text": "Insertion of Sensitive Information Into Sent Data",
"title": "CWE-201"
},
{
"category": "other",
"text": "Exposure of Private Personal Information to an Unauthorized Actor",
"title": "CWE-359"
},
{
"category": "other",
"text": "CWE-1035",
"title": "CWE-1035"
},
{
"category": "other",
"text": "CWE-937",
"title": "CWE-937"
},
{
"category": "description",
"text": "The document outlines a vulnerability in Angular\u0027s HttpClient that allows unauthorized disclosure of the XSRF token due to improper handling of protocol-relative URLs, affecting versions prior to 19.2.16, 20.3.14, and 21.0.1.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:N/SC:H/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36",
"CSAFPID-37",
"CSAFPID-38",
"CSAFPID-39",
"CSAFPID-40",
"CSAFPID-41",
"CSAFPID-42",
"CSAFPID-43",
"CSAFPID-44",
"CSAFPID-45",
"CSAFPID-46",
"CSAFPID-47",
"CSAFPID-48",
"CSAFPID-49",
"CSAFPID-50",
"CSAFPID-51",
"CSAFPID-52",
"CSAFPID-53",
"CSAFPID-54",
"CSAFPID-55",
"CSAFPID-56",
"CSAFPID-57",
"CSAFPID-58",
"CSAFPID-59",
"CSAFPID-60",
"CSAFPID-61",
"CSAFPID-62",
"CSAFPID-63",
"CSAFPID-64",
"CSAFPID-65",
"CSAFPID-66",
"CSAFPID-67",
"CSAFPID-68",
"CSAFPID-69",
"CSAFPID-70",
"CSAFPID-71",
"CSAFPID-72",
"CSAFPID-73",
"CSAFPID-74",
"CSAFPID-75",
"CSAFPID-76",
"CSAFPID-77",
"CSAFPID-78",
"CSAFPID-79",
"CSAFPID-80",
"CSAFPID-81",
"CSAFPID-82",
"CSAFPID-83",
"CSAFPID-84",
"CSAFPID-85",
"CSAFPID-86",
"CSAFPID-87",
"CSAFPID-88",
"CSAFPID-89",
"CSAFPID-90",
"CSAFPID-91",
"CSAFPID-92",
"CSAFPID-93",
"CSAFPID-94",
"CSAFPID-95",
"CSAFPID-96",
"CSAFPID-97",
"CSAFPID-98",
"CSAFPID-99",
"CSAFPID-100",
"CSAFPID-101",
"CSAFPID-102",
"CSAFPID-103",
"CSAFPID-104",
"CSAFPID-105",
"CSAFPID-106",
"CSAFPID-107",
"CSAFPID-108",
"CSAFPID-109",
"CSAFPID-110",
"CSAFPID-111",
"CSAFPID-112",
"CSAFPID-113",
"CSAFPID-114",
"CSAFPID-115",
"CSAFPID-116",
"CSAFPID-117",
"CSAFPID-118",
"CSAFPID-119",
"CSAFPID-120",
"CSAFPID-121",
"CSAFPID-122",
"CSAFPID-123",
"CSAFPID-124",
"CSAFPID-125",
"CSAFPID-126"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-66035 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-66035.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.6,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36",
"CSAFPID-37",
"CSAFPID-38",
"CSAFPID-39",
"CSAFPID-40",
"CSAFPID-41",
"CSAFPID-42",
"CSAFPID-43",
"CSAFPID-44",
"CSAFPID-45",
"CSAFPID-46",
"CSAFPID-47",
"CSAFPID-48",
"CSAFPID-49",
"CSAFPID-50",
"CSAFPID-51",
"CSAFPID-52",
"CSAFPID-53",
"CSAFPID-54",
"CSAFPID-55",
"CSAFPID-56",
"CSAFPID-57",
"CSAFPID-58",
"CSAFPID-59",
"CSAFPID-60",
"CSAFPID-61",
"CSAFPID-62",
"CSAFPID-63",
"CSAFPID-64",
"CSAFPID-65",
"CSAFPID-66",
"CSAFPID-67",
"CSAFPID-68",
"CSAFPID-69",
"CSAFPID-70",
"CSAFPID-71",
"CSAFPID-72",
"CSAFPID-73",
"CSAFPID-74",
"CSAFPID-75",
"CSAFPID-76",
"CSAFPID-77",
"CSAFPID-78",
"CSAFPID-79",
"CSAFPID-80",
"CSAFPID-81",
"CSAFPID-82",
"CSAFPID-83",
"CSAFPID-84",
"CSAFPID-85",
"CSAFPID-86",
"CSAFPID-87",
"CSAFPID-88",
"CSAFPID-89",
"CSAFPID-90",
"CSAFPID-91",
"CSAFPID-92",
"CSAFPID-93",
"CSAFPID-94",
"CSAFPID-95",
"CSAFPID-96",
"CSAFPID-97",
"CSAFPID-98",
"CSAFPID-99",
"CSAFPID-100",
"CSAFPID-101",
"CSAFPID-102",
"CSAFPID-103",
"CSAFPID-104",
"CSAFPID-105",
"CSAFPID-106",
"CSAFPID-107",
"CSAFPID-108",
"CSAFPID-109",
"CSAFPID-110",
"CSAFPID-111",
"CSAFPID-112",
"CSAFPID-113",
"CSAFPID-114",
"CSAFPID-115",
"CSAFPID-116",
"CSAFPID-117",
"CSAFPID-118",
"CSAFPID-119",
"CSAFPID-120",
"CSAFPID-121",
"CSAFPID-122",
"CSAFPID-123",
"CSAFPID-124",
"CSAFPID-125",
"CSAFPID-126"
]
}
],
"title": "CVE-2025-66035"
},
{
"cve": "CVE-2025-66412",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"notes": [
{
"category": "other",
"text": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)",
"title": "CWE-79"
},
{
"category": "other",
"text": "CWE-1035",
"title": "CWE-1035"
},
{
"category": "other",
"text": "CWE-937",
"title": "CWE-937"
},
{
"category": "description",
"text": "A Stored Cross-Site Scripting vulnerability in Angular Template Compiler prior to versions 21.0.2, 20.3.15, and 19.2.17 allows attackers to inject malicious scripts via improperly validated URL attributes and SVG elements.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36",
"CSAFPID-37",
"CSAFPID-38",
"CSAFPID-39",
"CSAFPID-40",
"CSAFPID-41",
"CSAFPID-42",
"CSAFPID-43",
"CSAFPID-44",
"CSAFPID-45",
"CSAFPID-46",
"CSAFPID-47",
"CSAFPID-48",
"CSAFPID-49",
"CSAFPID-50",
"CSAFPID-51",
"CSAFPID-52",
"CSAFPID-53",
"CSAFPID-54",
"CSAFPID-55",
"CSAFPID-56",
"CSAFPID-57",
"CSAFPID-58",
"CSAFPID-59",
"CSAFPID-60",
"CSAFPID-61",
"CSAFPID-62",
"CSAFPID-63",
"CSAFPID-64",
"CSAFPID-65",
"CSAFPID-66",
"CSAFPID-67",
"CSAFPID-68",
"CSAFPID-69",
"CSAFPID-70",
"CSAFPID-71",
"CSAFPID-72",
"CSAFPID-73",
"CSAFPID-74",
"CSAFPID-75",
"CSAFPID-76",
"CSAFPID-77",
"CSAFPID-78",
"CSAFPID-79",
"CSAFPID-80",
"CSAFPID-81",
"CSAFPID-82",
"CSAFPID-83",
"CSAFPID-84",
"CSAFPID-85",
"CSAFPID-86",
"CSAFPID-87",
"CSAFPID-88",
"CSAFPID-89",
"CSAFPID-90",
"CSAFPID-91",
"CSAFPID-92",
"CSAFPID-93",
"CSAFPID-94",
"CSAFPID-95",
"CSAFPID-96",
"CSAFPID-97",
"CSAFPID-98",
"CSAFPID-99",
"CSAFPID-100",
"CSAFPID-101",
"CSAFPID-102",
"CSAFPID-103",
"CSAFPID-104",
"CSAFPID-105",
"CSAFPID-106",
"CSAFPID-107",
"CSAFPID-108",
"CSAFPID-109",
"CSAFPID-110",
"CSAFPID-111",
"CSAFPID-112",
"CSAFPID-113",
"CSAFPID-114",
"CSAFPID-115",
"CSAFPID-116",
"CSAFPID-117",
"CSAFPID-118",
"CSAFPID-119",
"CSAFPID-120",
"CSAFPID-121",
"CSAFPID-122",
"CSAFPID-123",
"CSAFPID-124",
"CSAFPID-125",
"CSAFPID-126"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-66412 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-66412.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36",
"CSAFPID-37",
"CSAFPID-38",
"CSAFPID-39",
"CSAFPID-40",
"CSAFPID-41",
"CSAFPID-42",
"CSAFPID-43",
"CSAFPID-44",
"CSAFPID-45",
"CSAFPID-46",
"CSAFPID-47",
"CSAFPID-48",
"CSAFPID-49",
"CSAFPID-50",
"CSAFPID-51",
"CSAFPID-52",
"CSAFPID-53",
"CSAFPID-54",
"CSAFPID-55",
"CSAFPID-56",
"CSAFPID-57",
"CSAFPID-58",
"CSAFPID-59",
"CSAFPID-60",
"CSAFPID-61",
"CSAFPID-62",
"CSAFPID-63",
"CSAFPID-64",
"CSAFPID-65",
"CSAFPID-66",
"CSAFPID-67",
"CSAFPID-68",
"CSAFPID-69",
"CSAFPID-70",
"CSAFPID-71",
"CSAFPID-72",
"CSAFPID-73",
"CSAFPID-74",
"CSAFPID-75",
"CSAFPID-76",
"CSAFPID-77",
"CSAFPID-78",
"CSAFPID-79",
"CSAFPID-80",
"CSAFPID-81",
"CSAFPID-82",
"CSAFPID-83",
"CSAFPID-84",
"CSAFPID-85",
"CSAFPID-86",
"CSAFPID-87",
"CSAFPID-88",
"CSAFPID-89",
"CSAFPID-90",
"CSAFPID-91",
"CSAFPID-92",
"CSAFPID-93",
"CSAFPID-94",
"CSAFPID-95",
"CSAFPID-96",
"CSAFPID-97",
"CSAFPID-98",
"CSAFPID-99",
"CSAFPID-100",
"CSAFPID-101",
"CSAFPID-102",
"CSAFPID-103",
"CSAFPID-104",
"CSAFPID-105",
"CSAFPID-106",
"CSAFPID-107",
"CSAFPID-108",
"CSAFPID-109",
"CSAFPID-110",
"CSAFPID-111",
"CSAFPID-112",
"CSAFPID-113",
"CSAFPID-114",
"CSAFPID-115",
"CSAFPID-116",
"CSAFPID-117",
"CSAFPID-118",
"CSAFPID-119",
"CSAFPID-120",
"CSAFPID-121",
"CSAFPID-122",
"CSAFPID-123",
"CSAFPID-124",
"CSAFPID-125",
"CSAFPID-126"
]
}
],
"title": "CVE-2025-66412"
},
{
"cve": "CVE-2025-69277",
"cwe": {
"id": "CWE-184",
"name": "Incomplete List of Disallowed Inputs"
},
"notes": [
{
"category": "other",
"text": "Incomplete List of Disallowed Inputs",
"title": "CWE-184"
},
{
"category": "other",
"text": "CWE-1035",
"title": "CWE-1035"
},
{
"category": "other",
"text": "CWE-937",
"title": "CWE-937"
},
{
"category": "description",
"text": "Libsodium versions prior to ad3004e contain vulnerabilities in the crypto_core_ed25519_is_valid_point function that cause improper validation of elliptic curve points, potentially allowing security bypasses in custom cryptographic scenarios.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36",
"CSAFPID-37",
"CSAFPID-38",
"CSAFPID-39",
"CSAFPID-40",
"CSAFPID-41",
"CSAFPID-42",
"CSAFPID-43",
"CSAFPID-44",
"CSAFPID-45",
"CSAFPID-46",
"CSAFPID-47",
"CSAFPID-48",
"CSAFPID-49",
"CSAFPID-50",
"CSAFPID-51",
"CSAFPID-52",
"CSAFPID-53",
"CSAFPID-54",
"CSAFPID-55",
"CSAFPID-56",
"CSAFPID-57",
"CSAFPID-58",
"CSAFPID-59",
"CSAFPID-60",
"CSAFPID-61",
"CSAFPID-62",
"CSAFPID-63",
"CSAFPID-64",
"CSAFPID-65",
"CSAFPID-66",
"CSAFPID-67",
"CSAFPID-68",
"CSAFPID-69",
"CSAFPID-70",
"CSAFPID-71",
"CSAFPID-72",
"CSAFPID-73",
"CSAFPID-74",
"CSAFPID-75",
"CSAFPID-76",
"CSAFPID-77",
"CSAFPID-78",
"CSAFPID-79",
"CSAFPID-80",
"CSAFPID-81",
"CSAFPID-82",
"CSAFPID-83",
"CSAFPID-84",
"CSAFPID-85",
"CSAFPID-86",
"CSAFPID-87",
"CSAFPID-88",
"CSAFPID-89",
"CSAFPID-90",
"CSAFPID-91",
"CSAFPID-92",
"CSAFPID-93",
"CSAFPID-94",
"CSAFPID-95",
"CSAFPID-96",
"CSAFPID-97",
"CSAFPID-98",
"CSAFPID-99",
"CSAFPID-100",
"CSAFPID-101",
"CSAFPID-102",
"CSAFPID-103",
"CSAFPID-104",
"CSAFPID-105",
"CSAFPID-106",
"CSAFPID-107",
"CSAFPID-108",
"CSAFPID-109",
"CSAFPID-110",
"CSAFPID-111",
"CSAFPID-112",
"CSAFPID-113",
"CSAFPID-114",
"CSAFPID-115",
"CSAFPID-116",
"CSAFPID-117",
"CSAFPID-118",
"CSAFPID-119",
"CSAFPID-120",
"CSAFPID-121",
"CSAFPID-122",
"CSAFPID-123",
"CSAFPID-124",
"CSAFPID-125",
"CSAFPID-126"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-69277 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-69277.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36",
"CSAFPID-37",
"CSAFPID-38",
"CSAFPID-39",
"CSAFPID-40",
"CSAFPID-41",
"CSAFPID-42",
"CSAFPID-43",
"CSAFPID-44",
"CSAFPID-45",
"CSAFPID-46",
"CSAFPID-47",
"CSAFPID-48",
"CSAFPID-49",
"CSAFPID-50",
"CSAFPID-51",
"CSAFPID-52",
"CSAFPID-53",
"CSAFPID-54",
"CSAFPID-55",
"CSAFPID-56",
"CSAFPID-57",
"CSAFPID-58",
"CSAFPID-59",
"CSAFPID-60",
"CSAFPID-61",
"CSAFPID-62",
"CSAFPID-63",
"CSAFPID-64",
"CSAFPID-65",
"CSAFPID-66",
"CSAFPID-67",
"CSAFPID-68",
"CSAFPID-69",
"CSAFPID-70",
"CSAFPID-71",
"CSAFPID-72",
"CSAFPID-73",
"CSAFPID-74",
"CSAFPID-75",
"CSAFPID-76",
"CSAFPID-77",
"CSAFPID-78",
"CSAFPID-79",
"CSAFPID-80",
"CSAFPID-81",
"CSAFPID-82",
"CSAFPID-83",
"CSAFPID-84",
"CSAFPID-85",
"CSAFPID-86",
"CSAFPID-87",
"CSAFPID-88",
"CSAFPID-89",
"CSAFPID-90",
"CSAFPID-91",
"CSAFPID-92",
"CSAFPID-93",
"CSAFPID-94",
"CSAFPID-95",
"CSAFPID-96",
"CSAFPID-97",
"CSAFPID-98",
"CSAFPID-99",
"CSAFPID-100",
"CSAFPID-101",
"CSAFPID-102",
"CSAFPID-103",
"CSAFPID-104",
"CSAFPID-105",
"CSAFPID-106",
"CSAFPID-107",
"CSAFPID-108",
"CSAFPID-109",
"CSAFPID-110",
"CSAFPID-111",
"CSAFPID-112",
"CSAFPID-113",
"CSAFPID-114",
"CSAFPID-115",
"CSAFPID-116",
"CSAFPID-117",
"CSAFPID-118",
"CSAFPID-119",
"CSAFPID-120",
"CSAFPID-121",
"CSAFPID-122",
"CSAFPID-123",
"CSAFPID-124",
"CSAFPID-125",
"CSAFPID-126"
]
}
],
"title": "CVE-2025-69277"
},
{
"cve": "CVE-2026-22610",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"notes": [
{
"category": "other",
"text": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)",
"title": "CWE-79"
},
{
"category": "other",
"text": "CWE-1035",
"title": "CWE-1035"
},
{
"category": "other",
"text": "CWE-937",
"title": "CWE-937"
},
{
"category": "description",
"text": "A Cross-Site Scripting (XSS) vulnerability in the Angular Template Compiler allows for arbitrary JavaScript execution via improperly sanitized SVG `\u003cscript\u003e` attributes, affecting several Red Hat products with a moderate severity rating.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36",
"CSAFPID-37",
"CSAFPID-38",
"CSAFPID-39",
"CSAFPID-40",
"CSAFPID-41",
"CSAFPID-42",
"CSAFPID-43",
"CSAFPID-44",
"CSAFPID-45",
"CSAFPID-46",
"CSAFPID-47",
"CSAFPID-48",
"CSAFPID-49",
"CSAFPID-50",
"CSAFPID-51",
"CSAFPID-52",
"CSAFPID-53",
"CSAFPID-54",
"CSAFPID-55",
"CSAFPID-56",
"CSAFPID-57",
"CSAFPID-58",
"CSAFPID-59",
"CSAFPID-60",
"CSAFPID-61",
"CSAFPID-62",
"CSAFPID-63",
"CSAFPID-64",
"CSAFPID-65",
"CSAFPID-66",
"CSAFPID-67",
"CSAFPID-68",
"CSAFPID-69",
"CSAFPID-70",
"CSAFPID-71",
"CSAFPID-72",
"CSAFPID-73",
"CSAFPID-74",
"CSAFPID-75",
"CSAFPID-76",
"CSAFPID-77",
"CSAFPID-78",
"CSAFPID-79",
"CSAFPID-80",
"CSAFPID-81",
"CSAFPID-82",
"CSAFPID-83",
"CSAFPID-84",
"CSAFPID-85",
"CSAFPID-86",
"CSAFPID-87",
"CSAFPID-88",
"CSAFPID-89",
"CSAFPID-90",
"CSAFPID-91",
"CSAFPID-92",
"CSAFPID-93",
"CSAFPID-94",
"CSAFPID-95",
"CSAFPID-96",
"CSAFPID-97",
"CSAFPID-98",
"CSAFPID-99",
"CSAFPID-100",
"CSAFPID-101",
"CSAFPID-102",
"CSAFPID-103",
"CSAFPID-104",
"CSAFPID-105",
"CSAFPID-106",
"CSAFPID-107",
"CSAFPID-108",
"CSAFPID-109",
"CSAFPID-110",
"CSAFPID-111",
"CSAFPID-112",
"CSAFPID-113",
"CSAFPID-114",
"CSAFPID-115",
"CSAFPID-116",
"CSAFPID-117",
"CSAFPID-118",
"CSAFPID-119",
"CSAFPID-120",
"CSAFPID-121",
"CSAFPID-122",
"CSAFPID-123",
"CSAFPID-124",
"CSAFPID-125",
"CSAFPID-126"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-22610 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2026/cve-2026-22610.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.0,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36",
"CSAFPID-37",
"CSAFPID-38",
"CSAFPID-39",
"CSAFPID-40",
"CSAFPID-41",
"CSAFPID-42",
"CSAFPID-43",
"CSAFPID-44",
"CSAFPID-45",
"CSAFPID-46",
"CSAFPID-47",
"CSAFPID-48",
"CSAFPID-49",
"CSAFPID-50",
"CSAFPID-51",
"CSAFPID-52",
"CSAFPID-53",
"CSAFPID-54",
"CSAFPID-55",
"CSAFPID-56",
"CSAFPID-57",
"CSAFPID-58",
"CSAFPID-59",
"CSAFPID-60",
"CSAFPID-61",
"CSAFPID-62",
"CSAFPID-63",
"CSAFPID-64",
"CSAFPID-65",
"CSAFPID-66",
"CSAFPID-67",
"CSAFPID-68",
"CSAFPID-69",
"CSAFPID-70",
"CSAFPID-71",
"CSAFPID-72",
"CSAFPID-73",
"CSAFPID-74",
"CSAFPID-75",
"CSAFPID-76",
"CSAFPID-77",
"CSAFPID-78",
"CSAFPID-79",
"CSAFPID-80",
"CSAFPID-81",
"CSAFPID-82",
"CSAFPID-83",
"CSAFPID-84",
"CSAFPID-85",
"CSAFPID-86",
"CSAFPID-87",
"CSAFPID-88",
"CSAFPID-89",
"CSAFPID-90",
"CSAFPID-91",
"CSAFPID-92",
"CSAFPID-93",
"CSAFPID-94",
"CSAFPID-95",
"CSAFPID-96",
"CSAFPID-97",
"CSAFPID-98",
"CSAFPID-99",
"CSAFPID-100",
"CSAFPID-101",
"CSAFPID-102",
"CSAFPID-103",
"CSAFPID-104",
"CSAFPID-105",
"CSAFPID-106",
"CSAFPID-107",
"CSAFPID-108",
"CSAFPID-109",
"CSAFPID-110",
"CSAFPID-111",
"CSAFPID-112",
"CSAFPID-113",
"CSAFPID-114",
"CSAFPID-115",
"CSAFPID-116",
"CSAFPID-117",
"CSAFPID-118",
"CSAFPID-119",
"CSAFPID-120",
"CSAFPID-121",
"CSAFPID-122",
"CSAFPID-123",
"CSAFPID-124",
"CSAFPID-125",
"CSAFPID-126"
]
}
],
"title": "CVE-2026-22610"
},
{
"cve": "CVE-2026-24858",
"cwe": {
"id": "CWE-288",
"name": "Authentication Bypass Using an Alternate Path or Channel"
},
"notes": [
{
"category": "other",
"text": "Authentication Bypass Using an Alternate Path or Channel",
"title": "CWE-288"
},
{
"category": "description",
"text": "Multiple Fortinet products including FortiAnalyzer, FortiManager, FortiOS, and FortiProxy have an authentication bypass vulnerability exploitable via FortiCloud SSO, allowing attackers with FortiCloud credentials to access other users\u0027 devices.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36",
"CSAFPID-37",
"CSAFPID-38",
"CSAFPID-39",
"CSAFPID-40",
"CSAFPID-41",
"CSAFPID-42",
"CSAFPID-43",
"CSAFPID-44",
"CSAFPID-45",
"CSAFPID-46",
"CSAFPID-47",
"CSAFPID-48",
"CSAFPID-49",
"CSAFPID-50",
"CSAFPID-51",
"CSAFPID-52",
"CSAFPID-53",
"CSAFPID-54",
"CSAFPID-55",
"CSAFPID-56",
"CSAFPID-57",
"CSAFPID-58",
"CSAFPID-59",
"CSAFPID-60",
"CSAFPID-61",
"CSAFPID-62",
"CSAFPID-63",
"CSAFPID-64",
"CSAFPID-65",
"CSAFPID-66",
"CSAFPID-67",
"CSAFPID-68",
"CSAFPID-69",
"CSAFPID-70",
"CSAFPID-71",
"CSAFPID-72",
"CSAFPID-73",
"CSAFPID-74",
"CSAFPID-75",
"CSAFPID-76",
"CSAFPID-77",
"CSAFPID-78",
"CSAFPID-79",
"CSAFPID-80",
"CSAFPID-81",
"CSAFPID-82",
"CSAFPID-83",
"CSAFPID-84",
"CSAFPID-85",
"CSAFPID-86",
"CSAFPID-87",
"CSAFPID-88",
"CSAFPID-89",
"CSAFPID-90",
"CSAFPID-91",
"CSAFPID-92",
"CSAFPID-93",
"CSAFPID-94",
"CSAFPID-95",
"CSAFPID-96",
"CSAFPID-97",
"CSAFPID-98",
"CSAFPID-99",
"CSAFPID-100",
"CSAFPID-101",
"CSAFPID-102",
"CSAFPID-103",
"CSAFPID-104",
"CSAFPID-105",
"CSAFPID-106",
"CSAFPID-107",
"CSAFPID-108",
"CSAFPID-109",
"CSAFPID-110",
"CSAFPID-111",
"CSAFPID-112",
"CSAFPID-113",
"CSAFPID-114",
"CSAFPID-115",
"CSAFPID-116",
"CSAFPID-117",
"CSAFPID-118",
"CSAFPID-119",
"CSAFPID-120",
"CSAFPID-121",
"CSAFPID-122",
"CSAFPID-123",
"CSAFPID-124",
"CSAFPID-125",
"CSAFPID-126"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-24858 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2026/cve-2026-24858.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:H/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36",
"CSAFPID-37",
"CSAFPID-38",
"CSAFPID-39",
"CSAFPID-40",
"CSAFPID-41",
"CSAFPID-42",
"CSAFPID-43",
"CSAFPID-44",
"CSAFPID-45",
"CSAFPID-46",
"CSAFPID-47",
"CSAFPID-48",
"CSAFPID-49",
"CSAFPID-50",
"CSAFPID-51",
"CSAFPID-52",
"CSAFPID-53",
"CSAFPID-54",
"CSAFPID-55",
"CSAFPID-56",
"CSAFPID-57",
"CSAFPID-58",
"CSAFPID-59",
"CSAFPID-60",
"CSAFPID-61",
"CSAFPID-62",
"CSAFPID-63",
"CSAFPID-64",
"CSAFPID-65",
"CSAFPID-66",
"CSAFPID-67",
"CSAFPID-68",
"CSAFPID-69",
"CSAFPID-70",
"CSAFPID-71",
"CSAFPID-72",
"CSAFPID-73",
"CSAFPID-74",
"CSAFPID-75",
"CSAFPID-76",
"CSAFPID-77",
"CSAFPID-78",
"CSAFPID-79",
"CSAFPID-80",
"CSAFPID-81",
"CSAFPID-82",
"CSAFPID-83",
"CSAFPID-84",
"CSAFPID-85",
"CSAFPID-86",
"CSAFPID-87",
"CSAFPID-88",
"CSAFPID-89",
"CSAFPID-90",
"CSAFPID-91",
"CSAFPID-92",
"CSAFPID-93",
"CSAFPID-94",
"CSAFPID-95",
"CSAFPID-96",
"CSAFPID-97",
"CSAFPID-98",
"CSAFPID-99",
"CSAFPID-100",
"CSAFPID-101",
"CSAFPID-102",
"CSAFPID-103",
"CSAFPID-104",
"CSAFPID-105",
"CSAFPID-106",
"CSAFPID-107",
"CSAFPID-108",
"CSAFPID-109",
"CSAFPID-110",
"CSAFPID-111",
"CSAFPID-112",
"CSAFPID-113",
"CSAFPID-114",
"CSAFPID-115",
"CSAFPID-116",
"CSAFPID-117",
"CSAFPID-118",
"CSAFPID-119",
"CSAFPID-120",
"CSAFPID-121",
"CSAFPID-122",
"CSAFPID-123",
"CSAFPID-124",
"CSAFPID-125",
"CSAFPID-126"
]
}
],
"title": "CVE-2026-24858"
},
{
"cve": "CVE-2026-25569",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"notes": [
{
"category": "other",
"text": "Out-of-bounds Write",
"title": "CWE-787"
},
{
"category": "description",
"text": "An out-of-bounds write vulnerability in the SICAM SIAPP SDK could allow attackers to cause denial of service or execute arbitrary code, posing significant security risks.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36",
"CSAFPID-37",
"CSAFPID-38",
"CSAFPID-39",
"CSAFPID-40",
"CSAFPID-41",
"CSAFPID-42",
"CSAFPID-43",
"CSAFPID-44",
"CSAFPID-45",
"CSAFPID-46",
"CSAFPID-47",
"CSAFPID-48",
"CSAFPID-49",
"CSAFPID-50",
"CSAFPID-51",
"CSAFPID-52",
"CSAFPID-53",
"CSAFPID-54",
"CSAFPID-55",
"CSAFPID-56",
"CSAFPID-57",
"CSAFPID-58",
"CSAFPID-59",
"CSAFPID-60",
"CSAFPID-61",
"CSAFPID-62",
"CSAFPID-63",
"CSAFPID-64",
"CSAFPID-65",
"CSAFPID-66",
"CSAFPID-67",
"CSAFPID-68",
"CSAFPID-69",
"CSAFPID-70",
"CSAFPID-71",
"CSAFPID-72",
"CSAFPID-73",
"CSAFPID-74",
"CSAFPID-75",
"CSAFPID-76",
"CSAFPID-77",
"CSAFPID-78",
"CSAFPID-79",
"CSAFPID-80",
"CSAFPID-81",
"CSAFPID-82",
"CSAFPID-83",
"CSAFPID-84",
"CSAFPID-85",
"CSAFPID-86",
"CSAFPID-87",
"CSAFPID-88",
"CSAFPID-89",
"CSAFPID-90",
"CSAFPID-91",
"CSAFPID-92",
"CSAFPID-93",
"CSAFPID-94",
"CSAFPID-95",
"CSAFPID-96",
"CSAFPID-97",
"CSAFPID-98",
"CSAFPID-99",
"CSAFPID-100",
"CSAFPID-101",
"CSAFPID-102",
"CSAFPID-103",
"CSAFPID-104",
"CSAFPID-105",
"CSAFPID-106",
"CSAFPID-107",
"CSAFPID-108",
"CSAFPID-109",
"CSAFPID-110",
"CSAFPID-111",
"CSAFPID-112",
"CSAFPID-113",
"CSAFPID-114",
"CSAFPID-115",
"CSAFPID-116",
"CSAFPID-117",
"CSAFPID-118",
"CSAFPID-119",
"CSAFPID-120",
"CSAFPID-121",
"CSAFPID-122",
"CSAFPID-123",
"CSAFPID-124",
"CSAFPID-125",
"CSAFPID-126"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-25569 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2026/cve-2026-25569.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.4,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36",
"CSAFPID-37",
"CSAFPID-38",
"CSAFPID-39",
"CSAFPID-40",
"CSAFPID-41",
"CSAFPID-42",
"CSAFPID-43",
"CSAFPID-44",
"CSAFPID-45",
"CSAFPID-46",
"CSAFPID-47",
"CSAFPID-48",
"CSAFPID-49",
"CSAFPID-50",
"CSAFPID-51",
"CSAFPID-52",
"CSAFPID-53",
"CSAFPID-54",
"CSAFPID-55",
"CSAFPID-56",
"CSAFPID-57",
"CSAFPID-58",
"CSAFPID-59",
"CSAFPID-60",
"CSAFPID-61",
"CSAFPID-62",
"CSAFPID-63",
"CSAFPID-64",
"CSAFPID-65",
"CSAFPID-66",
"CSAFPID-67",
"CSAFPID-68",
"CSAFPID-69",
"CSAFPID-70",
"CSAFPID-71",
"CSAFPID-72",
"CSAFPID-73",
"CSAFPID-74",
"CSAFPID-75",
"CSAFPID-76",
"CSAFPID-77",
"CSAFPID-78",
"CSAFPID-79",
"CSAFPID-80",
"CSAFPID-81",
"CSAFPID-82",
"CSAFPID-83",
"CSAFPID-84",
"CSAFPID-85",
"CSAFPID-86",
"CSAFPID-87",
"CSAFPID-88",
"CSAFPID-89",
"CSAFPID-90",
"CSAFPID-91",
"CSAFPID-92",
"CSAFPID-93",
"CSAFPID-94",
"CSAFPID-95",
"CSAFPID-96",
"CSAFPID-97",
"CSAFPID-98",
"CSAFPID-99",
"CSAFPID-100",
"CSAFPID-101",
"CSAFPID-102",
"CSAFPID-103",
"CSAFPID-104",
"CSAFPID-105",
"CSAFPID-106",
"CSAFPID-107",
"CSAFPID-108",
"CSAFPID-109",
"CSAFPID-110",
"CSAFPID-111",
"CSAFPID-112",
"CSAFPID-113",
"CSAFPID-114",
"CSAFPID-115",
"CSAFPID-116",
"CSAFPID-117",
"CSAFPID-118",
"CSAFPID-119",
"CSAFPID-120",
"CSAFPID-121",
"CSAFPID-122",
"CSAFPID-123",
"CSAFPID-124",
"CSAFPID-125",
"CSAFPID-126"
]
}
],
"title": "CVE-2026-25569"
},
{
"cve": "CVE-2026-25570",
"cwe": {
"id": "CWE-121",
"name": "Stack-based Buffer Overflow"
},
"notes": [
{
"category": "other",
"text": "Stack-based Buffer Overflow",
"title": "CWE-121"
},
{
"category": "description",
"text": "The SICAM SIAPP SDK contains a vulnerability caused by insufficient input validation, which may result in stack overflow, enabling potential code execution and denial of service attacks.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36",
"CSAFPID-37",
"CSAFPID-38",
"CSAFPID-39",
"CSAFPID-40",
"CSAFPID-41",
"CSAFPID-42",
"CSAFPID-43",
"CSAFPID-44",
"CSAFPID-45",
"CSAFPID-46",
"CSAFPID-47",
"CSAFPID-48",
"CSAFPID-49",
"CSAFPID-50",
"CSAFPID-51",
"CSAFPID-52",
"CSAFPID-53",
"CSAFPID-54",
"CSAFPID-55",
"CSAFPID-56",
"CSAFPID-57",
"CSAFPID-58",
"CSAFPID-59",
"CSAFPID-60",
"CSAFPID-61",
"CSAFPID-62",
"CSAFPID-63",
"CSAFPID-64",
"CSAFPID-65",
"CSAFPID-66",
"CSAFPID-67",
"CSAFPID-68",
"CSAFPID-69",
"CSAFPID-70",
"CSAFPID-71",
"CSAFPID-72",
"CSAFPID-73",
"CSAFPID-74",
"CSAFPID-75",
"CSAFPID-76",
"CSAFPID-77",
"CSAFPID-78",
"CSAFPID-79",
"CSAFPID-80",
"CSAFPID-81",
"CSAFPID-82",
"CSAFPID-83",
"CSAFPID-84",
"CSAFPID-85",
"CSAFPID-86",
"CSAFPID-87",
"CSAFPID-88",
"CSAFPID-89",
"CSAFPID-90",
"CSAFPID-91",
"CSAFPID-92",
"CSAFPID-93",
"CSAFPID-94",
"CSAFPID-95",
"CSAFPID-96",
"CSAFPID-97",
"CSAFPID-98",
"CSAFPID-99",
"CSAFPID-100",
"CSAFPID-101",
"CSAFPID-102",
"CSAFPID-103",
"CSAFPID-104",
"CSAFPID-105",
"CSAFPID-106",
"CSAFPID-107",
"CSAFPID-108",
"CSAFPID-109",
"CSAFPID-110",
"CSAFPID-111",
"CSAFPID-112",
"CSAFPID-113",
"CSAFPID-114",
"CSAFPID-115",
"CSAFPID-116",
"CSAFPID-117",
"CSAFPID-118",
"CSAFPID-119",
"CSAFPID-120",
"CSAFPID-121",
"CSAFPID-122",
"CSAFPID-123",
"CSAFPID-124",
"CSAFPID-125",
"CSAFPID-126"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-25570 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2026/cve-2026-25570.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.4,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36",
"CSAFPID-37",
"CSAFPID-38",
"CSAFPID-39",
"CSAFPID-40",
"CSAFPID-41",
"CSAFPID-42",
"CSAFPID-43",
"CSAFPID-44",
"CSAFPID-45",
"CSAFPID-46",
"CSAFPID-47",
"CSAFPID-48",
"CSAFPID-49",
"CSAFPID-50",
"CSAFPID-51",
"CSAFPID-52",
"CSAFPID-53",
"CSAFPID-54",
"CSAFPID-55",
"CSAFPID-56",
"CSAFPID-57",
"CSAFPID-58",
"CSAFPID-59",
"CSAFPID-60",
"CSAFPID-61",
"CSAFPID-62",
"CSAFPID-63",
"CSAFPID-64",
"CSAFPID-65",
"CSAFPID-66",
"CSAFPID-67",
"CSAFPID-68",
"CSAFPID-69",
"CSAFPID-70",
"CSAFPID-71",
"CSAFPID-72",
"CSAFPID-73",
"CSAFPID-74",
"CSAFPID-75",
"CSAFPID-76",
"CSAFPID-77",
"CSAFPID-78",
"CSAFPID-79",
"CSAFPID-80",
"CSAFPID-81",
"CSAFPID-82",
"CSAFPID-83",
"CSAFPID-84",
"CSAFPID-85",
"CSAFPID-86",
"CSAFPID-87",
"CSAFPID-88",
"CSAFPID-89",
"CSAFPID-90",
"CSAFPID-91",
"CSAFPID-92",
"CSAFPID-93",
"CSAFPID-94",
"CSAFPID-95",
"CSAFPID-96",
"CSAFPID-97",
"CSAFPID-98",
"CSAFPID-99",
"CSAFPID-100",
"CSAFPID-101",
"CSAFPID-102",
"CSAFPID-103",
"CSAFPID-104",
"CSAFPID-105",
"CSAFPID-106",
"CSAFPID-107",
"CSAFPID-108",
"CSAFPID-109",
"CSAFPID-110",
"CSAFPID-111",
"CSAFPID-112",
"CSAFPID-113",
"CSAFPID-114",
"CSAFPID-115",
"CSAFPID-116",
"CSAFPID-117",
"CSAFPID-118",
"CSAFPID-119",
"CSAFPID-120",
"CSAFPID-121",
"CSAFPID-122",
"CSAFPID-123",
"CSAFPID-124",
"CSAFPID-125",
"CSAFPID-126"
]
}
],
"title": "CVE-2026-25570"
},
{
"cve": "CVE-2026-25571",
"cwe": {
"id": "CWE-130",
"name": "Improper Handling of Length Parameter Inconsistency"
},
"notes": [
{
"category": "other",
"text": "Improper Handling of Length Parameter Inconsistency",
"title": "CWE-130"
},
{
"category": "description",
"text": "The SICAM SIAPP SDK client component contains a stack overflow vulnerability caused by insufficient maximum length checks on certain variables, which can result in process crashes and denial of service.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36",
"CSAFPID-37",
"CSAFPID-38",
"CSAFPID-39",
"CSAFPID-40",
"CSAFPID-41",
"CSAFPID-42",
"CSAFPID-43",
"CSAFPID-44",
"CSAFPID-45",
"CSAFPID-46",
"CSAFPID-47",
"CSAFPID-48",
"CSAFPID-49",
"CSAFPID-50",
"CSAFPID-51",
"CSAFPID-52",
"CSAFPID-53",
"CSAFPID-54",
"CSAFPID-55",
"CSAFPID-56",
"CSAFPID-57",
"CSAFPID-58",
"CSAFPID-59",
"CSAFPID-60",
"CSAFPID-61",
"CSAFPID-62",
"CSAFPID-63",
"CSAFPID-64",
"CSAFPID-65",
"CSAFPID-66",
"CSAFPID-67",
"CSAFPID-68",
"CSAFPID-69",
"CSAFPID-70",
"CSAFPID-71",
"CSAFPID-72",
"CSAFPID-73",
"CSAFPID-74",
"CSAFPID-75",
"CSAFPID-76",
"CSAFPID-77",
"CSAFPID-78",
"CSAFPID-79",
"CSAFPID-80",
"CSAFPID-81",
"CSAFPID-82",
"CSAFPID-83",
"CSAFPID-84",
"CSAFPID-85",
"CSAFPID-86",
"CSAFPID-87",
"CSAFPID-88",
"CSAFPID-89",
"CSAFPID-90",
"CSAFPID-91",
"CSAFPID-92",
"CSAFPID-93",
"CSAFPID-94",
"CSAFPID-95",
"CSAFPID-96",
"CSAFPID-97",
"CSAFPID-98",
"CSAFPID-99",
"CSAFPID-100",
"CSAFPID-101",
"CSAFPID-102",
"CSAFPID-103",
"CSAFPID-104",
"CSAFPID-105",
"CSAFPID-106",
"CSAFPID-107",
"CSAFPID-108",
"CSAFPID-109",
"CSAFPID-110",
"CSAFPID-111",
"CSAFPID-112",
"CSAFPID-113",
"CSAFPID-114",
"CSAFPID-115",
"CSAFPID-116",
"CSAFPID-117",
"CSAFPID-118",
"CSAFPID-119",
"CSAFPID-120",
"CSAFPID-121",
"CSAFPID-122",
"CSAFPID-123",
"CSAFPID-124",
"CSAFPID-125",
"CSAFPID-126"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-25571 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2026/cve-2026-25571.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36",
"CSAFPID-37",
"CSAFPID-38",
"CSAFPID-39",
"CSAFPID-40",
"CSAFPID-41",
"CSAFPID-42",
"CSAFPID-43",
"CSAFPID-44",
"CSAFPID-45",
"CSAFPID-46",
"CSAFPID-47",
"CSAFPID-48",
"CSAFPID-49",
"CSAFPID-50",
"CSAFPID-51",
"CSAFPID-52",
"CSAFPID-53",
"CSAFPID-54",
"CSAFPID-55",
"CSAFPID-56",
"CSAFPID-57",
"CSAFPID-58",
"CSAFPID-59",
"CSAFPID-60",
"CSAFPID-61",
"CSAFPID-62",
"CSAFPID-63",
"CSAFPID-64",
"CSAFPID-65",
"CSAFPID-66",
"CSAFPID-67",
"CSAFPID-68",
"CSAFPID-69",
"CSAFPID-70",
"CSAFPID-71",
"CSAFPID-72",
"CSAFPID-73",
"CSAFPID-74",
"CSAFPID-75",
"CSAFPID-76",
"CSAFPID-77",
"CSAFPID-78",
"CSAFPID-79",
"CSAFPID-80",
"CSAFPID-81",
"CSAFPID-82",
"CSAFPID-83",
"CSAFPID-84",
"CSAFPID-85",
"CSAFPID-86",
"CSAFPID-87",
"CSAFPID-88",
"CSAFPID-89",
"CSAFPID-90",
"CSAFPID-91",
"CSAFPID-92",
"CSAFPID-93",
"CSAFPID-94",
"CSAFPID-95",
"CSAFPID-96",
"CSAFPID-97",
"CSAFPID-98",
"CSAFPID-99",
"CSAFPID-100",
"CSAFPID-101",
"CSAFPID-102",
"CSAFPID-103",
"CSAFPID-104",
"CSAFPID-105",
"CSAFPID-106",
"CSAFPID-107",
"CSAFPID-108",
"CSAFPID-109",
"CSAFPID-110",
"CSAFPID-111",
"CSAFPID-112",
"CSAFPID-113",
"CSAFPID-114",
"CSAFPID-115",
"CSAFPID-116",
"CSAFPID-117",
"CSAFPID-118",
"CSAFPID-119",
"CSAFPID-120",
"CSAFPID-121",
"CSAFPID-122",
"CSAFPID-123",
"CSAFPID-124",
"CSAFPID-125",
"CSAFPID-126"
]
}
],
"title": "CVE-2026-25571"
},
{
"cve": "CVE-2026-25572",
"cwe": {
"id": "CWE-130",
"name": "Improper Handling of Length Parameter Inconsistency"
},
"notes": [
{
"category": "other",
"text": "Improper Handling of Length Parameter Inconsistency",
"title": "CWE-130"
},
{
"category": "description",
"text": "The SICAM SIAPP SDK server component contains a stack overflow vulnerability caused by insufficient maximum length checks on certain variables, which can result in process crashes and denial of service.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36",
"CSAFPID-37",
"CSAFPID-38",
"CSAFPID-39",
"CSAFPID-40",
"CSAFPID-41",
"CSAFPID-42",
"CSAFPID-43",
"CSAFPID-44",
"CSAFPID-45",
"CSAFPID-46",
"CSAFPID-47",
"CSAFPID-48",
"CSAFPID-49",
"CSAFPID-50",
"CSAFPID-51",
"CSAFPID-52",
"CSAFPID-53",
"CSAFPID-54",
"CSAFPID-55",
"CSAFPID-56",
"CSAFPID-57",
"CSAFPID-58",
"CSAFPID-59",
"CSAFPID-60",
"CSAFPID-61",
"CSAFPID-62",
"CSAFPID-63",
"CSAFPID-64",
"CSAFPID-65",
"CSAFPID-66",
"CSAFPID-67",
"CSAFPID-68",
"CSAFPID-69",
"CSAFPID-70",
"CSAFPID-71",
"CSAFPID-72",
"CSAFPID-73",
"CSAFPID-74",
"CSAFPID-75",
"CSAFPID-76",
"CSAFPID-77",
"CSAFPID-78",
"CSAFPID-79",
"CSAFPID-80",
"CSAFPID-81",
"CSAFPID-82",
"CSAFPID-83",
"CSAFPID-84",
"CSAFPID-85",
"CSAFPID-86",
"CSAFPID-87",
"CSAFPID-88",
"CSAFPID-89",
"CSAFPID-90",
"CSAFPID-91",
"CSAFPID-92",
"CSAFPID-93",
"CSAFPID-94",
"CSAFPID-95",
"CSAFPID-96",
"CSAFPID-97",
"CSAFPID-98",
"CSAFPID-99",
"CSAFPID-100",
"CSAFPID-101",
"CSAFPID-102",
"CSAFPID-103",
"CSAFPID-104",
"CSAFPID-105",
"CSAFPID-106",
"CSAFPID-107",
"CSAFPID-108",
"CSAFPID-109",
"CSAFPID-110",
"CSAFPID-111",
"CSAFPID-112",
"CSAFPID-113",
"CSAFPID-114",
"CSAFPID-115",
"CSAFPID-116",
"CSAFPID-117",
"CSAFPID-118",
"CSAFPID-119",
"CSAFPID-120",
"CSAFPID-121",
"CSAFPID-122",
"CSAFPID-123",
"CSAFPID-124",
"CSAFPID-125",
"CSAFPID-126"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-25572 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2026/cve-2026-25572.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36",
"CSAFPID-37",
"CSAFPID-38",
"CSAFPID-39",
"CSAFPID-40",
"CSAFPID-41",
"CSAFPID-42",
"CSAFPID-43",
"CSAFPID-44",
"CSAFPID-45",
"CSAFPID-46",
"CSAFPID-47",
"CSAFPID-48",
"CSAFPID-49",
"CSAFPID-50",
"CSAFPID-51",
"CSAFPID-52",
"CSAFPID-53",
"CSAFPID-54",
"CSAFPID-55",
"CSAFPID-56",
"CSAFPID-57",
"CSAFPID-58",
"CSAFPID-59",
"CSAFPID-60",
"CSAFPID-61",
"CSAFPID-62",
"CSAFPID-63",
"CSAFPID-64",
"CSAFPID-65",
"CSAFPID-66",
"CSAFPID-67",
"CSAFPID-68",
"CSAFPID-69",
"CSAFPID-70",
"CSAFPID-71",
"CSAFPID-72",
"CSAFPID-73",
"CSAFPID-74",
"CSAFPID-75",
"CSAFPID-76",
"CSAFPID-77",
"CSAFPID-78",
"CSAFPID-79",
"CSAFPID-80",
"CSAFPID-81",
"CSAFPID-82",
"CSAFPID-83",
"CSAFPID-84",
"CSAFPID-85",
"CSAFPID-86",
"CSAFPID-87",
"CSAFPID-88",
"CSAFPID-89",
"CSAFPID-90",
"CSAFPID-91",
"CSAFPID-92",
"CSAFPID-93",
"CSAFPID-94",
"CSAFPID-95",
"CSAFPID-96",
"CSAFPID-97",
"CSAFPID-98",
"CSAFPID-99",
"CSAFPID-100",
"CSAFPID-101",
"CSAFPID-102",
"CSAFPID-103",
"CSAFPID-104",
"CSAFPID-105",
"CSAFPID-106",
"CSAFPID-107",
"CSAFPID-108",
"CSAFPID-109",
"CSAFPID-110",
"CSAFPID-111",
"CSAFPID-112",
"CSAFPID-113",
"CSAFPID-114",
"CSAFPID-115",
"CSAFPID-116",
"CSAFPID-117",
"CSAFPID-118",
"CSAFPID-119",
"CSAFPID-120",
"CSAFPID-121",
"CSAFPID-122",
"CSAFPID-123",
"CSAFPID-124",
"CSAFPID-125",
"CSAFPID-126"
]
}
],
"title": "CVE-2026-25572"
},
{
"cve": "CVE-2026-25573",
"cwe": {
"id": "CWE-73",
"name": "External Control of File Name or Path"
},
"notes": [
{
"category": "other",
"text": "External Control of File Name or Path",
"title": "CWE-73"
},
{
"category": "description",
"text": "The application executes shell commands constructed from user input, exposing it to command injection vulnerabilities that can lead to full system compromise.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36",
"CSAFPID-37",
"CSAFPID-38",
"CSAFPID-39",
"CSAFPID-40",
"CSAFPID-41",
"CSAFPID-42",
"CSAFPID-43",
"CSAFPID-44",
"CSAFPID-45",
"CSAFPID-46",
"CSAFPID-47",
"CSAFPID-48",
"CSAFPID-49",
"CSAFPID-50",
"CSAFPID-51",
"CSAFPID-52",
"CSAFPID-53",
"CSAFPID-54",
"CSAFPID-55",
"CSAFPID-56",
"CSAFPID-57",
"CSAFPID-58",
"CSAFPID-59",
"CSAFPID-60",
"CSAFPID-61",
"CSAFPID-62",
"CSAFPID-63",
"CSAFPID-64",
"CSAFPID-65",
"CSAFPID-66",
"CSAFPID-67",
"CSAFPID-68",
"CSAFPID-69",
"CSAFPID-70",
"CSAFPID-71",
"CSAFPID-72",
"CSAFPID-73",
"CSAFPID-74",
"CSAFPID-75",
"CSAFPID-76",
"CSAFPID-77",
"CSAFPID-78",
"CSAFPID-79",
"CSAFPID-80",
"CSAFPID-81",
"CSAFPID-82",
"CSAFPID-83",
"CSAFPID-84",
"CSAFPID-85",
"CSAFPID-86",
"CSAFPID-87",
"CSAFPID-88",
"CSAFPID-89",
"CSAFPID-90",
"CSAFPID-91",
"CSAFPID-92",
"CSAFPID-93",
"CSAFPID-94",
"CSAFPID-95",
"CSAFPID-96",
"CSAFPID-97",
"CSAFPID-98",
"CSAFPID-99",
"CSAFPID-100",
"CSAFPID-101",
"CSAFPID-102",
"CSAFPID-103",
"CSAFPID-104",
"CSAFPID-105",
"CSAFPID-106",
"CSAFPID-107",
"CSAFPID-108",
"CSAFPID-109",
"CSAFPID-110",
"CSAFPID-111",
"CSAFPID-112",
"CSAFPID-113",
"CSAFPID-114",
"CSAFPID-115",
"CSAFPID-116",
"CSAFPID-117",
"CSAFPID-118",
"CSAFPID-119",
"CSAFPID-120",
"CSAFPID-121",
"CSAFPID-122",
"CSAFPID-123",
"CSAFPID-124",
"CSAFPID-125",
"CSAFPID-126"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-25573 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2026/cve-2026-25573.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.4,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36",
"CSAFPID-37",
"CSAFPID-38",
"CSAFPID-39",
"CSAFPID-40",
"CSAFPID-41",
"CSAFPID-42",
"CSAFPID-43",
"CSAFPID-44",
"CSAFPID-45",
"CSAFPID-46",
"CSAFPID-47",
"CSAFPID-48",
"CSAFPID-49",
"CSAFPID-50",
"CSAFPID-51",
"CSAFPID-52",
"CSAFPID-53",
"CSAFPID-54",
"CSAFPID-55",
"CSAFPID-56",
"CSAFPID-57",
"CSAFPID-58",
"CSAFPID-59",
"CSAFPID-60",
"CSAFPID-61",
"CSAFPID-62",
"CSAFPID-63",
"CSAFPID-64",
"CSAFPID-65",
"CSAFPID-66",
"CSAFPID-67",
"CSAFPID-68",
"CSAFPID-69",
"CSAFPID-70",
"CSAFPID-71",
"CSAFPID-72",
"CSAFPID-73",
"CSAFPID-74",
"CSAFPID-75",
"CSAFPID-76",
"CSAFPID-77",
"CSAFPID-78",
"CSAFPID-79",
"CSAFPID-80",
"CSAFPID-81",
"CSAFPID-82",
"CSAFPID-83",
"CSAFPID-84",
"CSAFPID-85",
"CSAFPID-86",
"CSAFPID-87",
"CSAFPID-88",
"CSAFPID-89",
"CSAFPID-90",
"CSAFPID-91",
"CSAFPID-92",
"CSAFPID-93",
"CSAFPID-94",
"CSAFPID-95",
"CSAFPID-96",
"CSAFPID-97",
"CSAFPID-98",
"CSAFPID-99",
"CSAFPID-100",
"CSAFPID-101",
"CSAFPID-102",
"CSAFPID-103",
"CSAFPID-104",
"CSAFPID-105",
"CSAFPID-106",
"CSAFPID-107",
"CSAFPID-108",
"CSAFPID-109",
"CSAFPID-110",
"CSAFPID-111",
"CSAFPID-112",
"CSAFPID-113",
"CSAFPID-114",
"CSAFPID-115",
"CSAFPID-116",
"CSAFPID-117",
"CSAFPID-118",
"CSAFPID-119",
"CSAFPID-120",
"CSAFPID-121",
"CSAFPID-122",
"CSAFPID-123",
"CSAFPID-124",
"CSAFPID-125",
"CSAFPID-126"
]
}
],
"title": "CVE-2026-25573"
},
{
"cve": "CVE-2026-25605",
"cwe": {
"id": "CWE-73",
"name": "External Control of File Name or Path"
},
"notes": [
{
"category": "other",
"text": "External Control of File Name or Path",
"title": "CWE-73"
},
{
"category": "description",
"text": "The application fails to properly validate file paths during deletion, enabling attackers to delete authorized files or sockets, potentially causing service disruption or denial of service.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36",
"CSAFPID-37",
"CSAFPID-38",
"CSAFPID-39",
"CSAFPID-40",
"CSAFPID-41",
"CSAFPID-42",
"CSAFPID-43",
"CSAFPID-44",
"CSAFPID-45",
"CSAFPID-46",
"CSAFPID-47",
"CSAFPID-48",
"CSAFPID-49",
"CSAFPID-50",
"CSAFPID-51",
"CSAFPID-52",
"CSAFPID-53",
"CSAFPID-54",
"CSAFPID-55",
"CSAFPID-56",
"CSAFPID-57",
"CSAFPID-58",
"CSAFPID-59",
"CSAFPID-60",
"CSAFPID-61",
"CSAFPID-62",
"CSAFPID-63",
"CSAFPID-64",
"CSAFPID-65",
"CSAFPID-66",
"CSAFPID-67",
"CSAFPID-68",
"CSAFPID-69",
"CSAFPID-70",
"CSAFPID-71",
"CSAFPID-72",
"CSAFPID-73",
"CSAFPID-74",
"CSAFPID-75",
"CSAFPID-76",
"CSAFPID-77",
"CSAFPID-78",
"CSAFPID-79",
"CSAFPID-80",
"CSAFPID-81",
"CSAFPID-82",
"CSAFPID-83",
"CSAFPID-84",
"CSAFPID-85",
"CSAFPID-86",
"CSAFPID-87",
"CSAFPID-88",
"CSAFPID-89",
"CSAFPID-90",
"CSAFPID-91",
"CSAFPID-92",
"CSAFPID-93",
"CSAFPID-94",
"CSAFPID-95",
"CSAFPID-96",
"CSAFPID-97",
"CSAFPID-98",
"CSAFPID-99",
"CSAFPID-100",
"CSAFPID-101",
"CSAFPID-102",
"CSAFPID-103",
"CSAFPID-104",
"CSAFPID-105",
"CSAFPID-106",
"CSAFPID-107",
"CSAFPID-108",
"CSAFPID-109",
"CSAFPID-110",
"CSAFPID-111",
"CSAFPID-112",
"CSAFPID-113",
"CSAFPID-114",
"CSAFPID-115",
"CSAFPID-116",
"CSAFPID-117",
"CSAFPID-118",
"CSAFPID-119",
"CSAFPID-120",
"CSAFPID-121",
"CSAFPID-122",
"CSAFPID-123",
"CSAFPID-124",
"CSAFPID-125",
"CSAFPID-126"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-25605 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2026/cve-2026-25605.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36",
"CSAFPID-37",
"CSAFPID-38",
"CSAFPID-39",
"CSAFPID-40",
"CSAFPID-41",
"CSAFPID-42",
"CSAFPID-43",
"CSAFPID-44",
"CSAFPID-45",
"CSAFPID-46",
"CSAFPID-47",
"CSAFPID-48",
"CSAFPID-49",
"CSAFPID-50",
"CSAFPID-51",
"CSAFPID-52",
"CSAFPID-53",
"CSAFPID-54",
"CSAFPID-55",
"CSAFPID-56",
"CSAFPID-57",
"CSAFPID-58",
"CSAFPID-59",
"CSAFPID-60",
"CSAFPID-61",
"CSAFPID-62",
"CSAFPID-63",
"CSAFPID-64",
"CSAFPID-65",
"CSAFPID-66",
"CSAFPID-67",
"CSAFPID-68",
"CSAFPID-69",
"CSAFPID-70",
"CSAFPID-71",
"CSAFPID-72",
"CSAFPID-73",
"CSAFPID-74",
"CSAFPID-75",
"CSAFPID-76",
"CSAFPID-77",
"CSAFPID-78",
"CSAFPID-79",
"CSAFPID-80",
"CSAFPID-81",
"CSAFPID-82",
"CSAFPID-83",
"CSAFPID-84",
"CSAFPID-85",
"CSAFPID-86",
"CSAFPID-87",
"CSAFPID-88",
"CSAFPID-89",
"CSAFPID-90",
"CSAFPID-91",
"CSAFPID-92",
"CSAFPID-93",
"CSAFPID-94",
"CSAFPID-95",
"CSAFPID-96",
"CSAFPID-97",
"CSAFPID-98",
"CSAFPID-99",
"CSAFPID-100",
"CSAFPID-101",
"CSAFPID-102",
"CSAFPID-103",
"CSAFPID-104",
"CSAFPID-105",
"CSAFPID-106",
"CSAFPID-107",
"CSAFPID-108",
"CSAFPID-109",
"CSAFPID-110",
"CSAFPID-111",
"CSAFPID-112",
"CSAFPID-113",
"CSAFPID-114",
"CSAFPID-115",
"CSAFPID-116",
"CSAFPID-117",
"CSAFPID-118",
"CSAFPID-119",
"CSAFPID-120",
"CSAFPID-121",
"CSAFPID-122",
"CSAFPID-123",
"CSAFPID-124",
"CSAFPID-125",
"CSAFPID-126"
]
}
],
"title": "CVE-2026-25605"
}
]
}
OPENSUSE-SU-2026:10036-1
Vulnerability from csaf_opensuse - Published: 2026-01-13 00:00 - Updated: 2026-01-13 00:00| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:cockpit-repos-4.6-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:cockpit-repos-4.6-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:cockpit-repos-4.6-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:cockpit-repos-4.6-1.1.x86_64 | — |
Vendor Fix
|
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "cockpit-repos-4.6-1.1 on GA media",
"title": "Title of the patch"
},
{
"category": "description",
"text": "These are all security issues fixed in the cockpit-repos-4.6-1.1 package on the GA media of openSUSE Tumbleweed.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-Tumbleweed-2026-10036",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2026_10036-1.json"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-64718 page",
"url": "https://www.suse.com/security/cve/CVE-2025-64718/"
}
],
"title": "cockpit-repos-4.6-1.1 on GA media",
"tracking": {
"current_release_date": "2026-01-13T00:00:00Z",
"generator": {
"date": "2026-01-13T00:00:00Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2026:10036-1",
"initial_release_date": "2026-01-13T00:00:00Z",
"revision_history": [
{
"date": "2026-01-13T00:00:00Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "cockpit-repos-4.6-1.1.aarch64",
"product": {
"name": "cockpit-repos-4.6-1.1.aarch64",
"product_id": "cockpit-repos-4.6-1.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "cockpit-repos-4.6-1.1.ppc64le",
"product": {
"name": "cockpit-repos-4.6-1.1.ppc64le",
"product_id": "cockpit-repos-4.6-1.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "cockpit-repos-4.6-1.1.s390x",
"product": {
"name": "cockpit-repos-4.6-1.1.s390x",
"product_id": "cockpit-repos-4.6-1.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "cockpit-repos-4.6-1.1.x86_64",
"product": {
"name": "cockpit-repos-4.6-1.1.x86_64",
"product_id": "cockpit-repos-4.6-1.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Tumbleweed",
"product": {
"name": "openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:tumbleweed"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "cockpit-repos-4.6-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cockpit-repos-4.6-1.1.aarch64"
},
"product_reference": "cockpit-repos-4.6-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cockpit-repos-4.6-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cockpit-repos-4.6-1.1.ppc64le"
},
"product_reference": "cockpit-repos-4.6-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cockpit-repos-4.6-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cockpit-repos-4.6-1.1.s390x"
},
"product_reference": "cockpit-repos-4.6-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cockpit-repos-4.6-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cockpit-repos-4.6-1.1.x86_64"
},
"product_reference": "cockpit-repos-4.6-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-64718",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-64718"
}
],
"notes": [
{
"category": "general",
"text": "js-yaml is a JavaScript YAML parser and dumper. In js-yaml before 4.1.1 and 3.14.2, it\u0027s possible for an attacker to modify the prototype of the result of a parsed yaml document via prototype pollution (`__proto__`). All users who parse untrusted yaml documents may be impacted. The problem is patched in js-yaml 4.1.1 and 3.14.2. Users can protect against this kind of attack on the server by using `node --disable-proto=delete` or `deno` (in Deno, pollution protection is on by default).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:cockpit-repos-4.6-1.1.aarch64",
"openSUSE Tumbleweed:cockpit-repos-4.6-1.1.ppc64le",
"openSUSE Tumbleweed:cockpit-repos-4.6-1.1.s390x",
"openSUSE Tumbleweed:cockpit-repos-4.6-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-64718",
"url": "https://www.suse.com/security/cve/CVE-2025-64718"
},
{
"category": "external",
"summary": "SUSE Bug 1255407 for CVE-2025-64718",
"url": "https://bugzilla.suse.com/1255407"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:cockpit-repos-4.6-1.1.aarch64",
"openSUSE Tumbleweed:cockpit-repos-4.6-1.1.ppc64le",
"openSUSE Tumbleweed:cockpit-repos-4.6-1.1.s390x",
"openSUSE Tumbleweed:cockpit-repos-4.6-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:cockpit-repos-4.6-1.1.aarch64",
"openSUSE Tumbleweed:cockpit-repos-4.6-1.1.ppc64le",
"openSUSE Tumbleweed:cockpit-repos-4.6-1.1.s390x",
"openSUSE Tumbleweed:cockpit-repos-4.6-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-01-13T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2025-64718"
}
]
}
OPENSUSE-SU-2026:11126-1
Vulnerability from csaf_opensuse - Published: 2026-06-25 00:00 - Updated: 2026-06-25 00:00| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64 | — |
Vendor Fix
|
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "velociraptor-0.7.0.4.git185.a5708584-2.1 on GA media",
"title": "Title of the patch"
},
{
"category": "description",
"text": "These are all security issues fixed in the velociraptor-0.7.0.4.git185.a5708584-2.1 package on the GA media of openSUSE Tumbleweed.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-Tumbleweed-2026-11126",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2026_11126-1.json"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-45288 page",
"url": "https://www.suse.com/security/cve/CVE-2023-45288/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45339 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45339/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-13465 page",
"url": "https://www.suse.com/security/cve/CVE-2025-13465/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-22868 page",
"url": "https://www.suse.com/security/cve/CVE-2025-22868/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-22869 page",
"url": "https://www.suse.com/security/cve/CVE-2025-22869/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-22870 page",
"url": "https://www.suse.com/security/cve/CVE-2025-22870/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-22872 page",
"url": "https://www.suse.com/security/cve/CVE-2025-22872/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-24358 page",
"url": "https://www.suse.com/security/cve/CVE-2025-24358/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-47911 page",
"url": "https://www.suse.com/security/cve/CVE-2025-47911/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-58058 page",
"url": "https://www.suse.com/security/cve/CVE-2025-58058/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-58181 page",
"url": "https://www.suse.com/security/cve/CVE-2025-58181/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-58190 page",
"url": "https://www.suse.com/security/cve/CVE-2025-58190/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-5889 page",
"url": "https://www.suse.com/security/cve/CVE-2025-5889/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-64718 page",
"url": "https://www.suse.com/security/cve/CVE-2025-64718/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-6545 page",
"url": "https://www.suse.com/security/cve/CVE-2025-6545/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-6547 page",
"url": "https://www.suse.com/security/cve/CVE-2025-6547/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-7783 page",
"url": "https://www.suse.com/security/cve/CVE-2025-7783/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-1229 page",
"url": "https://www.suse.com/security/cve/CVE-2026-1229/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-25128 page",
"url": "https://www.suse.com/security/cve/CVE-2026-25128/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-25680 page",
"url": "https://www.suse.com/security/cve/CVE-2026-25680/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-25681 page",
"url": "https://www.suse.com/security/cve/CVE-2026-25681/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-26278 page",
"url": "https://www.suse.com/security/cve/CVE-2026-26278/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-26996 page",
"url": "https://www.suse.com/security/cve/CVE-2026-26996/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-27136 page",
"url": "https://www.suse.com/security/cve/CVE-2026-27136/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-2739 page",
"url": "https://www.suse.com/security/cve/CVE-2026-2739/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-27606 page",
"url": "https://www.suse.com/security/cve/CVE-2026-27606/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-27904 page",
"url": "https://www.suse.com/security/cve/CVE-2026-27904/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-33036 page",
"url": "https://www.suse.com/security/cve/CVE-2026-33036/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-33186 page",
"url": "https://www.suse.com/security/cve/CVE-2026-33186/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-33487 page",
"url": "https://www.suse.com/security/cve/CVE-2026-33487/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-33814 page",
"url": "https://www.suse.com/security/cve/CVE-2026-33814/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-34986 page",
"url": "https://www.suse.com/security/cve/CVE-2026-34986/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-39821 page",
"url": "https://www.suse.com/security/cve/CVE-2026-39821/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-39827 page",
"url": "https://www.suse.com/security/cve/CVE-2026-39827/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-39828 page",
"url": "https://www.suse.com/security/cve/CVE-2026-39828/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-39829 page",
"url": "https://www.suse.com/security/cve/CVE-2026-39829/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-39830 page",
"url": "https://www.suse.com/security/cve/CVE-2026-39830/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-39831 page",
"url": "https://www.suse.com/security/cve/CVE-2026-39831/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-39832 page",
"url": "https://www.suse.com/security/cve/CVE-2026-39832/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-39833 page",
"url": "https://www.suse.com/security/cve/CVE-2026-39833/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-39834 page",
"url": "https://www.suse.com/security/cve/CVE-2026-39834/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-39835 page",
"url": "https://www.suse.com/security/cve/CVE-2026-39835/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-42039 page",
"url": "https://www.suse.com/security/cve/CVE-2026-42039/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-42502 page",
"url": "https://www.suse.com/security/cve/CVE-2026-42502/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-42506 page",
"url": "https://www.suse.com/security/cve/CVE-2026-42506/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-42508 page",
"url": "https://www.suse.com/security/cve/CVE-2026-42508/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-46595 page",
"url": "https://www.suse.com/security/cve/CVE-2026-46595/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-46597 page",
"url": "https://www.suse.com/security/cve/CVE-2026-46597/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-46598 page",
"url": "https://www.suse.com/security/cve/CVE-2026-46598/"
}
],
"title": "velociraptor-0.7.0.4.git185.a5708584-2.1 on GA media",
"tracking": {
"current_release_date": "2026-06-25T00:00:00Z",
"generator": {
"date": "2026-06-25T00:00:00Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2026:11126-1",
"initial_release_date": "2026-06-25T00:00:00Z",
"revision_history": [
{
"date": "2026-06-25T00:00:00Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"product": {
"name": "velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"product_id": "velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"product": {
"name": "velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"product_id": "velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"product": {
"name": "velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"product_id": "velociraptor-0.7.0.4.git185.a5708584-2.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64",
"product": {
"name": "velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64",
"product_id": "velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Tumbleweed",
"product": {
"name": "openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:tumbleweed"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64"
},
"product_reference": "velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le"
},
"product_reference": "velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "velociraptor-0.7.0.4.git185.a5708584-2.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x"
},
"product_reference": "velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
},
"product_reference": "velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-45288",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-45288"
}
],
"notes": [
{
"category": "general",
"text": "An attacker may cause an HTTP/2 endpoint to read arbitrary amounts of header data by sending an excessive number of CONTINUATION frames. Maintaining HPACK state requires parsing and processing all HEADERS and CONTINUATION frames on a connection. When a request\u0027s headers exceed MaxHeaderBytes, no memory is allocated to store the excess headers, but they are still parsed. This permits an attacker to cause an HTTP/2 endpoint to read arbitrary amounts of header data, all associated with a request which is going to be rejected. These headers can include Huffman-encoded data which is significantly more expensive for the receiver to decode than for an attacker to send. The fix sets a limit on the amount of excess header frames we will process before closing a connection.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-45288",
"url": "https://www.suse.com/security/cve/CVE-2023-45288"
},
{
"category": "external",
"summary": "SUSE Bug 1221400 for CVE-2023-45288",
"url": "https://bugzilla.suse.com/1221400"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-25T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2023-45288"
},
{
"cve": "CVE-2024-45339",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45339"
}
],
"notes": [
{
"category": "general",
"text": "When logs are written to a widely-writable directory (the default), an unprivileged attacker may predict a privileged process\u0027s log file path and pre-create a symbolic link to a sensitive file in its place. When that privileged process runs, it will follow the planted symlink and overwrite that sensitive file. To fix that, glog now causes the program to exit (with status code 2) when it finds that the configured log file already exists.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45339",
"url": "https://www.suse.com/security/cve/CVE-2024-45339"
},
{
"category": "external",
"summary": "SUSE Bug 1236541 for CVE-2024-45339",
"url": "https://bugzilla.suse.com/1236541"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-25T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-45339"
},
{
"cve": "CVE-2025-13465",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-13465"
}
],
"notes": [
{
"category": "general",
"text": "Lodash versions 4.0.0 through 4.17.22 are vulnerable to prototype pollution in the _.unset and _.omit functions. An attacker can pass crafted paths which cause Lodash to delete methods from global prototypes.\n\nThe issue permits deletion of properties but does not allow overwriting their original behavior.\n\nThis issue is patched on 4.17.23",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-13465",
"url": "https://www.suse.com/security/cve/CVE-2025-13465"
},
{
"category": "external",
"summary": "SUSE Bug 1257321 for CVE-2025-13465",
"url": "https://bugzilla.suse.com/1257321"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.2,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-25T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2025-13465"
},
{
"cve": "CVE-2025-22868",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-22868"
}
],
"notes": [
{
"category": "general",
"text": "An attacker can pass a malicious malformed token which causes unexpected memory to be consumed during parsing.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-22868",
"url": "https://www.suse.com/security/cve/CVE-2025-22868"
},
{
"category": "external",
"summary": "SUSE Bug 1239185 for CVE-2025-22868",
"url": "https://bugzilla.suse.com/1239185"
},
{
"category": "external",
"summary": "SUSE Bug 1239186 for CVE-2025-22868",
"url": "https://bugzilla.suse.com/1239186"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-25T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2025-22868"
},
{
"cve": "CVE-2025-22869",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-22869"
}
],
"notes": [
{
"category": "general",
"text": "SSH servers which implement file transfer protocols are vulnerable to a denial of service attack from clients which complete the key exchange slowly, or not at all, causing pending content to be read into memory, but never transmitted.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-22869",
"url": "https://www.suse.com/security/cve/CVE-2025-22869"
},
{
"category": "external",
"summary": "SUSE Bug 1239322 for CVE-2025-22869",
"url": "https://bugzilla.suse.com/1239322"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-25T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2025-22869"
},
{
"cve": "CVE-2025-22870",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-22870"
}
],
"notes": [
{
"category": "general",
"text": "Matching of hosts against proxy patterns can improperly treat an IPv6 zone ID as a hostname component. For example, when the NO_PROXY environment variable is set to \"*.example.com\", a request to \"[::1%25.example.com]:80` will incorrectly match and not be proxied.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-22870",
"url": "https://www.suse.com/security/cve/CVE-2025-22870"
},
{
"category": "external",
"summary": "SUSE Bug 1238572 for CVE-2025-22870",
"url": "https://bugzilla.suse.com/1238572"
},
{
"category": "external",
"summary": "SUSE Bug 1238611 for CVE-2025-22870",
"url": "https://bugzilla.suse.com/1238611"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-25T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2025-22870"
},
{
"cve": "CVE-2025-22872",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-22872"
}
],
"notes": [
{
"category": "general",
"text": "The tokenizer incorrectly interprets tags with unquoted attribute values that end with a solidus character (/) as self-closing. When directly using Tokenizer, this can result in such tags incorrectly being marked as self-closing, and when using the Parse functions, this can result in content following such tags as being placed in the wrong scope during DOM construction, but only when tags are in foreign content (e.g. \u003cmath\u003e, \u003csvg\u003e, etc contexts).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-22872",
"url": "https://www.suse.com/security/cve/CVE-2025-22872"
},
{
"category": "external",
"summary": "SUSE Bug 1241710 for CVE-2025-22872",
"url": "https://bugzilla.suse.com/1241710"
},
{
"category": "external",
"summary": "SUSE Bug 1265255 for CVE-2025-22872",
"url": "https://bugzilla.suse.com/1265255"
},
{
"category": "external",
"summary": "SUSE Bug 1265256 for CVE-2025-22872",
"url": "https://bugzilla.suse.com/1265256"
},
{
"category": "external",
"summary": "SUSE Bug 1265259 for CVE-2025-22872",
"url": "https://bugzilla.suse.com/1265259"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-25T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2025-22872"
},
{
"cve": "CVE-2025-24358",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-24358"
}
],
"notes": [
{
"category": "general",
"text": "gorilla/csrf provides Cross Site Request Forgery (CSRF) prevention middleware for Go web applications \u0026 services. Prior to 1.7.2, gorilla/csrf does not validate the Origin header against an allowlist. Its executes its validation of the Referer header for cross-origin requests only when it believes the request is being served over TLS. It determines this by inspecting the r.URL.Scheme value. However, this value is never populated for \"server\" requests per the Go spec, and so this check does not run in practice. This vulnerability allows an attacker who has gained XSS on a subdomain or top level domain to perform authenticated form submissions against gorilla/csrf protected targets that share the same top level domain. This vulnerability is fixed in 1.7.2.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-24358",
"url": "https://www.suse.com/security/cve/CVE-2025-24358"
},
{
"category": "external",
"summary": "SUSE Bug 1241233 for CVE-2025-24358",
"url": "https://bugzilla.suse.com/1241233"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-25T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2025-24358"
},
{
"cve": "CVE-2025-47911",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-47911"
}
],
"notes": [
{
"category": "general",
"text": "The html.Parse function in golang.org/x/net/html has quadratic parsing complexity when processing certain inputs, which can lead to denial of service (DoS) if an attacker provides specially crafted HTML content.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-47911",
"url": "https://www.suse.com/security/cve/CVE-2025-47911"
},
{
"category": "external",
"summary": "SUSE Bug 1251308 for CVE-2025-47911",
"url": "https://bugzilla.suse.com/1251308"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-25T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2025-47911"
},
{
"cve": "CVE-2025-58058",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-58058"
}
],
"notes": [
{
"category": "general",
"text": "xz is a pure golang package for reading and writing xz-compressed files. Prior to version 0.5.14, it is possible to put data in front of an LZMA-encoded byte stream without detecting the situation while reading the header. This can lead to increased memory consumption because the current implementation allocates the full decoding buffer directly after reading the header. The LZMA header doesn\u0027t include a magic number or has a checksum to detect such an issue according to the specification. Note that the code recognizes the issue later while reading the stream, but at this time the memory allocation has already been done. This issue has been patched in version 0.5.14.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-58058",
"url": "https://www.suse.com/security/cve/CVE-2025-58058"
},
{
"category": "external",
"summary": "SUSE Bug 1248889 for CVE-2025-58058",
"url": "https://bugzilla.suse.com/1248889"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-25T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2025-58058"
},
{
"cve": "CVE-2025-58181",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-58181"
}
],
"notes": [
{
"category": "general",
"text": "SSH servers parsing GSSAPI authentication requests do not validate the number of mechanisms specified in the request, allowing an attacker to cause unbounded memory consumption.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-58181",
"url": "https://www.suse.com/security/cve/CVE-2025-58181"
},
{
"category": "external",
"summary": "SUSE Bug 1253784 for CVE-2025-58181",
"url": "https://bugzilla.suse.com/1253784"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-25T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2025-58181"
},
{
"cve": "CVE-2025-58190",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-58190"
}
],
"notes": [
{
"category": "general",
"text": "The html.Parse function in golang.org/x/net/html has an infinite parsing loop when processing certain inputs, which can lead to denial of service (DoS) if an attacker provides specially crafted HTML content.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-58190",
"url": "https://www.suse.com/security/cve/CVE-2025-58190"
},
{
"category": "external",
"summary": "SUSE Bug 1251309 for CVE-2025-58190",
"url": "https://bugzilla.suse.com/1251309"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-25T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2025-58190"
},
{
"cve": "CVE-2025-5889",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-5889"
}
],
"notes": [
{
"category": "general",
"text": "A vulnerability was found in juliangruber brace-expansion up to 1.1.11/2.0.1/3.0.0/4.0.0. It has been rated as problematic. Affected by this issue is the function expand of the file index.js. The manipulation leads to inefficient regular expression complexity. The attack may be launched remotely. The complexity of an attack is rather high. The exploitation is known to be difficult. The exploit has been disclosed to the public and may be used. Upgrading to version 1.1.12, 2.0.2, 3.0.1 and 4.0.1 is able to address this issue. The name of the patch is a5b98a4f30d7813266b221435e1eaaf25a1b0ac5. It is recommended to upgrade the affected component.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-5889",
"url": "https://www.suse.com/security/cve/CVE-2025-5889"
},
{
"category": "external",
"summary": "SUSE Bug 1244340 for CVE-2025-5889",
"url": "https://bugzilla.suse.com/1244340"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 2.5,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-25T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2025-5889"
},
{
"cve": "CVE-2025-64718",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-64718"
}
],
"notes": [
{
"category": "general",
"text": "js-yaml is a JavaScript YAML parser and dumper. In js-yaml before 4.1.1 and 3.14.2, it\u0027s possible for an attacker to modify the prototype of the result of a parsed yaml document via prototype pollution (`__proto__`). All users who parse untrusted yaml documents may be impacted. The problem is patched in js-yaml 4.1.1 and 3.14.2. Users can protect against this kind of attack on the server by using `node --disable-proto=delete` or `deno` (in Deno, pollution protection is on by default).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-64718",
"url": "https://www.suse.com/security/cve/CVE-2025-64718"
},
{
"category": "external",
"summary": "SUSE Bug 1255407 for CVE-2025-64718",
"url": "https://bugzilla.suse.com/1255407"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-25T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2025-64718"
},
{
"cve": "CVE-2025-6545",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-6545"
}
],
"notes": [
{
"category": "general",
"text": "Improper Input Validation vulnerability in pbkdf2 allows Signature Spoofing by Improper Validation. This vulnerability is associated with program files lib/to-buffer.Js.\n\nThis issue affects pbkdf2: from 3.0.10 through 3.1.2.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-6545",
"url": "https://www.suse.com/security/cve/CVE-2025-6545"
},
{
"category": "external",
"summary": "SUSE Bug 1245273 for CVE-2025-6545",
"url": "https://bugzilla.suse.com/1245273"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.4,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-25T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2025-6545"
},
{
"cve": "CVE-2025-6547",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-6547"
}
],
"notes": [
{
"category": "general",
"text": "Improper Input Validation vulnerability in pbkdf2 allows Signature Spoofing by Improper Validation.This issue affects pbkdf2: \u003c=3.1.2.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-6547",
"url": "https://www.suse.com/security/cve/CVE-2025-6547"
},
{
"category": "external",
"summary": "SUSE Bug 1245271 for CVE-2025-6547",
"url": "https://bugzilla.suse.com/1245271"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.4,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-25T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2025-6547"
},
{
"cve": "CVE-2025-7783",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-7783"
}
],
"notes": [
{
"category": "general",
"text": "Use of Insufficiently Random Values vulnerability in form-data allows HTTP Parameter Pollution (HPP). This vulnerability is associated with program files lib/form_data.Js.\n\nThis issue affects form-data: \u003c 2.5.4, 3.0.0 - 3.0.3, 4.0.0 - 4.0.3.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-7783",
"url": "https://www.suse.com/security/cve/CVE-2025-7783"
},
{
"category": "external",
"summary": "SUSE Bug 1246810 for CVE-2025-7783",
"url": "https://bugzilla.suse.com/1246810"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:H/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-25T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2025-7783"
},
{
"cve": "CVE-2026-1229",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-1229"
}
],
"notes": [
{
"category": "general",
"text": "The CombinedMult function in the CIRCL ecc/p384 package (secp384r1 curve) produces an incorrect value for specific inputs. The issue is fixed by using complete addition formulas.\nECDH and ECDSA signing relying on this curve are not affected.\n\nThe bug was fixed in v1.6.3 https://github.com/cloudflare/circl/releases/tag/v1.6.3 .",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-1229",
"url": "https://www.suse.com/security/cve/CVE-2026-1229"
},
{
"category": "external",
"summary": "SUSE Bug 1265416 for CVE-2026-1229",
"url": "https://bugzilla.suse.com/1265416"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:H/A:L",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-25T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2026-1229"
},
{
"cve": "CVE-2026-25128",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-25128"
}
],
"notes": [
{
"category": "general",
"text": "fast-xml-parser allows users to validate XML, parse XML to JS object, or build XML from JS object without C/C++ based libraries and no callback. In versions 5.0.9 through 5.3.3, a RangeError vulnerability exists in the numeric entity processing of fast-xml-parser when parsing XML with out-of-range entity code points (e.g., `\u0026#9999999;` or `\u0026#xFFFFFF;`). This causes the parser to throw an uncaught exception, crashing any application that processes untrusted XML input. Version 5.3.4 fixes the issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-25128",
"url": "https://www.suse.com/security/cve/CVE-2026-25128"
},
{
"category": "external",
"summary": "SUSE Bug 1257518 for CVE-2026-25128",
"url": "https://bugzilla.suse.com/1257518"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-25T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2026-25128"
},
{
"cve": "CVE-2026-25680",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-25680"
}
],
"notes": [
{
"category": "general",
"text": "Parsing arbitrary HTML can consume excessive CPU time, possibly leading to denial of service.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-25680",
"url": "https://www.suse.com/security/cve/CVE-2026-25680"
},
{
"category": "external",
"summary": "SUSE Bug 1267044 for CVE-2026-25680",
"url": "https://bugzilla.suse.com/1267044"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-25T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2026-25680"
},
{
"cve": "CVE-2026-25681",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-25681"
}
],
"notes": [
{
"category": "general",
"text": "Parsing arbitrary HTML which is then rendered using Render can result in an unexpected HTML tree. This can be leveraged to execute XSS attacks in applications that attempt to sanitize input HTML before rendering.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-25681",
"url": "https://www.suse.com/security/cve/CVE-2026-25681"
},
{
"category": "external",
"summary": "SUSE Bug 1267044 for CVE-2026-25681",
"url": "https://bugzilla.suse.com/1267044"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-25T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2026-25681"
},
{
"cve": "CVE-2026-26278",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-26278"
}
],
"notes": [
{
"category": "general",
"text": "fast-xml-parser allows users to validate XML, parse XML to JS object, or build XML from JS object without C/C++ based libraries and no callback. In versions 4.1.3 through 5.3.5, the XML parser can be forced to do an unlimited amount of entity expansion. With a very small XML input, it\u0027s possible to make the parser spend seconds or even minutes processing a single request, effectively freezing the application. Version 5.3.6 fixes the issue. As a workaround, avoid using DOCTYPE parsing by `processEntities: false` option.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-26278",
"url": "https://www.suse.com/security/cve/CVE-2026-26278"
},
{
"category": "external",
"summary": "SUSE Bug 1258547 for CVE-2026-26278",
"url": "https://bugzilla.suse.com/1258547"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-25T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2026-26278"
},
{
"cve": "CVE-2026-26996",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-26996"
}
],
"notes": [
{
"category": "general",
"text": "minimatch is a minimal matching utility for converting glob expressions into JavaScript RegExp objects. Versions 10.2.0 and below are vulnerable to Regular Expression Denial of Service (ReDoS) when a glob pattern contains many consecutive * wildcards followed by a literal character that doesn\u0027t appear in the test string. Each * compiles to a separate [^/]*? regex group, and when the match fails, V8\u0027s regex engine backtracks exponentially across all possible splits. The time complexity is O(4^N) where N is the number of * characters. With N=15, a single minimatch() call takes ~2 seconds. With N=34, it hangs effectively forever. Any application that passes user-controlled strings to minimatch() as the pattern argument is vulnerable to DoS. This issue has been fixed in version 10.2.1.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-26996",
"url": "https://www.suse.com/security/cve/CVE-2026-26996"
},
{
"category": "external",
"summary": "SUSE Bug 1258621 for CVE-2026-26996",
"url": "https://bugzilla.suse.com/1258621"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-25T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2026-26996"
},
{
"cve": "CVE-2026-27136",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-27136"
}
],
"notes": [
{
"category": "general",
"text": "Parsing arbitrary HTML which is then rendered using Render can result in an unexpected HTML tree. This can be leveraged to execute XSS attacks in applications that attempt to sanitize input HTML before rendering.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-27136",
"url": "https://www.suse.com/security/cve/CVE-2026-27136"
},
{
"category": "external",
"summary": "SUSE Bug 1267044 for CVE-2026-27136",
"url": "https://bugzilla.suse.com/1267044"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-25T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2026-27136"
},
{
"cve": "CVE-2026-2739",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-2739"
}
],
"notes": [
{
"category": "general",
"text": "This affects versions of the package bn.js before 5.2.3. Calling maskn(0) on any BN instance corrupts the internal state, causing toString(), divmod(), and other methods to enter an infinite loop, hanging the process indefinitely.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-2739",
"url": "https://www.suse.com/security/cve/CVE-2026-2739"
},
{
"category": "external",
"summary": "SUSE Bug 1258647 for CVE-2026-2739",
"url": "https://bugzilla.suse.com/1258647"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-25T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2026-2739"
},
{
"cve": "CVE-2026-27606",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-27606"
}
],
"notes": [
{
"category": "general",
"text": "Rollup is a module bundler for JavaScript. Versions prior to 2.80.0, 3.30.0, and 4.59.0 of the Rollup module bundler (specifically v4.x and present in current source) is vulnerable to an Arbitrary File Write via Path Traversal. Insecure file name sanitization in the core engine allows an attacker to control output filenames (e.g., via CLI named inputs, manual chunk aliases, or malicious plugins) and use traversal sequences (`../`) to overwrite files anywhere on the host filesystem that the build process has permissions for. This can lead to persistent Remote Code Execution (RCE) by overwriting critical system or user configuration files. Versions 2.80.0, 3.30.0, and 4.59.0 contain a patch for the issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-27606",
"url": "https://www.suse.com/security/cve/CVE-2026-27606"
},
{
"category": "external",
"summary": "SUSE Bug 1258846 for CVE-2026-27606",
"url": "https://bugzilla.suse.com/1258846"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-25T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2026-27606"
},
{
"cve": "CVE-2026-27904",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-27904"
}
],
"notes": [
{
"category": "general",
"text": "minimatch is a minimal matching utility for converting glob expressions into JavaScript RegExp objects. Prior to version 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, and 3.1.4, nested `*()` extglobs produce regexps with nested unbounded quantifiers (e.g. `(?:(?:a|b)*)*`), which exhibit catastrophic backtracking in V8. With a 12-byte pattern `*(*(*(a|b)))` and an 18-byte non-matching input, `minimatch()` stalls for over 7 seconds. Adding a single nesting level or a few input characters pushes this to minutes. This is the most severe finding: it is triggered by the default `minimatch()` API with no special options, and the minimum viable pattern is only 12 bytes. The same issue affects `+()` extglobs equally. Versions 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, and 3.1.4 fix the issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-27904",
"url": "https://www.suse.com/security/cve/CVE-2026-27904"
},
{
"category": "external",
"summary": "SUSE Bug 1258994 for CVE-2026-27904",
"url": "https://bugzilla.suse.com/1258994"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-25T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2026-27904"
},
{
"cve": "CVE-2026-33036",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-33036"
}
],
"notes": [
{
"category": "general",
"text": "fast-xml-parser allows users to process XML from JS object without C/C++ based libraries or callbacks. Versions 4.0.0-beta.3 through 5.5.5 contain a bypass vulnerability where numeric character references (\u0026#NNN;, \u0026#xHH;) and standard XML entities completely evade the entity expansion limits (e.g., maxTotalExpansions, maxExpandedLength) added to fix CVE-2026-26278, enabling XML entity expansion Denial of Service. The root cause is that replaceEntitiesValue() in OrderedObjParser.js only enforces expansion counting on DOCTYPE-defined entities while the lastEntities loop handling numeric/standard entities performs no counting at all. An attacker supplying 1M numeric entity references like \u0026#65; can force ~147MB of memory allocation and heavy CPU usage, potentially crashing the process-even when developers have configured strict limits. This issue has been fixed in version 5.5.6.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-33036",
"url": "https://www.suse.com/security/cve/CVE-2026-33036"
},
{
"category": "external",
"summary": "SUSE Bug 1259974 for CVE-2026-33036",
"url": "https://bugzilla.suse.com/1259974"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-25T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2026-33036"
},
{
"cve": "CVE-2026-33186",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-33186"
}
],
"notes": [
{
"category": "general",
"text": "gRPC-Go is the Go language implementation of gRPC. Versions prior to 1.79.3 have an authorization bypass resulting from improper input validation of the HTTP/2 `:path` pseudo-header. The gRPC-Go server was too lenient in its routing logic, accepting requests where the `:path` omitted the mandatory leading slash (e.g., `Service/Method` instead of `/Service/Method`). While the server successfully routed these requests to the correct handler, authorization interceptors (including the official `grpc/authz` package) evaluated the raw, non-canonical path string. Consequently, \"deny\" rules defined using canonical paths (starting with `/`) failed to match the incoming request, allowing it to bypass the policy if a fallback \"allow\" rule was present. This affects gRPC-Go servers that use path-based authorization interceptors, such as the official RBAC implementation in `google.golang.org/grpc/authz` or custom interceptors relying on `info.FullMethod` or `grpc.Method(ctx)`; AND that have a security policy contains specific \"deny\" rules for canonical paths but allows other requests by default (a fallback \"allow\" rule). The vulnerability is exploitable by an attacker who can send raw HTTP/2 frames with malformed `:path` headers directly to the gRPC server. The fix in version 1.79.3 ensures that any request with a `:path` that does not start with a leading slash is immediately rejected with a `codes.Unimplemented` error, preventing it from reaching authorization interceptors or handlers with a non-canonical path string. While upgrading is the most secure and recommended path, users can mitigate the vulnerability using one of the following methods: Use a validating interceptor (recommended mitigation); infrastructure-level normalization; and/or policy hardening.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-33186",
"url": "https://www.suse.com/security/cve/CVE-2026-33186"
},
{
"category": "external",
"summary": "SUSE Bug 1260085 for CVE-2026-33186",
"url": "https://bugzilla.suse.com/1260085"
},
{
"category": "external",
"summary": "SUSE Bug 1268676 for CVE-2026-33186",
"url": "https://bugzilla.suse.com/1268676"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-25T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2026-33186"
},
{
"cve": "CVE-2026-33487",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-33487"
}
],
"notes": [
{
"category": "general",
"text": "goxmlsig provides XML Digital Signatures implemented in Go. Prior to version 1.6.0, the `validateSignature` function in `validate.go` goes through the references in the `SignedInfo` block to find one that matches the signed element\u0027s ID. In Go versions before 1.22, or when `go.mod` uses an older version, there is a loop variable capture issue. The code takes the address of the loop variable `_ref` instead of its value. As a result, if more than one reference matches the ID or if the loop logic is incorrect, the `ref` pointer will always end up pointing to the last element in the `SignedInfo.References` slice after the loop. goxmlsig version 1.6.0 contains a patch.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-33487",
"url": "https://www.suse.com/security/cve/CVE-2026-33487"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-25T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2026-33487"
},
{
"cve": "CVE-2026-33814",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-33814"
}
],
"notes": [
{
"category": "general",
"text": "When processing HTTP/2 SETTINGS frames, transport will enter an infinite loop of writing CONTINUATION frames if it receives a SETTINGS_MAX_FRAME_SIZE with a value of 0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-33814",
"url": "https://www.suse.com/security/cve/CVE-2026-33814"
},
{
"category": "external",
"summary": "SUSE Bug 1264506 for CVE-2026-33814",
"url": "https://bugzilla.suse.com/1264506"
},
{
"category": "external",
"summary": "SUSE Bug 1268758 for CVE-2026-33814",
"url": "https://bugzilla.suse.com/1268758"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-25T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2026-33814"
},
{
"cve": "CVE-2026-34986",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-34986"
}
],
"notes": [
{
"category": "general",
"text": "Go JOSE provides an implementation of the Javascript Object Signing and Encryption set of standards in Go, including support for JSON Web Encryption (JWE), JSON Web Signature (JWS), and JSON Web Token (JWT) standards. Prior to 4.1.4 and 3.0.5, decrypting a JSON Web Encryption (JWE) object will panic if the alg field indicates a key wrapping algorithm (one ending in KW, with the exception of A128GCMKW, A192GCMKW, and A256GCMKW) and the encrypted_key field is empty. The panic happens when cipher.KeyUnwrap() in key_wrap.go attempts to allocate a slice with a zero or negative length based on the length of the encrypted_key. This code path is reachable from ParseEncrypted() / ParseEncryptedJSON() / ParseEncryptedCompact() followed by Decrypt() on the resulting object. Note that the parse functions take a list of accepted key algorithms. If the accepted key algorithms do not include any key wrapping algorithms, parsing will fail and the application will be unaffected. This panic is also reachable by calling cipher.KeyUnwrap() directly with any ciphertext parameter less than 16 bytes long, but calling this function directly is less common. Panics can lead to denial of service. This vulnerability is fixed in 4.1.4 and 3.0.5.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-34986",
"url": "https://www.suse.com/security/cve/CVE-2026-34986"
},
{
"category": "external",
"summary": "SUSE Bug 1262805 for CVE-2026-34986",
"url": "https://bugzilla.suse.com/1262805"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-25T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2026-34986"
},
{
"cve": "CVE-2026-39821",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-39821"
}
],
"notes": [
{
"category": "general",
"text": "The ToASCII and ToUnicode functions incorrectly accept Punycode-encoded labels that decode to an ASCII-only label. For example, ToUnicode(\"xn--example-.com\") incorrectly returns the name \"example.com\" rather than an error. This behavior can lead to privilege escalation in programs using the idna package. For example, a program which performs privilege checks on the ASCII hostname may reject \"example.com\" but permit \"xn--example-.com\". If that program subsequently converts the ASCII hostname to Unicode, it will inadvertently permits access to the Unicode name \"example.com\".",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-39821",
"url": "https://www.suse.com/security/cve/CVE-2026-39821"
},
{
"category": "external",
"summary": "SUSE Bug 1266474 for CVE-2026-39821",
"url": "https://bugzilla.suse.com/1266474"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.4,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-25T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2026-39821"
},
{
"cve": "CVE-2026-39827",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-39827"
}
],
"notes": [
{
"category": "general",
"text": "An authenticated SSH client that repeatedly opened channels which were rejected by the server caused unbounded memory growth, eventually crashing the server process and affecting all connected users. Rejected channels are now properly removed from the connection\u0027s internal state and released for garbage collection.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-39827",
"url": "https://www.suse.com/security/cve/CVE-2026-39827"
},
{
"category": "external",
"summary": "SUSE Bug 1266049 for CVE-2026-39827",
"url": "https://bugzilla.suse.com/1266049"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-25T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2026-39827"
},
{
"cve": "CVE-2026-39828",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-39828"
}
],
"notes": [
{
"category": "general",
"text": "When an SSH server authentication callback returned PartialSuccessError with non-nil Permissions, those permissions were silently discarded, potentially dropping certificate restrictions such as force-command after a second factor succeeded. Returning non-nil Permissions with PartialSuccessError now results in a connection error.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-39828",
"url": "https://www.suse.com/security/cve/CVE-2026-39828"
},
{
"category": "external",
"summary": "SUSE Bug 1266049 for CVE-2026-39828",
"url": "https://bugzilla.suse.com/1266049"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-25T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2026-39828"
},
{
"cve": "CVE-2026-39829",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-39829"
}
],
"notes": [
{
"category": "general",
"text": "The RSA and DSA public key parsers did not enforce size limits on key parameters. A crafted public key with an excessively large modulus or DSA parameter could cause several minutes of CPU consumption during signature verification. This could be triggered by unauthenticated clients during public key authentication. RSA moduli are now limited to 8192 bits, and DSA parameters are validated per FIPS 186-2.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-39829",
"url": "https://www.suse.com/security/cve/CVE-2026-39829"
},
{
"category": "external",
"summary": "SUSE Bug 1266049 for CVE-2026-39829",
"url": "https://bugzilla.suse.com/1266049"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-25T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2026-39829"
},
{
"cve": "CVE-2026-39830",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-39830"
}
],
"notes": [
{
"category": "general",
"text": "A malicious SSH peer could send unsolicited global request responses to fill an internal buffer, blocking the connection\u0027s read loop. The blocked goroutine could not be released by calling Close(), resulting in a resource leak per connection. Unsolicited global responses are now discarded.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-39830",
"url": "https://www.suse.com/security/cve/CVE-2026-39830"
},
{
"category": "external",
"summary": "SUSE Bug 1266049 for CVE-2026-39830",
"url": "https://bugzilla.suse.com/1266049"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-25T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2026-39830"
},
{
"cve": "CVE-2026-39831",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-39831"
}
],
"notes": [
{
"category": "general",
"text": "The Verify() method for FIDO/U2F security key types (sk-ecdsa-sha2-nistp256@openssh.com, sk-ssh-ed25519@openssh.com) did not check the User Presence flag. Signatures generated without physical touch were accepted, allowing unattended use of a hardware security key. To restore the previous behavior, return a \"no-touch-required\" extension in Permissions.Extensions from PublicKeyCallback.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-39831",
"url": "https://www.suse.com/security/cve/CVE-2026-39831"
},
{
"category": "external",
"summary": "SUSE Bug 1266049 for CVE-2026-39831",
"url": "https://bugzilla.suse.com/1266049"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-25T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2026-39831"
},
{
"cve": "CVE-2026-39832",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-39832"
}
],
"notes": [
{
"category": "general",
"text": "When adding a key to a remote agent constraint extensions such as restrict-destination-v00@openssh.com were not serialized in the request. Destination restrictions were silently stripped when forwarding keys, allowing unrestricted use of the key on the remote host. The client now serializes all constraint extensions. Additionally, the in-memory keyring returned by NewKeyring() now rejects keys with unsupported constraint extensions instead of silently ignoring them.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-39832",
"url": "https://www.suse.com/security/cve/CVE-2026-39832"
},
{
"category": "external",
"summary": "SUSE Bug 1266049 for CVE-2026-39832",
"url": "https://bugzilla.suse.com/1266049"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.4,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-25T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2026-39832"
},
{
"cve": "CVE-2026-39833",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-39833"
}
],
"notes": [
{
"category": "general",
"text": "The in-memory keyring returned by NewKeyring() silently accepted keys with the ConfirmBeforeUse constraint but never enforced it. The key would sign without any confirmation prompt, with no indication to the caller that the constraint was not in effect. NewKeyring() now returns an error when unsupported constraints are requested.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-39833",
"url": "https://www.suse.com/security/cve/CVE-2026-39833"
},
{
"category": "external",
"summary": "SUSE Bug 1266049 for CVE-2026-39833",
"url": "https://bugzilla.suse.com/1266049"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-25T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2026-39833"
},
{
"cve": "CVE-2026-39834",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-39834"
}
],
"notes": [
{
"category": "general",
"text": "When writing data larger than 4GB in a single Write call on an SSH channel, an integer overflow in the internal payload size calculation caused the write loop to spin indefinitely, sending empty packets without making progress. The size comparison now uses int64 to prevent truncation.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-39834",
"url": "https://www.suse.com/security/cve/CVE-2026-39834"
},
{
"category": "external",
"summary": "SUSE Bug 1266049 for CVE-2026-39834",
"url": "https://bugzilla.suse.com/1266049"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-25T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2026-39834"
},
{
"cve": "CVE-2026-39835",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-39835"
}
],
"notes": [
{
"category": "general",
"text": "SSH servers which use CertChecker as a public key callback without setting IsUserAuthority or IsHostAuthority could be caused to panic by a client presenting a certificate. CertChecker now returns an error instead of panicking when these callbacks are nil.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-39835",
"url": "https://www.suse.com/security/cve/CVE-2026-39835"
},
{
"category": "external",
"summary": "SUSE Bug 1266049 for CVE-2026-39835",
"url": "https://bugzilla.suse.com/1266049"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-25T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2026-39835"
},
{
"cve": "CVE-2026-42039",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-42039"
}
],
"notes": [
{
"category": "general",
"text": "Axios is a promise based HTTP client for the browser and Node.js. Prior to 1.15.1 and 0.31.1, toFormData recursively walks nested objects with no depth limit, so a deeply nested value passed as request data crashes the Node.js process with a RangeError. This vulnerability is fixed in 1.15.1 and 0.31.1.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-42039",
"url": "https://www.suse.com/security/cve/CVE-2026-42039"
},
{
"category": "external",
"summary": "SUSE Bug 1267406 for CVE-2026-42039",
"url": "https://bugzilla.suse.com/1267406"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-25T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2026-42039"
},
{
"cve": "CVE-2026-42502",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-42502"
}
],
"notes": [
{
"category": "general",
"text": "Parsing arbitrary HTML which is then rendered using Render can result in an unexpected HTML tree. This can be leveraged to execute XSS attacks in applications that attempt to sanitize input HTML before rendering.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-42502",
"url": "https://www.suse.com/security/cve/CVE-2026-42502"
},
{
"category": "external",
"summary": "SUSE Bug 1267044 for CVE-2026-42502",
"url": "https://bugzilla.suse.com/1267044"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-25T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2026-42502"
},
{
"cve": "CVE-2026-42506",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-42506"
}
],
"notes": [
{
"category": "general",
"text": "Parsing arbitrary HTML which is then rendered using Render can result in an unexpected HTML tree. This can be leveraged to execute XSS attacks in applications that attempt to sanitize input HTML before rendering.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-42506",
"url": "https://www.suse.com/security/cve/CVE-2026-42506"
},
{
"category": "external",
"summary": "SUSE Bug 1267044 for CVE-2026-42506",
"url": "https://bugzilla.suse.com/1267044"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-25T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2026-42506"
},
{
"cve": "CVE-2026-42508",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-42508"
}
],
"notes": [
{
"category": "general",
"text": "Previously, a revoked \u0027SignatureKey\u0027 belonging to a CA was not correctly checked for revocation. Now, both the \u0027key\u0027 and \u0027key.SignatureKey\u0027 are checked for @revoked.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-42508",
"url": "https://www.suse.com/security/cve/CVE-2026-42508"
},
{
"category": "external",
"summary": "SUSE Bug 1266049 for CVE-2026-42508",
"url": "https://bugzilla.suse.com/1266049"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-25T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2026-42508"
},
{
"cve": "CVE-2026-46595",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-46595"
}
],
"notes": [
{
"category": "general",
"text": "Previously, CVE-2024-45337 fixed an authorization bypass for misused ssh server configurations; if any other type of callback is passed other than public key, then the source-address validation would be skipped.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-46595",
"url": "https://www.suse.com/security/cve/CVE-2026-46595"
},
{
"category": "external",
"summary": "SUSE Bug 1266049 for CVE-2026-46595",
"url": "https://bugzilla.suse.com/1266049"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-25T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2026-46595"
},
{
"cve": "CVE-2026-46597",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-46597"
}
],
"notes": [
{
"category": "general",
"text": "An incorrectly placed cast from bytes to int allowed for server-side panic in the AES-GCM packet decoder for well-crafted inputs.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-46597",
"url": "https://www.suse.com/security/cve/CVE-2026-46597"
},
{
"category": "external",
"summary": "SUSE Bug 1266049 for CVE-2026-46597",
"url": "https://bugzilla.suse.com/1266049"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-25T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2026-46597"
},
{
"cve": "CVE-2026-46598",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-46598"
}
],
"notes": [
{
"category": "general",
"text": "For certain crafted inputs, a \u0027ed25519.PrivateKey\u0027 was created by casting malformed wire bytes, leading to a panic when used.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-46598",
"url": "https://www.suse.com/security/cve/CVE-2026-46598"
},
{
"category": "external",
"summary": "SUSE Bug 1266049 for CVE-2026-46598",
"url": "https://bugzilla.suse.com/1266049"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.aarch64",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.ppc64le",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.s390x",
"openSUSE Tumbleweed:velociraptor-0.7.0.4.git185.a5708584-2.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-25T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2026-46598"
}
]
}
OPENSUSE-SU-2026:20117-1
Vulnerability from csaf_opensuse - Published: 2026-01-27 20:37 - Updated: 2026-01-27 20:37| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 16.0:cockpit-subscriptions-12.1-160000.1.1.noarch | — |
Vendor Fix
|
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for cockpit-subscriptions",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for cockpit-subscriptions fixes the following issues:\n\nUpdate to version 12.1:\n\n- CVE-2025-64718: js-yaml: fixed prototype pollution in merge (bsc#1255425).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-Leap-16.0-202",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2026_20117-1.json"
},
{
"category": "self",
"summary": "SUSE Bug 1255425",
"url": "https://bugzilla.suse.com/1255425"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-64718 page",
"url": "https://www.suse.com/security/cve/CVE-2025-64718/"
}
],
"title": "Security update for cockpit-subscriptions",
"tracking": {
"current_release_date": "2026-01-27T20:37:55Z",
"generator": {
"date": "2026-01-27T20:37:55Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2026:20117-1",
"initial_release_date": "2026-01-27T20:37:55Z",
"revision_history": [
{
"date": "2026-01-27T20:37:55Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "cockpit-subscriptions-12.1-160000.1.1.noarch",
"product": {
"name": "cockpit-subscriptions-12.1-160000.1.1.noarch",
"product_id": "cockpit-subscriptions-12.1-160000.1.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Leap 16.0",
"product": {
"name": "openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0"
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "cockpit-subscriptions-12.1-160000.1.1.noarch as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:cockpit-subscriptions-12.1-160000.1.1.noarch"
},
"product_reference": "cockpit-subscriptions-12.1-160000.1.1.noarch",
"relates_to_product_reference": "openSUSE Leap 16.0"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-64718",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-64718"
}
],
"notes": [
{
"category": "general",
"text": "js-yaml is a JavaScript YAML parser and dumper. In js-yaml before 4.1.1 and 3.14.2, it\u0027s possible for an attacker to modify the prototype of the result of a parsed yaml document via prototype pollution (`__proto__`). All users who parse untrusted yaml documents may be impacted. The problem is patched in js-yaml 4.1.1 and 3.14.2. Users can protect against this kind of attack on the server by using `node --disable-proto=delete` or `deno` (in Deno, pollution protection is on by default).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cockpit-subscriptions-12.1-160000.1.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-64718",
"url": "https://www.suse.com/security/cve/CVE-2025-64718"
},
{
"category": "external",
"summary": "SUSE Bug 1255407 for CVE-2025-64718",
"url": "https://bugzilla.suse.com/1255407"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cockpit-subscriptions-12.1-160000.1.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cockpit-subscriptions-12.1-160000.1.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-01-27T20:37:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-64718"
}
]
}
OPENSUSE-SU-2026:20251-1
Vulnerability from csaf_opensuse - Published: 2026-02-18 11:22 - Updated: 2026-02-18 11:22| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 16.0:cockpit-repos-4.7-160000.1.1.noarch | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 16.0:cockpit-repos-4.7-160000.1.1.noarch | — |
Vendor Fix
|
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for cockpit-repos",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for cockpit-repos fixes the following issues:\n\nUpdate to version 4.7.\n\nSecurity issues fixed:\n\n- CVE-2025-13465: prototype pollution in the _.unset and _.omit functions can lead to deletion of methods from global\n (bsc#1257325).\n- CVE-2025-64718: js-yaml prototype pollution in merge (bsc#1255425).\n\nOther updates and bugfixes:\n\n- version update to 4.7\n\n * Translation updates\n\n- version update to 4.6:\n\n * Translation updates\n * Dependency updates\n * Fix translations pot file not being update\n\n- version update to 4.5:\n\n * Dependency updates\n\n- version update to 4.4:\n\n * Translation updates\n * Dependency updates\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-Leap-16.0-296",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2026_20251-1.json"
},
{
"category": "self",
"summary": "SUSE Bug 1255425",
"url": "https://bugzilla.suse.com/1255425"
},
{
"category": "self",
"summary": "SUSE Bug 1257325",
"url": "https://bugzilla.suse.com/1257325"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-13465 page",
"url": "https://www.suse.com/security/cve/CVE-2025-13465/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-64718 page",
"url": "https://www.suse.com/security/cve/CVE-2025-64718/"
}
],
"title": "Security update for cockpit-repos",
"tracking": {
"current_release_date": "2026-02-18T11:22:31Z",
"generator": {
"date": "2026-02-18T11:22:31Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2026:20251-1",
"initial_release_date": "2026-02-18T11:22:31Z",
"revision_history": [
{
"date": "2026-02-18T11:22:31Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "cockpit-repos-4.7-160000.1.1.noarch",
"product": {
"name": "cockpit-repos-4.7-160000.1.1.noarch",
"product_id": "cockpit-repos-4.7-160000.1.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Leap 16.0",
"product": {
"name": "openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0"
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "cockpit-repos-4.7-160000.1.1.noarch as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:cockpit-repos-4.7-160000.1.1.noarch"
},
"product_reference": "cockpit-repos-4.7-160000.1.1.noarch",
"relates_to_product_reference": "openSUSE Leap 16.0"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-13465",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-13465"
}
],
"notes": [
{
"category": "general",
"text": "Lodash versions 4.0.0 through 4.17.22 are vulnerable to prototype pollution in the _.unset and _.omit functions. An attacker can pass crafted paths which cause Lodash to delete methods from global prototypes.\n\nThe issue permits deletion of properties but does not allow overwriting their original behavior.\n\nThis issue is patched on 4.17.23",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cockpit-repos-4.7-160000.1.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-13465",
"url": "https://www.suse.com/security/cve/CVE-2025-13465"
},
{
"category": "external",
"summary": "SUSE Bug 1257321 for CVE-2025-13465",
"url": "https://bugzilla.suse.com/1257321"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cockpit-repos-4.7-160000.1.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.2,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cockpit-repos-4.7-160000.1.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-18T11:22:31Z",
"details": "important"
}
],
"title": "CVE-2025-13465"
},
{
"cve": "CVE-2025-64718",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-64718"
}
],
"notes": [
{
"category": "general",
"text": "js-yaml is a JavaScript YAML parser and dumper. In js-yaml before 4.1.1 and 3.14.2, it\u0027s possible for an attacker to modify the prototype of the result of a parsed yaml document via prototype pollution (`__proto__`). All users who parse untrusted yaml documents may be impacted. The problem is patched in js-yaml 4.1.1 and 3.14.2. Users can protect against this kind of attack on the server by using `node --disable-proto=delete` or `deno` (in Deno, pollution protection is on by default).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cockpit-repos-4.7-160000.1.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-64718",
"url": "https://www.suse.com/security/cve/CVE-2025-64718"
},
{
"category": "external",
"summary": "SUSE Bug 1255407 for CVE-2025-64718",
"url": "https://bugzilla.suse.com/1255407"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cockpit-repos-4.7-160000.1.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cockpit-repos-4.7-160000.1.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-18T11:22:31Z",
"details": "moderate"
}
],
"title": "CVE-2025-64718"
}
]
}
RHSA-2026:15979
Vulnerability from csaf_redhat - Published: 2026-05-11 11:23 - Updated: 2026-07-03 18:00A vulnerability was identified in the email parsing library due to improper handling of specially formatted recipient email addresses. An attacker can exploit this flaw by crafting a recipient address that embeds an external address within quotes. This causes the application to misdirect the email to the attacker's external address instead of the intended internal recipient. This could lead to a significant data leak of sensitive information and allow an attacker to bypass security filters and access controls.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:3d4903b8dbe33464c05ce219ee2e945bf1be169efbed73caee5185883c9df508_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:67d65ecfe844febb7afdfcfbdc0a31f3bd9dfb4c3c81f4734a1b146e34d8d5cb_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:a6a8bbdd49272c632edd96e1598d1e697ba3a1dabb8d36086eced4847de59cbb_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:c27690e36faf7db08a6d398cce7dbedcfe74848224a179c7278b62315516dd4a_arm64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:02914a917bbea40c35be2cc7dbaf05c5ac1e1bd30b0e82b4ad9a1c58b99a076b_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:2ce063cc246e7694adf066c17390b4c8d95719b2786267a9db64390407648410_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:aeb508e1309d4a811f881f4028e1c370a5431d290aca2c4af5acdf6a58916a7f_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:fa3c9307038f92e351892be9c73cda40a3bab2038904fabcb97dad5568dcec2d_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:0f37c554cc22c9c89cc4c53739b2ef86e84287486e3f7cdbad10a6e53439d596_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:1a8207fe81e8c5bd63568eddddb41dd0da16d8340c5f5ae3615fe46ae864a163_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:9e15073c7782b0194c06e0b420573e49d5719002417faa567c99ee8409ff590d_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:f76307e201d0b2deaf0aa96bc6b62fc4535c8358b06a8e95ec5a8abf10d2da07_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:5c496cafb1e21883677c6dcb9fd7392383325b8529b98648af757545dfe59488_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:b2875bcf5aee1175faa2ab1ce163642e17c4948ff5aa76967d008f75b470fc74_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:df6bf531755753b224999cb9a5f087c96e8a512666589df4763d4a14941a6f5a_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:f7e87de708186099c76426f24b53395340a672e282615164bac73afca3f36454_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:0350448bf1fb15f26c0d092ceb8b0618932f42d30ca4c7c62f2ec1b86c20dd23_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:4c8c8ef82f2f2685d76a9535523c4c93485329aa23328a68426e93789f363b53_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:7fa04ae06b25476b7b2a3f9e21279202571fd8fc5ff5012c980caf3f33edc0a5_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:8b20b6abf0399bbfc970990bc0c5b6dab46c1043ef761519dbbe8213e6fdd169_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:28aae4d07691c86cdfa9bbfcc7b68e1a3304402ac6c65982bfc0f7945cb9a44e_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:3b78f446debe56d01cd96dc3c3ae225a982ee6abdd7d2fabae553cf4c87e471a_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:cbc542505b4784050c96b3fb31a4867b5d94c8a6957b54a8cfad03bc16a19578_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:e0e44241bde7bfbccea69d06e5fd00ad0a0ab569bef6645687bcadcfc00aa5ef_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:5ccb9e878551c910e3a300ab8043fdc4788381c9515dc9dcaa965a738d2de059_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:7559ec0119f673e243361d4e457a8e9687beb3af60a4fd608fa211539b9034c1_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:808082ac26e53bc7f962428d8e67f721654b732eb1d40fc6e272fcb7f045797c_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:bf282440c8e3ce4d38535bb1efdcbc05f0278647d2fc6e2a13c9c28c0c101f79_ppc64le | — |
Workaround
|
A flaw was found in the SSH Agent servers component (golang.org/x/crypto/ssh/agent). This vulnerability allows a remote attacker to cause a denial of service (DoS) by sending a specially crafted, malformed message during new identity requests. The server fails to validate the size of these messages, leading to an out-of-bounds read that can cause the program to panic and terminate.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:3d4903b8dbe33464c05ce219ee2e945bf1be169efbed73caee5185883c9df508_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:67d65ecfe844febb7afdfcfbdc0a31f3bd9dfb4c3c81f4734a1b146e34d8d5cb_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:a6a8bbdd49272c632edd96e1598d1e697ba3a1dabb8d36086eced4847de59cbb_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:c27690e36faf7db08a6d398cce7dbedcfe74848224a179c7278b62315516dd4a_arm64 | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:02914a917bbea40c35be2cc7dbaf05c5ac1e1bd30b0e82b4ad9a1c58b99a076b_ppc64le | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:2ce063cc246e7694adf066c17390b4c8d95719b2786267a9db64390407648410_amd64 | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:aeb508e1309d4a811f881f4028e1c370a5431d290aca2c4af5acdf6a58916a7f_arm64 | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:fa3c9307038f92e351892be9c73cda40a3bab2038904fabcb97dad5568dcec2d_s390x | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:0f37c554cc22c9c89cc4c53739b2ef86e84287486e3f7cdbad10a6e53439d596_s390x | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:1a8207fe81e8c5bd63568eddddb41dd0da16d8340c5f5ae3615fe46ae864a163_ppc64le | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:9e15073c7782b0194c06e0b420573e49d5719002417faa567c99ee8409ff590d_amd64 | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:f76307e201d0b2deaf0aa96bc6b62fc4535c8358b06a8e95ec5a8abf10d2da07_arm64 | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:5c496cafb1e21883677c6dcb9fd7392383325b8529b98648af757545dfe59488_s390x | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:b2875bcf5aee1175faa2ab1ce163642e17c4948ff5aa76967d008f75b470fc74_amd64 | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:df6bf531755753b224999cb9a5f087c96e8a512666589df4763d4a14941a6f5a_ppc64le | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:f7e87de708186099c76426f24b53395340a672e282615164bac73afca3f36454_arm64 | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:0350448bf1fb15f26c0d092ceb8b0618932f42d30ca4c7c62f2ec1b86c20dd23_ppc64le | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:4c8c8ef82f2f2685d76a9535523c4c93485329aa23328a68426e93789f363b53_arm64 | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:7fa04ae06b25476b7b2a3f9e21279202571fd8fc5ff5012c980caf3f33edc0a5_s390x | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:8b20b6abf0399bbfc970990bc0c5b6dab46c1043ef761519dbbe8213e6fdd169_amd64 | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:28aae4d07691c86cdfa9bbfcc7b68e1a3304402ac6c65982bfc0f7945cb9a44e_s390x | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:3b78f446debe56d01cd96dc3c3ae225a982ee6abdd7d2fabae553cf4c87e471a_arm64 | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:cbc542505b4784050c96b3fb31a4867b5d94c8a6957b54a8cfad03bc16a19578_ppc64le | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:e0e44241bde7bfbccea69d06e5fd00ad0a0ab569bef6645687bcadcfc00aa5ef_amd64 | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:5ccb9e878551c910e3a300ab8043fdc4788381c9515dc9dcaa965a738d2de059_s390x | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:7559ec0119f673e243361d4e457a8e9687beb3af60a4fd608fa211539b9034c1_arm64 | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:808082ac26e53bc7f962428d8e67f721654b732eb1d40fc6e272fcb7f045797c_amd64 | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:bf282440c8e3ce4d38535bb1efdcbc05f0278647d2fc6e2a13c9c28c0c101f79_ppc64le | — |
A flaw was found in golang.org/x/crypto/ssh. An attacker can exploit this vulnerability by sending specially crafted GSSAPI (Generic Security Service Application Program Interface) authentication requests to an SSH (Secure Shell) server. The server fails to validate the number of mechanisms specified in these requests, leading to unbounded memory consumption. This can result in a Denial of Service (DoS), making the SSH server unavailable to legitimate users.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:3d4903b8dbe33464c05ce219ee2e945bf1be169efbed73caee5185883c9df508_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:67d65ecfe844febb7afdfcfbdc0a31f3bd9dfb4c3c81f4734a1b146e34d8d5cb_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:a6a8bbdd49272c632edd96e1598d1e697ba3a1dabb8d36086eced4847de59cbb_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:c27690e36faf7db08a6d398cce7dbedcfe74848224a179c7278b62315516dd4a_arm64 | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:02914a917bbea40c35be2cc7dbaf05c5ac1e1bd30b0e82b4ad9a1c58b99a076b_ppc64le | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:2ce063cc246e7694adf066c17390b4c8d95719b2786267a9db64390407648410_amd64 | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:aeb508e1309d4a811f881f4028e1c370a5431d290aca2c4af5acdf6a58916a7f_arm64 | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:fa3c9307038f92e351892be9c73cda40a3bab2038904fabcb97dad5568dcec2d_s390x | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:0f37c554cc22c9c89cc4c53739b2ef86e84287486e3f7cdbad10a6e53439d596_s390x | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:1a8207fe81e8c5bd63568eddddb41dd0da16d8340c5f5ae3615fe46ae864a163_ppc64le | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:9e15073c7782b0194c06e0b420573e49d5719002417faa567c99ee8409ff590d_amd64 | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:f76307e201d0b2deaf0aa96bc6b62fc4535c8358b06a8e95ec5a8abf10d2da07_arm64 | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:5c496cafb1e21883677c6dcb9fd7392383325b8529b98648af757545dfe59488_s390x | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:b2875bcf5aee1175faa2ab1ce163642e17c4948ff5aa76967d008f75b470fc74_amd64 | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:df6bf531755753b224999cb9a5f087c96e8a512666589df4763d4a14941a6f5a_ppc64le | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:f7e87de708186099c76426f24b53395340a672e282615164bac73afca3f36454_arm64 | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:0350448bf1fb15f26c0d092ceb8b0618932f42d30ca4c7c62f2ec1b86c20dd23_ppc64le | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:4c8c8ef82f2f2685d76a9535523c4c93485329aa23328a68426e93789f363b53_arm64 | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:7fa04ae06b25476b7b2a3f9e21279202571fd8fc5ff5012c980caf3f33edc0a5_s390x | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:8b20b6abf0399bbfc970990bc0c5b6dab46c1043ef761519dbbe8213e6fdd169_amd64 | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:28aae4d07691c86cdfa9bbfcc7b68e1a3304402ac6c65982bfc0f7945cb9a44e_s390x | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:3b78f446debe56d01cd96dc3c3ae225a982ee6abdd7d2fabae553cf4c87e471a_arm64 | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:cbc542505b4784050c96b3fb31a4867b5d94c8a6957b54a8cfad03bc16a19578_ppc64le | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:e0e44241bde7bfbccea69d06e5fd00ad0a0ab569bef6645687bcadcfc00aa5ef_amd64 | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:5ccb9e878551c910e3a300ab8043fdc4788381c9515dc9dcaa965a738d2de059_s390x | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:7559ec0119f673e243361d4e457a8e9687beb3af60a4fd608fa211539b9034c1_arm64 | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:808082ac26e53bc7f962428d8e67f721654b732eb1d40fc6e272fcb7f045797c_amd64 | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:bf282440c8e3ce4d38535bb1efdcbc05f0278647d2fc6e2a13c9c28c0c101f79_ppc64le | — |
A flaw was found in golang. A remote attacker could exploit this vulnerability by providing a specially crafted certificate during the error string construction process within the `HostnameError.Error()` function. This flaw, caused by unbounded string concatenation, leads to excessive resource consumption. Successful exploitation can result in a denial of service (DoS) for the affected system.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:3d4903b8dbe33464c05ce219ee2e945bf1be169efbed73caee5185883c9df508_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:67d65ecfe844febb7afdfcfbdc0a31f3bd9dfb4c3c81f4734a1b146e34d8d5cb_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:a6a8bbdd49272c632edd96e1598d1e697ba3a1dabb8d36086eced4847de59cbb_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:c27690e36faf7db08a6d398cce7dbedcfe74848224a179c7278b62315516dd4a_arm64 | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:02914a917bbea40c35be2cc7dbaf05c5ac1e1bd30b0e82b4ad9a1c58b99a076b_ppc64le | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:2ce063cc246e7694adf066c17390b4c8d95719b2786267a9db64390407648410_amd64 | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:aeb508e1309d4a811f881f4028e1c370a5431d290aca2c4af5acdf6a58916a7f_arm64 | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:fa3c9307038f92e351892be9c73cda40a3bab2038904fabcb97dad5568dcec2d_s390x | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:0f37c554cc22c9c89cc4c53739b2ef86e84287486e3f7cdbad10a6e53439d596_s390x | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:1a8207fe81e8c5bd63568eddddb41dd0da16d8340c5f5ae3615fe46ae864a163_ppc64le | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:9e15073c7782b0194c06e0b420573e49d5719002417faa567c99ee8409ff590d_amd64 | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:f76307e201d0b2deaf0aa96bc6b62fc4535c8358b06a8e95ec5a8abf10d2da07_arm64 | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:5c496cafb1e21883677c6dcb9fd7392383325b8529b98648af757545dfe59488_s390x | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:b2875bcf5aee1175faa2ab1ce163642e17c4948ff5aa76967d008f75b470fc74_amd64 | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:df6bf531755753b224999cb9a5f087c96e8a512666589df4763d4a14941a6f5a_ppc64le | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:f7e87de708186099c76426f24b53395340a672e282615164bac73afca3f36454_arm64 | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:0350448bf1fb15f26c0d092ceb8b0618932f42d30ca4c7c62f2ec1b86c20dd23_ppc64le | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:4c8c8ef82f2f2685d76a9535523c4c93485329aa23328a68426e93789f363b53_arm64 | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:7fa04ae06b25476b7b2a3f9e21279202571fd8fc5ff5012c980caf3f33edc0a5_s390x | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:8b20b6abf0399bbfc970990bc0c5b6dab46c1043ef761519dbbe8213e6fdd169_amd64 | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:28aae4d07691c86cdfa9bbfcc7b68e1a3304402ac6c65982bfc0f7945cb9a44e_s390x | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:3b78f446debe56d01cd96dc3c3ae225a982ee6abdd7d2fabae553cf4c87e471a_arm64 | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:cbc542505b4784050c96b3fb31a4867b5d94c8a6957b54a8cfad03bc16a19578_ppc64le | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:e0e44241bde7bfbccea69d06e5fd00ad0a0ab569bef6645687bcadcfc00aa5ef_amd64 | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:5ccb9e878551c910e3a300ab8043fdc4788381c9515dc9dcaa965a738d2de059_s390x | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:7559ec0119f673e243361d4e457a8e9687beb3af60a4fd608fa211539b9034c1_arm64 | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:808082ac26e53bc7f962428d8e67f721654b732eb1d40fc6e272fcb7f045797c_amd64 | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:bf282440c8e3ce4d38535bb1efdcbc05f0278647d2fc6e2a13c9c28c0c101f79_ppc64le | — |
A prototype pollution flaw has been discovered in the js-yaml npm library. It's possible for an attacker to modify the prototype of the result of a parsed yaml document via prototype pollution (__proto__). All users who parse untrusted yaml documents may be impacted.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:3d4903b8dbe33464c05ce219ee2e945bf1be169efbed73caee5185883c9df508_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:67d65ecfe844febb7afdfcfbdc0a31f3bd9dfb4c3c81f4734a1b146e34d8d5cb_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:a6a8bbdd49272c632edd96e1598d1e697ba3a1dabb8d36086eced4847de59cbb_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:c27690e36faf7db08a6d398cce7dbedcfe74848224a179c7278b62315516dd4a_arm64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:02914a917bbea40c35be2cc7dbaf05c5ac1e1bd30b0e82b4ad9a1c58b99a076b_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:2ce063cc246e7694adf066c17390b4c8d95719b2786267a9db64390407648410_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:aeb508e1309d4a811f881f4028e1c370a5431d290aca2c4af5acdf6a58916a7f_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:fa3c9307038f92e351892be9c73cda40a3bab2038904fabcb97dad5568dcec2d_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:0f37c554cc22c9c89cc4c53739b2ef86e84287486e3f7cdbad10a6e53439d596_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:1a8207fe81e8c5bd63568eddddb41dd0da16d8340c5f5ae3615fe46ae864a163_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:9e15073c7782b0194c06e0b420573e49d5719002417faa567c99ee8409ff590d_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:f76307e201d0b2deaf0aa96bc6b62fc4535c8358b06a8e95ec5a8abf10d2da07_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:5c496cafb1e21883677c6dcb9fd7392383325b8529b98648af757545dfe59488_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:b2875bcf5aee1175faa2ab1ce163642e17c4948ff5aa76967d008f75b470fc74_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:df6bf531755753b224999cb9a5f087c96e8a512666589df4763d4a14941a6f5a_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:f7e87de708186099c76426f24b53395340a672e282615164bac73afca3f36454_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:0350448bf1fb15f26c0d092ceb8b0618932f42d30ca4c7c62f2ec1b86c20dd23_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:4c8c8ef82f2f2685d76a9535523c4c93485329aa23328a68426e93789f363b53_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:7fa04ae06b25476b7b2a3f9e21279202571fd8fc5ff5012c980caf3f33edc0a5_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:8b20b6abf0399bbfc970990bc0c5b6dab46c1043ef761519dbbe8213e6fdd169_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:28aae4d07691c86cdfa9bbfcc7b68e1a3304402ac6c65982bfc0f7945cb9a44e_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:3b78f446debe56d01cd96dc3c3ae225a982ee6abdd7d2fabae553cf4c87e471a_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:cbc542505b4784050c96b3fb31a4867b5d94c8a6957b54a8cfad03bc16a19578_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:e0e44241bde7bfbccea69d06e5fd00ad0a0ab569bef6645687bcadcfc00aa5ef_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:5ccb9e878551c910e3a300ab8043fdc4788381c9515dc9dcaa965a738d2de059_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:7559ec0119f673e243361d4e457a8e9687beb3af60a4fd608fa211539b9034c1_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:808082ac26e53bc7f962428d8e67f721654b732eb1d40fc6e272fcb7f045797c_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:bf282440c8e3ce4d38535bb1efdcbc05f0278647d2fc6e2a13c9c28c0c101f79_ppc64le | — |
Workaround
|
A flaw was found in glob. This vulnerability allows arbitrary command execution via processing files with malicious names when the glob command-line interface (CLI) is used with the -c/--cmd option, enabling shell metacharacters to trigger command injection.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:3d4903b8dbe33464c05ce219ee2e945bf1be169efbed73caee5185883c9df508_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:67d65ecfe844febb7afdfcfbdc0a31f3bd9dfb4c3c81f4734a1b146e34d8d5cb_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:a6a8bbdd49272c632edd96e1598d1e697ba3a1dabb8d36086eced4847de59cbb_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:c27690e36faf7db08a6d398cce7dbedcfe74848224a179c7278b62315516dd4a_arm64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:02914a917bbea40c35be2cc7dbaf05c5ac1e1bd30b0e82b4ad9a1c58b99a076b_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:2ce063cc246e7694adf066c17390b4c8d95719b2786267a9db64390407648410_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:aeb508e1309d4a811f881f4028e1c370a5431d290aca2c4af5acdf6a58916a7f_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:fa3c9307038f92e351892be9c73cda40a3bab2038904fabcb97dad5568dcec2d_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:0f37c554cc22c9c89cc4c53739b2ef86e84287486e3f7cdbad10a6e53439d596_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:1a8207fe81e8c5bd63568eddddb41dd0da16d8340c5f5ae3615fe46ae864a163_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:9e15073c7782b0194c06e0b420573e49d5719002417faa567c99ee8409ff590d_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:f76307e201d0b2deaf0aa96bc6b62fc4535c8358b06a8e95ec5a8abf10d2da07_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:5c496cafb1e21883677c6dcb9fd7392383325b8529b98648af757545dfe59488_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:b2875bcf5aee1175faa2ab1ce163642e17c4948ff5aa76967d008f75b470fc74_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:df6bf531755753b224999cb9a5f087c96e8a512666589df4763d4a14941a6f5a_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:f7e87de708186099c76426f24b53395340a672e282615164bac73afca3f36454_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:0350448bf1fb15f26c0d092ceb8b0618932f42d30ca4c7c62f2ec1b86c20dd23_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:4c8c8ef82f2f2685d76a9535523c4c93485329aa23328a68426e93789f363b53_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:7fa04ae06b25476b7b2a3f9e21279202571fd8fc5ff5012c980caf3f33edc0a5_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:8b20b6abf0399bbfc970990bc0c5b6dab46c1043ef761519dbbe8213e6fdd169_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:28aae4d07691c86cdfa9bbfcc7b68e1a3304402ac6c65982bfc0f7945cb9a44e_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:3b78f446debe56d01cd96dc3c3ae225a982ee6abdd7d2fabae553cf4c87e471a_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:cbc542505b4784050c96b3fb31a4867b5d94c8a6957b54a8cfad03bc16a19578_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:e0e44241bde7bfbccea69d06e5fd00ad0a0ab569bef6645687bcadcfc00aa5ef_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:5ccb9e878551c910e3a300ab8043fdc4788381c9515dc9dcaa965a738d2de059_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:7559ec0119f673e243361d4e457a8e9687beb3af60a4fd608fa211539b9034c1_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:808082ac26e53bc7f962428d8e67f721654b732eb1d40fc6e272fcb7f045797c_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:bf282440c8e3ce4d38535bb1efdcbc05f0278647d2fc6e2a13c9c28c0c101f79_ppc64le | — |
Workaround
|
A flaw was found in Expr, an expression language and expression evaluation for Go. This vulnerability allows a denial of service (DoS) via recursive traversal over user-provided deeply nested or cyclic data structures without enforcing a maximum recursion depth, leading to a stack overflow panic and application crash.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:3d4903b8dbe33464c05ce219ee2e945bf1be169efbed73caee5185883c9df508_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:67d65ecfe844febb7afdfcfbdc0a31f3bd9dfb4c3c81f4734a1b146e34d8d5cb_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:a6a8bbdd49272c632edd96e1598d1e697ba3a1dabb8d36086eced4847de59cbb_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:c27690e36faf7db08a6d398cce7dbedcfe74848224a179c7278b62315516dd4a_arm64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:02914a917bbea40c35be2cc7dbaf05c5ac1e1bd30b0e82b4ad9a1c58b99a076b_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:2ce063cc246e7694adf066c17390b4c8d95719b2786267a9db64390407648410_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:aeb508e1309d4a811f881f4028e1c370a5431d290aca2c4af5acdf6a58916a7f_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:fa3c9307038f92e351892be9c73cda40a3bab2038904fabcb97dad5568dcec2d_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:0f37c554cc22c9c89cc4c53739b2ef86e84287486e3f7cdbad10a6e53439d596_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:1a8207fe81e8c5bd63568eddddb41dd0da16d8340c5f5ae3615fe46ae864a163_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:9e15073c7782b0194c06e0b420573e49d5719002417faa567c99ee8409ff590d_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:f76307e201d0b2deaf0aa96bc6b62fc4535c8358b06a8e95ec5a8abf10d2da07_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:5c496cafb1e21883677c6dcb9fd7392383325b8529b98648af757545dfe59488_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:b2875bcf5aee1175faa2ab1ce163642e17c4948ff5aa76967d008f75b470fc74_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:df6bf531755753b224999cb9a5f087c96e8a512666589df4763d4a14941a6f5a_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:f7e87de708186099c76426f24b53395340a672e282615164bac73afca3f36454_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:0350448bf1fb15f26c0d092ceb8b0618932f42d30ca4c7c62f2ec1b86c20dd23_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:4c8c8ef82f2f2685d76a9535523c4c93485329aa23328a68426e93789f363b53_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:7fa04ae06b25476b7b2a3f9e21279202571fd8fc5ff5012c980caf3f33edc0a5_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:8b20b6abf0399bbfc970990bc0c5b6dab46c1043ef761519dbbe8213e6fdd169_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:28aae4d07691c86cdfa9bbfcc7b68e1a3304402ac6c65982bfc0f7945cb9a44e_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:3b78f446debe56d01cd96dc3c3ae225a982ee6abdd7d2fabae553cf4c87e471a_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:cbc542505b4784050c96b3fb31a4867b5d94c8a6957b54a8cfad03bc16a19578_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:e0e44241bde7bfbccea69d06e5fd00ad0a0ab569bef6645687bcadcfc00aa5ef_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:5ccb9e878551c910e3a300ab8043fdc4788381c9515dc9dcaa965a738d2de059_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:7559ec0119f673e243361d4e457a8e9687beb3af60a4fd608fa211539b9034c1_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:808082ac26e53bc7f962428d8e67f721654b732eb1d40fc6e272fcb7f045797c_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:bf282440c8e3ce4d38535bb1efdcbc05f0278647d2fc6e2a13c9c28c0c101f79_ppc64le | — |
Workaround
|
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "A new version of Red Hat build of Ceph Storage has been released",
"title": "Topic"
},
{
"category": "general",
"text": "The Red Hat Storage Ceph container images are based on the latest ubi9 base image and Ceph 8.1.\nThis release updates to the latest version.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2026:15979",
"url": "https://access.redhat.com/errata/RHSA-2026:15979"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-13033",
"url": "https://access.redhat.com/security/cve/CVE-2025-13033"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-47914",
"url": "https://access.redhat.com/security/cve/CVE-2025-47914"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-58181",
"url": "https://access.redhat.com/security/cve/CVE-2025-58181"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-61729",
"url": "https://access.redhat.com/security/cve/CVE-2025-61729"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-64718",
"url": "https://access.redhat.com/security/cve/CVE-2025-64718"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-64756",
"url": "https://access.redhat.com/security/cve/CVE-2025-64756"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-68156",
"url": "https://access.redhat.com/security/cve/CVE-2025-68156"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/",
"url": "https://access.redhat.com/security/updates/classification/"
},
{
"category": "external",
"summary": "https://docs.redhat.com/en/documentation/red_hat_ceph_storage/",
"url": "https://docs.redhat.com/en/documentation/red_hat_ceph_storage/"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_15979.json"
}
],
"title": "Red Hat Security Advisory: Red Hat Ceph Storage",
"tracking": {
"current_release_date": "2026-07-03T18:00:55+00:00",
"generator": {
"date": "2026-07-03T18:00:55+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.3.1"
}
},
"id": "RHSA-2026:15979",
"initial_release_date": "2026-05-11T11:23:46+00:00",
"revision_history": [
{
"date": "2026-05-11T11:23:46+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2026-05-11T11:23:58+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-07-03T18:00:55+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Ceph Storage 8.1",
"product": {
"name": "Red Hat Ceph Storage 8.1",
"product_id": "Red Hat Ceph Storage 8.1",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:ceph_storage:8.1::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat Ceph Storage"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/rhceph/grafana-rhel9@sha256:3d4903b8dbe33464c05ce219ee2e945bf1be169efbed73caee5185883c9df508_amd64",
"product": {
"name": "registry.redhat.io/rhceph/grafana-rhel9@sha256:3d4903b8dbe33464c05ce219ee2e945bf1be169efbed73caee5185883c9df508_amd64",
"product_id": "registry.redhat.io/rhceph/grafana-rhel9@sha256:3d4903b8dbe33464c05ce219ee2e945bf1be169efbed73caee5185883c9df508_amd64",
"product_identification_helper": {
"purl": "pkg:oci/grafana-rhel9@sha256%3A3d4903b8dbe33464c05ce219ee2e945bf1be169efbed73caee5185883c9df508?arch=amd64\u0026repository_url=registry.redhat.io/rhceph\u0026tag=1777566546"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:8b20b6abf0399bbfc970990bc0c5b6dab46c1043ef761519dbbe8213e6fdd169_amd64",
"product": {
"name": "registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:8b20b6abf0399bbfc970990bc0c5b6dab46c1043ef761519dbbe8213e6fdd169_amd64",
"product_id": "registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:8b20b6abf0399bbfc970990bc0c5b6dab46c1043ef761519dbbe8213e6fdd169_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhceph-haproxy-rhel9@sha256%3A8b20b6abf0399bbfc970990bc0c5b6dab46c1043ef761519dbbe8213e6fdd169?arch=amd64\u0026repository_url=registry.redhat.io/rhceph\u0026tag=1777566519"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhceph/keepalived-rhel9@sha256:2ce063cc246e7694adf066c17390b4c8d95719b2786267a9db64390407648410_amd64",
"product": {
"name": "registry.redhat.io/rhceph/keepalived-rhel9@sha256:2ce063cc246e7694adf066c17390b4c8d95719b2786267a9db64390407648410_amd64",
"product_id": "registry.redhat.io/rhceph/keepalived-rhel9@sha256:2ce063cc246e7694adf066c17390b4c8d95719b2786267a9db64390407648410_amd64",
"product_identification_helper": {
"purl": "pkg:oci/keepalived-rhel9@sha256%3A2ce063cc246e7694adf066c17390b4c8d95719b2786267a9db64390407648410?arch=amd64\u0026repository_url=registry.redhat.io/rhceph\u0026tag=1777566772"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:9e15073c7782b0194c06e0b420573e49d5719002417faa567c99ee8409ff590d_amd64",
"product": {
"name": "registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:9e15073c7782b0194c06e0b420573e49d5719002417faa567c99ee8409ff590d_amd64",
"product_id": "registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:9e15073c7782b0194c06e0b420573e49d5719002417faa567c99ee8409ff590d_amd64",
"product_identification_helper": {
"purl": "pkg:oci/oauth2-proxy-rhel9@sha256%3A9e15073c7782b0194c06e0b420573e49d5719002417faa567c99ee8409ff590d?arch=amd64\u0026repository_url=registry.redhat.io/rhceph\u0026tag=1777566148"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:e0e44241bde7bfbccea69d06e5fd00ad0a0ab569bef6645687bcadcfc00aa5ef_amd64",
"product": {
"name": "registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:e0e44241bde7bfbccea69d06e5fd00ad0a0ab569bef6645687bcadcfc00aa5ef_amd64",
"product_id": "registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:e0e44241bde7bfbccea69d06e5fd00ad0a0ab569bef6645687bcadcfc00aa5ef_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhceph-promtail-rhel9@sha256%3Ae0e44241bde7bfbccea69d06e5fd00ad0a0ab569bef6645687bcadcfc00aa5ef?arch=amd64\u0026repository_url=registry.redhat.io/rhceph\u0026tag=1777566201"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:b2875bcf5aee1175faa2ab1ce163642e17c4948ff5aa76967d008f75b470fc74_amd64",
"product": {
"name": "registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:b2875bcf5aee1175faa2ab1ce163642e17c4948ff5aa76967d008f75b470fc74_amd64",
"product_id": "registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:b2875bcf5aee1175faa2ab1ce163642e17c4948ff5aa76967d008f75b470fc74_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhceph-8-rhel9@sha256%3Ab2875bcf5aee1175faa2ab1ce163642e17c4948ff5aa76967d008f75b470fc74?arch=amd64\u0026repository_url=registry.redhat.io/rhceph\u0026tag=1778049929"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:808082ac26e53bc7f962428d8e67f721654b732eb1d40fc6e272fcb7f045797c_amd64",
"product": {
"name": "registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:808082ac26e53bc7f962428d8e67f721654b732eb1d40fc6e272fcb7f045797c_amd64",
"product_id": "registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:808082ac26e53bc7f962428d8e67f721654b732eb1d40fc6e272fcb7f045797c_amd64",
"product_identification_helper": {
"purl": "pkg:oci/snmp-notifier-rhel9@sha256%3A808082ac26e53bc7f962428d8e67f721654b732eb1d40fc6e272fcb7f045797c?arch=amd64\u0026repository_url=registry.redhat.io/rhceph\u0026tag=1777567370"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/rhceph/grafana-rhel9@sha256:c27690e36faf7db08a6d398cce7dbedcfe74848224a179c7278b62315516dd4a_arm64",
"product": {
"name": "registry.redhat.io/rhceph/grafana-rhel9@sha256:c27690e36faf7db08a6d398cce7dbedcfe74848224a179c7278b62315516dd4a_arm64",
"product_id": "registry.redhat.io/rhceph/grafana-rhel9@sha256:c27690e36faf7db08a6d398cce7dbedcfe74848224a179c7278b62315516dd4a_arm64",
"product_identification_helper": {
"purl": "pkg:oci/grafana-rhel9@sha256%3Ac27690e36faf7db08a6d398cce7dbedcfe74848224a179c7278b62315516dd4a?arch=arm64\u0026repository_url=registry.redhat.io/rhceph\u0026tag=1777566546"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:4c8c8ef82f2f2685d76a9535523c4c93485329aa23328a68426e93789f363b53_arm64",
"product": {
"name": "registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:4c8c8ef82f2f2685d76a9535523c4c93485329aa23328a68426e93789f363b53_arm64",
"product_id": "registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:4c8c8ef82f2f2685d76a9535523c4c93485329aa23328a68426e93789f363b53_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhceph-haproxy-rhel9@sha256%3A4c8c8ef82f2f2685d76a9535523c4c93485329aa23328a68426e93789f363b53?arch=arm64\u0026repository_url=registry.redhat.io/rhceph\u0026tag=1777566519"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhceph/keepalived-rhel9@sha256:aeb508e1309d4a811f881f4028e1c370a5431d290aca2c4af5acdf6a58916a7f_arm64",
"product": {
"name": "registry.redhat.io/rhceph/keepalived-rhel9@sha256:aeb508e1309d4a811f881f4028e1c370a5431d290aca2c4af5acdf6a58916a7f_arm64",
"product_id": "registry.redhat.io/rhceph/keepalived-rhel9@sha256:aeb508e1309d4a811f881f4028e1c370a5431d290aca2c4af5acdf6a58916a7f_arm64",
"product_identification_helper": {
"purl": "pkg:oci/keepalived-rhel9@sha256%3Aaeb508e1309d4a811f881f4028e1c370a5431d290aca2c4af5acdf6a58916a7f?arch=arm64\u0026repository_url=registry.redhat.io/rhceph\u0026tag=1777566772"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:f76307e201d0b2deaf0aa96bc6b62fc4535c8358b06a8e95ec5a8abf10d2da07_arm64",
"product": {
"name": "registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:f76307e201d0b2deaf0aa96bc6b62fc4535c8358b06a8e95ec5a8abf10d2da07_arm64",
"product_id": "registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:f76307e201d0b2deaf0aa96bc6b62fc4535c8358b06a8e95ec5a8abf10d2da07_arm64",
"product_identification_helper": {
"purl": "pkg:oci/oauth2-proxy-rhel9@sha256%3Af76307e201d0b2deaf0aa96bc6b62fc4535c8358b06a8e95ec5a8abf10d2da07?arch=arm64\u0026repository_url=registry.redhat.io/rhceph\u0026tag=1777566148"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:3b78f446debe56d01cd96dc3c3ae225a982ee6abdd7d2fabae553cf4c87e471a_arm64",
"product": {
"name": "registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:3b78f446debe56d01cd96dc3c3ae225a982ee6abdd7d2fabae553cf4c87e471a_arm64",
"product_id": "registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:3b78f446debe56d01cd96dc3c3ae225a982ee6abdd7d2fabae553cf4c87e471a_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhceph-promtail-rhel9@sha256%3A3b78f446debe56d01cd96dc3c3ae225a982ee6abdd7d2fabae553cf4c87e471a?arch=arm64\u0026repository_url=registry.redhat.io/rhceph\u0026tag=1777566201"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:f7e87de708186099c76426f24b53395340a672e282615164bac73afca3f36454_arm64",
"product": {
"name": "registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:f7e87de708186099c76426f24b53395340a672e282615164bac73afca3f36454_arm64",
"product_id": "registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:f7e87de708186099c76426f24b53395340a672e282615164bac73afca3f36454_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhceph-8-rhel9@sha256%3Af7e87de708186099c76426f24b53395340a672e282615164bac73afca3f36454?arch=arm64\u0026repository_url=registry.redhat.io/rhceph\u0026tag=1778049929"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:7559ec0119f673e243361d4e457a8e9687beb3af60a4fd608fa211539b9034c1_arm64",
"product": {
"name": "registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:7559ec0119f673e243361d4e457a8e9687beb3af60a4fd608fa211539b9034c1_arm64",
"product_id": "registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:7559ec0119f673e243361d4e457a8e9687beb3af60a4fd608fa211539b9034c1_arm64",
"product_identification_helper": {
"purl": "pkg:oci/snmp-notifier-rhel9@sha256%3A7559ec0119f673e243361d4e457a8e9687beb3af60a4fd608fa211539b9034c1?arch=arm64\u0026repository_url=registry.redhat.io/rhceph\u0026tag=1777567370"
}
}
}
],
"category": "architecture",
"name": "arm64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/rhceph/grafana-rhel9@sha256:a6a8bbdd49272c632edd96e1598d1e697ba3a1dabb8d36086eced4847de59cbb_s390x",
"product": {
"name": "registry.redhat.io/rhceph/grafana-rhel9@sha256:a6a8bbdd49272c632edd96e1598d1e697ba3a1dabb8d36086eced4847de59cbb_s390x",
"product_id": "registry.redhat.io/rhceph/grafana-rhel9@sha256:a6a8bbdd49272c632edd96e1598d1e697ba3a1dabb8d36086eced4847de59cbb_s390x",
"product_identification_helper": {
"purl": "pkg:oci/grafana-rhel9@sha256%3Aa6a8bbdd49272c632edd96e1598d1e697ba3a1dabb8d36086eced4847de59cbb?arch=s390x\u0026repository_url=registry.redhat.io/rhceph\u0026tag=1777566546"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:7fa04ae06b25476b7b2a3f9e21279202571fd8fc5ff5012c980caf3f33edc0a5_s390x",
"product": {
"name": "registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:7fa04ae06b25476b7b2a3f9e21279202571fd8fc5ff5012c980caf3f33edc0a5_s390x",
"product_id": "registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:7fa04ae06b25476b7b2a3f9e21279202571fd8fc5ff5012c980caf3f33edc0a5_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhceph-haproxy-rhel9@sha256%3A7fa04ae06b25476b7b2a3f9e21279202571fd8fc5ff5012c980caf3f33edc0a5?arch=s390x\u0026repository_url=registry.redhat.io/rhceph\u0026tag=1777566519"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhceph/keepalived-rhel9@sha256:fa3c9307038f92e351892be9c73cda40a3bab2038904fabcb97dad5568dcec2d_s390x",
"product": {
"name": "registry.redhat.io/rhceph/keepalived-rhel9@sha256:fa3c9307038f92e351892be9c73cda40a3bab2038904fabcb97dad5568dcec2d_s390x",
"product_id": "registry.redhat.io/rhceph/keepalived-rhel9@sha256:fa3c9307038f92e351892be9c73cda40a3bab2038904fabcb97dad5568dcec2d_s390x",
"product_identification_helper": {
"purl": "pkg:oci/keepalived-rhel9@sha256%3Afa3c9307038f92e351892be9c73cda40a3bab2038904fabcb97dad5568dcec2d?arch=s390x\u0026repository_url=registry.redhat.io/rhceph\u0026tag=1777566772"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:0f37c554cc22c9c89cc4c53739b2ef86e84287486e3f7cdbad10a6e53439d596_s390x",
"product": {
"name": "registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:0f37c554cc22c9c89cc4c53739b2ef86e84287486e3f7cdbad10a6e53439d596_s390x",
"product_id": "registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:0f37c554cc22c9c89cc4c53739b2ef86e84287486e3f7cdbad10a6e53439d596_s390x",
"product_identification_helper": {
"purl": "pkg:oci/oauth2-proxy-rhel9@sha256%3A0f37c554cc22c9c89cc4c53739b2ef86e84287486e3f7cdbad10a6e53439d596?arch=s390x\u0026repository_url=registry.redhat.io/rhceph\u0026tag=1777566148"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:28aae4d07691c86cdfa9bbfcc7b68e1a3304402ac6c65982bfc0f7945cb9a44e_s390x",
"product": {
"name": "registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:28aae4d07691c86cdfa9bbfcc7b68e1a3304402ac6c65982bfc0f7945cb9a44e_s390x",
"product_id": "registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:28aae4d07691c86cdfa9bbfcc7b68e1a3304402ac6c65982bfc0f7945cb9a44e_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhceph-promtail-rhel9@sha256%3A28aae4d07691c86cdfa9bbfcc7b68e1a3304402ac6c65982bfc0f7945cb9a44e?arch=s390x\u0026repository_url=registry.redhat.io/rhceph\u0026tag=1777566201"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:5c496cafb1e21883677c6dcb9fd7392383325b8529b98648af757545dfe59488_s390x",
"product": {
"name": "registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:5c496cafb1e21883677c6dcb9fd7392383325b8529b98648af757545dfe59488_s390x",
"product_id": "registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:5c496cafb1e21883677c6dcb9fd7392383325b8529b98648af757545dfe59488_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhceph-8-rhel9@sha256%3A5c496cafb1e21883677c6dcb9fd7392383325b8529b98648af757545dfe59488?arch=s390x\u0026repository_url=registry.redhat.io/rhceph\u0026tag=1778049929"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:5ccb9e878551c910e3a300ab8043fdc4788381c9515dc9dcaa965a738d2de059_s390x",
"product": {
"name": "registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:5ccb9e878551c910e3a300ab8043fdc4788381c9515dc9dcaa965a738d2de059_s390x",
"product_id": "registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:5ccb9e878551c910e3a300ab8043fdc4788381c9515dc9dcaa965a738d2de059_s390x",
"product_identification_helper": {
"purl": "pkg:oci/snmp-notifier-rhel9@sha256%3A5ccb9e878551c910e3a300ab8043fdc4788381c9515dc9dcaa965a738d2de059?arch=s390x\u0026repository_url=registry.redhat.io/rhceph\u0026tag=1777567370"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/rhceph/grafana-rhel9@sha256:67d65ecfe844febb7afdfcfbdc0a31f3bd9dfb4c3c81f4734a1b146e34d8d5cb_ppc64le",
"product": {
"name": "registry.redhat.io/rhceph/grafana-rhel9@sha256:67d65ecfe844febb7afdfcfbdc0a31f3bd9dfb4c3c81f4734a1b146e34d8d5cb_ppc64le",
"product_id": "registry.redhat.io/rhceph/grafana-rhel9@sha256:67d65ecfe844febb7afdfcfbdc0a31f3bd9dfb4c3c81f4734a1b146e34d8d5cb_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/grafana-rhel9@sha256%3A67d65ecfe844febb7afdfcfbdc0a31f3bd9dfb4c3c81f4734a1b146e34d8d5cb?arch=ppc64le\u0026repository_url=registry.redhat.io/rhceph\u0026tag=1777566546"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:0350448bf1fb15f26c0d092ceb8b0618932f42d30ca4c7c62f2ec1b86c20dd23_ppc64le",
"product": {
"name": "registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:0350448bf1fb15f26c0d092ceb8b0618932f42d30ca4c7c62f2ec1b86c20dd23_ppc64le",
"product_id": "registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:0350448bf1fb15f26c0d092ceb8b0618932f42d30ca4c7c62f2ec1b86c20dd23_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhceph-haproxy-rhel9@sha256%3A0350448bf1fb15f26c0d092ceb8b0618932f42d30ca4c7c62f2ec1b86c20dd23?arch=ppc64le\u0026repository_url=registry.redhat.io/rhceph\u0026tag=1777566519"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhceph/keepalived-rhel9@sha256:02914a917bbea40c35be2cc7dbaf05c5ac1e1bd30b0e82b4ad9a1c58b99a076b_ppc64le",
"product": {
"name": "registry.redhat.io/rhceph/keepalived-rhel9@sha256:02914a917bbea40c35be2cc7dbaf05c5ac1e1bd30b0e82b4ad9a1c58b99a076b_ppc64le",
"product_id": "registry.redhat.io/rhceph/keepalived-rhel9@sha256:02914a917bbea40c35be2cc7dbaf05c5ac1e1bd30b0e82b4ad9a1c58b99a076b_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/keepalived-rhel9@sha256%3A02914a917bbea40c35be2cc7dbaf05c5ac1e1bd30b0e82b4ad9a1c58b99a076b?arch=ppc64le\u0026repository_url=registry.redhat.io/rhceph\u0026tag=1777566772"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:1a8207fe81e8c5bd63568eddddb41dd0da16d8340c5f5ae3615fe46ae864a163_ppc64le",
"product": {
"name": "registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:1a8207fe81e8c5bd63568eddddb41dd0da16d8340c5f5ae3615fe46ae864a163_ppc64le",
"product_id": "registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:1a8207fe81e8c5bd63568eddddb41dd0da16d8340c5f5ae3615fe46ae864a163_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/oauth2-proxy-rhel9@sha256%3A1a8207fe81e8c5bd63568eddddb41dd0da16d8340c5f5ae3615fe46ae864a163?arch=ppc64le\u0026repository_url=registry.redhat.io/rhceph\u0026tag=1777566148"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:cbc542505b4784050c96b3fb31a4867b5d94c8a6957b54a8cfad03bc16a19578_ppc64le",
"product": {
"name": "registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:cbc542505b4784050c96b3fb31a4867b5d94c8a6957b54a8cfad03bc16a19578_ppc64le",
"product_id": "registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:cbc542505b4784050c96b3fb31a4867b5d94c8a6957b54a8cfad03bc16a19578_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhceph-promtail-rhel9@sha256%3Acbc542505b4784050c96b3fb31a4867b5d94c8a6957b54a8cfad03bc16a19578?arch=ppc64le\u0026repository_url=registry.redhat.io/rhceph\u0026tag=1777566201"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:df6bf531755753b224999cb9a5f087c96e8a512666589df4763d4a14941a6f5a_ppc64le",
"product": {
"name": "registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:df6bf531755753b224999cb9a5f087c96e8a512666589df4763d4a14941a6f5a_ppc64le",
"product_id": "registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:df6bf531755753b224999cb9a5f087c96e8a512666589df4763d4a14941a6f5a_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhceph-8-rhel9@sha256%3Adf6bf531755753b224999cb9a5f087c96e8a512666589df4763d4a14941a6f5a?arch=ppc64le\u0026repository_url=registry.redhat.io/rhceph\u0026tag=1778049929"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:bf282440c8e3ce4d38535bb1efdcbc05f0278647d2fc6e2a13c9c28c0c101f79_ppc64le",
"product": {
"name": "registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:bf282440c8e3ce4d38535bb1efdcbc05f0278647d2fc6e2a13c9c28c0c101f79_ppc64le",
"product_id": "registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:bf282440c8e3ce4d38535bb1efdcbc05f0278647d2fc6e2a13c9c28c0c101f79_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/snmp-notifier-rhel9@sha256%3Abf282440c8e3ce4d38535bb1efdcbc05f0278647d2fc6e2a13c9c28c0c101f79?arch=ppc64le\u0026repository_url=registry.redhat.io/rhceph\u0026tag=1777567370"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhceph/grafana-rhel9@sha256:3d4903b8dbe33464c05ce219ee2e945bf1be169efbed73caee5185883c9df508_amd64 as a component of Red Hat Ceph Storage 8.1",
"product_id": "Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:3d4903b8dbe33464c05ce219ee2e945bf1be169efbed73caee5185883c9df508_amd64"
},
"product_reference": "registry.redhat.io/rhceph/grafana-rhel9@sha256:3d4903b8dbe33464c05ce219ee2e945bf1be169efbed73caee5185883c9df508_amd64",
"relates_to_product_reference": "Red Hat Ceph Storage 8.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhceph/grafana-rhel9@sha256:67d65ecfe844febb7afdfcfbdc0a31f3bd9dfb4c3c81f4734a1b146e34d8d5cb_ppc64le as a component of Red Hat Ceph Storage 8.1",
"product_id": "Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:67d65ecfe844febb7afdfcfbdc0a31f3bd9dfb4c3c81f4734a1b146e34d8d5cb_ppc64le"
},
"product_reference": "registry.redhat.io/rhceph/grafana-rhel9@sha256:67d65ecfe844febb7afdfcfbdc0a31f3bd9dfb4c3c81f4734a1b146e34d8d5cb_ppc64le",
"relates_to_product_reference": "Red Hat Ceph Storage 8.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhceph/grafana-rhel9@sha256:a6a8bbdd49272c632edd96e1598d1e697ba3a1dabb8d36086eced4847de59cbb_s390x as a component of Red Hat Ceph Storage 8.1",
"product_id": "Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:a6a8bbdd49272c632edd96e1598d1e697ba3a1dabb8d36086eced4847de59cbb_s390x"
},
"product_reference": "registry.redhat.io/rhceph/grafana-rhel9@sha256:a6a8bbdd49272c632edd96e1598d1e697ba3a1dabb8d36086eced4847de59cbb_s390x",
"relates_to_product_reference": "Red Hat Ceph Storage 8.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhceph/grafana-rhel9@sha256:c27690e36faf7db08a6d398cce7dbedcfe74848224a179c7278b62315516dd4a_arm64 as a component of Red Hat Ceph Storage 8.1",
"product_id": "Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:c27690e36faf7db08a6d398cce7dbedcfe74848224a179c7278b62315516dd4a_arm64"
},
"product_reference": "registry.redhat.io/rhceph/grafana-rhel9@sha256:c27690e36faf7db08a6d398cce7dbedcfe74848224a179c7278b62315516dd4a_arm64",
"relates_to_product_reference": "Red Hat Ceph Storage 8.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhceph/keepalived-rhel9@sha256:02914a917bbea40c35be2cc7dbaf05c5ac1e1bd30b0e82b4ad9a1c58b99a076b_ppc64le as a component of Red Hat Ceph Storage 8.1",
"product_id": "Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:02914a917bbea40c35be2cc7dbaf05c5ac1e1bd30b0e82b4ad9a1c58b99a076b_ppc64le"
},
"product_reference": "registry.redhat.io/rhceph/keepalived-rhel9@sha256:02914a917bbea40c35be2cc7dbaf05c5ac1e1bd30b0e82b4ad9a1c58b99a076b_ppc64le",
"relates_to_product_reference": "Red Hat Ceph Storage 8.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhceph/keepalived-rhel9@sha256:2ce063cc246e7694adf066c17390b4c8d95719b2786267a9db64390407648410_amd64 as a component of Red Hat Ceph Storage 8.1",
"product_id": "Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:2ce063cc246e7694adf066c17390b4c8d95719b2786267a9db64390407648410_amd64"
},
"product_reference": "registry.redhat.io/rhceph/keepalived-rhel9@sha256:2ce063cc246e7694adf066c17390b4c8d95719b2786267a9db64390407648410_amd64",
"relates_to_product_reference": "Red Hat Ceph Storage 8.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhceph/keepalived-rhel9@sha256:aeb508e1309d4a811f881f4028e1c370a5431d290aca2c4af5acdf6a58916a7f_arm64 as a component of Red Hat Ceph Storage 8.1",
"product_id": "Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:aeb508e1309d4a811f881f4028e1c370a5431d290aca2c4af5acdf6a58916a7f_arm64"
},
"product_reference": "registry.redhat.io/rhceph/keepalived-rhel9@sha256:aeb508e1309d4a811f881f4028e1c370a5431d290aca2c4af5acdf6a58916a7f_arm64",
"relates_to_product_reference": "Red Hat Ceph Storage 8.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhceph/keepalived-rhel9@sha256:fa3c9307038f92e351892be9c73cda40a3bab2038904fabcb97dad5568dcec2d_s390x as a component of Red Hat Ceph Storage 8.1",
"product_id": "Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:fa3c9307038f92e351892be9c73cda40a3bab2038904fabcb97dad5568dcec2d_s390x"
},
"product_reference": "registry.redhat.io/rhceph/keepalived-rhel9@sha256:fa3c9307038f92e351892be9c73cda40a3bab2038904fabcb97dad5568dcec2d_s390x",
"relates_to_product_reference": "Red Hat Ceph Storage 8.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:0f37c554cc22c9c89cc4c53739b2ef86e84287486e3f7cdbad10a6e53439d596_s390x as a component of Red Hat Ceph Storage 8.1",
"product_id": "Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:0f37c554cc22c9c89cc4c53739b2ef86e84287486e3f7cdbad10a6e53439d596_s390x"
},
"product_reference": "registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:0f37c554cc22c9c89cc4c53739b2ef86e84287486e3f7cdbad10a6e53439d596_s390x",
"relates_to_product_reference": "Red Hat Ceph Storage 8.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:1a8207fe81e8c5bd63568eddddb41dd0da16d8340c5f5ae3615fe46ae864a163_ppc64le as a component of Red Hat Ceph Storage 8.1",
"product_id": "Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:1a8207fe81e8c5bd63568eddddb41dd0da16d8340c5f5ae3615fe46ae864a163_ppc64le"
},
"product_reference": "registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:1a8207fe81e8c5bd63568eddddb41dd0da16d8340c5f5ae3615fe46ae864a163_ppc64le",
"relates_to_product_reference": "Red Hat Ceph Storage 8.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:9e15073c7782b0194c06e0b420573e49d5719002417faa567c99ee8409ff590d_amd64 as a component of Red Hat Ceph Storage 8.1",
"product_id": "Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:9e15073c7782b0194c06e0b420573e49d5719002417faa567c99ee8409ff590d_amd64"
},
"product_reference": "registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:9e15073c7782b0194c06e0b420573e49d5719002417faa567c99ee8409ff590d_amd64",
"relates_to_product_reference": "Red Hat Ceph Storage 8.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:f76307e201d0b2deaf0aa96bc6b62fc4535c8358b06a8e95ec5a8abf10d2da07_arm64 as a component of Red Hat Ceph Storage 8.1",
"product_id": "Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:f76307e201d0b2deaf0aa96bc6b62fc4535c8358b06a8e95ec5a8abf10d2da07_arm64"
},
"product_reference": "registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:f76307e201d0b2deaf0aa96bc6b62fc4535c8358b06a8e95ec5a8abf10d2da07_arm64",
"relates_to_product_reference": "Red Hat Ceph Storage 8.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:5c496cafb1e21883677c6dcb9fd7392383325b8529b98648af757545dfe59488_s390x as a component of Red Hat Ceph Storage 8.1",
"product_id": "Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:5c496cafb1e21883677c6dcb9fd7392383325b8529b98648af757545dfe59488_s390x"
},
"product_reference": "registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:5c496cafb1e21883677c6dcb9fd7392383325b8529b98648af757545dfe59488_s390x",
"relates_to_product_reference": "Red Hat Ceph Storage 8.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:b2875bcf5aee1175faa2ab1ce163642e17c4948ff5aa76967d008f75b470fc74_amd64 as a component of Red Hat Ceph Storage 8.1",
"product_id": "Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:b2875bcf5aee1175faa2ab1ce163642e17c4948ff5aa76967d008f75b470fc74_amd64"
},
"product_reference": "registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:b2875bcf5aee1175faa2ab1ce163642e17c4948ff5aa76967d008f75b470fc74_amd64",
"relates_to_product_reference": "Red Hat Ceph Storage 8.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:df6bf531755753b224999cb9a5f087c96e8a512666589df4763d4a14941a6f5a_ppc64le as a component of Red Hat Ceph Storage 8.1",
"product_id": "Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:df6bf531755753b224999cb9a5f087c96e8a512666589df4763d4a14941a6f5a_ppc64le"
},
"product_reference": "registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:df6bf531755753b224999cb9a5f087c96e8a512666589df4763d4a14941a6f5a_ppc64le",
"relates_to_product_reference": "Red Hat Ceph Storage 8.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:f7e87de708186099c76426f24b53395340a672e282615164bac73afca3f36454_arm64 as a component of Red Hat Ceph Storage 8.1",
"product_id": "Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:f7e87de708186099c76426f24b53395340a672e282615164bac73afca3f36454_arm64"
},
"product_reference": "registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:f7e87de708186099c76426f24b53395340a672e282615164bac73afca3f36454_arm64",
"relates_to_product_reference": "Red Hat Ceph Storage 8.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:0350448bf1fb15f26c0d092ceb8b0618932f42d30ca4c7c62f2ec1b86c20dd23_ppc64le as a component of Red Hat Ceph Storage 8.1",
"product_id": "Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:0350448bf1fb15f26c0d092ceb8b0618932f42d30ca4c7c62f2ec1b86c20dd23_ppc64le"
},
"product_reference": "registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:0350448bf1fb15f26c0d092ceb8b0618932f42d30ca4c7c62f2ec1b86c20dd23_ppc64le",
"relates_to_product_reference": "Red Hat Ceph Storage 8.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:4c8c8ef82f2f2685d76a9535523c4c93485329aa23328a68426e93789f363b53_arm64 as a component of Red Hat Ceph Storage 8.1",
"product_id": "Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:4c8c8ef82f2f2685d76a9535523c4c93485329aa23328a68426e93789f363b53_arm64"
},
"product_reference": "registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:4c8c8ef82f2f2685d76a9535523c4c93485329aa23328a68426e93789f363b53_arm64",
"relates_to_product_reference": "Red Hat Ceph Storage 8.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:7fa04ae06b25476b7b2a3f9e21279202571fd8fc5ff5012c980caf3f33edc0a5_s390x as a component of Red Hat Ceph Storage 8.1",
"product_id": "Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:7fa04ae06b25476b7b2a3f9e21279202571fd8fc5ff5012c980caf3f33edc0a5_s390x"
},
"product_reference": "registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:7fa04ae06b25476b7b2a3f9e21279202571fd8fc5ff5012c980caf3f33edc0a5_s390x",
"relates_to_product_reference": "Red Hat Ceph Storage 8.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:8b20b6abf0399bbfc970990bc0c5b6dab46c1043ef761519dbbe8213e6fdd169_amd64 as a component of Red Hat Ceph Storage 8.1",
"product_id": "Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:8b20b6abf0399bbfc970990bc0c5b6dab46c1043ef761519dbbe8213e6fdd169_amd64"
},
"product_reference": "registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:8b20b6abf0399bbfc970990bc0c5b6dab46c1043ef761519dbbe8213e6fdd169_amd64",
"relates_to_product_reference": "Red Hat Ceph Storage 8.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:28aae4d07691c86cdfa9bbfcc7b68e1a3304402ac6c65982bfc0f7945cb9a44e_s390x as a component of Red Hat Ceph Storage 8.1",
"product_id": "Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:28aae4d07691c86cdfa9bbfcc7b68e1a3304402ac6c65982bfc0f7945cb9a44e_s390x"
},
"product_reference": "registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:28aae4d07691c86cdfa9bbfcc7b68e1a3304402ac6c65982bfc0f7945cb9a44e_s390x",
"relates_to_product_reference": "Red Hat Ceph Storage 8.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:3b78f446debe56d01cd96dc3c3ae225a982ee6abdd7d2fabae553cf4c87e471a_arm64 as a component of Red Hat Ceph Storage 8.1",
"product_id": "Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:3b78f446debe56d01cd96dc3c3ae225a982ee6abdd7d2fabae553cf4c87e471a_arm64"
},
"product_reference": "registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:3b78f446debe56d01cd96dc3c3ae225a982ee6abdd7d2fabae553cf4c87e471a_arm64",
"relates_to_product_reference": "Red Hat Ceph Storage 8.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:cbc542505b4784050c96b3fb31a4867b5d94c8a6957b54a8cfad03bc16a19578_ppc64le as a component of Red Hat Ceph Storage 8.1",
"product_id": "Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:cbc542505b4784050c96b3fb31a4867b5d94c8a6957b54a8cfad03bc16a19578_ppc64le"
},
"product_reference": "registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:cbc542505b4784050c96b3fb31a4867b5d94c8a6957b54a8cfad03bc16a19578_ppc64le",
"relates_to_product_reference": "Red Hat Ceph Storage 8.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:e0e44241bde7bfbccea69d06e5fd00ad0a0ab569bef6645687bcadcfc00aa5ef_amd64 as a component of Red Hat Ceph Storage 8.1",
"product_id": "Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:e0e44241bde7bfbccea69d06e5fd00ad0a0ab569bef6645687bcadcfc00aa5ef_amd64"
},
"product_reference": "registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:e0e44241bde7bfbccea69d06e5fd00ad0a0ab569bef6645687bcadcfc00aa5ef_amd64",
"relates_to_product_reference": "Red Hat Ceph Storage 8.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:5ccb9e878551c910e3a300ab8043fdc4788381c9515dc9dcaa965a738d2de059_s390x as a component of Red Hat Ceph Storage 8.1",
"product_id": "Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:5ccb9e878551c910e3a300ab8043fdc4788381c9515dc9dcaa965a738d2de059_s390x"
},
"product_reference": "registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:5ccb9e878551c910e3a300ab8043fdc4788381c9515dc9dcaa965a738d2de059_s390x",
"relates_to_product_reference": "Red Hat Ceph Storage 8.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:7559ec0119f673e243361d4e457a8e9687beb3af60a4fd608fa211539b9034c1_arm64 as a component of Red Hat Ceph Storage 8.1",
"product_id": "Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:7559ec0119f673e243361d4e457a8e9687beb3af60a4fd608fa211539b9034c1_arm64"
},
"product_reference": "registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:7559ec0119f673e243361d4e457a8e9687beb3af60a4fd608fa211539b9034c1_arm64",
"relates_to_product_reference": "Red Hat Ceph Storage 8.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:808082ac26e53bc7f962428d8e67f721654b732eb1d40fc6e272fcb7f045797c_amd64 as a component of Red Hat Ceph Storage 8.1",
"product_id": "Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:808082ac26e53bc7f962428d8e67f721654b732eb1d40fc6e272fcb7f045797c_amd64"
},
"product_reference": "registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:808082ac26e53bc7f962428d8e67f721654b732eb1d40fc6e272fcb7f045797c_amd64",
"relates_to_product_reference": "Red Hat Ceph Storage 8.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:bf282440c8e3ce4d38535bb1efdcbc05f0278647d2fc6e2a13c9c28c0c101f79_ppc64le as a component of Red Hat Ceph Storage 8.1",
"product_id": "Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:bf282440c8e3ce4d38535bb1efdcbc05f0278647d2fc6e2a13c9c28c0c101f79_ppc64le"
},
"product_reference": "registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:bf282440c8e3ce4d38535bb1efdcbc05f0278647d2fc6e2a13c9c28c0c101f79_ppc64le",
"relates_to_product_reference": "Red Hat Ceph Storage 8.1"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-13033",
"cwe": {
"id": "CWE-1286",
"name": "Improper Validation of Syntactic Correctness of Input"
},
"discovery_date": "2025-10-07T15:03:14.483722+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:02914a917bbea40c35be2cc7dbaf05c5ac1e1bd30b0e82b4ad9a1c58b99a076b_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:2ce063cc246e7694adf066c17390b4c8d95719b2786267a9db64390407648410_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:aeb508e1309d4a811f881f4028e1c370a5431d290aca2c4af5acdf6a58916a7f_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:fa3c9307038f92e351892be9c73cda40a3bab2038904fabcb97dad5568dcec2d_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:0f37c554cc22c9c89cc4c53739b2ef86e84287486e3f7cdbad10a6e53439d596_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:1a8207fe81e8c5bd63568eddddb41dd0da16d8340c5f5ae3615fe46ae864a163_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:9e15073c7782b0194c06e0b420573e49d5719002417faa567c99ee8409ff590d_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:f76307e201d0b2deaf0aa96bc6b62fc4535c8358b06a8e95ec5a8abf10d2da07_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:5c496cafb1e21883677c6dcb9fd7392383325b8529b98648af757545dfe59488_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:b2875bcf5aee1175faa2ab1ce163642e17c4948ff5aa76967d008f75b470fc74_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:df6bf531755753b224999cb9a5f087c96e8a512666589df4763d4a14941a6f5a_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:f7e87de708186099c76426f24b53395340a672e282615164bac73afca3f36454_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:0350448bf1fb15f26c0d092ceb8b0618932f42d30ca4c7c62f2ec1b86c20dd23_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:4c8c8ef82f2f2685d76a9535523c4c93485329aa23328a68426e93789f363b53_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:7fa04ae06b25476b7b2a3f9e21279202571fd8fc5ff5012c980caf3f33edc0a5_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:8b20b6abf0399bbfc970990bc0c5b6dab46c1043ef761519dbbe8213e6fdd169_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:28aae4d07691c86cdfa9bbfcc7b68e1a3304402ac6c65982bfc0f7945cb9a44e_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:3b78f446debe56d01cd96dc3c3ae225a982ee6abdd7d2fabae553cf4c87e471a_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:cbc542505b4784050c96b3fb31a4867b5d94c8a6957b54a8cfad03bc16a19578_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:e0e44241bde7bfbccea69d06e5fd00ad0a0ab569bef6645687bcadcfc00aa5ef_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:5ccb9e878551c910e3a300ab8043fdc4788381c9515dc9dcaa965a738d2de059_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:7559ec0119f673e243361d4e457a8e9687beb3af60a4fd608fa211539b9034c1_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:808082ac26e53bc7f962428d8e67f721654b732eb1d40fc6e272fcb7f045797c_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:bf282440c8e3ce4d38535bb1efdcbc05f0278647d2fc6e2a13c9c28c0c101f79_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2402179"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was identified in the email parsing library due to improper handling of specially formatted recipient email addresses. An attacker can exploit this flaw by crafting a recipient address that embeds an external address within quotes. This causes the application to misdirect the email to the attacker\u0027s external address instead of the intended internal recipient. This could lead to a significant data leak of sensitive information and allow an attacker to bypass security filters and access controls.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "nodemailer: Nodemailer: Email to an unintended domain can occur due to Interpretation Conflict",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability allows an attacker to force nodemailer to send an email to an attacker-owned email address by leveraging the incorrect handling of quoted local-parts containing the \u0027@\u0027 character in the destination email address. When successfully exploited, this vulnerability may allow an attacker to exfiltrate data by misrouting emails to an unintended domain, presenting a high impact on data confidentiality.\n\nThis vulnerability has been assessed as having a Moderate impact on Red Hat Products by the Red Hat Product Security team. This is because for an attacker successfully exploit this vulnerability, the malicious actor needs to have direct control over the destination email input.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:3d4903b8dbe33464c05ce219ee2e945bf1be169efbed73caee5185883c9df508_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:67d65ecfe844febb7afdfcfbdc0a31f3bd9dfb4c3c81f4734a1b146e34d8d5cb_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:a6a8bbdd49272c632edd96e1598d1e697ba3a1dabb8d36086eced4847de59cbb_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:c27690e36faf7db08a6d398cce7dbedcfe74848224a179c7278b62315516dd4a_arm64"
],
"known_not_affected": [
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:02914a917bbea40c35be2cc7dbaf05c5ac1e1bd30b0e82b4ad9a1c58b99a076b_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:2ce063cc246e7694adf066c17390b4c8d95719b2786267a9db64390407648410_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:aeb508e1309d4a811f881f4028e1c370a5431d290aca2c4af5acdf6a58916a7f_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:fa3c9307038f92e351892be9c73cda40a3bab2038904fabcb97dad5568dcec2d_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:0f37c554cc22c9c89cc4c53739b2ef86e84287486e3f7cdbad10a6e53439d596_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:1a8207fe81e8c5bd63568eddddb41dd0da16d8340c5f5ae3615fe46ae864a163_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:9e15073c7782b0194c06e0b420573e49d5719002417faa567c99ee8409ff590d_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:f76307e201d0b2deaf0aa96bc6b62fc4535c8358b06a8e95ec5a8abf10d2da07_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:5c496cafb1e21883677c6dcb9fd7392383325b8529b98648af757545dfe59488_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:b2875bcf5aee1175faa2ab1ce163642e17c4948ff5aa76967d008f75b470fc74_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:df6bf531755753b224999cb9a5f087c96e8a512666589df4763d4a14941a6f5a_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:f7e87de708186099c76426f24b53395340a672e282615164bac73afca3f36454_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:0350448bf1fb15f26c0d092ceb8b0618932f42d30ca4c7c62f2ec1b86c20dd23_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:4c8c8ef82f2f2685d76a9535523c4c93485329aa23328a68426e93789f363b53_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:7fa04ae06b25476b7b2a3f9e21279202571fd8fc5ff5012c980caf3f33edc0a5_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:8b20b6abf0399bbfc970990bc0c5b6dab46c1043ef761519dbbe8213e6fdd169_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:28aae4d07691c86cdfa9bbfcc7b68e1a3304402ac6c65982bfc0f7945cb9a44e_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:3b78f446debe56d01cd96dc3c3ae225a982ee6abdd7d2fabae553cf4c87e471a_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:cbc542505b4784050c96b3fb31a4867b5d94c8a6957b54a8cfad03bc16a19578_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:e0e44241bde7bfbccea69d06e5fd00ad0a0ab569bef6645687bcadcfc00aa5ef_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:5ccb9e878551c910e3a300ab8043fdc4788381c9515dc9dcaa965a738d2de059_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:7559ec0119f673e243361d4e457a8e9687beb3af60a4fd608fa211539b9034c1_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:808082ac26e53bc7f962428d8e67f721654b732eb1d40fc6e272fcb7f045797c_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:bf282440c8e3ce4d38535bb1efdcbc05f0278647d2fc6e2a13c9c28c0c101f79_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-13033"
},
{
"category": "external",
"summary": "RHBZ#2402179",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2402179"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-13033",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-13033"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-13033",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-13033"
},
{
"category": "external",
"summary": "https://github.com/nodemailer/nodemailer",
"url": "https://github.com/nodemailer/nodemailer"
},
{
"category": "external",
"summary": "https://github.com/nodemailer/nodemailer/commit/1150d99fba77280df2cfb1885c43df23109a8626",
"url": "https://github.com/nodemailer/nodemailer/commit/1150d99fba77280df2cfb1885c43df23109a8626"
},
{
"category": "external",
"summary": "https://github.com/nodemailer/nodemailer/security/advisories/GHSA-mm7p-fcc7-pg87",
"url": "https://github.com/nodemailer/nodemailer/security/advisories/GHSA-mm7p-fcc7-pg87"
}
],
"release_date": "2025-10-07T13:42:02+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-05-11T11:23:46+00:00",
"details": "The container images provided by this update can be downloaded from the\nRed Hat container registry at registry.redhat.io using the \"podman pull\" command.",
"product_ids": [
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:3d4903b8dbe33464c05ce219ee2e945bf1be169efbed73caee5185883c9df508_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:67d65ecfe844febb7afdfcfbdc0a31f3bd9dfb4c3c81f4734a1b146e34d8d5cb_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:a6a8bbdd49272c632edd96e1598d1e697ba3a1dabb8d36086eced4847de59cbb_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:c27690e36faf7db08a6d398cce7dbedcfe74848224a179c7278b62315516dd4a_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:15979"
},
{
"category": "workaround",
"details": "Currently there\u0027s no available mitigation for this flaw.",
"product_ids": [
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:3d4903b8dbe33464c05ce219ee2e945bf1be169efbed73caee5185883c9df508_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:67d65ecfe844febb7afdfcfbdc0a31f3bd9dfb4c3c81f4734a1b146e34d8d5cb_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:a6a8bbdd49272c632edd96e1598d1e697ba3a1dabb8d36086eced4847de59cbb_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:c27690e36faf7db08a6d398cce7dbedcfe74848224a179c7278b62315516dd4a_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:02914a917bbea40c35be2cc7dbaf05c5ac1e1bd30b0e82b4ad9a1c58b99a076b_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:2ce063cc246e7694adf066c17390b4c8d95719b2786267a9db64390407648410_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:aeb508e1309d4a811f881f4028e1c370a5431d290aca2c4af5acdf6a58916a7f_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:fa3c9307038f92e351892be9c73cda40a3bab2038904fabcb97dad5568dcec2d_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:0f37c554cc22c9c89cc4c53739b2ef86e84287486e3f7cdbad10a6e53439d596_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:1a8207fe81e8c5bd63568eddddb41dd0da16d8340c5f5ae3615fe46ae864a163_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:9e15073c7782b0194c06e0b420573e49d5719002417faa567c99ee8409ff590d_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:f76307e201d0b2deaf0aa96bc6b62fc4535c8358b06a8e95ec5a8abf10d2da07_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:5c496cafb1e21883677c6dcb9fd7392383325b8529b98648af757545dfe59488_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:b2875bcf5aee1175faa2ab1ce163642e17c4948ff5aa76967d008f75b470fc74_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:df6bf531755753b224999cb9a5f087c96e8a512666589df4763d4a14941a6f5a_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:f7e87de708186099c76426f24b53395340a672e282615164bac73afca3f36454_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:0350448bf1fb15f26c0d092ceb8b0618932f42d30ca4c7c62f2ec1b86c20dd23_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:4c8c8ef82f2f2685d76a9535523c4c93485329aa23328a68426e93789f363b53_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:7fa04ae06b25476b7b2a3f9e21279202571fd8fc5ff5012c980caf3f33edc0a5_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:8b20b6abf0399bbfc970990bc0c5b6dab46c1043ef761519dbbe8213e6fdd169_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:28aae4d07691c86cdfa9bbfcc7b68e1a3304402ac6c65982bfc0f7945cb9a44e_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:3b78f446debe56d01cd96dc3c3ae225a982ee6abdd7d2fabae553cf4c87e471a_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:cbc542505b4784050c96b3fb31a4867b5d94c8a6957b54a8cfad03bc16a19578_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:e0e44241bde7bfbccea69d06e5fd00ad0a0ab569bef6645687bcadcfc00aa5ef_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:5ccb9e878551c910e3a300ab8043fdc4788381c9515dc9dcaa965a738d2de059_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:7559ec0119f673e243361d4e457a8e9687beb3af60a4fd608fa211539b9034c1_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:808082ac26e53bc7f962428d8e67f721654b732eb1d40fc6e272fcb7f045797c_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:bf282440c8e3ce4d38535bb1efdcbc05f0278647d2fc6e2a13c9c28c0c101f79_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:3d4903b8dbe33464c05ce219ee2e945bf1be169efbed73caee5185883c9df508_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:67d65ecfe844febb7afdfcfbdc0a31f3bd9dfb4c3c81f4734a1b146e34d8d5cb_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:a6a8bbdd49272c632edd96e1598d1e697ba3a1dabb8d36086eced4847de59cbb_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:c27690e36faf7db08a6d398cce7dbedcfe74848224a179c7278b62315516dd4a_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:02914a917bbea40c35be2cc7dbaf05c5ac1e1bd30b0e82b4ad9a1c58b99a076b_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:2ce063cc246e7694adf066c17390b4c8d95719b2786267a9db64390407648410_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:aeb508e1309d4a811f881f4028e1c370a5431d290aca2c4af5acdf6a58916a7f_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:fa3c9307038f92e351892be9c73cda40a3bab2038904fabcb97dad5568dcec2d_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:0f37c554cc22c9c89cc4c53739b2ef86e84287486e3f7cdbad10a6e53439d596_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:1a8207fe81e8c5bd63568eddddb41dd0da16d8340c5f5ae3615fe46ae864a163_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:9e15073c7782b0194c06e0b420573e49d5719002417faa567c99ee8409ff590d_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:f76307e201d0b2deaf0aa96bc6b62fc4535c8358b06a8e95ec5a8abf10d2da07_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:5c496cafb1e21883677c6dcb9fd7392383325b8529b98648af757545dfe59488_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:b2875bcf5aee1175faa2ab1ce163642e17c4948ff5aa76967d008f75b470fc74_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:df6bf531755753b224999cb9a5f087c96e8a512666589df4763d4a14941a6f5a_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:f7e87de708186099c76426f24b53395340a672e282615164bac73afca3f36454_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:0350448bf1fb15f26c0d092ceb8b0618932f42d30ca4c7c62f2ec1b86c20dd23_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:4c8c8ef82f2f2685d76a9535523c4c93485329aa23328a68426e93789f363b53_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:7fa04ae06b25476b7b2a3f9e21279202571fd8fc5ff5012c980caf3f33edc0a5_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:8b20b6abf0399bbfc970990bc0c5b6dab46c1043ef761519dbbe8213e6fdd169_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:28aae4d07691c86cdfa9bbfcc7b68e1a3304402ac6c65982bfc0f7945cb9a44e_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:3b78f446debe56d01cd96dc3c3ae225a982ee6abdd7d2fabae553cf4c87e471a_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:cbc542505b4784050c96b3fb31a4867b5d94c8a6957b54a8cfad03bc16a19578_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:e0e44241bde7bfbccea69d06e5fd00ad0a0ab569bef6645687bcadcfc00aa5ef_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:5ccb9e878551c910e3a300ab8043fdc4788381c9515dc9dcaa965a738d2de059_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:7559ec0119f673e243361d4e457a8e9687beb3af60a4fd608fa211539b9034c1_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:808082ac26e53bc7f962428d8e67f721654b732eb1d40fc6e272fcb7f045797c_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:bf282440c8e3ce4d38535bb1efdcbc05f0278647d2fc6e2a13c9c28c0c101f79_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "nodemailer: Nodemailer: Email to an unintended domain can occur due to Interpretation Conflict"
},
{
"cve": "CVE-2025-47914",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2025-11-19T21:01:06.202641+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:02914a917bbea40c35be2cc7dbaf05c5ac1e1bd30b0e82b4ad9a1c58b99a076b_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:2ce063cc246e7694adf066c17390b4c8d95719b2786267a9db64390407648410_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:aeb508e1309d4a811f881f4028e1c370a5431d290aca2c4af5acdf6a58916a7f_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:fa3c9307038f92e351892be9c73cda40a3bab2038904fabcb97dad5568dcec2d_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:0f37c554cc22c9c89cc4c53739b2ef86e84287486e3f7cdbad10a6e53439d596_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:1a8207fe81e8c5bd63568eddddb41dd0da16d8340c5f5ae3615fe46ae864a163_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:9e15073c7782b0194c06e0b420573e49d5719002417faa567c99ee8409ff590d_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:f76307e201d0b2deaf0aa96bc6b62fc4535c8358b06a8e95ec5a8abf10d2da07_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:5c496cafb1e21883677c6dcb9fd7392383325b8529b98648af757545dfe59488_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:b2875bcf5aee1175faa2ab1ce163642e17c4948ff5aa76967d008f75b470fc74_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:df6bf531755753b224999cb9a5f087c96e8a512666589df4763d4a14941a6f5a_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:f7e87de708186099c76426f24b53395340a672e282615164bac73afca3f36454_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:0350448bf1fb15f26c0d092ceb8b0618932f42d30ca4c7c62f2ec1b86c20dd23_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:4c8c8ef82f2f2685d76a9535523c4c93485329aa23328a68426e93789f363b53_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:7fa04ae06b25476b7b2a3f9e21279202571fd8fc5ff5012c980caf3f33edc0a5_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:8b20b6abf0399bbfc970990bc0c5b6dab46c1043ef761519dbbe8213e6fdd169_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:28aae4d07691c86cdfa9bbfcc7b68e1a3304402ac6c65982bfc0f7945cb9a44e_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:3b78f446debe56d01cd96dc3c3ae225a982ee6abdd7d2fabae553cf4c87e471a_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:cbc542505b4784050c96b3fb31a4867b5d94c8a6957b54a8cfad03bc16a19578_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:e0e44241bde7bfbccea69d06e5fd00ad0a0ab569bef6645687bcadcfc00aa5ef_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:5ccb9e878551c910e3a300ab8043fdc4788381c9515dc9dcaa965a738d2de059_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:7559ec0119f673e243361d4e457a8e9687beb3af60a4fd608fa211539b9034c1_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:808082ac26e53bc7f962428d8e67f721654b732eb1d40fc6e272fcb7f045797c_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:bf282440c8e3ce4d38535bb1efdcbc05f0278647d2fc6e2a13c9c28c0c101f79_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2416000"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the SSH Agent servers component (golang.org/x/crypto/ssh/agent). This vulnerability allows a remote attacker to cause a denial of service (DoS) by sending a specially crafted, malformed message during new identity requests. The server fails to validate the size of these messages, leading to an out-of-bounds read that can cause the program to panic and terminate.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh/agent: SSH Agent servers: Denial of Service due to malformed messages",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is rated Moderate for Red Hat products. The golang.org/x/crypto/ssh/agent library, when used in SSH Agent servers, does not properly validate the size of messages during new identity requests. A specially crafted malformed message can lead to an out-of-bounds read, causing the program to panic and resulting in a denial of service.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:3d4903b8dbe33464c05ce219ee2e945bf1be169efbed73caee5185883c9df508_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:67d65ecfe844febb7afdfcfbdc0a31f3bd9dfb4c3c81f4734a1b146e34d8d5cb_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:a6a8bbdd49272c632edd96e1598d1e697ba3a1dabb8d36086eced4847de59cbb_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:c27690e36faf7db08a6d398cce7dbedcfe74848224a179c7278b62315516dd4a_arm64"
],
"known_not_affected": [
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:02914a917bbea40c35be2cc7dbaf05c5ac1e1bd30b0e82b4ad9a1c58b99a076b_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:2ce063cc246e7694adf066c17390b4c8d95719b2786267a9db64390407648410_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:aeb508e1309d4a811f881f4028e1c370a5431d290aca2c4af5acdf6a58916a7f_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:fa3c9307038f92e351892be9c73cda40a3bab2038904fabcb97dad5568dcec2d_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:0f37c554cc22c9c89cc4c53739b2ef86e84287486e3f7cdbad10a6e53439d596_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:1a8207fe81e8c5bd63568eddddb41dd0da16d8340c5f5ae3615fe46ae864a163_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:9e15073c7782b0194c06e0b420573e49d5719002417faa567c99ee8409ff590d_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:f76307e201d0b2deaf0aa96bc6b62fc4535c8358b06a8e95ec5a8abf10d2da07_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:5c496cafb1e21883677c6dcb9fd7392383325b8529b98648af757545dfe59488_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:b2875bcf5aee1175faa2ab1ce163642e17c4948ff5aa76967d008f75b470fc74_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:df6bf531755753b224999cb9a5f087c96e8a512666589df4763d4a14941a6f5a_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:f7e87de708186099c76426f24b53395340a672e282615164bac73afca3f36454_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:0350448bf1fb15f26c0d092ceb8b0618932f42d30ca4c7c62f2ec1b86c20dd23_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:4c8c8ef82f2f2685d76a9535523c4c93485329aa23328a68426e93789f363b53_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:7fa04ae06b25476b7b2a3f9e21279202571fd8fc5ff5012c980caf3f33edc0a5_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:8b20b6abf0399bbfc970990bc0c5b6dab46c1043ef761519dbbe8213e6fdd169_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:28aae4d07691c86cdfa9bbfcc7b68e1a3304402ac6c65982bfc0f7945cb9a44e_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:3b78f446debe56d01cd96dc3c3ae225a982ee6abdd7d2fabae553cf4c87e471a_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:cbc542505b4784050c96b3fb31a4867b5d94c8a6957b54a8cfad03bc16a19578_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:e0e44241bde7bfbccea69d06e5fd00ad0a0ab569bef6645687bcadcfc00aa5ef_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:5ccb9e878551c910e3a300ab8043fdc4788381c9515dc9dcaa965a738d2de059_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:7559ec0119f673e243361d4e457a8e9687beb3af60a4fd608fa211539b9034c1_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:808082ac26e53bc7f962428d8e67f721654b732eb1d40fc6e272fcb7f045797c_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:bf282440c8e3ce4d38535bb1efdcbc05f0278647d2fc6e2a13c9c28c0c101f79_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-47914"
},
{
"category": "external",
"summary": "RHBZ#2416000",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2416000"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-47914",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-47914"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-47914",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-47914"
},
{
"category": "external",
"summary": "https://go.dev/cl/721960",
"url": "https://go.dev/cl/721960"
},
{
"category": "external",
"summary": "https://go.dev/issue/76364",
"url": "https://go.dev/issue/76364"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/w-oX3UxNcZA",
"url": "https://groups.google.com/g/golang-announce/c/w-oX3UxNcZA"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-4135",
"url": "https://pkg.go.dev/vuln/GO-2025-4135"
}
],
"release_date": "2025-11-19T20:33:43.126000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-05-11T11:23:46+00:00",
"details": "The container images provided by this update can be downloaded from the\nRed Hat container registry at registry.redhat.io using the \"podman pull\" command.",
"product_ids": [
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:3d4903b8dbe33464c05ce219ee2e945bf1be169efbed73caee5185883c9df508_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:67d65ecfe844febb7afdfcfbdc0a31f3bd9dfb4c3c81f4734a1b146e34d8d5cb_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:a6a8bbdd49272c632edd96e1598d1e697ba3a1dabb8d36086eced4847de59cbb_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:c27690e36faf7db08a6d398cce7dbedcfe74848224a179c7278b62315516dd4a_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:15979"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:3d4903b8dbe33464c05ce219ee2e945bf1be169efbed73caee5185883c9df508_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:67d65ecfe844febb7afdfcfbdc0a31f3bd9dfb4c3c81f4734a1b146e34d8d5cb_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:a6a8bbdd49272c632edd96e1598d1e697ba3a1dabb8d36086eced4847de59cbb_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:c27690e36faf7db08a6d398cce7dbedcfe74848224a179c7278b62315516dd4a_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:02914a917bbea40c35be2cc7dbaf05c5ac1e1bd30b0e82b4ad9a1c58b99a076b_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:2ce063cc246e7694adf066c17390b4c8d95719b2786267a9db64390407648410_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:aeb508e1309d4a811f881f4028e1c370a5431d290aca2c4af5acdf6a58916a7f_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:fa3c9307038f92e351892be9c73cda40a3bab2038904fabcb97dad5568dcec2d_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:0f37c554cc22c9c89cc4c53739b2ef86e84287486e3f7cdbad10a6e53439d596_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:1a8207fe81e8c5bd63568eddddb41dd0da16d8340c5f5ae3615fe46ae864a163_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:9e15073c7782b0194c06e0b420573e49d5719002417faa567c99ee8409ff590d_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:f76307e201d0b2deaf0aa96bc6b62fc4535c8358b06a8e95ec5a8abf10d2da07_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:5c496cafb1e21883677c6dcb9fd7392383325b8529b98648af757545dfe59488_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:b2875bcf5aee1175faa2ab1ce163642e17c4948ff5aa76967d008f75b470fc74_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:df6bf531755753b224999cb9a5f087c96e8a512666589df4763d4a14941a6f5a_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:f7e87de708186099c76426f24b53395340a672e282615164bac73afca3f36454_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:0350448bf1fb15f26c0d092ceb8b0618932f42d30ca4c7c62f2ec1b86c20dd23_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:4c8c8ef82f2f2685d76a9535523c4c93485329aa23328a68426e93789f363b53_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:7fa04ae06b25476b7b2a3f9e21279202571fd8fc5ff5012c980caf3f33edc0a5_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:8b20b6abf0399bbfc970990bc0c5b6dab46c1043ef761519dbbe8213e6fdd169_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:28aae4d07691c86cdfa9bbfcc7b68e1a3304402ac6c65982bfc0f7945cb9a44e_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:3b78f446debe56d01cd96dc3c3ae225a982ee6abdd7d2fabae553cf4c87e471a_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:cbc542505b4784050c96b3fb31a4867b5d94c8a6957b54a8cfad03bc16a19578_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:e0e44241bde7bfbccea69d06e5fd00ad0a0ab569bef6645687bcadcfc00aa5ef_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:5ccb9e878551c910e3a300ab8043fdc4788381c9515dc9dcaa965a738d2de059_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:7559ec0119f673e243361d4e457a8e9687beb3af60a4fd608fa211539b9034c1_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:808082ac26e53bc7f962428d8e67f721654b732eb1d40fc6e272fcb7f045797c_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:bf282440c8e3ce4d38535bb1efdcbc05f0278647d2fc6e2a13c9c28c0c101f79_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang.org/x/crypto/ssh/agent: SSH Agent servers: Denial of Service due to malformed messages"
},
{
"cve": "CVE-2025-58181",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2025-11-19T21:00:50.197590+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:02914a917bbea40c35be2cc7dbaf05c5ac1e1bd30b0e82b4ad9a1c58b99a076b_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:2ce063cc246e7694adf066c17390b4c8d95719b2786267a9db64390407648410_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:aeb508e1309d4a811f881f4028e1c370a5431d290aca2c4af5acdf6a58916a7f_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:fa3c9307038f92e351892be9c73cda40a3bab2038904fabcb97dad5568dcec2d_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:0f37c554cc22c9c89cc4c53739b2ef86e84287486e3f7cdbad10a6e53439d596_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:1a8207fe81e8c5bd63568eddddb41dd0da16d8340c5f5ae3615fe46ae864a163_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:9e15073c7782b0194c06e0b420573e49d5719002417faa567c99ee8409ff590d_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:f76307e201d0b2deaf0aa96bc6b62fc4535c8358b06a8e95ec5a8abf10d2da07_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:5c496cafb1e21883677c6dcb9fd7392383325b8529b98648af757545dfe59488_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:b2875bcf5aee1175faa2ab1ce163642e17c4948ff5aa76967d008f75b470fc74_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:df6bf531755753b224999cb9a5f087c96e8a512666589df4763d4a14941a6f5a_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:f7e87de708186099c76426f24b53395340a672e282615164bac73afca3f36454_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:0350448bf1fb15f26c0d092ceb8b0618932f42d30ca4c7c62f2ec1b86c20dd23_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:4c8c8ef82f2f2685d76a9535523c4c93485329aa23328a68426e93789f363b53_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:7fa04ae06b25476b7b2a3f9e21279202571fd8fc5ff5012c980caf3f33edc0a5_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:8b20b6abf0399bbfc970990bc0c5b6dab46c1043ef761519dbbe8213e6fdd169_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:28aae4d07691c86cdfa9bbfcc7b68e1a3304402ac6c65982bfc0f7945cb9a44e_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:3b78f446debe56d01cd96dc3c3ae225a982ee6abdd7d2fabae553cf4c87e471a_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:cbc542505b4784050c96b3fb31a4867b5d94c8a6957b54a8cfad03bc16a19578_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:e0e44241bde7bfbccea69d06e5fd00ad0a0ab569bef6645687bcadcfc00aa5ef_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:5ccb9e878551c910e3a300ab8043fdc4788381c9515dc9dcaa965a738d2de059_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:7559ec0119f673e243361d4e457a8e9687beb3af60a4fd608fa211539b9034c1_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:808082ac26e53bc7f962428d8e67f721654b732eb1d40fc6e272fcb7f045797c_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:bf282440c8e3ce4d38535bb1efdcbc05f0278647d2fc6e2a13c9c28c0c101f79_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2415997"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/crypto/ssh. An attacker can exploit this vulnerability by sending specially crafted GSSAPI (Generic Security Service Application Program Interface) authentication requests to an SSH (Secure Shell) server. The server fails to validate the number of mechanisms specified in these requests, leading to unbounded memory consumption. This can result in a Denial of Service (DoS), making the SSH server unavailable to legitimate users.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Denial of Service via unbounded memory consumption in GSSAPI authentication",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is rated Moderate for Red Hat. SSH servers utilizing `golang.org/x/crypto/ssh` and configured to process GSSAPI authentication requests are susceptible to unbounded memory consumption. An attacker can exploit this by sending specially crafted GSSAPI authentication requests, potentially leading to a denial of service.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:3d4903b8dbe33464c05ce219ee2e945bf1be169efbed73caee5185883c9df508_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:67d65ecfe844febb7afdfcfbdc0a31f3bd9dfb4c3c81f4734a1b146e34d8d5cb_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:a6a8bbdd49272c632edd96e1598d1e697ba3a1dabb8d36086eced4847de59cbb_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:c27690e36faf7db08a6d398cce7dbedcfe74848224a179c7278b62315516dd4a_arm64"
],
"known_not_affected": [
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:02914a917bbea40c35be2cc7dbaf05c5ac1e1bd30b0e82b4ad9a1c58b99a076b_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:2ce063cc246e7694adf066c17390b4c8d95719b2786267a9db64390407648410_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:aeb508e1309d4a811f881f4028e1c370a5431d290aca2c4af5acdf6a58916a7f_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:fa3c9307038f92e351892be9c73cda40a3bab2038904fabcb97dad5568dcec2d_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:0f37c554cc22c9c89cc4c53739b2ef86e84287486e3f7cdbad10a6e53439d596_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:1a8207fe81e8c5bd63568eddddb41dd0da16d8340c5f5ae3615fe46ae864a163_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:9e15073c7782b0194c06e0b420573e49d5719002417faa567c99ee8409ff590d_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:f76307e201d0b2deaf0aa96bc6b62fc4535c8358b06a8e95ec5a8abf10d2da07_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:5c496cafb1e21883677c6dcb9fd7392383325b8529b98648af757545dfe59488_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:b2875bcf5aee1175faa2ab1ce163642e17c4948ff5aa76967d008f75b470fc74_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:df6bf531755753b224999cb9a5f087c96e8a512666589df4763d4a14941a6f5a_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:f7e87de708186099c76426f24b53395340a672e282615164bac73afca3f36454_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:0350448bf1fb15f26c0d092ceb8b0618932f42d30ca4c7c62f2ec1b86c20dd23_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:4c8c8ef82f2f2685d76a9535523c4c93485329aa23328a68426e93789f363b53_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:7fa04ae06b25476b7b2a3f9e21279202571fd8fc5ff5012c980caf3f33edc0a5_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:8b20b6abf0399bbfc970990bc0c5b6dab46c1043ef761519dbbe8213e6fdd169_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:28aae4d07691c86cdfa9bbfcc7b68e1a3304402ac6c65982bfc0f7945cb9a44e_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:3b78f446debe56d01cd96dc3c3ae225a982ee6abdd7d2fabae553cf4c87e471a_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:cbc542505b4784050c96b3fb31a4867b5d94c8a6957b54a8cfad03bc16a19578_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:e0e44241bde7bfbccea69d06e5fd00ad0a0ab569bef6645687bcadcfc00aa5ef_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:5ccb9e878551c910e3a300ab8043fdc4788381c9515dc9dcaa965a738d2de059_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:7559ec0119f673e243361d4e457a8e9687beb3af60a4fd608fa211539b9034c1_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:808082ac26e53bc7f962428d8e67f721654b732eb1d40fc6e272fcb7f045797c_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:bf282440c8e3ce4d38535bb1efdcbc05f0278647d2fc6e2a13c9c28c0c101f79_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-58181"
},
{
"category": "external",
"summary": "RHBZ#2415997",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2415997"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-58181",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-58181"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-58181",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-58181"
},
{
"category": "external",
"summary": "https://go.dev/cl/721961",
"url": "https://go.dev/cl/721961"
},
{
"category": "external",
"summary": "https://go.dev/issue/76363",
"url": "https://go.dev/issue/76363"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/w-oX3UxNcZA",
"url": "https://groups.google.com/g/golang-announce/c/w-oX3UxNcZA"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-4134",
"url": "https://pkg.go.dev/vuln/GO-2025-4134"
}
],
"release_date": "2025-11-19T20:33:42.795000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-05-11T11:23:46+00:00",
"details": "The container images provided by this update can be downloaded from the\nRed Hat container registry at registry.redhat.io using the \"podman pull\" command.",
"product_ids": [
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:3d4903b8dbe33464c05ce219ee2e945bf1be169efbed73caee5185883c9df508_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:67d65ecfe844febb7afdfcfbdc0a31f3bd9dfb4c3c81f4734a1b146e34d8d5cb_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:a6a8bbdd49272c632edd96e1598d1e697ba3a1dabb8d36086eced4847de59cbb_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:c27690e36faf7db08a6d398cce7dbedcfe74848224a179c7278b62315516dd4a_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:15979"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:3d4903b8dbe33464c05ce219ee2e945bf1be169efbed73caee5185883c9df508_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:67d65ecfe844febb7afdfcfbdc0a31f3bd9dfb4c3c81f4734a1b146e34d8d5cb_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:a6a8bbdd49272c632edd96e1598d1e697ba3a1dabb8d36086eced4847de59cbb_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:c27690e36faf7db08a6d398cce7dbedcfe74848224a179c7278b62315516dd4a_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:02914a917bbea40c35be2cc7dbaf05c5ac1e1bd30b0e82b4ad9a1c58b99a076b_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:2ce063cc246e7694adf066c17390b4c8d95719b2786267a9db64390407648410_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:aeb508e1309d4a811f881f4028e1c370a5431d290aca2c4af5acdf6a58916a7f_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:fa3c9307038f92e351892be9c73cda40a3bab2038904fabcb97dad5568dcec2d_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:0f37c554cc22c9c89cc4c53739b2ef86e84287486e3f7cdbad10a6e53439d596_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:1a8207fe81e8c5bd63568eddddb41dd0da16d8340c5f5ae3615fe46ae864a163_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:9e15073c7782b0194c06e0b420573e49d5719002417faa567c99ee8409ff590d_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:f76307e201d0b2deaf0aa96bc6b62fc4535c8358b06a8e95ec5a8abf10d2da07_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:5c496cafb1e21883677c6dcb9fd7392383325b8529b98648af757545dfe59488_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:b2875bcf5aee1175faa2ab1ce163642e17c4948ff5aa76967d008f75b470fc74_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:df6bf531755753b224999cb9a5f087c96e8a512666589df4763d4a14941a6f5a_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:f7e87de708186099c76426f24b53395340a672e282615164bac73afca3f36454_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:0350448bf1fb15f26c0d092ceb8b0618932f42d30ca4c7c62f2ec1b86c20dd23_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:4c8c8ef82f2f2685d76a9535523c4c93485329aa23328a68426e93789f363b53_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:7fa04ae06b25476b7b2a3f9e21279202571fd8fc5ff5012c980caf3f33edc0a5_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:8b20b6abf0399bbfc970990bc0c5b6dab46c1043ef761519dbbe8213e6fdd169_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:28aae4d07691c86cdfa9bbfcc7b68e1a3304402ac6c65982bfc0f7945cb9a44e_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:3b78f446debe56d01cd96dc3c3ae225a982ee6abdd7d2fabae553cf4c87e471a_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:cbc542505b4784050c96b3fb31a4867b5d94c8a6957b54a8cfad03bc16a19578_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:e0e44241bde7bfbccea69d06e5fd00ad0a0ab569bef6645687bcadcfc00aa5ef_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:5ccb9e878551c910e3a300ab8043fdc4788381c9515dc9dcaa965a738d2de059_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:7559ec0119f673e243361d4e457a8e9687beb3af60a4fd608fa211539b9034c1_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:808082ac26e53bc7f962428d8e67f721654b732eb1d40fc6e272fcb7f045797c_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:bf282440c8e3ce4d38535bb1efdcbc05f0278647d2fc6e2a13c9c28c0c101f79_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Denial of Service via unbounded memory consumption in GSSAPI authentication"
},
{
"cve": "CVE-2025-61729",
"cwe": {
"id": "CWE-1050",
"name": "Excessive Platform Resource Consumption within a Loop"
},
"discovery_date": "2025-12-02T20:01:45.330964+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:02914a917bbea40c35be2cc7dbaf05c5ac1e1bd30b0e82b4ad9a1c58b99a076b_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:2ce063cc246e7694adf066c17390b4c8d95719b2786267a9db64390407648410_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:aeb508e1309d4a811f881f4028e1c370a5431d290aca2c4af5acdf6a58916a7f_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:fa3c9307038f92e351892be9c73cda40a3bab2038904fabcb97dad5568dcec2d_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:0f37c554cc22c9c89cc4c53739b2ef86e84287486e3f7cdbad10a6e53439d596_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:1a8207fe81e8c5bd63568eddddb41dd0da16d8340c5f5ae3615fe46ae864a163_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:9e15073c7782b0194c06e0b420573e49d5719002417faa567c99ee8409ff590d_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:f76307e201d0b2deaf0aa96bc6b62fc4535c8358b06a8e95ec5a8abf10d2da07_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:5c496cafb1e21883677c6dcb9fd7392383325b8529b98648af757545dfe59488_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:b2875bcf5aee1175faa2ab1ce163642e17c4948ff5aa76967d008f75b470fc74_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:df6bf531755753b224999cb9a5f087c96e8a512666589df4763d4a14941a6f5a_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:f7e87de708186099c76426f24b53395340a672e282615164bac73afca3f36454_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:0350448bf1fb15f26c0d092ceb8b0618932f42d30ca4c7c62f2ec1b86c20dd23_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:4c8c8ef82f2f2685d76a9535523c4c93485329aa23328a68426e93789f363b53_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:7fa04ae06b25476b7b2a3f9e21279202571fd8fc5ff5012c980caf3f33edc0a5_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:8b20b6abf0399bbfc970990bc0c5b6dab46c1043ef761519dbbe8213e6fdd169_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:28aae4d07691c86cdfa9bbfcc7b68e1a3304402ac6c65982bfc0f7945cb9a44e_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:3b78f446debe56d01cd96dc3c3ae225a982ee6abdd7d2fabae553cf4c87e471a_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:cbc542505b4784050c96b3fb31a4867b5d94c8a6957b54a8cfad03bc16a19578_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:e0e44241bde7bfbccea69d06e5fd00ad0a0ab569bef6645687bcadcfc00aa5ef_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:5ccb9e878551c910e3a300ab8043fdc4788381c9515dc9dcaa965a738d2de059_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:7559ec0119f673e243361d4e457a8e9687beb3af60a4fd608fa211539b9034c1_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:808082ac26e53bc7f962428d8e67f721654b732eb1d40fc6e272fcb7f045797c_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:bf282440c8e3ce4d38535bb1efdcbc05f0278647d2fc6e2a13c9c28c0c101f79_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2418462"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang. A remote attacker could exploit this vulnerability by providing a specially crafted certificate during the error string construction process within the `HostnameError.Error()` function. This flaw, caused by unbounded string concatenation, leads to excessive resource consumption. Successful exploitation can result in a denial of service (DoS) for the affected system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:3d4903b8dbe33464c05ce219ee2e945bf1be169efbed73caee5185883c9df508_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:67d65ecfe844febb7afdfcfbdc0a31f3bd9dfb4c3c81f4734a1b146e34d8d5cb_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:a6a8bbdd49272c632edd96e1598d1e697ba3a1dabb8d36086eced4847de59cbb_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:c27690e36faf7db08a6d398cce7dbedcfe74848224a179c7278b62315516dd4a_arm64"
],
"known_not_affected": [
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:02914a917bbea40c35be2cc7dbaf05c5ac1e1bd30b0e82b4ad9a1c58b99a076b_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:2ce063cc246e7694adf066c17390b4c8d95719b2786267a9db64390407648410_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:aeb508e1309d4a811f881f4028e1c370a5431d290aca2c4af5acdf6a58916a7f_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:fa3c9307038f92e351892be9c73cda40a3bab2038904fabcb97dad5568dcec2d_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:0f37c554cc22c9c89cc4c53739b2ef86e84287486e3f7cdbad10a6e53439d596_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:1a8207fe81e8c5bd63568eddddb41dd0da16d8340c5f5ae3615fe46ae864a163_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:9e15073c7782b0194c06e0b420573e49d5719002417faa567c99ee8409ff590d_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:f76307e201d0b2deaf0aa96bc6b62fc4535c8358b06a8e95ec5a8abf10d2da07_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:5c496cafb1e21883677c6dcb9fd7392383325b8529b98648af757545dfe59488_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:b2875bcf5aee1175faa2ab1ce163642e17c4948ff5aa76967d008f75b470fc74_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:df6bf531755753b224999cb9a5f087c96e8a512666589df4763d4a14941a6f5a_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:f7e87de708186099c76426f24b53395340a672e282615164bac73afca3f36454_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:0350448bf1fb15f26c0d092ceb8b0618932f42d30ca4c7c62f2ec1b86c20dd23_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:4c8c8ef82f2f2685d76a9535523c4c93485329aa23328a68426e93789f363b53_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:7fa04ae06b25476b7b2a3f9e21279202571fd8fc5ff5012c980caf3f33edc0a5_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:8b20b6abf0399bbfc970990bc0c5b6dab46c1043ef761519dbbe8213e6fdd169_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:28aae4d07691c86cdfa9bbfcc7b68e1a3304402ac6c65982bfc0f7945cb9a44e_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:3b78f446debe56d01cd96dc3c3ae225a982ee6abdd7d2fabae553cf4c87e471a_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:cbc542505b4784050c96b3fb31a4867b5d94c8a6957b54a8cfad03bc16a19578_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:e0e44241bde7bfbccea69d06e5fd00ad0a0ab569bef6645687bcadcfc00aa5ef_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:5ccb9e878551c910e3a300ab8043fdc4788381c9515dc9dcaa965a738d2de059_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:7559ec0119f673e243361d4e457a8e9687beb3af60a4fd608fa211539b9034c1_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:808082ac26e53bc7f962428d8e67f721654b732eb1d40fc6e272fcb7f045797c_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:bf282440c8e3ce4d38535bb1efdcbc05f0278647d2fc6e2a13c9c28c0c101f79_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-61729"
},
{
"category": "external",
"summary": "RHBZ#2418462",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2418462"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-61729",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61729"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-61729",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-61729"
},
{
"category": "external",
"summary": "https://go.dev/cl/725920",
"url": "https://go.dev/cl/725920"
},
{
"category": "external",
"summary": "https://go.dev/issue/76445",
"url": "https://go.dev/issue/76445"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/8FJoBkPddm4",
"url": "https://groups.google.com/g/golang-announce/c/8FJoBkPddm4"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-4155",
"url": "https://pkg.go.dev/vuln/GO-2025-4155"
}
],
"release_date": "2025-12-02T18:54:10.166000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-05-11T11:23:46+00:00",
"details": "The container images provided by this update can be downloaded from the\nRed Hat container registry at registry.redhat.io using the \"podman pull\" command.",
"product_ids": [
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:3d4903b8dbe33464c05ce219ee2e945bf1be169efbed73caee5185883c9df508_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:67d65ecfe844febb7afdfcfbdc0a31f3bd9dfb4c3c81f4734a1b146e34d8d5cb_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:a6a8bbdd49272c632edd96e1598d1e697ba3a1dabb8d36086eced4847de59cbb_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:c27690e36faf7db08a6d398cce7dbedcfe74848224a179c7278b62315516dd4a_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:15979"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:3d4903b8dbe33464c05ce219ee2e945bf1be169efbed73caee5185883c9df508_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:67d65ecfe844febb7afdfcfbdc0a31f3bd9dfb4c3c81f4734a1b146e34d8d5cb_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:a6a8bbdd49272c632edd96e1598d1e697ba3a1dabb8d36086eced4847de59cbb_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:c27690e36faf7db08a6d398cce7dbedcfe74848224a179c7278b62315516dd4a_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:02914a917bbea40c35be2cc7dbaf05c5ac1e1bd30b0e82b4ad9a1c58b99a076b_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:2ce063cc246e7694adf066c17390b4c8d95719b2786267a9db64390407648410_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:aeb508e1309d4a811f881f4028e1c370a5431d290aca2c4af5acdf6a58916a7f_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:fa3c9307038f92e351892be9c73cda40a3bab2038904fabcb97dad5568dcec2d_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:0f37c554cc22c9c89cc4c53739b2ef86e84287486e3f7cdbad10a6e53439d596_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:1a8207fe81e8c5bd63568eddddb41dd0da16d8340c5f5ae3615fe46ae864a163_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:9e15073c7782b0194c06e0b420573e49d5719002417faa567c99ee8409ff590d_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:f76307e201d0b2deaf0aa96bc6b62fc4535c8358b06a8e95ec5a8abf10d2da07_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:5c496cafb1e21883677c6dcb9fd7392383325b8529b98648af757545dfe59488_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:b2875bcf5aee1175faa2ab1ce163642e17c4948ff5aa76967d008f75b470fc74_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:df6bf531755753b224999cb9a5f087c96e8a512666589df4763d4a14941a6f5a_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:f7e87de708186099c76426f24b53395340a672e282615164bac73afca3f36454_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:0350448bf1fb15f26c0d092ceb8b0618932f42d30ca4c7c62f2ec1b86c20dd23_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:4c8c8ef82f2f2685d76a9535523c4c93485329aa23328a68426e93789f363b53_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:7fa04ae06b25476b7b2a3f9e21279202571fd8fc5ff5012c980caf3f33edc0a5_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:8b20b6abf0399bbfc970990bc0c5b6dab46c1043ef761519dbbe8213e6fdd169_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:28aae4d07691c86cdfa9bbfcc7b68e1a3304402ac6c65982bfc0f7945cb9a44e_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:3b78f446debe56d01cd96dc3c3ae225a982ee6abdd7d2fabae553cf4c87e471a_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:cbc542505b4784050c96b3fb31a4867b5d94c8a6957b54a8cfad03bc16a19578_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:e0e44241bde7bfbccea69d06e5fd00ad0a0ab569bef6645687bcadcfc00aa5ef_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:5ccb9e878551c910e3a300ab8043fdc4788381c9515dc9dcaa965a738d2de059_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:7559ec0119f673e243361d4e457a8e9687beb3af60a4fd608fa211539b9034c1_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:808082ac26e53bc7f962428d8e67f721654b732eb1d40fc6e272fcb7f045797c_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:bf282440c8e3ce4d38535bb1efdcbc05f0278647d2fc6e2a13c9c28c0c101f79_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate"
},
{
"cve": "CVE-2025-64718",
"cwe": {
"id": "CWE-1321",
"name": "Improperly Controlled Modification of Object Prototype Attributes (\u0027Prototype Pollution\u0027)"
},
"discovery_date": "2025-11-13T16:01:24.744054+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:02914a917bbea40c35be2cc7dbaf05c5ac1e1bd30b0e82b4ad9a1c58b99a076b_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:2ce063cc246e7694adf066c17390b4c8d95719b2786267a9db64390407648410_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:aeb508e1309d4a811f881f4028e1c370a5431d290aca2c4af5acdf6a58916a7f_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:fa3c9307038f92e351892be9c73cda40a3bab2038904fabcb97dad5568dcec2d_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:0f37c554cc22c9c89cc4c53739b2ef86e84287486e3f7cdbad10a6e53439d596_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:1a8207fe81e8c5bd63568eddddb41dd0da16d8340c5f5ae3615fe46ae864a163_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:9e15073c7782b0194c06e0b420573e49d5719002417faa567c99ee8409ff590d_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:f76307e201d0b2deaf0aa96bc6b62fc4535c8358b06a8e95ec5a8abf10d2da07_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:5c496cafb1e21883677c6dcb9fd7392383325b8529b98648af757545dfe59488_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:b2875bcf5aee1175faa2ab1ce163642e17c4948ff5aa76967d008f75b470fc74_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:df6bf531755753b224999cb9a5f087c96e8a512666589df4763d4a14941a6f5a_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:f7e87de708186099c76426f24b53395340a672e282615164bac73afca3f36454_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:0350448bf1fb15f26c0d092ceb8b0618932f42d30ca4c7c62f2ec1b86c20dd23_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:4c8c8ef82f2f2685d76a9535523c4c93485329aa23328a68426e93789f363b53_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:7fa04ae06b25476b7b2a3f9e21279202571fd8fc5ff5012c980caf3f33edc0a5_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:8b20b6abf0399bbfc970990bc0c5b6dab46c1043ef761519dbbe8213e6fdd169_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:28aae4d07691c86cdfa9bbfcc7b68e1a3304402ac6c65982bfc0f7945cb9a44e_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:3b78f446debe56d01cd96dc3c3ae225a982ee6abdd7d2fabae553cf4c87e471a_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:cbc542505b4784050c96b3fb31a4867b5d94c8a6957b54a8cfad03bc16a19578_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:e0e44241bde7bfbccea69d06e5fd00ad0a0ab569bef6645687bcadcfc00aa5ef_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:5ccb9e878551c910e3a300ab8043fdc4788381c9515dc9dcaa965a738d2de059_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:7559ec0119f673e243361d4e457a8e9687beb3af60a4fd608fa211539b9034c1_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:808082ac26e53bc7f962428d8e67f721654b732eb1d40fc6e272fcb7f045797c_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:bf282440c8e3ce4d38535bb1efdcbc05f0278647d2fc6e2a13c9c28c0c101f79_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2414854"
}
],
"notes": [
{
"category": "description",
"text": "A prototype pollution flaw has been discovered in the js-yaml npm library. It\u0027s possible for an attacker to modify the prototype of the result of a parsed yaml document via prototype pollution (__proto__). All users who parse untrusted yaml documents may be impacted.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "js-yaml: js-yaml prototype pollution in merge",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:3d4903b8dbe33464c05ce219ee2e945bf1be169efbed73caee5185883c9df508_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:67d65ecfe844febb7afdfcfbdc0a31f3bd9dfb4c3c81f4734a1b146e34d8d5cb_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:a6a8bbdd49272c632edd96e1598d1e697ba3a1dabb8d36086eced4847de59cbb_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:c27690e36faf7db08a6d398cce7dbedcfe74848224a179c7278b62315516dd4a_arm64"
],
"known_not_affected": [
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:02914a917bbea40c35be2cc7dbaf05c5ac1e1bd30b0e82b4ad9a1c58b99a076b_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:2ce063cc246e7694adf066c17390b4c8d95719b2786267a9db64390407648410_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:aeb508e1309d4a811f881f4028e1c370a5431d290aca2c4af5acdf6a58916a7f_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:fa3c9307038f92e351892be9c73cda40a3bab2038904fabcb97dad5568dcec2d_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:0f37c554cc22c9c89cc4c53739b2ef86e84287486e3f7cdbad10a6e53439d596_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:1a8207fe81e8c5bd63568eddddb41dd0da16d8340c5f5ae3615fe46ae864a163_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:9e15073c7782b0194c06e0b420573e49d5719002417faa567c99ee8409ff590d_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:f76307e201d0b2deaf0aa96bc6b62fc4535c8358b06a8e95ec5a8abf10d2da07_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:5c496cafb1e21883677c6dcb9fd7392383325b8529b98648af757545dfe59488_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:b2875bcf5aee1175faa2ab1ce163642e17c4948ff5aa76967d008f75b470fc74_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:df6bf531755753b224999cb9a5f087c96e8a512666589df4763d4a14941a6f5a_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:f7e87de708186099c76426f24b53395340a672e282615164bac73afca3f36454_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:0350448bf1fb15f26c0d092ceb8b0618932f42d30ca4c7c62f2ec1b86c20dd23_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:4c8c8ef82f2f2685d76a9535523c4c93485329aa23328a68426e93789f363b53_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:7fa04ae06b25476b7b2a3f9e21279202571fd8fc5ff5012c980caf3f33edc0a5_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:8b20b6abf0399bbfc970990bc0c5b6dab46c1043ef761519dbbe8213e6fdd169_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:28aae4d07691c86cdfa9bbfcc7b68e1a3304402ac6c65982bfc0f7945cb9a44e_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:3b78f446debe56d01cd96dc3c3ae225a982ee6abdd7d2fabae553cf4c87e471a_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:cbc542505b4784050c96b3fb31a4867b5d94c8a6957b54a8cfad03bc16a19578_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:e0e44241bde7bfbccea69d06e5fd00ad0a0ab569bef6645687bcadcfc00aa5ef_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:5ccb9e878551c910e3a300ab8043fdc4788381c9515dc9dcaa965a738d2de059_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:7559ec0119f673e243361d4e457a8e9687beb3af60a4fd608fa211539b9034c1_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:808082ac26e53bc7f962428d8e67f721654b732eb1d40fc6e272fcb7f045797c_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:bf282440c8e3ce4d38535bb1efdcbc05f0278647d2fc6e2a13c9c28c0c101f79_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-64718"
},
{
"category": "external",
"summary": "RHBZ#2414854",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2414854"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-64718",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-64718"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-64718",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-64718"
},
{
"category": "external",
"summary": "https://github.com/nodeca/js-yaml/commit/383665ff4248ec2192d1274e934462bb30426879",
"url": "https://github.com/nodeca/js-yaml/commit/383665ff4248ec2192d1274e934462bb30426879"
},
{
"category": "external",
"summary": "https://github.com/nodeca/js-yaml/security/advisories/GHSA-mh29-5h37-fv8m",
"url": "https://github.com/nodeca/js-yaml/security/advisories/GHSA-mh29-5h37-fv8m"
}
],
"release_date": "2025-11-13T15:32:44.634000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-05-11T11:23:46+00:00",
"details": "The container images provided by this update can be downloaded from the\nRed Hat container registry at registry.redhat.io using the \"podman pull\" command.",
"product_ids": [
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:3d4903b8dbe33464c05ce219ee2e945bf1be169efbed73caee5185883c9df508_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:67d65ecfe844febb7afdfcfbdc0a31f3bd9dfb4c3c81f4734a1b146e34d8d5cb_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:a6a8bbdd49272c632edd96e1598d1e697ba3a1dabb8d36086eced4847de59cbb_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:c27690e36faf7db08a6d398cce7dbedcfe74848224a179c7278b62315516dd4a_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:15979"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:3d4903b8dbe33464c05ce219ee2e945bf1be169efbed73caee5185883c9df508_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:67d65ecfe844febb7afdfcfbdc0a31f3bd9dfb4c3c81f4734a1b146e34d8d5cb_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:a6a8bbdd49272c632edd96e1598d1e697ba3a1dabb8d36086eced4847de59cbb_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:c27690e36faf7db08a6d398cce7dbedcfe74848224a179c7278b62315516dd4a_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:02914a917bbea40c35be2cc7dbaf05c5ac1e1bd30b0e82b4ad9a1c58b99a076b_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:2ce063cc246e7694adf066c17390b4c8d95719b2786267a9db64390407648410_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:aeb508e1309d4a811f881f4028e1c370a5431d290aca2c4af5acdf6a58916a7f_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:fa3c9307038f92e351892be9c73cda40a3bab2038904fabcb97dad5568dcec2d_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:0f37c554cc22c9c89cc4c53739b2ef86e84287486e3f7cdbad10a6e53439d596_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:1a8207fe81e8c5bd63568eddddb41dd0da16d8340c5f5ae3615fe46ae864a163_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:9e15073c7782b0194c06e0b420573e49d5719002417faa567c99ee8409ff590d_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:f76307e201d0b2deaf0aa96bc6b62fc4535c8358b06a8e95ec5a8abf10d2da07_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:5c496cafb1e21883677c6dcb9fd7392383325b8529b98648af757545dfe59488_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:b2875bcf5aee1175faa2ab1ce163642e17c4948ff5aa76967d008f75b470fc74_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:df6bf531755753b224999cb9a5f087c96e8a512666589df4763d4a14941a6f5a_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:f7e87de708186099c76426f24b53395340a672e282615164bac73afca3f36454_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:0350448bf1fb15f26c0d092ceb8b0618932f42d30ca4c7c62f2ec1b86c20dd23_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:4c8c8ef82f2f2685d76a9535523c4c93485329aa23328a68426e93789f363b53_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:7fa04ae06b25476b7b2a3f9e21279202571fd8fc5ff5012c980caf3f33edc0a5_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:8b20b6abf0399bbfc970990bc0c5b6dab46c1043ef761519dbbe8213e6fdd169_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:28aae4d07691c86cdfa9bbfcc7b68e1a3304402ac6c65982bfc0f7945cb9a44e_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:3b78f446debe56d01cd96dc3c3ae225a982ee6abdd7d2fabae553cf4c87e471a_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:cbc542505b4784050c96b3fb31a4867b5d94c8a6957b54a8cfad03bc16a19578_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:e0e44241bde7bfbccea69d06e5fd00ad0a0ab569bef6645687bcadcfc00aa5ef_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:5ccb9e878551c910e3a300ab8043fdc4788381c9515dc9dcaa965a738d2de059_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:7559ec0119f673e243361d4e457a8e9687beb3af60a4fd608fa211539b9034c1_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:808082ac26e53bc7f962428d8e67f721654b732eb1d40fc6e272fcb7f045797c_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:bf282440c8e3ce4d38535bb1efdcbc05f0278647d2fc6e2a13c9c28c0c101f79_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:3d4903b8dbe33464c05ce219ee2e945bf1be169efbed73caee5185883c9df508_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:67d65ecfe844febb7afdfcfbdc0a31f3bd9dfb4c3c81f4734a1b146e34d8d5cb_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:a6a8bbdd49272c632edd96e1598d1e697ba3a1dabb8d36086eced4847de59cbb_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:c27690e36faf7db08a6d398cce7dbedcfe74848224a179c7278b62315516dd4a_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:02914a917bbea40c35be2cc7dbaf05c5ac1e1bd30b0e82b4ad9a1c58b99a076b_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:2ce063cc246e7694adf066c17390b4c8d95719b2786267a9db64390407648410_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:aeb508e1309d4a811f881f4028e1c370a5431d290aca2c4af5acdf6a58916a7f_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:fa3c9307038f92e351892be9c73cda40a3bab2038904fabcb97dad5568dcec2d_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:0f37c554cc22c9c89cc4c53739b2ef86e84287486e3f7cdbad10a6e53439d596_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:1a8207fe81e8c5bd63568eddddb41dd0da16d8340c5f5ae3615fe46ae864a163_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:9e15073c7782b0194c06e0b420573e49d5719002417faa567c99ee8409ff590d_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:f76307e201d0b2deaf0aa96bc6b62fc4535c8358b06a8e95ec5a8abf10d2da07_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:5c496cafb1e21883677c6dcb9fd7392383325b8529b98648af757545dfe59488_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:b2875bcf5aee1175faa2ab1ce163642e17c4948ff5aa76967d008f75b470fc74_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:df6bf531755753b224999cb9a5f087c96e8a512666589df4763d4a14941a6f5a_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:f7e87de708186099c76426f24b53395340a672e282615164bac73afca3f36454_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:0350448bf1fb15f26c0d092ceb8b0618932f42d30ca4c7c62f2ec1b86c20dd23_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:4c8c8ef82f2f2685d76a9535523c4c93485329aa23328a68426e93789f363b53_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:7fa04ae06b25476b7b2a3f9e21279202571fd8fc5ff5012c980caf3f33edc0a5_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:8b20b6abf0399bbfc970990bc0c5b6dab46c1043ef761519dbbe8213e6fdd169_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:28aae4d07691c86cdfa9bbfcc7b68e1a3304402ac6c65982bfc0f7945cb9a44e_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:3b78f446debe56d01cd96dc3c3ae225a982ee6abdd7d2fabae553cf4c87e471a_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:cbc542505b4784050c96b3fb31a4867b5d94c8a6957b54a8cfad03bc16a19578_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:e0e44241bde7bfbccea69d06e5fd00ad0a0ab569bef6645687bcadcfc00aa5ef_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:5ccb9e878551c910e3a300ab8043fdc4788381c9515dc9dcaa965a738d2de059_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:7559ec0119f673e243361d4e457a8e9687beb3af60a4fd608fa211539b9034c1_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:808082ac26e53bc7f962428d8e67f721654b732eb1d40fc6e272fcb7f045797c_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:bf282440c8e3ce4d38535bb1efdcbc05f0278647d2fc6e2a13c9c28c0c101f79_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "js-yaml: js-yaml prototype pollution in merge"
},
{
"cve": "CVE-2025-64756",
"cwe": {
"id": "CWE-78",
"name": "Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)"
},
"discovery_date": "2025-11-17T18:01:28.077927+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:02914a917bbea40c35be2cc7dbaf05c5ac1e1bd30b0e82b4ad9a1c58b99a076b_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:2ce063cc246e7694adf066c17390b4c8d95719b2786267a9db64390407648410_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:aeb508e1309d4a811f881f4028e1c370a5431d290aca2c4af5acdf6a58916a7f_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:fa3c9307038f92e351892be9c73cda40a3bab2038904fabcb97dad5568dcec2d_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:0f37c554cc22c9c89cc4c53739b2ef86e84287486e3f7cdbad10a6e53439d596_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:1a8207fe81e8c5bd63568eddddb41dd0da16d8340c5f5ae3615fe46ae864a163_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:9e15073c7782b0194c06e0b420573e49d5719002417faa567c99ee8409ff590d_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:f76307e201d0b2deaf0aa96bc6b62fc4535c8358b06a8e95ec5a8abf10d2da07_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:5c496cafb1e21883677c6dcb9fd7392383325b8529b98648af757545dfe59488_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:b2875bcf5aee1175faa2ab1ce163642e17c4948ff5aa76967d008f75b470fc74_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:df6bf531755753b224999cb9a5f087c96e8a512666589df4763d4a14941a6f5a_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:f7e87de708186099c76426f24b53395340a672e282615164bac73afca3f36454_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:0350448bf1fb15f26c0d092ceb8b0618932f42d30ca4c7c62f2ec1b86c20dd23_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:4c8c8ef82f2f2685d76a9535523c4c93485329aa23328a68426e93789f363b53_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:7fa04ae06b25476b7b2a3f9e21279202571fd8fc5ff5012c980caf3f33edc0a5_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:8b20b6abf0399bbfc970990bc0c5b6dab46c1043ef761519dbbe8213e6fdd169_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:28aae4d07691c86cdfa9bbfcc7b68e1a3304402ac6c65982bfc0f7945cb9a44e_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:3b78f446debe56d01cd96dc3c3ae225a982ee6abdd7d2fabae553cf4c87e471a_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:cbc542505b4784050c96b3fb31a4867b5d94c8a6957b54a8cfad03bc16a19578_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:e0e44241bde7bfbccea69d06e5fd00ad0a0ab569bef6645687bcadcfc00aa5ef_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:5ccb9e878551c910e3a300ab8043fdc4788381c9515dc9dcaa965a738d2de059_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:7559ec0119f673e243361d4e457a8e9687beb3af60a4fd608fa211539b9034c1_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:808082ac26e53bc7f962428d8e67f721654b732eb1d40fc6e272fcb7f045797c_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:bf282440c8e3ce4d38535bb1efdcbc05f0278647d2fc6e2a13c9c28c0c101f79_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2415451"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in glob. This vulnerability allows arbitrary command execution via processing files with malicious names when the glob command-line interface (CLI) is used with the -c/--cmd option, enabling shell metacharacters to trigger command injection.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "glob: glob: Command Injection Vulnerability via Malicious Filenames",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This flaw in glob allows arbitrary command execution when the `glob` command-line interface is used with the `-c/--cmd` option to process files with malicious names. The vulnerability is triggered by shell metacharacters in filenames, leading to command injection. The glob CLI tool utilizes the -c option to execute shell commands over the files which matched the searched pattern by using the shell:true parameter when creating the subprocess which will further execute the command informed via \u0027-c\u0027 option, this parameter allows the shell meta characters to be used and processed when executing the command. Given that information glob misses to sanitize the file name to eliminate such characters and expressions from the filename, leading to code execution as when performing the shell expansion such characters will be interpreted as shell commands.\n\nTo exploit this vulnerability the targeted system should run the glob CLI over a file with a maliciously crafted filename, additionally the attacker needs to have enough permission to create such file or trick the user to download and process the required file with the glob CLI.\n\nThis flaw is present in the command line interface of the nodejs-glob package. When the package is used by npm, the command line interface is not used at all, so it cannot be triggered. However, the command line interface implementation is still present on the system, but not directly exposed to the user\u0027s $PATH. To reflect this condition, nodejs packages have been rated with a low severity.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:3d4903b8dbe33464c05ce219ee2e945bf1be169efbed73caee5185883c9df508_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:67d65ecfe844febb7afdfcfbdc0a31f3bd9dfb4c3c81f4734a1b146e34d8d5cb_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:a6a8bbdd49272c632edd96e1598d1e697ba3a1dabb8d36086eced4847de59cbb_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:c27690e36faf7db08a6d398cce7dbedcfe74848224a179c7278b62315516dd4a_arm64"
],
"known_not_affected": [
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:02914a917bbea40c35be2cc7dbaf05c5ac1e1bd30b0e82b4ad9a1c58b99a076b_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:2ce063cc246e7694adf066c17390b4c8d95719b2786267a9db64390407648410_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:aeb508e1309d4a811f881f4028e1c370a5431d290aca2c4af5acdf6a58916a7f_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:fa3c9307038f92e351892be9c73cda40a3bab2038904fabcb97dad5568dcec2d_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:0f37c554cc22c9c89cc4c53739b2ef86e84287486e3f7cdbad10a6e53439d596_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:1a8207fe81e8c5bd63568eddddb41dd0da16d8340c5f5ae3615fe46ae864a163_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:9e15073c7782b0194c06e0b420573e49d5719002417faa567c99ee8409ff590d_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:f76307e201d0b2deaf0aa96bc6b62fc4535c8358b06a8e95ec5a8abf10d2da07_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:5c496cafb1e21883677c6dcb9fd7392383325b8529b98648af757545dfe59488_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:b2875bcf5aee1175faa2ab1ce163642e17c4948ff5aa76967d008f75b470fc74_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:df6bf531755753b224999cb9a5f087c96e8a512666589df4763d4a14941a6f5a_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:f7e87de708186099c76426f24b53395340a672e282615164bac73afca3f36454_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:0350448bf1fb15f26c0d092ceb8b0618932f42d30ca4c7c62f2ec1b86c20dd23_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:4c8c8ef82f2f2685d76a9535523c4c93485329aa23328a68426e93789f363b53_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:7fa04ae06b25476b7b2a3f9e21279202571fd8fc5ff5012c980caf3f33edc0a5_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:8b20b6abf0399bbfc970990bc0c5b6dab46c1043ef761519dbbe8213e6fdd169_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:28aae4d07691c86cdfa9bbfcc7b68e1a3304402ac6c65982bfc0f7945cb9a44e_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:3b78f446debe56d01cd96dc3c3ae225a982ee6abdd7d2fabae553cf4c87e471a_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:cbc542505b4784050c96b3fb31a4867b5d94c8a6957b54a8cfad03bc16a19578_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:e0e44241bde7bfbccea69d06e5fd00ad0a0ab569bef6645687bcadcfc00aa5ef_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:5ccb9e878551c910e3a300ab8043fdc4788381c9515dc9dcaa965a738d2de059_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:7559ec0119f673e243361d4e457a8e9687beb3af60a4fd608fa211539b9034c1_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:808082ac26e53bc7f962428d8e67f721654b732eb1d40fc6e272fcb7f045797c_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:bf282440c8e3ce4d38535bb1efdcbc05f0278647d2fc6e2a13c9c28c0c101f79_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-64756"
},
{
"category": "external",
"summary": "RHBZ#2415451",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2415451"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-64756",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-64756"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-64756",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-64756"
},
{
"category": "external",
"summary": "https://github.com/isaacs/node-glob/commit/47473c046b91c67269df7a66eab782a6c2716146",
"url": "https://github.com/isaacs/node-glob/commit/47473c046b91c67269df7a66eab782a6c2716146"
},
{
"category": "external",
"summary": "https://github.com/isaacs/node-glob/security/advisories/GHSA-5j98-mcp5-4vw2",
"url": "https://github.com/isaacs/node-glob/security/advisories/GHSA-5j98-mcp5-4vw2"
}
],
"release_date": "2025-11-17T17:29:08.029000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-05-11T11:23:46+00:00",
"details": "The container images provided by this update can be downloaded from the\nRed Hat container registry at registry.redhat.io using the \"podman pull\" command.",
"product_ids": [
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:3d4903b8dbe33464c05ce219ee2e945bf1be169efbed73caee5185883c9df508_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:67d65ecfe844febb7afdfcfbdc0a31f3bd9dfb4c3c81f4734a1b146e34d8d5cb_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:a6a8bbdd49272c632edd96e1598d1e697ba3a1dabb8d36086eced4847de59cbb_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:c27690e36faf7db08a6d398cce7dbedcfe74848224a179c7278b62315516dd4a_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:15979"
},
{
"category": "workaround",
"details": "To mitigate this issue, avoid using the `glob` command-line interface with the `-c` or `--cmd` option when processing filenames from untrusted sources. If programmatic use of `glob` is necessary, ensure that filenames are thoroughly sanitized before being passed to commands executed with shell interpretation enabled.",
"product_ids": [
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:3d4903b8dbe33464c05ce219ee2e945bf1be169efbed73caee5185883c9df508_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:67d65ecfe844febb7afdfcfbdc0a31f3bd9dfb4c3c81f4734a1b146e34d8d5cb_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:a6a8bbdd49272c632edd96e1598d1e697ba3a1dabb8d36086eced4847de59cbb_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:c27690e36faf7db08a6d398cce7dbedcfe74848224a179c7278b62315516dd4a_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:02914a917bbea40c35be2cc7dbaf05c5ac1e1bd30b0e82b4ad9a1c58b99a076b_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:2ce063cc246e7694adf066c17390b4c8d95719b2786267a9db64390407648410_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:aeb508e1309d4a811f881f4028e1c370a5431d290aca2c4af5acdf6a58916a7f_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:fa3c9307038f92e351892be9c73cda40a3bab2038904fabcb97dad5568dcec2d_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:0f37c554cc22c9c89cc4c53739b2ef86e84287486e3f7cdbad10a6e53439d596_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:1a8207fe81e8c5bd63568eddddb41dd0da16d8340c5f5ae3615fe46ae864a163_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:9e15073c7782b0194c06e0b420573e49d5719002417faa567c99ee8409ff590d_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:f76307e201d0b2deaf0aa96bc6b62fc4535c8358b06a8e95ec5a8abf10d2da07_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:5c496cafb1e21883677c6dcb9fd7392383325b8529b98648af757545dfe59488_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:b2875bcf5aee1175faa2ab1ce163642e17c4948ff5aa76967d008f75b470fc74_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:df6bf531755753b224999cb9a5f087c96e8a512666589df4763d4a14941a6f5a_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:f7e87de708186099c76426f24b53395340a672e282615164bac73afca3f36454_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:0350448bf1fb15f26c0d092ceb8b0618932f42d30ca4c7c62f2ec1b86c20dd23_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:4c8c8ef82f2f2685d76a9535523c4c93485329aa23328a68426e93789f363b53_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:7fa04ae06b25476b7b2a3f9e21279202571fd8fc5ff5012c980caf3f33edc0a5_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:8b20b6abf0399bbfc970990bc0c5b6dab46c1043ef761519dbbe8213e6fdd169_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:28aae4d07691c86cdfa9bbfcc7b68e1a3304402ac6c65982bfc0f7945cb9a44e_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:3b78f446debe56d01cd96dc3c3ae225a982ee6abdd7d2fabae553cf4c87e471a_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:cbc542505b4784050c96b3fb31a4867b5d94c8a6957b54a8cfad03bc16a19578_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:e0e44241bde7bfbccea69d06e5fd00ad0a0ab569bef6645687bcadcfc00aa5ef_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:5ccb9e878551c910e3a300ab8043fdc4788381c9515dc9dcaa965a738d2de059_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:7559ec0119f673e243361d4e457a8e9687beb3af60a4fd608fa211539b9034c1_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:808082ac26e53bc7f962428d8e67f721654b732eb1d40fc6e272fcb7f045797c_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:bf282440c8e3ce4d38535bb1efdcbc05f0278647d2fc6e2a13c9c28c0c101f79_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:3d4903b8dbe33464c05ce219ee2e945bf1be169efbed73caee5185883c9df508_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:67d65ecfe844febb7afdfcfbdc0a31f3bd9dfb4c3c81f4734a1b146e34d8d5cb_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:a6a8bbdd49272c632edd96e1598d1e697ba3a1dabb8d36086eced4847de59cbb_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:c27690e36faf7db08a6d398cce7dbedcfe74848224a179c7278b62315516dd4a_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:02914a917bbea40c35be2cc7dbaf05c5ac1e1bd30b0e82b4ad9a1c58b99a076b_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:2ce063cc246e7694adf066c17390b4c8d95719b2786267a9db64390407648410_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:aeb508e1309d4a811f881f4028e1c370a5431d290aca2c4af5acdf6a58916a7f_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:fa3c9307038f92e351892be9c73cda40a3bab2038904fabcb97dad5568dcec2d_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:0f37c554cc22c9c89cc4c53739b2ef86e84287486e3f7cdbad10a6e53439d596_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:1a8207fe81e8c5bd63568eddddb41dd0da16d8340c5f5ae3615fe46ae864a163_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:9e15073c7782b0194c06e0b420573e49d5719002417faa567c99ee8409ff590d_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:f76307e201d0b2deaf0aa96bc6b62fc4535c8358b06a8e95ec5a8abf10d2da07_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:5c496cafb1e21883677c6dcb9fd7392383325b8529b98648af757545dfe59488_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:b2875bcf5aee1175faa2ab1ce163642e17c4948ff5aa76967d008f75b470fc74_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:df6bf531755753b224999cb9a5f087c96e8a512666589df4763d4a14941a6f5a_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:f7e87de708186099c76426f24b53395340a672e282615164bac73afca3f36454_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:0350448bf1fb15f26c0d092ceb8b0618932f42d30ca4c7c62f2ec1b86c20dd23_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:4c8c8ef82f2f2685d76a9535523c4c93485329aa23328a68426e93789f363b53_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:7fa04ae06b25476b7b2a3f9e21279202571fd8fc5ff5012c980caf3f33edc0a5_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:8b20b6abf0399bbfc970990bc0c5b6dab46c1043ef761519dbbe8213e6fdd169_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:28aae4d07691c86cdfa9bbfcc7b68e1a3304402ac6c65982bfc0f7945cb9a44e_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:3b78f446debe56d01cd96dc3c3ae225a982ee6abdd7d2fabae553cf4c87e471a_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:cbc542505b4784050c96b3fb31a4867b5d94c8a6957b54a8cfad03bc16a19578_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:e0e44241bde7bfbccea69d06e5fd00ad0a0ab569bef6645687bcadcfc00aa5ef_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:5ccb9e878551c910e3a300ab8043fdc4788381c9515dc9dcaa965a738d2de059_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:7559ec0119f673e243361d4e457a8e9687beb3af60a4fd608fa211539b9034c1_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:808082ac26e53bc7f962428d8e67f721654b732eb1d40fc6e272fcb7f045797c_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:bf282440c8e3ce4d38535bb1efdcbc05f0278647d2fc6e2a13c9c28c0c101f79_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "glob: glob: Command Injection Vulnerability via Malicious Filenames"
},
{
"cve": "CVE-2025-68156",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2025-12-16T19:01:42.049157+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:02914a917bbea40c35be2cc7dbaf05c5ac1e1bd30b0e82b4ad9a1c58b99a076b_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:2ce063cc246e7694adf066c17390b4c8d95719b2786267a9db64390407648410_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:aeb508e1309d4a811f881f4028e1c370a5431d290aca2c4af5acdf6a58916a7f_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:fa3c9307038f92e351892be9c73cda40a3bab2038904fabcb97dad5568dcec2d_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:0f37c554cc22c9c89cc4c53739b2ef86e84287486e3f7cdbad10a6e53439d596_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:1a8207fe81e8c5bd63568eddddb41dd0da16d8340c5f5ae3615fe46ae864a163_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:9e15073c7782b0194c06e0b420573e49d5719002417faa567c99ee8409ff590d_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:f76307e201d0b2deaf0aa96bc6b62fc4535c8358b06a8e95ec5a8abf10d2da07_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:5c496cafb1e21883677c6dcb9fd7392383325b8529b98648af757545dfe59488_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:b2875bcf5aee1175faa2ab1ce163642e17c4948ff5aa76967d008f75b470fc74_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:df6bf531755753b224999cb9a5f087c96e8a512666589df4763d4a14941a6f5a_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:f7e87de708186099c76426f24b53395340a672e282615164bac73afca3f36454_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:0350448bf1fb15f26c0d092ceb8b0618932f42d30ca4c7c62f2ec1b86c20dd23_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:4c8c8ef82f2f2685d76a9535523c4c93485329aa23328a68426e93789f363b53_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:7fa04ae06b25476b7b2a3f9e21279202571fd8fc5ff5012c980caf3f33edc0a5_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:8b20b6abf0399bbfc970990bc0c5b6dab46c1043ef761519dbbe8213e6fdd169_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:28aae4d07691c86cdfa9bbfcc7b68e1a3304402ac6c65982bfc0f7945cb9a44e_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:3b78f446debe56d01cd96dc3c3ae225a982ee6abdd7d2fabae553cf4c87e471a_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:cbc542505b4784050c96b3fb31a4867b5d94c8a6957b54a8cfad03bc16a19578_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:e0e44241bde7bfbccea69d06e5fd00ad0a0ab569bef6645687bcadcfc00aa5ef_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:5ccb9e878551c910e3a300ab8043fdc4788381c9515dc9dcaa965a738d2de059_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:7559ec0119f673e243361d4e457a8e9687beb3af60a4fd608fa211539b9034c1_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:808082ac26e53bc7f962428d8e67f721654b732eb1d40fc6e272fcb7f045797c_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:bf282440c8e3ce4d38535bb1efdcbc05f0278647d2fc6e2a13c9c28c0c101f79_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2422891"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Expr, an expression language and expression evaluation for Go. This vulnerability allows a denial of service (DoS) via recursive traversal over user-provided deeply nested or cyclic data structures without enforcing a maximum recursion depth, leading to a stack overflow panic and application crash.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "github.com/expr-lang/expr: Expr: Denial of Service via uncontrolled recursion in expression evaluation",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is rated Important for Red Hat products utilizing the `Expr` Go library because it can lead to a denial-of-service. Exploitation requires an application to evaluate expressions against untrusted or insufficiently validated data structures containing deeply nested or cyclic references, which can cause a stack overflow and application crash. Products that do not process untrusted input with `Expr` are not affected.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:3d4903b8dbe33464c05ce219ee2e945bf1be169efbed73caee5185883c9df508_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:67d65ecfe844febb7afdfcfbdc0a31f3bd9dfb4c3c81f4734a1b146e34d8d5cb_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:a6a8bbdd49272c632edd96e1598d1e697ba3a1dabb8d36086eced4847de59cbb_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:c27690e36faf7db08a6d398cce7dbedcfe74848224a179c7278b62315516dd4a_arm64"
],
"known_not_affected": [
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:02914a917bbea40c35be2cc7dbaf05c5ac1e1bd30b0e82b4ad9a1c58b99a076b_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:2ce063cc246e7694adf066c17390b4c8d95719b2786267a9db64390407648410_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:aeb508e1309d4a811f881f4028e1c370a5431d290aca2c4af5acdf6a58916a7f_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:fa3c9307038f92e351892be9c73cda40a3bab2038904fabcb97dad5568dcec2d_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:0f37c554cc22c9c89cc4c53739b2ef86e84287486e3f7cdbad10a6e53439d596_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:1a8207fe81e8c5bd63568eddddb41dd0da16d8340c5f5ae3615fe46ae864a163_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:9e15073c7782b0194c06e0b420573e49d5719002417faa567c99ee8409ff590d_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:f76307e201d0b2deaf0aa96bc6b62fc4535c8358b06a8e95ec5a8abf10d2da07_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:5c496cafb1e21883677c6dcb9fd7392383325b8529b98648af757545dfe59488_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:b2875bcf5aee1175faa2ab1ce163642e17c4948ff5aa76967d008f75b470fc74_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:df6bf531755753b224999cb9a5f087c96e8a512666589df4763d4a14941a6f5a_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:f7e87de708186099c76426f24b53395340a672e282615164bac73afca3f36454_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:0350448bf1fb15f26c0d092ceb8b0618932f42d30ca4c7c62f2ec1b86c20dd23_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:4c8c8ef82f2f2685d76a9535523c4c93485329aa23328a68426e93789f363b53_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:7fa04ae06b25476b7b2a3f9e21279202571fd8fc5ff5012c980caf3f33edc0a5_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:8b20b6abf0399bbfc970990bc0c5b6dab46c1043ef761519dbbe8213e6fdd169_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:28aae4d07691c86cdfa9bbfcc7b68e1a3304402ac6c65982bfc0f7945cb9a44e_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:3b78f446debe56d01cd96dc3c3ae225a982ee6abdd7d2fabae553cf4c87e471a_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:cbc542505b4784050c96b3fb31a4867b5d94c8a6957b54a8cfad03bc16a19578_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:e0e44241bde7bfbccea69d06e5fd00ad0a0ab569bef6645687bcadcfc00aa5ef_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:5ccb9e878551c910e3a300ab8043fdc4788381c9515dc9dcaa965a738d2de059_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:7559ec0119f673e243361d4e457a8e9687beb3af60a4fd608fa211539b9034c1_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:808082ac26e53bc7f962428d8e67f721654b732eb1d40fc6e272fcb7f045797c_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:bf282440c8e3ce4d38535bb1efdcbc05f0278647d2fc6e2a13c9c28c0c101f79_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-68156"
},
{
"category": "external",
"summary": "RHBZ#2422891",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2422891"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-68156",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68156"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-68156",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-68156"
},
{
"category": "external",
"summary": "https://github.com/expr-lang/expr/pull/870",
"url": "https://github.com/expr-lang/expr/pull/870"
},
{
"category": "external",
"summary": "https://github.com/expr-lang/expr/security/advisories/GHSA-cfpf-hrx2-8rv6",
"url": "https://github.com/expr-lang/expr/security/advisories/GHSA-cfpf-hrx2-8rv6"
}
],
"release_date": "2025-12-16T18:24:11.648000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-05-11T11:23:46+00:00",
"details": "The container images provided by this update can be downloaded from the\nRed Hat container registry at registry.redhat.io using the \"podman pull\" command.",
"product_ids": [
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:3d4903b8dbe33464c05ce219ee2e945bf1be169efbed73caee5185883c9df508_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:67d65ecfe844febb7afdfcfbdc0a31f3bd9dfb4c3c81f4734a1b146e34d8d5cb_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:a6a8bbdd49272c632edd96e1598d1e697ba3a1dabb8d36086eced4847de59cbb_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:c27690e36faf7db08a6d398cce7dbedcfe74848224a179c7278b62315516dd4a_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:15979"
},
{
"category": "workaround",
"details": "To mitigate this issue, applications using the `Expr` library should ensure that evaluation environments do not contain cyclic references. Additionally, externally supplied data structures must be validated or sanitized before being passed to `Expr` for evaluation. As a last-resort defensive measure, expression evaluation can be wrapped with panic recovery to prevent a full process crash.",
"product_ids": [
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:3d4903b8dbe33464c05ce219ee2e945bf1be169efbed73caee5185883c9df508_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:67d65ecfe844febb7afdfcfbdc0a31f3bd9dfb4c3c81f4734a1b146e34d8d5cb_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:a6a8bbdd49272c632edd96e1598d1e697ba3a1dabb8d36086eced4847de59cbb_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:c27690e36faf7db08a6d398cce7dbedcfe74848224a179c7278b62315516dd4a_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:02914a917bbea40c35be2cc7dbaf05c5ac1e1bd30b0e82b4ad9a1c58b99a076b_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:2ce063cc246e7694adf066c17390b4c8d95719b2786267a9db64390407648410_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:aeb508e1309d4a811f881f4028e1c370a5431d290aca2c4af5acdf6a58916a7f_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:fa3c9307038f92e351892be9c73cda40a3bab2038904fabcb97dad5568dcec2d_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:0f37c554cc22c9c89cc4c53739b2ef86e84287486e3f7cdbad10a6e53439d596_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:1a8207fe81e8c5bd63568eddddb41dd0da16d8340c5f5ae3615fe46ae864a163_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:9e15073c7782b0194c06e0b420573e49d5719002417faa567c99ee8409ff590d_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:f76307e201d0b2deaf0aa96bc6b62fc4535c8358b06a8e95ec5a8abf10d2da07_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:5c496cafb1e21883677c6dcb9fd7392383325b8529b98648af757545dfe59488_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:b2875bcf5aee1175faa2ab1ce163642e17c4948ff5aa76967d008f75b470fc74_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:df6bf531755753b224999cb9a5f087c96e8a512666589df4763d4a14941a6f5a_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:f7e87de708186099c76426f24b53395340a672e282615164bac73afca3f36454_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:0350448bf1fb15f26c0d092ceb8b0618932f42d30ca4c7c62f2ec1b86c20dd23_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:4c8c8ef82f2f2685d76a9535523c4c93485329aa23328a68426e93789f363b53_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:7fa04ae06b25476b7b2a3f9e21279202571fd8fc5ff5012c980caf3f33edc0a5_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:8b20b6abf0399bbfc970990bc0c5b6dab46c1043ef761519dbbe8213e6fdd169_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:28aae4d07691c86cdfa9bbfcc7b68e1a3304402ac6c65982bfc0f7945cb9a44e_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:3b78f446debe56d01cd96dc3c3ae225a982ee6abdd7d2fabae553cf4c87e471a_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:cbc542505b4784050c96b3fb31a4867b5d94c8a6957b54a8cfad03bc16a19578_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:e0e44241bde7bfbccea69d06e5fd00ad0a0ab569bef6645687bcadcfc00aa5ef_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:5ccb9e878551c910e3a300ab8043fdc4788381c9515dc9dcaa965a738d2de059_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:7559ec0119f673e243361d4e457a8e9687beb3af60a4fd608fa211539b9034c1_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:808082ac26e53bc7f962428d8e67f721654b732eb1d40fc6e272fcb7f045797c_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:bf282440c8e3ce4d38535bb1efdcbc05f0278647d2fc6e2a13c9c28c0c101f79_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:3d4903b8dbe33464c05ce219ee2e945bf1be169efbed73caee5185883c9df508_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:67d65ecfe844febb7afdfcfbdc0a31f3bd9dfb4c3c81f4734a1b146e34d8d5cb_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:a6a8bbdd49272c632edd96e1598d1e697ba3a1dabb8d36086eced4847de59cbb_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:c27690e36faf7db08a6d398cce7dbedcfe74848224a179c7278b62315516dd4a_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:02914a917bbea40c35be2cc7dbaf05c5ac1e1bd30b0e82b4ad9a1c58b99a076b_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:2ce063cc246e7694adf066c17390b4c8d95719b2786267a9db64390407648410_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:aeb508e1309d4a811f881f4028e1c370a5431d290aca2c4af5acdf6a58916a7f_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:fa3c9307038f92e351892be9c73cda40a3bab2038904fabcb97dad5568dcec2d_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:0f37c554cc22c9c89cc4c53739b2ef86e84287486e3f7cdbad10a6e53439d596_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:1a8207fe81e8c5bd63568eddddb41dd0da16d8340c5f5ae3615fe46ae864a163_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:9e15073c7782b0194c06e0b420573e49d5719002417faa567c99ee8409ff590d_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:f76307e201d0b2deaf0aa96bc6b62fc4535c8358b06a8e95ec5a8abf10d2da07_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:5c496cafb1e21883677c6dcb9fd7392383325b8529b98648af757545dfe59488_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:b2875bcf5aee1175faa2ab1ce163642e17c4948ff5aa76967d008f75b470fc74_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:df6bf531755753b224999cb9a5f087c96e8a512666589df4763d4a14941a6f5a_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:f7e87de708186099c76426f24b53395340a672e282615164bac73afca3f36454_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:0350448bf1fb15f26c0d092ceb8b0618932f42d30ca4c7c62f2ec1b86c20dd23_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:4c8c8ef82f2f2685d76a9535523c4c93485329aa23328a68426e93789f363b53_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:7fa04ae06b25476b7b2a3f9e21279202571fd8fc5ff5012c980caf3f33edc0a5_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:8b20b6abf0399bbfc970990bc0c5b6dab46c1043ef761519dbbe8213e6fdd169_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:28aae4d07691c86cdfa9bbfcc7b68e1a3304402ac6c65982bfc0f7945cb9a44e_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:3b78f446debe56d01cd96dc3c3ae225a982ee6abdd7d2fabae553cf4c87e471a_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:cbc542505b4784050c96b3fb31a4867b5d94c8a6957b54a8cfad03bc16a19578_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:e0e44241bde7bfbccea69d06e5fd00ad0a0ab569bef6645687bcadcfc00aa5ef_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:5ccb9e878551c910e3a300ab8043fdc4788381c9515dc9dcaa965a738d2de059_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:7559ec0119f673e243361d4e457a8e9687beb3af60a4fd608fa211539b9034c1_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:808082ac26e53bc7f962428d8e67f721654b732eb1d40fc6e272fcb7f045797c_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:bf282440c8e3ce4d38535bb1efdcbc05f0278647d2fc6e2a13c9c28c0c101f79_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "github.com/expr-lang/expr: Expr: Denial of Service via uncontrolled recursion in expression evaluation"
}
]
}
RHSA-2026:26411
Vulnerability from csaf_redhat - Published: 2026-06-16 16:32 - Updated: 2026-07-03 18:02A flaw was found in nanoid. Affected versions of nanoid mishandles non-integer values. When nanoid is called with a fractional value, there were a number of undesirable effects: - In browser and non-secure, the code infinite loops on while (size--) - In node, the value of poolOffset becomes fractional, causing calls to nanoid to return zeroes until the pool is next filled: when i is initialized to poolOffset, pool[i] & 63 -> undefined & 63 -> 0 - If the first call in node is a fractional argument, the initial buffer allocation fails with an error The highest impact of this issue system availability.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:1eb37889b6fd96e9bb95257e30918212f290caf50d9dbe76b6e46af067cdeda6_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:8705162c817322ffdabfee74c5fec3ce4f37be667f46634981cb66db0354ef10_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:b73e4453cb4a353d458ce8fe0641dfd1314ba383d836f1631e0cca5d9ffdca4e_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:fa557386c42c9144dcef16957fc0f02b6e631d037cb982c70a043ce11d760556_amd64 | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:4275a746d036f4a674f2a41c584d1061160392818c0bf47f1e831034654c3c26_ppc64le | — | ||
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:6cc5bc1fe92aecfb16bb3b6ccf833d06dc4484f8f7c9ffb7bedc3b3e49ace7b6_arm64 | — | ||
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:b1c91e9df4b0bb9437394b92444480d6417a39bb46c8474d8c8027ab01732ca4_s390x | — | ||
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:b839e918e2b695ee22e954273f016c6ecdebc1f6048e538560b7162f21f9b83a_amd64 | — | ||
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:10d6f4417f63579b5ad0c2642e68049bf4b0cbc07393f05f5ccd6d93ad9b4551_arm64 | — | ||
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:b413d37ad30595df599c3aa8c7dbfad08acc6fa9a59e5300d6e66746d0ed7c92_amd64 | — | ||
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:ed69dc576cf04d5ed270a4a271aa89a5476b46d58a85c937f1c63d6680b08b73_ppc64le | — | ||
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:f73c95e3c84116b5fb7320af22e69d252df69d4559f4ce7bdfd59f42902338c7_s390x | — | ||
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:41e5ab72e781b1baa72b7158b2fb6af247c52042f828b496a15ff78adde413a3_s390x | — | ||
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:498e05a439ac63b3a42882dd908d086078f697ff8c29dc2effedec8b26dd6521_ppc64le | — | ||
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:5b0ca20174d1c6cdb3229bf625a906acf64509575c3092895e341ec301c5e92e_arm64 | — | ||
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:a214782e432451ca21a5042abd90bf44c57ed01563dfa4d1b81ef72f38ef2265_amd64 | — | ||
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:09758d53ef928e8740a95a31572462681a0f70c1c2a6eaa6a72a45fddf4538b7_amd64 | — | ||
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:5f4554659280456cba1fb0078dceb46964a9759f1c5ec0a8fa5d4a6f2bc4889f_s390x | — | ||
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:8afff49beebd4fd88ccf687a421bca80c6d3295a38ef9fcef92ab2049d5f78db_ppc64le | — | ||
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:be1e659b4f556e0dd65aa36141fa4ab940c5bdee4cf96e1425addb95330c9a09_arm64 | — | ||
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:01f59a1b847d03122126fb3db62daa1e924d2bed5da9506061013800085c100b_ppc64le | — | ||
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:10ed1c8ea558924ddfa1d3ab6a43d34a6edd16e09dac44d593487bc22b2fc7fc_arm64 | — | ||
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:94f30db2064d0d62776af04715a67f90d3fb852855c123eff51285122e296328_s390x | — | ||
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:f58c4b24482819abd2cb67f30d3e1034d61dd85a043f76bc3f487e48941bd201_amd64 | — | ||
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:087c99d8838e9c2bd9a298fc320e954ea27203bbceaced070930c87f8a6581a8_arm64 | — | ||
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:94a7dea2910f1f440c42c143f930886b529b00a3d6a0eab08d06596f157977a9_ppc64le | — | ||
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:e40d93d9d76fe8aa344905015d75ae13f94622f6e64de432b73af1930136f8de_amd64 | — | ||
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:e5244c1382ad165701a9e156618d8452d78e70675d33668cbdaf6d93f99a58f1_s390x | — |
A flaw in golang.org/x/crypto/ssh/agent causes the SSH agent client to panic when a peer responds with the generic SSH_AGENT_SUCCESS (0x06) message to requests expecting typed replies (e.g., List, Sign). The unmarshal layer produces an unexpected message type, which the client code does not handle, leading to panic("unreachable") or a nil-pointer dereference. A malicious agent or forwarded connection can exploit this to terminate the client process.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:10d6f4417f63579b5ad0c2642e68049bf4b0cbc07393f05f5ccd6d93ad9b4551_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:b413d37ad30595df599c3aa8c7dbfad08acc6fa9a59e5300d6e66746d0ed7c92_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:ed69dc576cf04d5ed270a4a271aa89a5476b46d58a85c937f1c63d6680b08b73_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:f73c95e3c84116b5fb7320af22e69d252df69d4559f4ce7bdfd59f42902338c7_s390x | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:4275a746d036f4a674f2a41c584d1061160392818c0bf47f1e831034654c3c26_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:6cc5bc1fe92aecfb16bb3b6ccf833d06dc4484f8f7c9ffb7bedc3b3e49ace7b6_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:b1c91e9df4b0bb9437394b92444480d6417a39bb46c8474d8c8027ab01732ca4_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:b839e918e2b695ee22e954273f016c6ecdebc1f6048e538560b7162f21f9b83a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:41e5ab72e781b1baa72b7158b2fb6af247c52042f828b496a15ff78adde413a3_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:498e05a439ac63b3a42882dd908d086078f697ff8c29dc2effedec8b26dd6521_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:5b0ca20174d1c6cdb3229bf625a906acf64509575c3092895e341ec301c5e92e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:a214782e432451ca21a5042abd90bf44c57ed01563dfa4d1b81ef72f38ef2265_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:09758d53ef928e8740a95a31572462681a0f70c1c2a6eaa6a72a45fddf4538b7_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:5f4554659280456cba1fb0078dceb46964a9759f1c5ec0a8fa5d4a6f2bc4889f_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:8afff49beebd4fd88ccf687a421bca80c6d3295a38ef9fcef92ab2049d5f78db_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:be1e659b4f556e0dd65aa36141fa4ab940c5bdee4cf96e1425addb95330c9a09_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:1eb37889b6fd96e9bb95257e30918212f290caf50d9dbe76b6e46af067cdeda6_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:8705162c817322ffdabfee74c5fec3ce4f37be667f46634981cb66db0354ef10_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:b73e4453cb4a353d458ce8fe0641dfd1314ba383d836f1631e0cca5d9ffdca4e_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:fa557386c42c9144dcef16957fc0f02b6e631d037cb982c70a043ce11d760556_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:01f59a1b847d03122126fb3db62daa1e924d2bed5da9506061013800085c100b_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:10ed1c8ea558924ddfa1d3ab6a43d34a6edd16e09dac44d593487bc22b2fc7fc_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:94f30db2064d0d62776af04715a67f90d3fb852855c123eff51285122e296328_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:f58c4b24482819abd2cb67f30d3e1034d61dd85a043f76bc3f487e48941bd201_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:087c99d8838e9c2bd9a298fc320e954ea27203bbceaced070930c87f8a6581a8_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:94a7dea2910f1f440c42c143f930886b529b00a3d6a0eab08d06596f157977a9_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:e40d93d9d76fe8aa344905015d75ae13f94622f6e64de432b73af1930136f8de_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:e5244c1382ad165701a9e156618d8452d78e70675d33668cbdaf6d93f99a58f1_s390x | — |
Workaround
|
A flaw was found in the SSH Agent servers component (golang.org/x/crypto/ssh/agent). This vulnerability allows a remote attacker to cause a denial of service (DoS) by sending a specially crafted, malformed message during new identity requests. The server fails to validate the size of these messages, leading to an out-of-bounds read that can cause the program to panic and terminate.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:10d6f4417f63579b5ad0c2642e68049bf4b0cbc07393f05f5ccd6d93ad9b4551_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:b413d37ad30595df599c3aa8c7dbfad08acc6fa9a59e5300d6e66746d0ed7c92_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:ed69dc576cf04d5ed270a4a271aa89a5476b46d58a85c937f1c63d6680b08b73_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:f73c95e3c84116b5fb7320af22e69d252df69d4559f4ce7bdfd59f42902338c7_s390x | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:4275a746d036f4a674f2a41c584d1061160392818c0bf47f1e831034654c3c26_ppc64le | — | ||
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:6cc5bc1fe92aecfb16bb3b6ccf833d06dc4484f8f7c9ffb7bedc3b3e49ace7b6_arm64 | — | ||
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:b1c91e9df4b0bb9437394b92444480d6417a39bb46c8474d8c8027ab01732ca4_s390x | — | ||
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:b839e918e2b695ee22e954273f016c6ecdebc1f6048e538560b7162f21f9b83a_amd64 | — | ||
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:41e5ab72e781b1baa72b7158b2fb6af247c52042f828b496a15ff78adde413a3_s390x | — | ||
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:498e05a439ac63b3a42882dd908d086078f697ff8c29dc2effedec8b26dd6521_ppc64le | — | ||
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:5b0ca20174d1c6cdb3229bf625a906acf64509575c3092895e341ec301c5e92e_arm64 | — | ||
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:a214782e432451ca21a5042abd90bf44c57ed01563dfa4d1b81ef72f38ef2265_amd64 | — | ||
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:09758d53ef928e8740a95a31572462681a0f70c1c2a6eaa6a72a45fddf4538b7_amd64 | — | ||
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:5f4554659280456cba1fb0078dceb46964a9759f1c5ec0a8fa5d4a6f2bc4889f_s390x | — | ||
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:8afff49beebd4fd88ccf687a421bca80c6d3295a38ef9fcef92ab2049d5f78db_ppc64le | — | ||
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:be1e659b4f556e0dd65aa36141fa4ab940c5bdee4cf96e1425addb95330c9a09_arm64 | — | ||
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:1eb37889b6fd96e9bb95257e30918212f290caf50d9dbe76b6e46af067cdeda6_arm64 | — | ||
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:8705162c817322ffdabfee74c5fec3ce4f37be667f46634981cb66db0354ef10_ppc64le | — | ||
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:b73e4453cb4a353d458ce8fe0641dfd1314ba383d836f1631e0cca5d9ffdca4e_s390x | — | ||
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:fa557386c42c9144dcef16957fc0f02b6e631d037cb982c70a043ce11d760556_amd64 | — | ||
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:01f59a1b847d03122126fb3db62daa1e924d2bed5da9506061013800085c100b_ppc64le | — | ||
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:10ed1c8ea558924ddfa1d3ab6a43d34a6edd16e09dac44d593487bc22b2fc7fc_arm64 | — | ||
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:94f30db2064d0d62776af04715a67f90d3fb852855c123eff51285122e296328_s390x | — | ||
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:f58c4b24482819abd2cb67f30d3e1034d61dd85a043f76bc3f487e48941bd201_amd64 | — | ||
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:087c99d8838e9c2bd9a298fc320e954ea27203bbceaced070930c87f8a6581a8_arm64 | — | ||
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:94a7dea2910f1f440c42c143f930886b529b00a3d6a0eab08d06596f157977a9_ppc64le | — | ||
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:e40d93d9d76fe8aa344905015d75ae13f94622f6e64de432b73af1930136f8de_amd64 | — | ||
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:e5244c1382ad165701a9e156618d8452d78e70675d33668cbdaf6d93f99a58f1_s390x | — |
A flaw was found in golang.org/x/crypto/ssh. An attacker can exploit this vulnerability by sending specially crafted GSSAPI (Generic Security Service Application Program Interface) authentication requests to an SSH (Secure Shell) server. The server fails to validate the number of mechanisms specified in these requests, leading to unbounded memory consumption. This can result in a Denial of Service (DoS), making the SSH server unavailable to legitimate users.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:10d6f4417f63579b5ad0c2642e68049bf4b0cbc07393f05f5ccd6d93ad9b4551_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:b413d37ad30595df599c3aa8c7dbfad08acc6fa9a59e5300d6e66746d0ed7c92_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:ed69dc576cf04d5ed270a4a271aa89a5476b46d58a85c937f1c63d6680b08b73_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:f73c95e3c84116b5fb7320af22e69d252df69d4559f4ce7bdfd59f42902338c7_s390x | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:4275a746d036f4a674f2a41c584d1061160392818c0bf47f1e831034654c3c26_ppc64le | — | ||
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:6cc5bc1fe92aecfb16bb3b6ccf833d06dc4484f8f7c9ffb7bedc3b3e49ace7b6_arm64 | — | ||
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:b1c91e9df4b0bb9437394b92444480d6417a39bb46c8474d8c8027ab01732ca4_s390x | — | ||
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:b839e918e2b695ee22e954273f016c6ecdebc1f6048e538560b7162f21f9b83a_amd64 | — | ||
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:41e5ab72e781b1baa72b7158b2fb6af247c52042f828b496a15ff78adde413a3_s390x | — | ||
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:498e05a439ac63b3a42882dd908d086078f697ff8c29dc2effedec8b26dd6521_ppc64le | — | ||
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:5b0ca20174d1c6cdb3229bf625a906acf64509575c3092895e341ec301c5e92e_arm64 | — | ||
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:a214782e432451ca21a5042abd90bf44c57ed01563dfa4d1b81ef72f38ef2265_amd64 | — | ||
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:09758d53ef928e8740a95a31572462681a0f70c1c2a6eaa6a72a45fddf4538b7_amd64 | — | ||
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:5f4554659280456cba1fb0078dceb46964a9759f1c5ec0a8fa5d4a6f2bc4889f_s390x | — | ||
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:8afff49beebd4fd88ccf687a421bca80c6d3295a38ef9fcef92ab2049d5f78db_ppc64le | — | ||
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:be1e659b4f556e0dd65aa36141fa4ab940c5bdee4cf96e1425addb95330c9a09_arm64 | — | ||
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:1eb37889b6fd96e9bb95257e30918212f290caf50d9dbe76b6e46af067cdeda6_arm64 | — | ||
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:8705162c817322ffdabfee74c5fec3ce4f37be667f46634981cb66db0354ef10_ppc64le | — | ||
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:b73e4453cb4a353d458ce8fe0641dfd1314ba383d836f1631e0cca5d9ffdca4e_s390x | — | ||
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:fa557386c42c9144dcef16957fc0f02b6e631d037cb982c70a043ce11d760556_amd64 | — | ||
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:01f59a1b847d03122126fb3db62daa1e924d2bed5da9506061013800085c100b_ppc64le | — | ||
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:10ed1c8ea558924ddfa1d3ab6a43d34a6edd16e09dac44d593487bc22b2fc7fc_arm64 | — | ||
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:94f30db2064d0d62776af04715a67f90d3fb852855c123eff51285122e296328_s390x | — | ||
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:f58c4b24482819abd2cb67f30d3e1034d61dd85a043f76bc3f487e48941bd201_amd64 | — | ||
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:087c99d8838e9c2bd9a298fc320e954ea27203bbceaced070930c87f8a6581a8_arm64 | — | ||
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:94a7dea2910f1f440c42c143f930886b529b00a3d6a0eab08d06596f157977a9_ppc64le | — | ||
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:e40d93d9d76fe8aa344905015d75ae13f94622f6e64de432b73af1930136f8de_amd64 | — | ||
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:e5244c1382ad165701a9e156618d8452d78e70675d33668cbdaf6d93f99a58f1_s390x | — |
A symlink validation bypass flaw has been discovered in the npm tar-fs library. Affected versions are vulnerable to a symlink validation bypass if the destination directory is predictable with a specific tarball.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:1eb37889b6fd96e9bb95257e30918212f290caf50d9dbe76b6e46af067cdeda6_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:8705162c817322ffdabfee74c5fec3ce4f37be667f46634981cb66db0354ef10_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:b73e4453cb4a353d458ce8fe0641dfd1314ba383d836f1631e0cca5d9ffdca4e_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:fa557386c42c9144dcef16957fc0f02b6e631d037cb982c70a043ce11d760556_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:4275a746d036f4a674f2a41c584d1061160392818c0bf47f1e831034654c3c26_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:6cc5bc1fe92aecfb16bb3b6ccf833d06dc4484f8f7c9ffb7bedc3b3e49ace7b6_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:b1c91e9df4b0bb9437394b92444480d6417a39bb46c8474d8c8027ab01732ca4_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:b839e918e2b695ee22e954273f016c6ecdebc1f6048e538560b7162f21f9b83a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:10d6f4417f63579b5ad0c2642e68049bf4b0cbc07393f05f5ccd6d93ad9b4551_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:b413d37ad30595df599c3aa8c7dbfad08acc6fa9a59e5300d6e66746d0ed7c92_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:ed69dc576cf04d5ed270a4a271aa89a5476b46d58a85c937f1c63d6680b08b73_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:f73c95e3c84116b5fb7320af22e69d252df69d4559f4ce7bdfd59f42902338c7_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:41e5ab72e781b1baa72b7158b2fb6af247c52042f828b496a15ff78adde413a3_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:498e05a439ac63b3a42882dd908d086078f697ff8c29dc2effedec8b26dd6521_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:5b0ca20174d1c6cdb3229bf625a906acf64509575c3092895e341ec301c5e92e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:a214782e432451ca21a5042abd90bf44c57ed01563dfa4d1b81ef72f38ef2265_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:09758d53ef928e8740a95a31572462681a0f70c1c2a6eaa6a72a45fddf4538b7_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:5f4554659280456cba1fb0078dceb46964a9759f1c5ec0a8fa5d4a6f2bc4889f_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:8afff49beebd4fd88ccf687a421bca80c6d3295a38ef9fcef92ab2049d5f78db_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:be1e659b4f556e0dd65aa36141fa4ab940c5bdee4cf96e1425addb95330c9a09_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:01f59a1b847d03122126fb3db62daa1e924d2bed5da9506061013800085c100b_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:10ed1c8ea558924ddfa1d3ab6a43d34a6edd16e09dac44d593487bc22b2fc7fc_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:94f30db2064d0d62776af04715a67f90d3fb852855c123eff51285122e296328_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:f58c4b24482819abd2cb67f30d3e1034d61dd85a043f76bc3f487e48941bd201_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:087c99d8838e9c2bd9a298fc320e954ea27203bbceaced070930c87f8a6581a8_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:94a7dea2910f1f440c42c143f930886b529b00a3d6a0eab08d06596f157977a9_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:e40d93d9d76fe8aa344905015d75ae13f94622f6e64de432b73af1930136f8de_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:e5244c1382ad165701a9e156618d8452d78e70675d33668cbdaf6d93f99a58f1_s390x | — |
Workaround
|
A prototype pollution flaw has been discovered in the js-yaml npm library. It's possible for an attacker to modify the prototype of the result of a parsed yaml document via prototype pollution (__proto__). All users who parse untrusted yaml documents may be impacted.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:10d6f4417f63579b5ad0c2642e68049bf4b0cbc07393f05f5ccd6d93ad9b4551_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:b413d37ad30595df599c3aa8c7dbfad08acc6fa9a59e5300d6e66746d0ed7c92_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:ed69dc576cf04d5ed270a4a271aa89a5476b46d58a85c937f1c63d6680b08b73_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:f73c95e3c84116b5fb7320af22e69d252df69d4559f4ce7bdfd59f42902338c7_s390x | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:4275a746d036f4a674f2a41c584d1061160392818c0bf47f1e831034654c3c26_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:6cc5bc1fe92aecfb16bb3b6ccf833d06dc4484f8f7c9ffb7bedc3b3e49ace7b6_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:b1c91e9df4b0bb9437394b92444480d6417a39bb46c8474d8c8027ab01732ca4_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:b839e918e2b695ee22e954273f016c6ecdebc1f6048e538560b7162f21f9b83a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:41e5ab72e781b1baa72b7158b2fb6af247c52042f828b496a15ff78adde413a3_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:498e05a439ac63b3a42882dd908d086078f697ff8c29dc2effedec8b26dd6521_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:5b0ca20174d1c6cdb3229bf625a906acf64509575c3092895e341ec301c5e92e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:a214782e432451ca21a5042abd90bf44c57ed01563dfa4d1b81ef72f38ef2265_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:09758d53ef928e8740a95a31572462681a0f70c1c2a6eaa6a72a45fddf4538b7_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:5f4554659280456cba1fb0078dceb46964a9759f1c5ec0a8fa5d4a6f2bc4889f_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:8afff49beebd4fd88ccf687a421bca80c6d3295a38ef9fcef92ab2049d5f78db_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:be1e659b4f556e0dd65aa36141fa4ab940c5bdee4cf96e1425addb95330c9a09_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:1eb37889b6fd96e9bb95257e30918212f290caf50d9dbe76b6e46af067cdeda6_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:8705162c817322ffdabfee74c5fec3ce4f37be667f46634981cb66db0354ef10_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:b73e4453cb4a353d458ce8fe0641dfd1314ba383d836f1631e0cca5d9ffdca4e_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:fa557386c42c9144dcef16957fc0f02b6e631d037cb982c70a043ce11d760556_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:01f59a1b847d03122126fb3db62daa1e924d2bed5da9506061013800085c100b_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:10ed1c8ea558924ddfa1d3ab6a43d34a6edd16e09dac44d593487bc22b2fc7fc_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:94f30db2064d0d62776af04715a67f90d3fb852855c123eff51285122e296328_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:f58c4b24482819abd2cb67f30d3e1034d61dd85a043f76bc3f487e48941bd201_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:087c99d8838e9c2bd9a298fc320e954ea27203bbceaced070930c87f8a6581a8_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:94a7dea2910f1f440c42c143f930886b529b00a3d6a0eab08d06596f157977a9_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:e40d93d9d76fe8aa344905015d75ae13f94622f6e64de432b73af1930136f8de_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:e5244c1382ad165701a9e156618d8452d78e70675d33668cbdaf6d93f99a58f1_s390x | — |
Workaround
|
A flaw was found in glob. This vulnerability allows arbitrary command execution via processing files with malicious names when the glob command-line interface (CLI) is used with the -c/--cmd option, enabling shell metacharacters to trigger command injection.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:10d6f4417f63579b5ad0c2642e68049bf4b0cbc07393f05f5ccd6d93ad9b4551_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:b413d37ad30595df599c3aa8c7dbfad08acc6fa9a59e5300d6e66746d0ed7c92_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:ed69dc576cf04d5ed270a4a271aa89a5476b46d58a85c937f1c63d6680b08b73_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:f73c95e3c84116b5fb7320af22e69d252df69d4559f4ce7bdfd59f42902338c7_s390x | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:4275a746d036f4a674f2a41c584d1061160392818c0bf47f1e831034654c3c26_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:6cc5bc1fe92aecfb16bb3b6ccf833d06dc4484f8f7c9ffb7bedc3b3e49ace7b6_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:b1c91e9df4b0bb9437394b92444480d6417a39bb46c8474d8c8027ab01732ca4_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:b839e918e2b695ee22e954273f016c6ecdebc1f6048e538560b7162f21f9b83a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:41e5ab72e781b1baa72b7158b2fb6af247c52042f828b496a15ff78adde413a3_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:498e05a439ac63b3a42882dd908d086078f697ff8c29dc2effedec8b26dd6521_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:5b0ca20174d1c6cdb3229bf625a906acf64509575c3092895e341ec301c5e92e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:a214782e432451ca21a5042abd90bf44c57ed01563dfa4d1b81ef72f38ef2265_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:09758d53ef928e8740a95a31572462681a0f70c1c2a6eaa6a72a45fddf4538b7_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:5f4554659280456cba1fb0078dceb46964a9759f1c5ec0a8fa5d4a6f2bc4889f_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:8afff49beebd4fd88ccf687a421bca80c6d3295a38ef9fcef92ab2049d5f78db_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:be1e659b4f556e0dd65aa36141fa4ab940c5bdee4cf96e1425addb95330c9a09_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:1eb37889b6fd96e9bb95257e30918212f290caf50d9dbe76b6e46af067cdeda6_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:8705162c817322ffdabfee74c5fec3ce4f37be667f46634981cb66db0354ef10_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:b73e4453cb4a353d458ce8fe0641dfd1314ba383d836f1631e0cca5d9ffdca4e_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:fa557386c42c9144dcef16957fc0f02b6e631d037cb982c70a043ce11d760556_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:01f59a1b847d03122126fb3db62daa1e924d2bed5da9506061013800085c100b_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:10ed1c8ea558924ddfa1d3ab6a43d34a6edd16e09dac44d593487bc22b2fc7fc_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:94f30db2064d0d62776af04715a67f90d3fb852855c123eff51285122e296328_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:f58c4b24482819abd2cb67f30d3e1034d61dd85a043f76bc3f487e48941bd201_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:087c99d8838e9c2bd9a298fc320e954ea27203bbceaced070930c87f8a6581a8_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:94a7dea2910f1f440c42c143f930886b529b00a3d6a0eab08d06596f157977a9_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:e40d93d9d76fe8aa344905015d75ae13f94622f6e64de432b73af1930136f8de_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:e5244c1382ad165701a9e156618d8452d78e70675d33668cbdaf6d93f99a58f1_s390x | — |
Workaround
|
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "A new version of Red Hat build of Ceph Storage has been released",
"title": "Topic"
},
{
"category": "general",
"text": "The Red Hat Storage Ceph container images are based on the latest ubi9 base image and Ceph 9.0.\nThis release updates to the latest version.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2026:26411",
"url": "https://access.redhat.com/errata/RHSA-2026:26411"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-55565",
"url": "https://access.redhat.com/security/cve/CVE-2024-55565"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-47913",
"url": "https://access.redhat.com/security/cve/CVE-2025-47913"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-47914",
"url": "https://access.redhat.com/security/cve/CVE-2025-47914"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-58181",
"url": "https://access.redhat.com/security/cve/CVE-2025-58181"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-59343",
"url": "https://access.redhat.com/security/cve/CVE-2025-59343"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-64718",
"url": "https://access.redhat.com/security/cve/CVE-2025-64718"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-64756",
"url": "https://access.redhat.com/security/cve/CVE-2025-64756"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/",
"url": "https://access.redhat.com/security/updates/classification/"
},
{
"category": "external",
"summary": "https://docs.redhat.com/en/documentation/red_hat_ceph_storage/",
"url": "https://docs.redhat.com/en/documentation/red_hat_ceph_storage/"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_26411.json"
}
],
"title": "Red Hat Security Advisory: New container image: rhceph-9.0",
"tracking": {
"current_release_date": "2026-07-03T18:02:25+00:00",
"generator": {
"date": "2026-07-03T18:02:25+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.3.1"
}
},
"id": "RHSA-2026:26411",
"initial_release_date": "2026-06-16T16:32:52+00:00",
"revision_history": [
{
"date": "2026-06-16T16:32:52+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2026-06-16T16:33:01+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-07-03T18:02:25+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Ceph Storage 9.0",
"product": {
"name": "Red Hat Ceph Storage 9.0",
"product_id": "Red Hat Ceph Storage 9.0",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:ceph_storage:9.0::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat Ceph Storage"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/rhceph/alloy-rhel10@sha256:b839e918e2b695ee22e954273f016c6ecdebc1f6048e538560b7162f21f9b83a_amd64",
"product": {
"name": "registry.redhat.io/rhceph/alloy-rhel10@sha256:b839e918e2b695ee22e954273f016c6ecdebc1f6048e538560b7162f21f9b83a_amd64",
"product_id": "registry.redhat.io/rhceph/alloy-rhel10@sha256:b839e918e2b695ee22e954273f016c6ecdebc1f6048e538560b7162f21f9b83a_amd64",
"product_identification_helper": {
"purl": "pkg:oci/alloy-rhel10@sha256%3Ab839e918e2b695ee22e954273f016c6ecdebc1f6048e538560b7162f21f9b83a?arch=amd64\u0026repository_url=registry.redhat.io/rhceph/alloy-rhel10\u0026tag=1781021746"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhceph/grafana-rhel10@sha256:b413d37ad30595df599c3aa8c7dbfad08acc6fa9a59e5300d6e66746d0ed7c92_amd64",
"product": {
"name": "registry.redhat.io/rhceph/grafana-rhel10@sha256:b413d37ad30595df599c3aa8c7dbfad08acc6fa9a59e5300d6e66746d0ed7c92_amd64",
"product_id": "registry.redhat.io/rhceph/grafana-rhel10@sha256:b413d37ad30595df599c3aa8c7dbfad08acc6fa9a59e5300d6e66746d0ed7c92_amd64",
"product_identification_helper": {
"purl": "pkg:oci/grafana-rhel10@sha256%3Ab413d37ad30595df599c3aa8c7dbfad08acc6fa9a59e5300d6e66746d0ed7c92?arch=amd64\u0026repository_url=registry.redhat.io/rhceph/grafana-rhel10\u0026tag=1781018768"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:f58c4b24482819abd2cb67f30d3e1034d61dd85a043f76bc3f487e48941bd201_amd64",
"product": {
"name": "registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:f58c4b24482819abd2cb67f30d3e1034d61dd85a043f76bc3f487e48941bd201_amd64",
"product_id": "registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:f58c4b24482819abd2cb67f30d3e1034d61dd85a043f76bc3f487e48941bd201_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhceph-haproxy-rhel9@sha256%3Af58c4b24482819abd2cb67f30d3e1034d61dd85a043f76bc3f487e48941bd201?arch=amd64\u0026repository_url=registry.redhat.io/rhceph/rhceph-haproxy-rhel9\u0026tag=1781021473"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhceph/keepalived-rhel10@sha256:a214782e432451ca21a5042abd90bf44c57ed01563dfa4d1b81ef72f38ef2265_amd64",
"product": {
"name": "registry.redhat.io/rhceph/keepalived-rhel10@sha256:a214782e432451ca21a5042abd90bf44c57ed01563dfa4d1b81ef72f38ef2265_amd64",
"product_id": "registry.redhat.io/rhceph/keepalived-rhel10@sha256:a214782e432451ca21a5042abd90bf44c57ed01563dfa4d1b81ef72f38ef2265_amd64",
"product_identification_helper": {
"purl": "pkg:oci/keepalived-rhel10@sha256%3Aa214782e432451ca21a5042abd90bf44c57ed01563dfa4d1b81ef72f38ef2265?arch=amd64\u0026repository_url=registry.redhat.io/rhceph/keepalived-rhel10\u0026tag=1781018336"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:09758d53ef928e8740a95a31572462681a0f70c1c2a6eaa6a72a45fddf4538b7_amd64",
"product": {
"name": "registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:09758d53ef928e8740a95a31572462681a0f70c1c2a6eaa6a72a45fddf4538b7_amd64",
"product_id": "registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:09758d53ef928e8740a95a31572462681a0f70c1c2a6eaa6a72a45fddf4538b7_amd64",
"product_identification_helper": {
"purl": "pkg:oci/oauth2-proxy-rhel9@sha256%3A09758d53ef928e8740a95a31572462681a0f70c1c2a6eaa6a72a45fddf4538b7?arch=amd64\u0026repository_url=registry.redhat.io/rhceph/oauth2-proxy-rhel9\u0026tag=1781018431"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:fa557386c42c9144dcef16957fc0f02b6e631d037cb982c70a043ce11d760556_amd64",
"product": {
"name": "registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:fa557386c42c9144dcef16957fc0f02b6e631d037cb982c70a043ce11d760556_amd64",
"product_id": "registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:fa557386c42c9144dcef16957fc0f02b6e631d037cb982c70a043ce11d760556_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhceph-9-rhel9@sha256%3Afa557386c42c9144dcef16957fc0f02b6e631d037cb982c70a043ce11d760556?arch=amd64\u0026repository_url=registry.redhat.io/rhceph/rhceph-9-rhel9\u0026tag=1781160401"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:e40d93d9d76fe8aa344905015d75ae13f94622f6e64de432b73af1930136f8de_amd64",
"product": {
"name": "registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:e40d93d9d76fe8aa344905015d75ae13f94622f6e64de432b73af1930136f8de_amd64",
"product_id": "registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:e40d93d9d76fe8aa344905015d75ae13f94622f6e64de432b73af1930136f8de_amd64",
"product_identification_helper": {
"purl": "pkg:oci/snmp-notifier-rhel10@sha256%3Ae40d93d9d76fe8aa344905015d75ae13f94622f6e64de432b73af1930136f8de?arch=amd64\u0026repository_url=registry.redhat.io/rhceph/snmp-notifier-rhel10\u0026tag=1781017635"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/rhceph/alloy-rhel10@sha256:6cc5bc1fe92aecfb16bb3b6ccf833d06dc4484f8f7c9ffb7bedc3b3e49ace7b6_arm64",
"product": {
"name": "registry.redhat.io/rhceph/alloy-rhel10@sha256:6cc5bc1fe92aecfb16bb3b6ccf833d06dc4484f8f7c9ffb7bedc3b3e49ace7b6_arm64",
"product_id": "registry.redhat.io/rhceph/alloy-rhel10@sha256:6cc5bc1fe92aecfb16bb3b6ccf833d06dc4484f8f7c9ffb7bedc3b3e49ace7b6_arm64",
"product_identification_helper": {
"purl": "pkg:oci/alloy-rhel10@sha256%3A6cc5bc1fe92aecfb16bb3b6ccf833d06dc4484f8f7c9ffb7bedc3b3e49ace7b6?arch=arm64\u0026repository_url=registry.redhat.io/rhceph/alloy-rhel10\u0026tag=1781021746"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhceph/grafana-rhel10@sha256:10d6f4417f63579b5ad0c2642e68049bf4b0cbc07393f05f5ccd6d93ad9b4551_arm64",
"product": {
"name": "registry.redhat.io/rhceph/grafana-rhel10@sha256:10d6f4417f63579b5ad0c2642e68049bf4b0cbc07393f05f5ccd6d93ad9b4551_arm64",
"product_id": "registry.redhat.io/rhceph/grafana-rhel10@sha256:10d6f4417f63579b5ad0c2642e68049bf4b0cbc07393f05f5ccd6d93ad9b4551_arm64",
"product_identification_helper": {
"purl": "pkg:oci/grafana-rhel10@sha256%3A10d6f4417f63579b5ad0c2642e68049bf4b0cbc07393f05f5ccd6d93ad9b4551?arch=arm64\u0026repository_url=registry.redhat.io/rhceph/grafana-rhel10\u0026tag=1781018768"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:10ed1c8ea558924ddfa1d3ab6a43d34a6edd16e09dac44d593487bc22b2fc7fc_arm64",
"product": {
"name": "registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:10ed1c8ea558924ddfa1d3ab6a43d34a6edd16e09dac44d593487bc22b2fc7fc_arm64",
"product_id": "registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:10ed1c8ea558924ddfa1d3ab6a43d34a6edd16e09dac44d593487bc22b2fc7fc_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhceph-haproxy-rhel9@sha256%3A10ed1c8ea558924ddfa1d3ab6a43d34a6edd16e09dac44d593487bc22b2fc7fc?arch=arm64\u0026repository_url=registry.redhat.io/rhceph/rhceph-haproxy-rhel9\u0026tag=1781021473"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhceph/keepalived-rhel10@sha256:5b0ca20174d1c6cdb3229bf625a906acf64509575c3092895e341ec301c5e92e_arm64",
"product": {
"name": "registry.redhat.io/rhceph/keepalived-rhel10@sha256:5b0ca20174d1c6cdb3229bf625a906acf64509575c3092895e341ec301c5e92e_arm64",
"product_id": "registry.redhat.io/rhceph/keepalived-rhel10@sha256:5b0ca20174d1c6cdb3229bf625a906acf64509575c3092895e341ec301c5e92e_arm64",
"product_identification_helper": {
"purl": "pkg:oci/keepalived-rhel10@sha256%3A5b0ca20174d1c6cdb3229bf625a906acf64509575c3092895e341ec301c5e92e?arch=arm64\u0026repository_url=registry.redhat.io/rhceph/keepalived-rhel10\u0026tag=1781018336"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:be1e659b4f556e0dd65aa36141fa4ab940c5bdee4cf96e1425addb95330c9a09_arm64",
"product": {
"name": "registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:be1e659b4f556e0dd65aa36141fa4ab940c5bdee4cf96e1425addb95330c9a09_arm64",
"product_id": "registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:be1e659b4f556e0dd65aa36141fa4ab940c5bdee4cf96e1425addb95330c9a09_arm64",
"product_identification_helper": {
"purl": "pkg:oci/oauth2-proxy-rhel9@sha256%3Abe1e659b4f556e0dd65aa36141fa4ab940c5bdee4cf96e1425addb95330c9a09?arch=arm64\u0026repository_url=registry.redhat.io/rhceph/oauth2-proxy-rhel9\u0026tag=1781018431"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:1eb37889b6fd96e9bb95257e30918212f290caf50d9dbe76b6e46af067cdeda6_arm64",
"product": {
"name": "registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:1eb37889b6fd96e9bb95257e30918212f290caf50d9dbe76b6e46af067cdeda6_arm64",
"product_id": "registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:1eb37889b6fd96e9bb95257e30918212f290caf50d9dbe76b6e46af067cdeda6_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhceph-9-rhel9@sha256%3A1eb37889b6fd96e9bb95257e30918212f290caf50d9dbe76b6e46af067cdeda6?arch=arm64\u0026repository_url=registry.redhat.io/rhceph/rhceph-9-rhel9\u0026tag=1781160401"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:087c99d8838e9c2bd9a298fc320e954ea27203bbceaced070930c87f8a6581a8_arm64",
"product": {
"name": "registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:087c99d8838e9c2bd9a298fc320e954ea27203bbceaced070930c87f8a6581a8_arm64",
"product_id": "registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:087c99d8838e9c2bd9a298fc320e954ea27203bbceaced070930c87f8a6581a8_arm64",
"product_identification_helper": {
"purl": "pkg:oci/snmp-notifier-rhel10@sha256%3A087c99d8838e9c2bd9a298fc320e954ea27203bbceaced070930c87f8a6581a8?arch=arm64\u0026repository_url=registry.redhat.io/rhceph/snmp-notifier-rhel10\u0026tag=1781017635"
}
}
}
],
"category": "architecture",
"name": "arm64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/rhceph/alloy-rhel10@sha256:4275a746d036f4a674f2a41c584d1061160392818c0bf47f1e831034654c3c26_ppc64le",
"product": {
"name": "registry.redhat.io/rhceph/alloy-rhel10@sha256:4275a746d036f4a674f2a41c584d1061160392818c0bf47f1e831034654c3c26_ppc64le",
"product_id": "registry.redhat.io/rhceph/alloy-rhel10@sha256:4275a746d036f4a674f2a41c584d1061160392818c0bf47f1e831034654c3c26_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/alloy-rhel10@sha256%3A4275a746d036f4a674f2a41c584d1061160392818c0bf47f1e831034654c3c26?arch=ppc64le\u0026repository_url=registry.redhat.io/rhceph/alloy-rhel10\u0026tag=1781021746"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhceph/grafana-rhel10@sha256:ed69dc576cf04d5ed270a4a271aa89a5476b46d58a85c937f1c63d6680b08b73_ppc64le",
"product": {
"name": "registry.redhat.io/rhceph/grafana-rhel10@sha256:ed69dc576cf04d5ed270a4a271aa89a5476b46d58a85c937f1c63d6680b08b73_ppc64le",
"product_id": "registry.redhat.io/rhceph/grafana-rhel10@sha256:ed69dc576cf04d5ed270a4a271aa89a5476b46d58a85c937f1c63d6680b08b73_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/grafana-rhel10@sha256%3Aed69dc576cf04d5ed270a4a271aa89a5476b46d58a85c937f1c63d6680b08b73?arch=ppc64le\u0026repository_url=registry.redhat.io/rhceph/grafana-rhel10\u0026tag=1781018768"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:01f59a1b847d03122126fb3db62daa1e924d2bed5da9506061013800085c100b_ppc64le",
"product": {
"name": "registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:01f59a1b847d03122126fb3db62daa1e924d2bed5da9506061013800085c100b_ppc64le",
"product_id": "registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:01f59a1b847d03122126fb3db62daa1e924d2bed5da9506061013800085c100b_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhceph-haproxy-rhel9@sha256%3A01f59a1b847d03122126fb3db62daa1e924d2bed5da9506061013800085c100b?arch=ppc64le\u0026repository_url=registry.redhat.io/rhceph/rhceph-haproxy-rhel9\u0026tag=1781021473"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhceph/keepalived-rhel10@sha256:498e05a439ac63b3a42882dd908d086078f697ff8c29dc2effedec8b26dd6521_ppc64le",
"product": {
"name": "registry.redhat.io/rhceph/keepalived-rhel10@sha256:498e05a439ac63b3a42882dd908d086078f697ff8c29dc2effedec8b26dd6521_ppc64le",
"product_id": "registry.redhat.io/rhceph/keepalived-rhel10@sha256:498e05a439ac63b3a42882dd908d086078f697ff8c29dc2effedec8b26dd6521_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/keepalived-rhel10@sha256%3A498e05a439ac63b3a42882dd908d086078f697ff8c29dc2effedec8b26dd6521?arch=ppc64le\u0026repository_url=registry.redhat.io/rhceph/keepalived-rhel10\u0026tag=1781018336"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:8afff49beebd4fd88ccf687a421bca80c6d3295a38ef9fcef92ab2049d5f78db_ppc64le",
"product": {
"name": "registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:8afff49beebd4fd88ccf687a421bca80c6d3295a38ef9fcef92ab2049d5f78db_ppc64le",
"product_id": "registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:8afff49beebd4fd88ccf687a421bca80c6d3295a38ef9fcef92ab2049d5f78db_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/oauth2-proxy-rhel9@sha256%3A8afff49beebd4fd88ccf687a421bca80c6d3295a38ef9fcef92ab2049d5f78db?arch=ppc64le\u0026repository_url=registry.redhat.io/rhceph/oauth2-proxy-rhel9\u0026tag=1781018431"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:8705162c817322ffdabfee74c5fec3ce4f37be667f46634981cb66db0354ef10_ppc64le",
"product": {
"name": "registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:8705162c817322ffdabfee74c5fec3ce4f37be667f46634981cb66db0354ef10_ppc64le",
"product_id": "registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:8705162c817322ffdabfee74c5fec3ce4f37be667f46634981cb66db0354ef10_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhceph-9-rhel9@sha256%3A8705162c817322ffdabfee74c5fec3ce4f37be667f46634981cb66db0354ef10?arch=ppc64le\u0026repository_url=registry.redhat.io/rhceph/rhceph-9-rhel9\u0026tag=1781160401"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:94a7dea2910f1f440c42c143f930886b529b00a3d6a0eab08d06596f157977a9_ppc64le",
"product": {
"name": "registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:94a7dea2910f1f440c42c143f930886b529b00a3d6a0eab08d06596f157977a9_ppc64le",
"product_id": "registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:94a7dea2910f1f440c42c143f930886b529b00a3d6a0eab08d06596f157977a9_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/snmp-notifier-rhel10@sha256%3A94a7dea2910f1f440c42c143f930886b529b00a3d6a0eab08d06596f157977a9?arch=ppc64le\u0026repository_url=registry.redhat.io/rhceph/snmp-notifier-rhel10\u0026tag=1781017635"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/rhceph/alloy-rhel10@sha256:b1c91e9df4b0bb9437394b92444480d6417a39bb46c8474d8c8027ab01732ca4_s390x",
"product": {
"name": "registry.redhat.io/rhceph/alloy-rhel10@sha256:b1c91e9df4b0bb9437394b92444480d6417a39bb46c8474d8c8027ab01732ca4_s390x",
"product_id": "registry.redhat.io/rhceph/alloy-rhel10@sha256:b1c91e9df4b0bb9437394b92444480d6417a39bb46c8474d8c8027ab01732ca4_s390x",
"product_identification_helper": {
"purl": "pkg:oci/alloy-rhel10@sha256%3Ab1c91e9df4b0bb9437394b92444480d6417a39bb46c8474d8c8027ab01732ca4?arch=s390x\u0026repository_url=registry.redhat.io/rhceph/alloy-rhel10\u0026tag=1781021746"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhceph/grafana-rhel10@sha256:f73c95e3c84116b5fb7320af22e69d252df69d4559f4ce7bdfd59f42902338c7_s390x",
"product": {
"name": "registry.redhat.io/rhceph/grafana-rhel10@sha256:f73c95e3c84116b5fb7320af22e69d252df69d4559f4ce7bdfd59f42902338c7_s390x",
"product_id": "registry.redhat.io/rhceph/grafana-rhel10@sha256:f73c95e3c84116b5fb7320af22e69d252df69d4559f4ce7bdfd59f42902338c7_s390x",
"product_identification_helper": {
"purl": "pkg:oci/grafana-rhel10@sha256%3Af73c95e3c84116b5fb7320af22e69d252df69d4559f4ce7bdfd59f42902338c7?arch=s390x\u0026repository_url=registry.redhat.io/rhceph/grafana-rhel10\u0026tag=1781018768"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:94f30db2064d0d62776af04715a67f90d3fb852855c123eff51285122e296328_s390x",
"product": {
"name": "registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:94f30db2064d0d62776af04715a67f90d3fb852855c123eff51285122e296328_s390x",
"product_id": "registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:94f30db2064d0d62776af04715a67f90d3fb852855c123eff51285122e296328_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhceph-haproxy-rhel9@sha256%3A94f30db2064d0d62776af04715a67f90d3fb852855c123eff51285122e296328?arch=s390x\u0026repository_url=registry.redhat.io/rhceph/rhceph-haproxy-rhel9\u0026tag=1781021473"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhceph/keepalived-rhel10@sha256:41e5ab72e781b1baa72b7158b2fb6af247c52042f828b496a15ff78adde413a3_s390x",
"product": {
"name": "registry.redhat.io/rhceph/keepalived-rhel10@sha256:41e5ab72e781b1baa72b7158b2fb6af247c52042f828b496a15ff78adde413a3_s390x",
"product_id": "registry.redhat.io/rhceph/keepalived-rhel10@sha256:41e5ab72e781b1baa72b7158b2fb6af247c52042f828b496a15ff78adde413a3_s390x",
"product_identification_helper": {
"purl": "pkg:oci/keepalived-rhel10@sha256%3A41e5ab72e781b1baa72b7158b2fb6af247c52042f828b496a15ff78adde413a3?arch=s390x\u0026repository_url=registry.redhat.io/rhceph/keepalived-rhel10\u0026tag=1781018336"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:5f4554659280456cba1fb0078dceb46964a9759f1c5ec0a8fa5d4a6f2bc4889f_s390x",
"product": {
"name": "registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:5f4554659280456cba1fb0078dceb46964a9759f1c5ec0a8fa5d4a6f2bc4889f_s390x",
"product_id": "registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:5f4554659280456cba1fb0078dceb46964a9759f1c5ec0a8fa5d4a6f2bc4889f_s390x",
"product_identification_helper": {
"purl": "pkg:oci/oauth2-proxy-rhel9@sha256%3A5f4554659280456cba1fb0078dceb46964a9759f1c5ec0a8fa5d4a6f2bc4889f?arch=s390x\u0026repository_url=registry.redhat.io/rhceph/oauth2-proxy-rhel9\u0026tag=1781018431"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:b73e4453cb4a353d458ce8fe0641dfd1314ba383d836f1631e0cca5d9ffdca4e_s390x",
"product": {
"name": "registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:b73e4453cb4a353d458ce8fe0641dfd1314ba383d836f1631e0cca5d9ffdca4e_s390x",
"product_id": "registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:b73e4453cb4a353d458ce8fe0641dfd1314ba383d836f1631e0cca5d9ffdca4e_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhceph-9-rhel9@sha256%3Ab73e4453cb4a353d458ce8fe0641dfd1314ba383d836f1631e0cca5d9ffdca4e?arch=s390x\u0026repository_url=registry.redhat.io/rhceph/rhceph-9-rhel9\u0026tag=1781160401"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:e5244c1382ad165701a9e156618d8452d78e70675d33668cbdaf6d93f99a58f1_s390x",
"product": {
"name": "registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:e5244c1382ad165701a9e156618d8452d78e70675d33668cbdaf6d93f99a58f1_s390x",
"product_id": "registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:e5244c1382ad165701a9e156618d8452d78e70675d33668cbdaf6d93f99a58f1_s390x",
"product_identification_helper": {
"purl": "pkg:oci/snmp-notifier-rhel10@sha256%3Ae5244c1382ad165701a9e156618d8452d78e70675d33668cbdaf6d93f99a58f1?arch=s390x\u0026repository_url=registry.redhat.io/rhceph/snmp-notifier-rhel10\u0026tag=1781017635"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhceph/alloy-rhel10@sha256:4275a746d036f4a674f2a41c584d1061160392818c0bf47f1e831034654c3c26_ppc64le as a component of Red Hat Ceph Storage 9.0",
"product_id": "Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:4275a746d036f4a674f2a41c584d1061160392818c0bf47f1e831034654c3c26_ppc64le"
},
"product_reference": "registry.redhat.io/rhceph/alloy-rhel10@sha256:4275a746d036f4a674f2a41c584d1061160392818c0bf47f1e831034654c3c26_ppc64le",
"relates_to_product_reference": "Red Hat Ceph Storage 9.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhceph/alloy-rhel10@sha256:6cc5bc1fe92aecfb16bb3b6ccf833d06dc4484f8f7c9ffb7bedc3b3e49ace7b6_arm64 as a component of Red Hat Ceph Storage 9.0",
"product_id": "Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:6cc5bc1fe92aecfb16bb3b6ccf833d06dc4484f8f7c9ffb7bedc3b3e49ace7b6_arm64"
},
"product_reference": "registry.redhat.io/rhceph/alloy-rhel10@sha256:6cc5bc1fe92aecfb16bb3b6ccf833d06dc4484f8f7c9ffb7bedc3b3e49ace7b6_arm64",
"relates_to_product_reference": "Red Hat Ceph Storage 9.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhceph/alloy-rhel10@sha256:b1c91e9df4b0bb9437394b92444480d6417a39bb46c8474d8c8027ab01732ca4_s390x as a component of Red Hat Ceph Storage 9.0",
"product_id": "Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:b1c91e9df4b0bb9437394b92444480d6417a39bb46c8474d8c8027ab01732ca4_s390x"
},
"product_reference": "registry.redhat.io/rhceph/alloy-rhel10@sha256:b1c91e9df4b0bb9437394b92444480d6417a39bb46c8474d8c8027ab01732ca4_s390x",
"relates_to_product_reference": "Red Hat Ceph Storage 9.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhceph/alloy-rhel10@sha256:b839e918e2b695ee22e954273f016c6ecdebc1f6048e538560b7162f21f9b83a_amd64 as a component of Red Hat Ceph Storage 9.0",
"product_id": "Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:b839e918e2b695ee22e954273f016c6ecdebc1f6048e538560b7162f21f9b83a_amd64"
},
"product_reference": "registry.redhat.io/rhceph/alloy-rhel10@sha256:b839e918e2b695ee22e954273f016c6ecdebc1f6048e538560b7162f21f9b83a_amd64",
"relates_to_product_reference": "Red Hat Ceph Storage 9.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhceph/grafana-rhel10@sha256:10d6f4417f63579b5ad0c2642e68049bf4b0cbc07393f05f5ccd6d93ad9b4551_arm64 as a component of Red Hat Ceph Storage 9.0",
"product_id": "Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:10d6f4417f63579b5ad0c2642e68049bf4b0cbc07393f05f5ccd6d93ad9b4551_arm64"
},
"product_reference": "registry.redhat.io/rhceph/grafana-rhel10@sha256:10d6f4417f63579b5ad0c2642e68049bf4b0cbc07393f05f5ccd6d93ad9b4551_arm64",
"relates_to_product_reference": "Red Hat Ceph Storage 9.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhceph/grafana-rhel10@sha256:b413d37ad30595df599c3aa8c7dbfad08acc6fa9a59e5300d6e66746d0ed7c92_amd64 as a component of Red Hat Ceph Storage 9.0",
"product_id": "Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:b413d37ad30595df599c3aa8c7dbfad08acc6fa9a59e5300d6e66746d0ed7c92_amd64"
},
"product_reference": "registry.redhat.io/rhceph/grafana-rhel10@sha256:b413d37ad30595df599c3aa8c7dbfad08acc6fa9a59e5300d6e66746d0ed7c92_amd64",
"relates_to_product_reference": "Red Hat Ceph Storage 9.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhceph/grafana-rhel10@sha256:ed69dc576cf04d5ed270a4a271aa89a5476b46d58a85c937f1c63d6680b08b73_ppc64le as a component of Red Hat Ceph Storage 9.0",
"product_id": "Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:ed69dc576cf04d5ed270a4a271aa89a5476b46d58a85c937f1c63d6680b08b73_ppc64le"
},
"product_reference": "registry.redhat.io/rhceph/grafana-rhel10@sha256:ed69dc576cf04d5ed270a4a271aa89a5476b46d58a85c937f1c63d6680b08b73_ppc64le",
"relates_to_product_reference": "Red Hat Ceph Storage 9.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhceph/grafana-rhel10@sha256:f73c95e3c84116b5fb7320af22e69d252df69d4559f4ce7bdfd59f42902338c7_s390x as a component of Red Hat Ceph Storage 9.0",
"product_id": "Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:f73c95e3c84116b5fb7320af22e69d252df69d4559f4ce7bdfd59f42902338c7_s390x"
},
"product_reference": "registry.redhat.io/rhceph/grafana-rhel10@sha256:f73c95e3c84116b5fb7320af22e69d252df69d4559f4ce7bdfd59f42902338c7_s390x",
"relates_to_product_reference": "Red Hat Ceph Storage 9.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhceph/keepalived-rhel10@sha256:41e5ab72e781b1baa72b7158b2fb6af247c52042f828b496a15ff78adde413a3_s390x as a component of Red Hat Ceph Storage 9.0",
"product_id": "Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:41e5ab72e781b1baa72b7158b2fb6af247c52042f828b496a15ff78adde413a3_s390x"
},
"product_reference": "registry.redhat.io/rhceph/keepalived-rhel10@sha256:41e5ab72e781b1baa72b7158b2fb6af247c52042f828b496a15ff78adde413a3_s390x",
"relates_to_product_reference": "Red Hat Ceph Storage 9.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhceph/keepalived-rhel10@sha256:498e05a439ac63b3a42882dd908d086078f697ff8c29dc2effedec8b26dd6521_ppc64le as a component of Red Hat Ceph Storage 9.0",
"product_id": "Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:498e05a439ac63b3a42882dd908d086078f697ff8c29dc2effedec8b26dd6521_ppc64le"
},
"product_reference": "registry.redhat.io/rhceph/keepalived-rhel10@sha256:498e05a439ac63b3a42882dd908d086078f697ff8c29dc2effedec8b26dd6521_ppc64le",
"relates_to_product_reference": "Red Hat Ceph Storage 9.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhceph/keepalived-rhel10@sha256:5b0ca20174d1c6cdb3229bf625a906acf64509575c3092895e341ec301c5e92e_arm64 as a component of Red Hat Ceph Storage 9.0",
"product_id": "Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:5b0ca20174d1c6cdb3229bf625a906acf64509575c3092895e341ec301c5e92e_arm64"
},
"product_reference": "registry.redhat.io/rhceph/keepalived-rhel10@sha256:5b0ca20174d1c6cdb3229bf625a906acf64509575c3092895e341ec301c5e92e_arm64",
"relates_to_product_reference": "Red Hat Ceph Storage 9.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhceph/keepalived-rhel10@sha256:a214782e432451ca21a5042abd90bf44c57ed01563dfa4d1b81ef72f38ef2265_amd64 as a component of Red Hat Ceph Storage 9.0",
"product_id": "Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:a214782e432451ca21a5042abd90bf44c57ed01563dfa4d1b81ef72f38ef2265_amd64"
},
"product_reference": "registry.redhat.io/rhceph/keepalived-rhel10@sha256:a214782e432451ca21a5042abd90bf44c57ed01563dfa4d1b81ef72f38ef2265_amd64",
"relates_to_product_reference": "Red Hat Ceph Storage 9.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:09758d53ef928e8740a95a31572462681a0f70c1c2a6eaa6a72a45fddf4538b7_amd64 as a component of Red Hat Ceph Storage 9.0",
"product_id": "Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:09758d53ef928e8740a95a31572462681a0f70c1c2a6eaa6a72a45fddf4538b7_amd64"
},
"product_reference": "registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:09758d53ef928e8740a95a31572462681a0f70c1c2a6eaa6a72a45fddf4538b7_amd64",
"relates_to_product_reference": "Red Hat Ceph Storage 9.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:5f4554659280456cba1fb0078dceb46964a9759f1c5ec0a8fa5d4a6f2bc4889f_s390x as a component of Red Hat Ceph Storage 9.0",
"product_id": "Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:5f4554659280456cba1fb0078dceb46964a9759f1c5ec0a8fa5d4a6f2bc4889f_s390x"
},
"product_reference": "registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:5f4554659280456cba1fb0078dceb46964a9759f1c5ec0a8fa5d4a6f2bc4889f_s390x",
"relates_to_product_reference": "Red Hat Ceph Storage 9.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:8afff49beebd4fd88ccf687a421bca80c6d3295a38ef9fcef92ab2049d5f78db_ppc64le as a component of Red Hat Ceph Storage 9.0",
"product_id": "Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:8afff49beebd4fd88ccf687a421bca80c6d3295a38ef9fcef92ab2049d5f78db_ppc64le"
},
"product_reference": "registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:8afff49beebd4fd88ccf687a421bca80c6d3295a38ef9fcef92ab2049d5f78db_ppc64le",
"relates_to_product_reference": "Red Hat Ceph Storage 9.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:be1e659b4f556e0dd65aa36141fa4ab940c5bdee4cf96e1425addb95330c9a09_arm64 as a component of Red Hat Ceph Storage 9.0",
"product_id": "Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:be1e659b4f556e0dd65aa36141fa4ab940c5bdee4cf96e1425addb95330c9a09_arm64"
},
"product_reference": "registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:be1e659b4f556e0dd65aa36141fa4ab940c5bdee4cf96e1425addb95330c9a09_arm64",
"relates_to_product_reference": "Red Hat Ceph Storage 9.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:1eb37889b6fd96e9bb95257e30918212f290caf50d9dbe76b6e46af067cdeda6_arm64 as a component of Red Hat Ceph Storage 9.0",
"product_id": "Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:1eb37889b6fd96e9bb95257e30918212f290caf50d9dbe76b6e46af067cdeda6_arm64"
},
"product_reference": "registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:1eb37889b6fd96e9bb95257e30918212f290caf50d9dbe76b6e46af067cdeda6_arm64",
"relates_to_product_reference": "Red Hat Ceph Storage 9.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:8705162c817322ffdabfee74c5fec3ce4f37be667f46634981cb66db0354ef10_ppc64le as a component of Red Hat Ceph Storage 9.0",
"product_id": "Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:8705162c817322ffdabfee74c5fec3ce4f37be667f46634981cb66db0354ef10_ppc64le"
},
"product_reference": "registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:8705162c817322ffdabfee74c5fec3ce4f37be667f46634981cb66db0354ef10_ppc64le",
"relates_to_product_reference": "Red Hat Ceph Storage 9.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:b73e4453cb4a353d458ce8fe0641dfd1314ba383d836f1631e0cca5d9ffdca4e_s390x as a component of Red Hat Ceph Storage 9.0",
"product_id": "Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:b73e4453cb4a353d458ce8fe0641dfd1314ba383d836f1631e0cca5d9ffdca4e_s390x"
},
"product_reference": "registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:b73e4453cb4a353d458ce8fe0641dfd1314ba383d836f1631e0cca5d9ffdca4e_s390x",
"relates_to_product_reference": "Red Hat Ceph Storage 9.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:fa557386c42c9144dcef16957fc0f02b6e631d037cb982c70a043ce11d760556_amd64 as a component of Red Hat Ceph Storage 9.0",
"product_id": "Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:fa557386c42c9144dcef16957fc0f02b6e631d037cb982c70a043ce11d760556_amd64"
},
"product_reference": "registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:fa557386c42c9144dcef16957fc0f02b6e631d037cb982c70a043ce11d760556_amd64",
"relates_to_product_reference": "Red Hat Ceph Storage 9.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:01f59a1b847d03122126fb3db62daa1e924d2bed5da9506061013800085c100b_ppc64le as a component of Red Hat Ceph Storage 9.0",
"product_id": "Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:01f59a1b847d03122126fb3db62daa1e924d2bed5da9506061013800085c100b_ppc64le"
},
"product_reference": "registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:01f59a1b847d03122126fb3db62daa1e924d2bed5da9506061013800085c100b_ppc64le",
"relates_to_product_reference": "Red Hat Ceph Storage 9.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:10ed1c8ea558924ddfa1d3ab6a43d34a6edd16e09dac44d593487bc22b2fc7fc_arm64 as a component of Red Hat Ceph Storage 9.0",
"product_id": "Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:10ed1c8ea558924ddfa1d3ab6a43d34a6edd16e09dac44d593487bc22b2fc7fc_arm64"
},
"product_reference": "registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:10ed1c8ea558924ddfa1d3ab6a43d34a6edd16e09dac44d593487bc22b2fc7fc_arm64",
"relates_to_product_reference": "Red Hat Ceph Storage 9.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:94f30db2064d0d62776af04715a67f90d3fb852855c123eff51285122e296328_s390x as a component of Red Hat Ceph Storage 9.0",
"product_id": "Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:94f30db2064d0d62776af04715a67f90d3fb852855c123eff51285122e296328_s390x"
},
"product_reference": "registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:94f30db2064d0d62776af04715a67f90d3fb852855c123eff51285122e296328_s390x",
"relates_to_product_reference": "Red Hat Ceph Storage 9.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:f58c4b24482819abd2cb67f30d3e1034d61dd85a043f76bc3f487e48941bd201_amd64 as a component of Red Hat Ceph Storage 9.0",
"product_id": "Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:f58c4b24482819abd2cb67f30d3e1034d61dd85a043f76bc3f487e48941bd201_amd64"
},
"product_reference": "registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:f58c4b24482819abd2cb67f30d3e1034d61dd85a043f76bc3f487e48941bd201_amd64",
"relates_to_product_reference": "Red Hat Ceph Storage 9.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:087c99d8838e9c2bd9a298fc320e954ea27203bbceaced070930c87f8a6581a8_arm64 as a component of Red Hat Ceph Storage 9.0",
"product_id": "Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:087c99d8838e9c2bd9a298fc320e954ea27203bbceaced070930c87f8a6581a8_arm64"
},
"product_reference": "registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:087c99d8838e9c2bd9a298fc320e954ea27203bbceaced070930c87f8a6581a8_arm64",
"relates_to_product_reference": "Red Hat Ceph Storage 9.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:94a7dea2910f1f440c42c143f930886b529b00a3d6a0eab08d06596f157977a9_ppc64le as a component of Red Hat Ceph Storage 9.0",
"product_id": "Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:94a7dea2910f1f440c42c143f930886b529b00a3d6a0eab08d06596f157977a9_ppc64le"
},
"product_reference": "registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:94a7dea2910f1f440c42c143f930886b529b00a3d6a0eab08d06596f157977a9_ppc64le",
"relates_to_product_reference": "Red Hat Ceph Storage 9.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:e40d93d9d76fe8aa344905015d75ae13f94622f6e64de432b73af1930136f8de_amd64 as a component of Red Hat Ceph Storage 9.0",
"product_id": "Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:e40d93d9d76fe8aa344905015d75ae13f94622f6e64de432b73af1930136f8de_amd64"
},
"product_reference": "registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:e40d93d9d76fe8aa344905015d75ae13f94622f6e64de432b73af1930136f8de_amd64",
"relates_to_product_reference": "Red Hat Ceph Storage 9.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:e5244c1382ad165701a9e156618d8452d78e70675d33668cbdaf6d93f99a58f1_s390x as a component of Red Hat Ceph Storage 9.0",
"product_id": "Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:e5244c1382ad165701a9e156618d8452d78e70675d33668cbdaf6d93f99a58f1_s390x"
},
"product_reference": "registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:e5244c1382ad165701a9e156618d8452d78e70675d33668cbdaf6d93f99a58f1_s390x",
"relates_to_product_reference": "Red Hat Ceph Storage 9.0"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-55565",
"cwe": {
"id": "CWE-835",
"name": "Loop with Unreachable Exit Condition (\u0027Infinite Loop\u0027)"
},
"discovery_date": "2024-12-09T02:00:45.255738+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:4275a746d036f4a674f2a41c584d1061160392818c0bf47f1e831034654c3c26_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:6cc5bc1fe92aecfb16bb3b6ccf833d06dc4484f8f7c9ffb7bedc3b3e49ace7b6_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:b1c91e9df4b0bb9437394b92444480d6417a39bb46c8474d8c8027ab01732ca4_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:b839e918e2b695ee22e954273f016c6ecdebc1f6048e538560b7162f21f9b83a_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:10d6f4417f63579b5ad0c2642e68049bf4b0cbc07393f05f5ccd6d93ad9b4551_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:b413d37ad30595df599c3aa8c7dbfad08acc6fa9a59e5300d6e66746d0ed7c92_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:ed69dc576cf04d5ed270a4a271aa89a5476b46d58a85c937f1c63d6680b08b73_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:f73c95e3c84116b5fb7320af22e69d252df69d4559f4ce7bdfd59f42902338c7_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:41e5ab72e781b1baa72b7158b2fb6af247c52042f828b496a15ff78adde413a3_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:498e05a439ac63b3a42882dd908d086078f697ff8c29dc2effedec8b26dd6521_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:5b0ca20174d1c6cdb3229bf625a906acf64509575c3092895e341ec301c5e92e_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:a214782e432451ca21a5042abd90bf44c57ed01563dfa4d1b81ef72f38ef2265_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:09758d53ef928e8740a95a31572462681a0f70c1c2a6eaa6a72a45fddf4538b7_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:5f4554659280456cba1fb0078dceb46964a9759f1c5ec0a8fa5d4a6f2bc4889f_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:8afff49beebd4fd88ccf687a421bca80c6d3295a38ef9fcef92ab2049d5f78db_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:be1e659b4f556e0dd65aa36141fa4ab940c5bdee4cf96e1425addb95330c9a09_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:01f59a1b847d03122126fb3db62daa1e924d2bed5da9506061013800085c100b_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:10ed1c8ea558924ddfa1d3ab6a43d34a6edd16e09dac44d593487bc22b2fc7fc_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:94f30db2064d0d62776af04715a67f90d3fb852855c123eff51285122e296328_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:f58c4b24482819abd2cb67f30d3e1034d61dd85a043f76bc3f487e48941bd201_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:087c99d8838e9c2bd9a298fc320e954ea27203bbceaced070930c87f8a6581a8_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:94a7dea2910f1f440c42c143f930886b529b00a3d6a0eab08d06596f157977a9_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:e40d93d9d76fe8aa344905015d75ae13f94622f6e64de432b73af1930136f8de_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:e5244c1382ad165701a9e156618d8452d78e70675d33668cbdaf6d93f99a58f1_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2331063"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in nanoid. Affected versions of nanoid mishandles non-integer values. When nanoid is called with a fractional value, there were a number of undesirable effects:\n\n- In browser and non-secure, the code infinite loops on while (size--)\n- In node, the value of poolOffset becomes fractional, causing calls to nanoid to return zeroes until the pool is next filled: when i is initialized to poolOffset, pool[i] \u0026 63 -\u003e undefined \u0026 63 -\u003e 0\n- If the first call in node is a fractional argument, the initial buffer allocation fails with an error\n\nThe highest impact of this issue system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "nanoid: nanoid mishandles non-integer values",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:1eb37889b6fd96e9bb95257e30918212f290caf50d9dbe76b6e46af067cdeda6_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:8705162c817322ffdabfee74c5fec3ce4f37be667f46634981cb66db0354ef10_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:b73e4453cb4a353d458ce8fe0641dfd1314ba383d836f1631e0cca5d9ffdca4e_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:fa557386c42c9144dcef16957fc0f02b6e631d037cb982c70a043ce11d760556_amd64"
],
"known_not_affected": [
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:4275a746d036f4a674f2a41c584d1061160392818c0bf47f1e831034654c3c26_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:6cc5bc1fe92aecfb16bb3b6ccf833d06dc4484f8f7c9ffb7bedc3b3e49ace7b6_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:b1c91e9df4b0bb9437394b92444480d6417a39bb46c8474d8c8027ab01732ca4_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:b839e918e2b695ee22e954273f016c6ecdebc1f6048e538560b7162f21f9b83a_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:10d6f4417f63579b5ad0c2642e68049bf4b0cbc07393f05f5ccd6d93ad9b4551_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:b413d37ad30595df599c3aa8c7dbfad08acc6fa9a59e5300d6e66746d0ed7c92_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:ed69dc576cf04d5ed270a4a271aa89a5476b46d58a85c937f1c63d6680b08b73_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:f73c95e3c84116b5fb7320af22e69d252df69d4559f4ce7bdfd59f42902338c7_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:41e5ab72e781b1baa72b7158b2fb6af247c52042f828b496a15ff78adde413a3_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:498e05a439ac63b3a42882dd908d086078f697ff8c29dc2effedec8b26dd6521_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:5b0ca20174d1c6cdb3229bf625a906acf64509575c3092895e341ec301c5e92e_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:a214782e432451ca21a5042abd90bf44c57ed01563dfa4d1b81ef72f38ef2265_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:09758d53ef928e8740a95a31572462681a0f70c1c2a6eaa6a72a45fddf4538b7_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:5f4554659280456cba1fb0078dceb46964a9759f1c5ec0a8fa5d4a6f2bc4889f_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:8afff49beebd4fd88ccf687a421bca80c6d3295a38ef9fcef92ab2049d5f78db_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:be1e659b4f556e0dd65aa36141fa4ab940c5bdee4cf96e1425addb95330c9a09_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:01f59a1b847d03122126fb3db62daa1e924d2bed5da9506061013800085c100b_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:10ed1c8ea558924ddfa1d3ab6a43d34a6edd16e09dac44d593487bc22b2fc7fc_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:94f30db2064d0d62776af04715a67f90d3fb852855c123eff51285122e296328_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:f58c4b24482819abd2cb67f30d3e1034d61dd85a043f76bc3f487e48941bd201_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:087c99d8838e9c2bd9a298fc320e954ea27203bbceaced070930c87f8a6581a8_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:94a7dea2910f1f440c42c143f930886b529b00a3d6a0eab08d06596f157977a9_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:e40d93d9d76fe8aa344905015d75ae13f94622f6e64de432b73af1930136f8de_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:e5244c1382ad165701a9e156618d8452d78e70675d33668cbdaf6d93f99a58f1_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-55565"
},
{
"category": "external",
"summary": "RHBZ#2331063",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2331063"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-55565",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-55565"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-55565",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-55565"
},
{
"category": "external",
"summary": "https://github.com/ai/nanoid/compare/3.3.7...3.3.8",
"url": "https://github.com/ai/nanoid/compare/3.3.7...3.3.8"
},
{
"category": "external",
"summary": "https://github.com/ai/nanoid/pull/510",
"url": "https://github.com/ai/nanoid/pull/510"
},
{
"category": "external",
"summary": "https://github.com/ai/nanoid/releases/tag/5.0.9",
"url": "https://github.com/ai/nanoid/releases/tag/5.0.9"
}
],
"release_date": "2024-12-09T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-06-16T16:32:52+00:00",
"details": "The container images provided by this update can be downloaded from the\nRed Hat container registry at registry.redhat.io using the \"podman pull\" command.",
"product_ids": [
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:1eb37889b6fd96e9bb95257e30918212f290caf50d9dbe76b6e46af067cdeda6_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:8705162c817322ffdabfee74c5fec3ce4f37be667f46634981cb66db0354ef10_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:b73e4453cb4a353d458ce8fe0641dfd1314ba383d836f1631e0cca5d9ffdca4e_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:fa557386c42c9144dcef16957fc0f02b6e631d037cb982c70a043ce11d760556_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:26411"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "ADJACENT_NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:4275a746d036f4a674f2a41c584d1061160392818c0bf47f1e831034654c3c26_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:6cc5bc1fe92aecfb16bb3b6ccf833d06dc4484f8f7c9ffb7bedc3b3e49ace7b6_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:b1c91e9df4b0bb9437394b92444480d6417a39bb46c8474d8c8027ab01732ca4_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:b839e918e2b695ee22e954273f016c6ecdebc1f6048e538560b7162f21f9b83a_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:10d6f4417f63579b5ad0c2642e68049bf4b0cbc07393f05f5ccd6d93ad9b4551_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:b413d37ad30595df599c3aa8c7dbfad08acc6fa9a59e5300d6e66746d0ed7c92_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:ed69dc576cf04d5ed270a4a271aa89a5476b46d58a85c937f1c63d6680b08b73_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:f73c95e3c84116b5fb7320af22e69d252df69d4559f4ce7bdfd59f42902338c7_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:41e5ab72e781b1baa72b7158b2fb6af247c52042f828b496a15ff78adde413a3_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:498e05a439ac63b3a42882dd908d086078f697ff8c29dc2effedec8b26dd6521_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:5b0ca20174d1c6cdb3229bf625a906acf64509575c3092895e341ec301c5e92e_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:a214782e432451ca21a5042abd90bf44c57ed01563dfa4d1b81ef72f38ef2265_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:09758d53ef928e8740a95a31572462681a0f70c1c2a6eaa6a72a45fddf4538b7_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:5f4554659280456cba1fb0078dceb46964a9759f1c5ec0a8fa5d4a6f2bc4889f_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:8afff49beebd4fd88ccf687a421bca80c6d3295a38ef9fcef92ab2049d5f78db_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:be1e659b4f556e0dd65aa36141fa4ab940c5bdee4cf96e1425addb95330c9a09_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:1eb37889b6fd96e9bb95257e30918212f290caf50d9dbe76b6e46af067cdeda6_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:8705162c817322ffdabfee74c5fec3ce4f37be667f46634981cb66db0354ef10_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:b73e4453cb4a353d458ce8fe0641dfd1314ba383d836f1631e0cca5d9ffdca4e_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:fa557386c42c9144dcef16957fc0f02b6e631d037cb982c70a043ce11d760556_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:01f59a1b847d03122126fb3db62daa1e924d2bed5da9506061013800085c100b_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:10ed1c8ea558924ddfa1d3ab6a43d34a6edd16e09dac44d593487bc22b2fc7fc_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:94f30db2064d0d62776af04715a67f90d3fb852855c123eff51285122e296328_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:f58c4b24482819abd2cb67f30d3e1034d61dd85a043f76bc3f487e48941bd201_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:087c99d8838e9c2bd9a298fc320e954ea27203bbceaced070930c87f8a6581a8_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:94a7dea2910f1f440c42c143f930886b529b00a3d6a0eab08d06596f157977a9_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:e40d93d9d76fe8aa344905015d75ae13f94622f6e64de432b73af1930136f8de_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:e5244c1382ad165701a9e156618d8452d78e70675d33668cbdaf6d93f99a58f1_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "nanoid: nanoid mishandles non-integer values"
},
{
"cve": "CVE-2025-47913",
"discovery_date": "2025-11-13T22:01:26.092452+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:4275a746d036f4a674f2a41c584d1061160392818c0bf47f1e831034654c3c26_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:6cc5bc1fe92aecfb16bb3b6ccf833d06dc4484f8f7c9ffb7bedc3b3e49ace7b6_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:b1c91e9df4b0bb9437394b92444480d6417a39bb46c8474d8c8027ab01732ca4_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:b839e918e2b695ee22e954273f016c6ecdebc1f6048e538560b7162f21f9b83a_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:41e5ab72e781b1baa72b7158b2fb6af247c52042f828b496a15ff78adde413a3_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:498e05a439ac63b3a42882dd908d086078f697ff8c29dc2effedec8b26dd6521_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:5b0ca20174d1c6cdb3229bf625a906acf64509575c3092895e341ec301c5e92e_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:a214782e432451ca21a5042abd90bf44c57ed01563dfa4d1b81ef72f38ef2265_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:09758d53ef928e8740a95a31572462681a0f70c1c2a6eaa6a72a45fddf4538b7_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:5f4554659280456cba1fb0078dceb46964a9759f1c5ec0a8fa5d4a6f2bc4889f_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:8afff49beebd4fd88ccf687a421bca80c6d3295a38ef9fcef92ab2049d5f78db_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:be1e659b4f556e0dd65aa36141fa4ab940c5bdee4cf96e1425addb95330c9a09_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:1eb37889b6fd96e9bb95257e30918212f290caf50d9dbe76b6e46af067cdeda6_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:8705162c817322ffdabfee74c5fec3ce4f37be667f46634981cb66db0354ef10_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:b73e4453cb4a353d458ce8fe0641dfd1314ba383d836f1631e0cca5d9ffdca4e_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:fa557386c42c9144dcef16957fc0f02b6e631d037cb982c70a043ce11d760556_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:01f59a1b847d03122126fb3db62daa1e924d2bed5da9506061013800085c100b_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:10ed1c8ea558924ddfa1d3ab6a43d34a6edd16e09dac44d593487bc22b2fc7fc_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:94f30db2064d0d62776af04715a67f90d3fb852855c123eff51285122e296328_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:f58c4b24482819abd2cb67f30d3e1034d61dd85a043f76bc3f487e48941bd201_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:087c99d8838e9c2bd9a298fc320e954ea27203bbceaced070930c87f8a6581a8_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:94a7dea2910f1f440c42c143f930886b529b00a3d6a0eab08d06596f157977a9_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:e40d93d9d76fe8aa344905015d75ae13f94622f6e64de432b73af1930136f8de_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:e5244c1382ad165701a9e156618d8452d78e70675d33668cbdaf6d93f99a58f1_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2414943"
}
],
"notes": [
{
"category": "description",
"text": "A flaw in golang.org/x/crypto/ssh/agent causes the SSH agent client to panic when a peer responds with the generic SSH_AGENT_SUCCESS (0x06) message to requests expecting typed replies (e.g., List, Sign). The unmarshal layer produces an unexpected message type, which the client code does not handle, leading to panic(\"unreachable\") or a nil-pointer dereference. A malicious agent or forwarded connection can exploit this to terminate the client process.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh/agent: golang.org/x/crypto/ssh/agent: SSH client panic due to unexpected SSH_AGENT_SUCCESS",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability was marked as Important because it allows any malicious or misbehaving SSH agent to force a crash in the client process using a single valid protocol byte. The panic occurs before the client has a chance to validate message structure or recover, which means an attacker controlling\u2014or intercepting\u2014SSH agent traffic can reliably terminate processes that rely on agent interactions. In environments where SSH agents operate over forwarded sockets, shared workspaces, or CI/CD runners, this turns into a reliable, unauthenticated remote denial of service against critical automation or developer tooling. The flaw also stems from unsafe assumptions in the unmarshalling logic, where unexpected but protocol-legal message types drop into \u201cunreachable\u201d code paths instead of being handled gracefully\u2014making it a design-level reliability break rather than a simple error-handling bug. For this reason, it is rated as an important availability-impacting vulnerability rather than a moderate issue.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:10d6f4417f63579b5ad0c2642e68049bf4b0cbc07393f05f5ccd6d93ad9b4551_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:b413d37ad30595df599c3aa8c7dbfad08acc6fa9a59e5300d6e66746d0ed7c92_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:ed69dc576cf04d5ed270a4a271aa89a5476b46d58a85c937f1c63d6680b08b73_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:f73c95e3c84116b5fb7320af22e69d252df69d4559f4ce7bdfd59f42902338c7_s390x"
],
"known_not_affected": [
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:4275a746d036f4a674f2a41c584d1061160392818c0bf47f1e831034654c3c26_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:6cc5bc1fe92aecfb16bb3b6ccf833d06dc4484f8f7c9ffb7bedc3b3e49ace7b6_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:b1c91e9df4b0bb9437394b92444480d6417a39bb46c8474d8c8027ab01732ca4_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:b839e918e2b695ee22e954273f016c6ecdebc1f6048e538560b7162f21f9b83a_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:41e5ab72e781b1baa72b7158b2fb6af247c52042f828b496a15ff78adde413a3_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:498e05a439ac63b3a42882dd908d086078f697ff8c29dc2effedec8b26dd6521_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:5b0ca20174d1c6cdb3229bf625a906acf64509575c3092895e341ec301c5e92e_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:a214782e432451ca21a5042abd90bf44c57ed01563dfa4d1b81ef72f38ef2265_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:09758d53ef928e8740a95a31572462681a0f70c1c2a6eaa6a72a45fddf4538b7_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:5f4554659280456cba1fb0078dceb46964a9759f1c5ec0a8fa5d4a6f2bc4889f_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:8afff49beebd4fd88ccf687a421bca80c6d3295a38ef9fcef92ab2049d5f78db_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:be1e659b4f556e0dd65aa36141fa4ab940c5bdee4cf96e1425addb95330c9a09_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:1eb37889b6fd96e9bb95257e30918212f290caf50d9dbe76b6e46af067cdeda6_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:8705162c817322ffdabfee74c5fec3ce4f37be667f46634981cb66db0354ef10_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:b73e4453cb4a353d458ce8fe0641dfd1314ba383d836f1631e0cca5d9ffdca4e_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:fa557386c42c9144dcef16957fc0f02b6e631d037cb982c70a043ce11d760556_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:01f59a1b847d03122126fb3db62daa1e924d2bed5da9506061013800085c100b_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:10ed1c8ea558924ddfa1d3ab6a43d34a6edd16e09dac44d593487bc22b2fc7fc_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:94f30db2064d0d62776af04715a67f90d3fb852855c123eff51285122e296328_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:f58c4b24482819abd2cb67f30d3e1034d61dd85a043f76bc3f487e48941bd201_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:087c99d8838e9c2bd9a298fc320e954ea27203bbceaced070930c87f8a6581a8_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:94a7dea2910f1f440c42c143f930886b529b00a3d6a0eab08d06596f157977a9_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:e40d93d9d76fe8aa344905015d75ae13f94622f6e64de432b73af1930136f8de_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:e5244c1382ad165701a9e156618d8452d78e70675d33668cbdaf6d93f99a58f1_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-47913"
},
{
"category": "external",
"summary": "RHBZ#2414943",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2414943"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-47913",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-47913"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-47913",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-47913"
},
{
"category": "external",
"summary": "https://github.com/advisories/GHSA-hcg3-q754-cr77",
"url": "https://github.com/advisories/GHSA-hcg3-q754-cr77"
},
{
"category": "external",
"summary": "https://go.dev/cl/700295",
"url": "https://go.dev/cl/700295"
},
{
"category": "external",
"summary": "https://go.dev/issue/75178",
"url": "https://go.dev/issue/75178"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-4116",
"url": "https://pkg.go.dev/vuln/GO-2025-4116"
}
],
"release_date": "2025-11-13T21:29:39.907000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-06-16T16:32:52+00:00",
"details": "The container images provided by this update can be downloaded from the\nRed Hat container registry at registry.redhat.io using the \"podman pull\" command.",
"product_ids": [
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:10d6f4417f63579b5ad0c2642e68049bf4b0cbc07393f05f5ccd6d93ad9b4551_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:b413d37ad30595df599c3aa8c7dbfad08acc6fa9a59e5300d6e66746d0ed7c92_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:ed69dc576cf04d5ed270a4a271aa89a5476b46d58a85c937f1c63d6680b08b73_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:f73c95e3c84116b5fb7320af22e69d252df69d4559f4ce7bdfd59f42902338c7_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:26411"
},
{
"category": "workaround",
"details": "No mitigation is currently available that meets Red Hat Product Security\u2019s standards for usability, deployment, applicability, or stability.",
"product_ids": [
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:4275a746d036f4a674f2a41c584d1061160392818c0bf47f1e831034654c3c26_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:6cc5bc1fe92aecfb16bb3b6ccf833d06dc4484f8f7c9ffb7bedc3b3e49ace7b6_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:b1c91e9df4b0bb9437394b92444480d6417a39bb46c8474d8c8027ab01732ca4_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:b839e918e2b695ee22e954273f016c6ecdebc1f6048e538560b7162f21f9b83a_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:10d6f4417f63579b5ad0c2642e68049bf4b0cbc07393f05f5ccd6d93ad9b4551_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:b413d37ad30595df599c3aa8c7dbfad08acc6fa9a59e5300d6e66746d0ed7c92_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:ed69dc576cf04d5ed270a4a271aa89a5476b46d58a85c937f1c63d6680b08b73_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:f73c95e3c84116b5fb7320af22e69d252df69d4559f4ce7bdfd59f42902338c7_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:41e5ab72e781b1baa72b7158b2fb6af247c52042f828b496a15ff78adde413a3_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:498e05a439ac63b3a42882dd908d086078f697ff8c29dc2effedec8b26dd6521_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:5b0ca20174d1c6cdb3229bf625a906acf64509575c3092895e341ec301c5e92e_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:a214782e432451ca21a5042abd90bf44c57ed01563dfa4d1b81ef72f38ef2265_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:09758d53ef928e8740a95a31572462681a0f70c1c2a6eaa6a72a45fddf4538b7_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:5f4554659280456cba1fb0078dceb46964a9759f1c5ec0a8fa5d4a6f2bc4889f_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:8afff49beebd4fd88ccf687a421bca80c6d3295a38ef9fcef92ab2049d5f78db_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:be1e659b4f556e0dd65aa36141fa4ab940c5bdee4cf96e1425addb95330c9a09_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:1eb37889b6fd96e9bb95257e30918212f290caf50d9dbe76b6e46af067cdeda6_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:8705162c817322ffdabfee74c5fec3ce4f37be667f46634981cb66db0354ef10_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:b73e4453cb4a353d458ce8fe0641dfd1314ba383d836f1631e0cca5d9ffdca4e_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:fa557386c42c9144dcef16957fc0f02b6e631d037cb982c70a043ce11d760556_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:01f59a1b847d03122126fb3db62daa1e924d2bed5da9506061013800085c100b_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:10ed1c8ea558924ddfa1d3ab6a43d34a6edd16e09dac44d593487bc22b2fc7fc_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:94f30db2064d0d62776af04715a67f90d3fb852855c123eff51285122e296328_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:f58c4b24482819abd2cb67f30d3e1034d61dd85a043f76bc3f487e48941bd201_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:087c99d8838e9c2bd9a298fc320e954ea27203bbceaced070930c87f8a6581a8_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:94a7dea2910f1f440c42c143f930886b529b00a3d6a0eab08d06596f157977a9_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:e40d93d9d76fe8aa344905015d75ae13f94622f6e64de432b73af1930136f8de_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:e5244c1382ad165701a9e156618d8452d78e70675d33668cbdaf6d93f99a58f1_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:4275a746d036f4a674f2a41c584d1061160392818c0bf47f1e831034654c3c26_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:6cc5bc1fe92aecfb16bb3b6ccf833d06dc4484f8f7c9ffb7bedc3b3e49ace7b6_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:b1c91e9df4b0bb9437394b92444480d6417a39bb46c8474d8c8027ab01732ca4_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:b839e918e2b695ee22e954273f016c6ecdebc1f6048e538560b7162f21f9b83a_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:10d6f4417f63579b5ad0c2642e68049bf4b0cbc07393f05f5ccd6d93ad9b4551_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:b413d37ad30595df599c3aa8c7dbfad08acc6fa9a59e5300d6e66746d0ed7c92_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:ed69dc576cf04d5ed270a4a271aa89a5476b46d58a85c937f1c63d6680b08b73_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:f73c95e3c84116b5fb7320af22e69d252df69d4559f4ce7bdfd59f42902338c7_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:41e5ab72e781b1baa72b7158b2fb6af247c52042f828b496a15ff78adde413a3_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:498e05a439ac63b3a42882dd908d086078f697ff8c29dc2effedec8b26dd6521_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:5b0ca20174d1c6cdb3229bf625a906acf64509575c3092895e341ec301c5e92e_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:a214782e432451ca21a5042abd90bf44c57ed01563dfa4d1b81ef72f38ef2265_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:09758d53ef928e8740a95a31572462681a0f70c1c2a6eaa6a72a45fddf4538b7_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:5f4554659280456cba1fb0078dceb46964a9759f1c5ec0a8fa5d4a6f2bc4889f_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:8afff49beebd4fd88ccf687a421bca80c6d3295a38ef9fcef92ab2049d5f78db_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:be1e659b4f556e0dd65aa36141fa4ab940c5bdee4cf96e1425addb95330c9a09_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:1eb37889b6fd96e9bb95257e30918212f290caf50d9dbe76b6e46af067cdeda6_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:8705162c817322ffdabfee74c5fec3ce4f37be667f46634981cb66db0354ef10_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:b73e4453cb4a353d458ce8fe0641dfd1314ba383d836f1631e0cca5d9ffdca4e_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:fa557386c42c9144dcef16957fc0f02b6e631d037cb982c70a043ce11d760556_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:01f59a1b847d03122126fb3db62daa1e924d2bed5da9506061013800085c100b_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:10ed1c8ea558924ddfa1d3ab6a43d34a6edd16e09dac44d593487bc22b2fc7fc_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:94f30db2064d0d62776af04715a67f90d3fb852855c123eff51285122e296328_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:f58c4b24482819abd2cb67f30d3e1034d61dd85a043f76bc3f487e48941bd201_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:087c99d8838e9c2bd9a298fc320e954ea27203bbceaced070930c87f8a6581a8_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:94a7dea2910f1f440c42c143f930886b529b00a3d6a0eab08d06596f157977a9_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:e40d93d9d76fe8aa344905015d75ae13f94622f6e64de432b73af1930136f8de_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:e5244c1382ad165701a9e156618d8452d78e70675d33668cbdaf6d93f99a58f1_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh/agent: golang.org/x/crypto/ssh/agent: SSH client panic due to unexpected SSH_AGENT_SUCCESS"
},
{
"cve": "CVE-2025-47914",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2025-11-19T21:01:06.202641+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:4275a746d036f4a674f2a41c584d1061160392818c0bf47f1e831034654c3c26_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:6cc5bc1fe92aecfb16bb3b6ccf833d06dc4484f8f7c9ffb7bedc3b3e49ace7b6_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:b1c91e9df4b0bb9437394b92444480d6417a39bb46c8474d8c8027ab01732ca4_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:b839e918e2b695ee22e954273f016c6ecdebc1f6048e538560b7162f21f9b83a_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:41e5ab72e781b1baa72b7158b2fb6af247c52042f828b496a15ff78adde413a3_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:498e05a439ac63b3a42882dd908d086078f697ff8c29dc2effedec8b26dd6521_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:5b0ca20174d1c6cdb3229bf625a906acf64509575c3092895e341ec301c5e92e_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:a214782e432451ca21a5042abd90bf44c57ed01563dfa4d1b81ef72f38ef2265_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:09758d53ef928e8740a95a31572462681a0f70c1c2a6eaa6a72a45fddf4538b7_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:5f4554659280456cba1fb0078dceb46964a9759f1c5ec0a8fa5d4a6f2bc4889f_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:8afff49beebd4fd88ccf687a421bca80c6d3295a38ef9fcef92ab2049d5f78db_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:be1e659b4f556e0dd65aa36141fa4ab940c5bdee4cf96e1425addb95330c9a09_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:1eb37889b6fd96e9bb95257e30918212f290caf50d9dbe76b6e46af067cdeda6_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:8705162c817322ffdabfee74c5fec3ce4f37be667f46634981cb66db0354ef10_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:b73e4453cb4a353d458ce8fe0641dfd1314ba383d836f1631e0cca5d9ffdca4e_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:fa557386c42c9144dcef16957fc0f02b6e631d037cb982c70a043ce11d760556_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:01f59a1b847d03122126fb3db62daa1e924d2bed5da9506061013800085c100b_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:10ed1c8ea558924ddfa1d3ab6a43d34a6edd16e09dac44d593487bc22b2fc7fc_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:94f30db2064d0d62776af04715a67f90d3fb852855c123eff51285122e296328_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:f58c4b24482819abd2cb67f30d3e1034d61dd85a043f76bc3f487e48941bd201_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:087c99d8838e9c2bd9a298fc320e954ea27203bbceaced070930c87f8a6581a8_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:94a7dea2910f1f440c42c143f930886b529b00a3d6a0eab08d06596f157977a9_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:e40d93d9d76fe8aa344905015d75ae13f94622f6e64de432b73af1930136f8de_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:e5244c1382ad165701a9e156618d8452d78e70675d33668cbdaf6d93f99a58f1_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2416000"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the SSH Agent servers component (golang.org/x/crypto/ssh/agent). This vulnerability allows a remote attacker to cause a denial of service (DoS) by sending a specially crafted, malformed message during new identity requests. The server fails to validate the size of these messages, leading to an out-of-bounds read that can cause the program to panic and terminate.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh/agent: SSH Agent servers: Denial of Service due to malformed messages",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is rated Moderate for Red Hat products. The golang.org/x/crypto/ssh/agent library, when used in SSH Agent servers, does not properly validate the size of messages during new identity requests. A specially crafted malformed message can lead to an out-of-bounds read, causing the program to panic and resulting in a denial of service.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:10d6f4417f63579b5ad0c2642e68049bf4b0cbc07393f05f5ccd6d93ad9b4551_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:b413d37ad30595df599c3aa8c7dbfad08acc6fa9a59e5300d6e66746d0ed7c92_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:ed69dc576cf04d5ed270a4a271aa89a5476b46d58a85c937f1c63d6680b08b73_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:f73c95e3c84116b5fb7320af22e69d252df69d4559f4ce7bdfd59f42902338c7_s390x"
],
"known_not_affected": [
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:4275a746d036f4a674f2a41c584d1061160392818c0bf47f1e831034654c3c26_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:6cc5bc1fe92aecfb16bb3b6ccf833d06dc4484f8f7c9ffb7bedc3b3e49ace7b6_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:b1c91e9df4b0bb9437394b92444480d6417a39bb46c8474d8c8027ab01732ca4_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:b839e918e2b695ee22e954273f016c6ecdebc1f6048e538560b7162f21f9b83a_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:41e5ab72e781b1baa72b7158b2fb6af247c52042f828b496a15ff78adde413a3_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:498e05a439ac63b3a42882dd908d086078f697ff8c29dc2effedec8b26dd6521_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:5b0ca20174d1c6cdb3229bf625a906acf64509575c3092895e341ec301c5e92e_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:a214782e432451ca21a5042abd90bf44c57ed01563dfa4d1b81ef72f38ef2265_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:09758d53ef928e8740a95a31572462681a0f70c1c2a6eaa6a72a45fddf4538b7_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:5f4554659280456cba1fb0078dceb46964a9759f1c5ec0a8fa5d4a6f2bc4889f_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:8afff49beebd4fd88ccf687a421bca80c6d3295a38ef9fcef92ab2049d5f78db_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:be1e659b4f556e0dd65aa36141fa4ab940c5bdee4cf96e1425addb95330c9a09_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:1eb37889b6fd96e9bb95257e30918212f290caf50d9dbe76b6e46af067cdeda6_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:8705162c817322ffdabfee74c5fec3ce4f37be667f46634981cb66db0354ef10_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:b73e4453cb4a353d458ce8fe0641dfd1314ba383d836f1631e0cca5d9ffdca4e_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:fa557386c42c9144dcef16957fc0f02b6e631d037cb982c70a043ce11d760556_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:01f59a1b847d03122126fb3db62daa1e924d2bed5da9506061013800085c100b_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:10ed1c8ea558924ddfa1d3ab6a43d34a6edd16e09dac44d593487bc22b2fc7fc_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:94f30db2064d0d62776af04715a67f90d3fb852855c123eff51285122e296328_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:f58c4b24482819abd2cb67f30d3e1034d61dd85a043f76bc3f487e48941bd201_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:087c99d8838e9c2bd9a298fc320e954ea27203bbceaced070930c87f8a6581a8_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:94a7dea2910f1f440c42c143f930886b529b00a3d6a0eab08d06596f157977a9_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:e40d93d9d76fe8aa344905015d75ae13f94622f6e64de432b73af1930136f8de_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:e5244c1382ad165701a9e156618d8452d78e70675d33668cbdaf6d93f99a58f1_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-47914"
},
{
"category": "external",
"summary": "RHBZ#2416000",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2416000"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-47914",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-47914"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-47914",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-47914"
},
{
"category": "external",
"summary": "https://go.dev/cl/721960",
"url": "https://go.dev/cl/721960"
},
{
"category": "external",
"summary": "https://go.dev/issue/76364",
"url": "https://go.dev/issue/76364"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/w-oX3UxNcZA",
"url": "https://groups.google.com/g/golang-announce/c/w-oX3UxNcZA"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-4135",
"url": "https://pkg.go.dev/vuln/GO-2025-4135"
}
],
"release_date": "2025-11-19T20:33:43.126000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-06-16T16:32:52+00:00",
"details": "The container images provided by this update can be downloaded from the\nRed Hat container registry at registry.redhat.io using the \"podman pull\" command.",
"product_ids": [
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:10d6f4417f63579b5ad0c2642e68049bf4b0cbc07393f05f5ccd6d93ad9b4551_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:b413d37ad30595df599c3aa8c7dbfad08acc6fa9a59e5300d6e66746d0ed7c92_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:ed69dc576cf04d5ed270a4a271aa89a5476b46d58a85c937f1c63d6680b08b73_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:f73c95e3c84116b5fb7320af22e69d252df69d4559f4ce7bdfd59f42902338c7_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:26411"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:4275a746d036f4a674f2a41c584d1061160392818c0bf47f1e831034654c3c26_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:6cc5bc1fe92aecfb16bb3b6ccf833d06dc4484f8f7c9ffb7bedc3b3e49ace7b6_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:b1c91e9df4b0bb9437394b92444480d6417a39bb46c8474d8c8027ab01732ca4_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:b839e918e2b695ee22e954273f016c6ecdebc1f6048e538560b7162f21f9b83a_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:10d6f4417f63579b5ad0c2642e68049bf4b0cbc07393f05f5ccd6d93ad9b4551_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:b413d37ad30595df599c3aa8c7dbfad08acc6fa9a59e5300d6e66746d0ed7c92_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:ed69dc576cf04d5ed270a4a271aa89a5476b46d58a85c937f1c63d6680b08b73_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:f73c95e3c84116b5fb7320af22e69d252df69d4559f4ce7bdfd59f42902338c7_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:41e5ab72e781b1baa72b7158b2fb6af247c52042f828b496a15ff78adde413a3_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:498e05a439ac63b3a42882dd908d086078f697ff8c29dc2effedec8b26dd6521_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:5b0ca20174d1c6cdb3229bf625a906acf64509575c3092895e341ec301c5e92e_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:a214782e432451ca21a5042abd90bf44c57ed01563dfa4d1b81ef72f38ef2265_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:09758d53ef928e8740a95a31572462681a0f70c1c2a6eaa6a72a45fddf4538b7_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:5f4554659280456cba1fb0078dceb46964a9759f1c5ec0a8fa5d4a6f2bc4889f_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:8afff49beebd4fd88ccf687a421bca80c6d3295a38ef9fcef92ab2049d5f78db_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:be1e659b4f556e0dd65aa36141fa4ab940c5bdee4cf96e1425addb95330c9a09_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:1eb37889b6fd96e9bb95257e30918212f290caf50d9dbe76b6e46af067cdeda6_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:8705162c817322ffdabfee74c5fec3ce4f37be667f46634981cb66db0354ef10_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:b73e4453cb4a353d458ce8fe0641dfd1314ba383d836f1631e0cca5d9ffdca4e_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:fa557386c42c9144dcef16957fc0f02b6e631d037cb982c70a043ce11d760556_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:01f59a1b847d03122126fb3db62daa1e924d2bed5da9506061013800085c100b_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:10ed1c8ea558924ddfa1d3ab6a43d34a6edd16e09dac44d593487bc22b2fc7fc_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:94f30db2064d0d62776af04715a67f90d3fb852855c123eff51285122e296328_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:f58c4b24482819abd2cb67f30d3e1034d61dd85a043f76bc3f487e48941bd201_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:087c99d8838e9c2bd9a298fc320e954ea27203bbceaced070930c87f8a6581a8_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:94a7dea2910f1f440c42c143f930886b529b00a3d6a0eab08d06596f157977a9_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:e40d93d9d76fe8aa344905015d75ae13f94622f6e64de432b73af1930136f8de_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:e5244c1382ad165701a9e156618d8452d78e70675d33668cbdaf6d93f99a58f1_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang.org/x/crypto/ssh/agent: SSH Agent servers: Denial of Service due to malformed messages"
},
{
"cve": "CVE-2025-58181",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2025-11-19T21:00:50.197590+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:4275a746d036f4a674f2a41c584d1061160392818c0bf47f1e831034654c3c26_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:6cc5bc1fe92aecfb16bb3b6ccf833d06dc4484f8f7c9ffb7bedc3b3e49ace7b6_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:b1c91e9df4b0bb9437394b92444480d6417a39bb46c8474d8c8027ab01732ca4_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:b839e918e2b695ee22e954273f016c6ecdebc1f6048e538560b7162f21f9b83a_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:41e5ab72e781b1baa72b7158b2fb6af247c52042f828b496a15ff78adde413a3_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:498e05a439ac63b3a42882dd908d086078f697ff8c29dc2effedec8b26dd6521_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:5b0ca20174d1c6cdb3229bf625a906acf64509575c3092895e341ec301c5e92e_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:a214782e432451ca21a5042abd90bf44c57ed01563dfa4d1b81ef72f38ef2265_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:09758d53ef928e8740a95a31572462681a0f70c1c2a6eaa6a72a45fddf4538b7_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:5f4554659280456cba1fb0078dceb46964a9759f1c5ec0a8fa5d4a6f2bc4889f_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:8afff49beebd4fd88ccf687a421bca80c6d3295a38ef9fcef92ab2049d5f78db_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:be1e659b4f556e0dd65aa36141fa4ab940c5bdee4cf96e1425addb95330c9a09_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:1eb37889b6fd96e9bb95257e30918212f290caf50d9dbe76b6e46af067cdeda6_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:8705162c817322ffdabfee74c5fec3ce4f37be667f46634981cb66db0354ef10_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:b73e4453cb4a353d458ce8fe0641dfd1314ba383d836f1631e0cca5d9ffdca4e_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:fa557386c42c9144dcef16957fc0f02b6e631d037cb982c70a043ce11d760556_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:01f59a1b847d03122126fb3db62daa1e924d2bed5da9506061013800085c100b_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:10ed1c8ea558924ddfa1d3ab6a43d34a6edd16e09dac44d593487bc22b2fc7fc_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:94f30db2064d0d62776af04715a67f90d3fb852855c123eff51285122e296328_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:f58c4b24482819abd2cb67f30d3e1034d61dd85a043f76bc3f487e48941bd201_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:087c99d8838e9c2bd9a298fc320e954ea27203bbceaced070930c87f8a6581a8_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:94a7dea2910f1f440c42c143f930886b529b00a3d6a0eab08d06596f157977a9_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:e40d93d9d76fe8aa344905015d75ae13f94622f6e64de432b73af1930136f8de_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:e5244c1382ad165701a9e156618d8452d78e70675d33668cbdaf6d93f99a58f1_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2415997"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/crypto/ssh. An attacker can exploit this vulnerability by sending specially crafted GSSAPI (Generic Security Service Application Program Interface) authentication requests to an SSH (Secure Shell) server. The server fails to validate the number of mechanisms specified in these requests, leading to unbounded memory consumption. This can result in a Denial of Service (DoS), making the SSH server unavailable to legitimate users.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Denial of Service via unbounded memory consumption in GSSAPI authentication",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is rated Moderate for Red Hat. SSH servers utilizing `golang.org/x/crypto/ssh` and configured to process GSSAPI authentication requests are susceptible to unbounded memory consumption. An attacker can exploit this by sending specially crafted GSSAPI authentication requests, potentially leading to a denial of service.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:10d6f4417f63579b5ad0c2642e68049bf4b0cbc07393f05f5ccd6d93ad9b4551_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:b413d37ad30595df599c3aa8c7dbfad08acc6fa9a59e5300d6e66746d0ed7c92_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:ed69dc576cf04d5ed270a4a271aa89a5476b46d58a85c937f1c63d6680b08b73_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:f73c95e3c84116b5fb7320af22e69d252df69d4559f4ce7bdfd59f42902338c7_s390x"
],
"known_not_affected": [
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:4275a746d036f4a674f2a41c584d1061160392818c0bf47f1e831034654c3c26_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:6cc5bc1fe92aecfb16bb3b6ccf833d06dc4484f8f7c9ffb7bedc3b3e49ace7b6_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:b1c91e9df4b0bb9437394b92444480d6417a39bb46c8474d8c8027ab01732ca4_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:b839e918e2b695ee22e954273f016c6ecdebc1f6048e538560b7162f21f9b83a_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:41e5ab72e781b1baa72b7158b2fb6af247c52042f828b496a15ff78adde413a3_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:498e05a439ac63b3a42882dd908d086078f697ff8c29dc2effedec8b26dd6521_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:5b0ca20174d1c6cdb3229bf625a906acf64509575c3092895e341ec301c5e92e_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:a214782e432451ca21a5042abd90bf44c57ed01563dfa4d1b81ef72f38ef2265_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:09758d53ef928e8740a95a31572462681a0f70c1c2a6eaa6a72a45fddf4538b7_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:5f4554659280456cba1fb0078dceb46964a9759f1c5ec0a8fa5d4a6f2bc4889f_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:8afff49beebd4fd88ccf687a421bca80c6d3295a38ef9fcef92ab2049d5f78db_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:be1e659b4f556e0dd65aa36141fa4ab940c5bdee4cf96e1425addb95330c9a09_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:1eb37889b6fd96e9bb95257e30918212f290caf50d9dbe76b6e46af067cdeda6_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:8705162c817322ffdabfee74c5fec3ce4f37be667f46634981cb66db0354ef10_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:b73e4453cb4a353d458ce8fe0641dfd1314ba383d836f1631e0cca5d9ffdca4e_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:fa557386c42c9144dcef16957fc0f02b6e631d037cb982c70a043ce11d760556_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:01f59a1b847d03122126fb3db62daa1e924d2bed5da9506061013800085c100b_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:10ed1c8ea558924ddfa1d3ab6a43d34a6edd16e09dac44d593487bc22b2fc7fc_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:94f30db2064d0d62776af04715a67f90d3fb852855c123eff51285122e296328_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:f58c4b24482819abd2cb67f30d3e1034d61dd85a043f76bc3f487e48941bd201_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:087c99d8838e9c2bd9a298fc320e954ea27203bbceaced070930c87f8a6581a8_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:94a7dea2910f1f440c42c143f930886b529b00a3d6a0eab08d06596f157977a9_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:e40d93d9d76fe8aa344905015d75ae13f94622f6e64de432b73af1930136f8de_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:e5244c1382ad165701a9e156618d8452d78e70675d33668cbdaf6d93f99a58f1_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-58181"
},
{
"category": "external",
"summary": "RHBZ#2415997",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2415997"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-58181",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-58181"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-58181",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-58181"
},
{
"category": "external",
"summary": "https://go.dev/cl/721961",
"url": "https://go.dev/cl/721961"
},
{
"category": "external",
"summary": "https://go.dev/issue/76363",
"url": "https://go.dev/issue/76363"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/w-oX3UxNcZA",
"url": "https://groups.google.com/g/golang-announce/c/w-oX3UxNcZA"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-4134",
"url": "https://pkg.go.dev/vuln/GO-2025-4134"
}
],
"release_date": "2025-11-19T20:33:42.795000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-06-16T16:32:52+00:00",
"details": "The container images provided by this update can be downloaded from the\nRed Hat container registry at registry.redhat.io using the \"podman pull\" command.",
"product_ids": [
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:10d6f4417f63579b5ad0c2642e68049bf4b0cbc07393f05f5ccd6d93ad9b4551_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:b413d37ad30595df599c3aa8c7dbfad08acc6fa9a59e5300d6e66746d0ed7c92_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:ed69dc576cf04d5ed270a4a271aa89a5476b46d58a85c937f1c63d6680b08b73_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:f73c95e3c84116b5fb7320af22e69d252df69d4559f4ce7bdfd59f42902338c7_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:26411"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:4275a746d036f4a674f2a41c584d1061160392818c0bf47f1e831034654c3c26_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:6cc5bc1fe92aecfb16bb3b6ccf833d06dc4484f8f7c9ffb7bedc3b3e49ace7b6_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:b1c91e9df4b0bb9437394b92444480d6417a39bb46c8474d8c8027ab01732ca4_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:b839e918e2b695ee22e954273f016c6ecdebc1f6048e538560b7162f21f9b83a_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:10d6f4417f63579b5ad0c2642e68049bf4b0cbc07393f05f5ccd6d93ad9b4551_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:b413d37ad30595df599c3aa8c7dbfad08acc6fa9a59e5300d6e66746d0ed7c92_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:ed69dc576cf04d5ed270a4a271aa89a5476b46d58a85c937f1c63d6680b08b73_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:f73c95e3c84116b5fb7320af22e69d252df69d4559f4ce7bdfd59f42902338c7_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:41e5ab72e781b1baa72b7158b2fb6af247c52042f828b496a15ff78adde413a3_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:498e05a439ac63b3a42882dd908d086078f697ff8c29dc2effedec8b26dd6521_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:5b0ca20174d1c6cdb3229bf625a906acf64509575c3092895e341ec301c5e92e_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:a214782e432451ca21a5042abd90bf44c57ed01563dfa4d1b81ef72f38ef2265_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:09758d53ef928e8740a95a31572462681a0f70c1c2a6eaa6a72a45fddf4538b7_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:5f4554659280456cba1fb0078dceb46964a9759f1c5ec0a8fa5d4a6f2bc4889f_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:8afff49beebd4fd88ccf687a421bca80c6d3295a38ef9fcef92ab2049d5f78db_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:be1e659b4f556e0dd65aa36141fa4ab940c5bdee4cf96e1425addb95330c9a09_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:1eb37889b6fd96e9bb95257e30918212f290caf50d9dbe76b6e46af067cdeda6_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:8705162c817322ffdabfee74c5fec3ce4f37be667f46634981cb66db0354ef10_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:b73e4453cb4a353d458ce8fe0641dfd1314ba383d836f1631e0cca5d9ffdca4e_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:fa557386c42c9144dcef16957fc0f02b6e631d037cb982c70a043ce11d760556_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:01f59a1b847d03122126fb3db62daa1e924d2bed5da9506061013800085c100b_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:10ed1c8ea558924ddfa1d3ab6a43d34a6edd16e09dac44d593487bc22b2fc7fc_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:94f30db2064d0d62776af04715a67f90d3fb852855c123eff51285122e296328_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:f58c4b24482819abd2cb67f30d3e1034d61dd85a043f76bc3f487e48941bd201_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:087c99d8838e9c2bd9a298fc320e954ea27203bbceaced070930c87f8a6581a8_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:94a7dea2910f1f440c42c143f930886b529b00a3d6a0eab08d06596f157977a9_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:e40d93d9d76fe8aa344905015d75ae13f94622f6e64de432b73af1930136f8de_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:e5244c1382ad165701a9e156618d8452d78e70675d33668cbdaf6d93f99a58f1_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Denial of Service via unbounded memory consumption in GSSAPI authentication"
},
{
"cve": "CVE-2025-59343",
"cwe": {
"id": "CWE-22",
"name": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)"
},
"discovery_date": "2025-09-24T18:01:19.612438+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:4275a746d036f4a674f2a41c584d1061160392818c0bf47f1e831034654c3c26_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:6cc5bc1fe92aecfb16bb3b6ccf833d06dc4484f8f7c9ffb7bedc3b3e49ace7b6_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:b1c91e9df4b0bb9437394b92444480d6417a39bb46c8474d8c8027ab01732ca4_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:b839e918e2b695ee22e954273f016c6ecdebc1f6048e538560b7162f21f9b83a_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:10d6f4417f63579b5ad0c2642e68049bf4b0cbc07393f05f5ccd6d93ad9b4551_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:b413d37ad30595df599c3aa8c7dbfad08acc6fa9a59e5300d6e66746d0ed7c92_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:ed69dc576cf04d5ed270a4a271aa89a5476b46d58a85c937f1c63d6680b08b73_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:f73c95e3c84116b5fb7320af22e69d252df69d4559f4ce7bdfd59f42902338c7_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:41e5ab72e781b1baa72b7158b2fb6af247c52042f828b496a15ff78adde413a3_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:498e05a439ac63b3a42882dd908d086078f697ff8c29dc2effedec8b26dd6521_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:5b0ca20174d1c6cdb3229bf625a906acf64509575c3092895e341ec301c5e92e_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:a214782e432451ca21a5042abd90bf44c57ed01563dfa4d1b81ef72f38ef2265_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:09758d53ef928e8740a95a31572462681a0f70c1c2a6eaa6a72a45fddf4538b7_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:5f4554659280456cba1fb0078dceb46964a9759f1c5ec0a8fa5d4a6f2bc4889f_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:8afff49beebd4fd88ccf687a421bca80c6d3295a38ef9fcef92ab2049d5f78db_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:be1e659b4f556e0dd65aa36141fa4ab940c5bdee4cf96e1425addb95330c9a09_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:01f59a1b847d03122126fb3db62daa1e924d2bed5da9506061013800085c100b_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:10ed1c8ea558924ddfa1d3ab6a43d34a6edd16e09dac44d593487bc22b2fc7fc_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:94f30db2064d0d62776af04715a67f90d3fb852855c123eff51285122e296328_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:f58c4b24482819abd2cb67f30d3e1034d61dd85a043f76bc3f487e48941bd201_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:087c99d8838e9c2bd9a298fc320e954ea27203bbceaced070930c87f8a6581a8_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:94a7dea2910f1f440c42c143f930886b529b00a3d6a0eab08d06596f157977a9_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:e40d93d9d76fe8aa344905015d75ae13f94622f6e64de432b73af1930136f8de_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:e5244c1382ad165701a9e156618d8452d78e70675d33668cbdaf6d93f99a58f1_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2397901"
}
],
"notes": [
{
"category": "description",
"text": "A symlink validation bypass flaw has been discovered in the npm tar-fs library. Affected versions are vulnerable to a symlink validation bypass if the destination directory is predictable with a specific tarball.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tar-fs: tar-fs symlink validation bypass",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:1eb37889b6fd96e9bb95257e30918212f290caf50d9dbe76b6e46af067cdeda6_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:8705162c817322ffdabfee74c5fec3ce4f37be667f46634981cb66db0354ef10_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:b73e4453cb4a353d458ce8fe0641dfd1314ba383d836f1631e0cca5d9ffdca4e_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:fa557386c42c9144dcef16957fc0f02b6e631d037cb982c70a043ce11d760556_amd64"
],
"known_not_affected": [
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:4275a746d036f4a674f2a41c584d1061160392818c0bf47f1e831034654c3c26_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:6cc5bc1fe92aecfb16bb3b6ccf833d06dc4484f8f7c9ffb7bedc3b3e49ace7b6_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:b1c91e9df4b0bb9437394b92444480d6417a39bb46c8474d8c8027ab01732ca4_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:b839e918e2b695ee22e954273f016c6ecdebc1f6048e538560b7162f21f9b83a_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:10d6f4417f63579b5ad0c2642e68049bf4b0cbc07393f05f5ccd6d93ad9b4551_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:b413d37ad30595df599c3aa8c7dbfad08acc6fa9a59e5300d6e66746d0ed7c92_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:ed69dc576cf04d5ed270a4a271aa89a5476b46d58a85c937f1c63d6680b08b73_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:f73c95e3c84116b5fb7320af22e69d252df69d4559f4ce7bdfd59f42902338c7_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:41e5ab72e781b1baa72b7158b2fb6af247c52042f828b496a15ff78adde413a3_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:498e05a439ac63b3a42882dd908d086078f697ff8c29dc2effedec8b26dd6521_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:5b0ca20174d1c6cdb3229bf625a906acf64509575c3092895e341ec301c5e92e_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:a214782e432451ca21a5042abd90bf44c57ed01563dfa4d1b81ef72f38ef2265_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:09758d53ef928e8740a95a31572462681a0f70c1c2a6eaa6a72a45fddf4538b7_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:5f4554659280456cba1fb0078dceb46964a9759f1c5ec0a8fa5d4a6f2bc4889f_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:8afff49beebd4fd88ccf687a421bca80c6d3295a38ef9fcef92ab2049d5f78db_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:be1e659b4f556e0dd65aa36141fa4ab940c5bdee4cf96e1425addb95330c9a09_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:01f59a1b847d03122126fb3db62daa1e924d2bed5da9506061013800085c100b_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:10ed1c8ea558924ddfa1d3ab6a43d34a6edd16e09dac44d593487bc22b2fc7fc_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:94f30db2064d0d62776af04715a67f90d3fb852855c123eff51285122e296328_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:f58c4b24482819abd2cb67f30d3e1034d61dd85a043f76bc3f487e48941bd201_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:087c99d8838e9c2bd9a298fc320e954ea27203bbceaced070930c87f8a6581a8_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:94a7dea2910f1f440c42c143f930886b529b00a3d6a0eab08d06596f157977a9_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:e40d93d9d76fe8aa344905015d75ae13f94622f6e64de432b73af1930136f8de_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:e5244c1382ad165701a9e156618d8452d78e70675d33668cbdaf6d93f99a58f1_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-59343"
},
{
"category": "external",
"summary": "RHBZ#2397901",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2397901"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-59343",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-59343"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-59343",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-59343"
},
{
"category": "external",
"summary": "https://github.com/mafintosh/tar-fs/commit/0bd54cdf06da2b7b5b95cd4b062c9f4e0a8c4e09",
"url": "https://github.com/mafintosh/tar-fs/commit/0bd54cdf06da2b7b5b95cd4b062c9f4e0a8c4e09"
},
{
"category": "external",
"summary": "https://github.com/mafintosh/tar-fs/security/advisories/GHSA-vj76-c3g6-qr5v",
"url": "https://github.com/mafintosh/tar-fs/security/advisories/GHSA-vj76-c3g6-qr5v"
}
],
"release_date": "2025-09-24T17:43:34.728000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-06-16T16:32:52+00:00",
"details": "The container images provided by this update can be downloaded from the\nRed Hat container registry at registry.redhat.io using the \"podman pull\" command.",
"product_ids": [
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:1eb37889b6fd96e9bb95257e30918212f290caf50d9dbe76b6e46af067cdeda6_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:8705162c817322ffdabfee74c5fec3ce4f37be667f46634981cb66db0354ef10_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:b73e4453cb4a353d458ce8fe0641dfd1314ba383d836f1631e0cca5d9ffdca4e_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:fa557386c42c9144dcef16957fc0f02b6e631d037cb982c70a043ce11d760556_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:26411"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:4275a746d036f4a674f2a41c584d1061160392818c0bf47f1e831034654c3c26_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:6cc5bc1fe92aecfb16bb3b6ccf833d06dc4484f8f7c9ffb7bedc3b3e49ace7b6_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:b1c91e9df4b0bb9437394b92444480d6417a39bb46c8474d8c8027ab01732ca4_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:b839e918e2b695ee22e954273f016c6ecdebc1f6048e538560b7162f21f9b83a_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:10d6f4417f63579b5ad0c2642e68049bf4b0cbc07393f05f5ccd6d93ad9b4551_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:b413d37ad30595df599c3aa8c7dbfad08acc6fa9a59e5300d6e66746d0ed7c92_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:ed69dc576cf04d5ed270a4a271aa89a5476b46d58a85c937f1c63d6680b08b73_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:f73c95e3c84116b5fb7320af22e69d252df69d4559f4ce7bdfd59f42902338c7_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:41e5ab72e781b1baa72b7158b2fb6af247c52042f828b496a15ff78adde413a3_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:498e05a439ac63b3a42882dd908d086078f697ff8c29dc2effedec8b26dd6521_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:5b0ca20174d1c6cdb3229bf625a906acf64509575c3092895e341ec301c5e92e_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:a214782e432451ca21a5042abd90bf44c57ed01563dfa4d1b81ef72f38ef2265_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:09758d53ef928e8740a95a31572462681a0f70c1c2a6eaa6a72a45fddf4538b7_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:5f4554659280456cba1fb0078dceb46964a9759f1c5ec0a8fa5d4a6f2bc4889f_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:8afff49beebd4fd88ccf687a421bca80c6d3295a38ef9fcef92ab2049d5f78db_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:be1e659b4f556e0dd65aa36141fa4ab940c5bdee4cf96e1425addb95330c9a09_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:1eb37889b6fd96e9bb95257e30918212f290caf50d9dbe76b6e46af067cdeda6_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:8705162c817322ffdabfee74c5fec3ce4f37be667f46634981cb66db0354ef10_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:b73e4453cb4a353d458ce8fe0641dfd1314ba383d836f1631e0cca5d9ffdca4e_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:fa557386c42c9144dcef16957fc0f02b6e631d037cb982c70a043ce11d760556_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:01f59a1b847d03122126fb3db62daa1e924d2bed5da9506061013800085c100b_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:10ed1c8ea558924ddfa1d3ab6a43d34a6edd16e09dac44d593487bc22b2fc7fc_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:94f30db2064d0d62776af04715a67f90d3fb852855c123eff51285122e296328_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:f58c4b24482819abd2cb67f30d3e1034d61dd85a043f76bc3f487e48941bd201_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:087c99d8838e9c2bd9a298fc320e954ea27203bbceaced070930c87f8a6581a8_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:94a7dea2910f1f440c42c143f930886b529b00a3d6a0eab08d06596f157977a9_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:e40d93d9d76fe8aa344905015d75ae13f94622f6e64de432b73af1930136f8de_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:e5244c1382ad165701a9e156618d8452d78e70675d33668cbdaf6d93f99a58f1_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:4275a746d036f4a674f2a41c584d1061160392818c0bf47f1e831034654c3c26_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:6cc5bc1fe92aecfb16bb3b6ccf833d06dc4484f8f7c9ffb7bedc3b3e49ace7b6_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:b1c91e9df4b0bb9437394b92444480d6417a39bb46c8474d8c8027ab01732ca4_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:b839e918e2b695ee22e954273f016c6ecdebc1f6048e538560b7162f21f9b83a_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:10d6f4417f63579b5ad0c2642e68049bf4b0cbc07393f05f5ccd6d93ad9b4551_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:b413d37ad30595df599c3aa8c7dbfad08acc6fa9a59e5300d6e66746d0ed7c92_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:ed69dc576cf04d5ed270a4a271aa89a5476b46d58a85c937f1c63d6680b08b73_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:f73c95e3c84116b5fb7320af22e69d252df69d4559f4ce7bdfd59f42902338c7_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:41e5ab72e781b1baa72b7158b2fb6af247c52042f828b496a15ff78adde413a3_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:498e05a439ac63b3a42882dd908d086078f697ff8c29dc2effedec8b26dd6521_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:5b0ca20174d1c6cdb3229bf625a906acf64509575c3092895e341ec301c5e92e_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:a214782e432451ca21a5042abd90bf44c57ed01563dfa4d1b81ef72f38ef2265_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:09758d53ef928e8740a95a31572462681a0f70c1c2a6eaa6a72a45fddf4538b7_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:5f4554659280456cba1fb0078dceb46964a9759f1c5ec0a8fa5d4a6f2bc4889f_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:8afff49beebd4fd88ccf687a421bca80c6d3295a38ef9fcef92ab2049d5f78db_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:be1e659b4f556e0dd65aa36141fa4ab940c5bdee4cf96e1425addb95330c9a09_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:1eb37889b6fd96e9bb95257e30918212f290caf50d9dbe76b6e46af067cdeda6_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:8705162c817322ffdabfee74c5fec3ce4f37be667f46634981cb66db0354ef10_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:b73e4453cb4a353d458ce8fe0641dfd1314ba383d836f1631e0cca5d9ffdca4e_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:fa557386c42c9144dcef16957fc0f02b6e631d037cb982c70a043ce11d760556_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:01f59a1b847d03122126fb3db62daa1e924d2bed5da9506061013800085c100b_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:10ed1c8ea558924ddfa1d3ab6a43d34a6edd16e09dac44d593487bc22b2fc7fc_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:94f30db2064d0d62776af04715a67f90d3fb852855c123eff51285122e296328_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:f58c4b24482819abd2cb67f30d3e1034d61dd85a043f76bc3f487e48941bd201_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:087c99d8838e9c2bd9a298fc320e954ea27203bbceaced070930c87f8a6581a8_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:94a7dea2910f1f440c42c143f930886b529b00a3d6a0eab08d06596f157977a9_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:e40d93d9d76fe8aa344905015d75ae13f94622f6e64de432b73af1930136f8de_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:e5244c1382ad165701a9e156618d8452d78e70675d33668cbdaf6d93f99a58f1_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "tar-fs: tar-fs symlink validation bypass"
},
{
"cve": "CVE-2025-64718",
"cwe": {
"id": "CWE-1321",
"name": "Improperly Controlled Modification of Object Prototype Attributes (\u0027Prototype Pollution\u0027)"
},
"discovery_date": "2025-11-13T16:01:24.744054+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:4275a746d036f4a674f2a41c584d1061160392818c0bf47f1e831034654c3c26_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:6cc5bc1fe92aecfb16bb3b6ccf833d06dc4484f8f7c9ffb7bedc3b3e49ace7b6_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:b1c91e9df4b0bb9437394b92444480d6417a39bb46c8474d8c8027ab01732ca4_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:b839e918e2b695ee22e954273f016c6ecdebc1f6048e538560b7162f21f9b83a_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:41e5ab72e781b1baa72b7158b2fb6af247c52042f828b496a15ff78adde413a3_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:498e05a439ac63b3a42882dd908d086078f697ff8c29dc2effedec8b26dd6521_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:5b0ca20174d1c6cdb3229bf625a906acf64509575c3092895e341ec301c5e92e_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:a214782e432451ca21a5042abd90bf44c57ed01563dfa4d1b81ef72f38ef2265_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:09758d53ef928e8740a95a31572462681a0f70c1c2a6eaa6a72a45fddf4538b7_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:5f4554659280456cba1fb0078dceb46964a9759f1c5ec0a8fa5d4a6f2bc4889f_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:8afff49beebd4fd88ccf687a421bca80c6d3295a38ef9fcef92ab2049d5f78db_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:be1e659b4f556e0dd65aa36141fa4ab940c5bdee4cf96e1425addb95330c9a09_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:1eb37889b6fd96e9bb95257e30918212f290caf50d9dbe76b6e46af067cdeda6_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:8705162c817322ffdabfee74c5fec3ce4f37be667f46634981cb66db0354ef10_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:b73e4453cb4a353d458ce8fe0641dfd1314ba383d836f1631e0cca5d9ffdca4e_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:fa557386c42c9144dcef16957fc0f02b6e631d037cb982c70a043ce11d760556_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:01f59a1b847d03122126fb3db62daa1e924d2bed5da9506061013800085c100b_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:10ed1c8ea558924ddfa1d3ab6a43d34a6edd16e09dac44d593487bc22b2fc7fc_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:94f30db2064d0d62776af04715a67f90d3fb852855c123eff51285122e296328_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:f58c4b24482819abd2cb67f30d3e1034d61dd85a043f76bc3f487e48941bd201_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:087c99d8838e9c2bd9a298fc320e954ea27203bbceaced070930c87f8a6581a8_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:94a7dea2910f1f440c42c143f930886b529b00a3d6a0eab08d06596f157977a9_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:e40d93d9d76fe8aa344905015d75ae13f94622f6e64de432b73af1930136f8de_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:e5244c1382ad165701a9e156618d8452d78e70675d33668cbdaf6d93f99a58f1_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2414854"
}
],
"notes": [
{
"category": "description",
"text": "A prototype pollution flaw has been discovered in the js-yaml npm library. It\u0027s possible for an attacker to modify the prototype of the result of a parsed yaml document via prototype pollution (__proto__). All users who parse untrusted yaml documents may be impacted.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "js-yaml: js-yaml prototype pollution in merge",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:10d6f4417f63579b5ad0c2642e68049bf4b0cbc07393f05f5ccd6d93ad9b4551_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:b413d37ad30595df599c3aa8c7dbfad08acc6fa9a59e5300d6e66746d0ed7c92_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:ed69dc576cf04d5ed270a4a271aa89a5476b46d58a85c937f1c63d6680b08b73_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:f73c95e3c84116b5fb7320af22e69d252df69d4559f4ce7bdfd59f42902338c7_s390x"
],
"known_not_affected": [
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:4275a746d036f4a674f2a41c584d1061160392818c0bf47f1e831034654c3c26_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:6cc5bc1fe92aecfb16bb3b6ccf833d06dc4484f8f7c9ffb7bedc3b3e49ace7b6_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:b1c91e9df4b0bb9437394b92444480d6417a39bb46c8474d8c8027ab01732ca4_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:b839e918e2b695ee22e954273f016c6ecdebc1f6048e538560b7162f21f9b83a_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:41e5ab72e781b1baa72b7158b2fb6af247c52042f828b496a15ff78adde413a3_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:498e05a439ac63b3a42882dd908d086078f697ff8c29dc2effedec8b26dd6521_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:5b0ca20174d1c6cdb3229bf625a906acf64509575c3092895e341ec301c5e92e_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:a214782e432451ca21a5042abd90bf44c57ed01563dfa4d1b81ef72f38ef2265_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:09758d53ef928e8740a95a31572462681a0f70c1c2a6eaa6a72a45fddf4538b7_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:5f4554659280456cba1fb0078dceb46964a9759f1c5ec0a8fa5d4a6f2bc4889f_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:8afff49beebd4fd88ccf687a421bca80c6d3295a38ef9fcef92ab2049d5f78db_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:be1e659b4f556e0dd65aa36141fa4ab940c5bdee4cf96e1425addb95330c9a09_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:1eb37889b6fd96e9bb95257e30918212f290caf50d9dbe76b6e46af067cdeda6_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:8705162c817322ffdabfee74c5fec3ce4f37be667f46634981cb66db0354ef10_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:b73e4453cb4a353d458ce8fe0641dfd1314ba383d836f1631e0cca5d9ffdca4e_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:fa557386c42c9144dcef16957fc0f02b6e631d037cb982c70a043ce11d760556_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:01f59a1b847d03122126fb3db62daa1e924d2bed5da9506061013800085c100b_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:10ed1c8ea558924ddfa1d3ab6a43d34a6edd16e09dac44d593487bc22b2fc7fc_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:94f30db2064d0d62776af04715a67f90d3fb852855c123eff51285122e296328_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:f58c4b24482819abd2cb67f30d3e1034d61dd85a043f76bc3f487e48941bd201_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:087c99d8838e9c2bd9a298fc320e954ea27203bbceaced070930c87f8a6581a8_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:94a7dea2910f1f440c42c143f930886b529b00a3d6a0eab08d06596f157977a9_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:e40d93d9d76fe8aa344905015d75ae13f94622f6e64de432b73af1930136f8de_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:e5244c1382ad165701a9e156618d8452d78e70675d33668cbdaf6d93f99a58f1_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-64718"
},
{
"category": "external",
"summary": "RHBZ#2414854",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2414854"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-64718",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-64718"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-64718",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-64718"
},
{
"category": "external",
"summary": "https://github.com/nodeca/js-yaml/commit/383665ff4248ec2192d1274e934462bb30426879",
"url": "https://github.com/nodeca/js-yaml/commit/383665ff4248ec2192d1274e934462bb30426879"
},
{
"category": "external",
"summary": "https://github.com/nodeca/js-yaml/security/advisories/GHSA-mh29-5h37-fv8m",
"url": "https://github.com/nodeca/js-yaml/security/advisories/GHSA-mh29-5h37-fv8m"
}
],
"release_date": "2025-11-13T15:32:44.634000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-06-16T16:32:52+00:00",
"details": "The container images provided by this update can be downloaded from the\nRed Hat container registry at registry.redhat.io using the \"podman pull\" command.",
"product_ids": [
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:10d6f4417f63579b5ad0c2642e68049bf4b0cbc07393f05f5ccd6d93ad9b4551_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:b413d37ad30595df599c3aa8c7dbfad08acc6fa9a59e5300d6e66746d0ed7c92_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:ed69dc576cf04d5ed270a4a271aa89a5476b46d58a85c937f1c63d6680b08b73_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:f73c95e3c84116b5fb7320af22e69d252df69d4559f4ce7bdfd59f42902338c7_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:26411"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:4275a746d036f4a674f2a41c584d1061160392818c0bf47f1e831034654c3c26_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:6cc5bc1fe92aecfb16bb3b6ccf833d06dc4484f8f7c9ffb7bedc3b3e49ace7b6_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:b1c91e9df4b0bb9437394b92444480d6417a39bb46c8474d8c8027ab01732ca4_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:b839e918e2b695ee22e954273f016c6ecdebc1f6048e538560b7162f21f9b83a_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:10d6f4417f63579b5ad0c2642e68049bf4b0cbc07393f05f5ccd6d93ad9b4551_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:b413d37ad30595df599c3aa8c7dbfad08acc6fa9a59e5300d6e66746d0ed7c92_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:ed69dc576cf04d5ed270a4a271aa89a5476b46d58a85c937f1c63d6680b08b73_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:f73c95e3c84116b5fb7320af22e69d252df69d4559f4ce7bdfd59f42902338c7_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:41e5ab72e781b1baa72b7158b2fb6af247c52042f828b496a15ff78adde413a3_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:498e05a439ac63b3a42882dd908d086078f697ff8c29dc2effedec8b26dd6521_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:5b0ca20174d1c6cdb3229bf625a906acf64509575c3092895e341ec301c5e92e_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:a214782e432451ca21a5042abd90bf44c57ed01563dfa4d1b81ef72f38ef2265_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:09758d53ef928e8740a95a31572462681a0f70c1c2a6eaa6a72a45fddf4538b7_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:5f4554659280456cba1fb0078dceb46964a9759f1c5ec0a8fa5d4a6f2bc4889f_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:8afff49beebd4fd88ccf687a421bca80c6d3295a38ef9fcef92ab2049d5f78db_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:be1e659b4f556e0dd65aa36141fa4ab940c5bdee4cf96e1425addb95330c9a09_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:1eb37889b6fd96e9bb95257e30918212f290caf50d9dbe76b6e46af067cdeda6_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:8705162c817322ffdabfee74c5fec3ce4f37be667f46634981cb66db0354ef10_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:b73e4453cb4a353d458ce8fe0641dfd1314ba383d836f1631e0cca5d9ffdca4e_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:fa557386c42c9144dcef16957fc0f02b6e631d037cb982c70a043ce11d760556_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:01f59a1b847d03122126fb3db62daa1e924d2bed5da9506061013800085c100b_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:10ed1c8ea558924ddfa1d3ab6a43d34a6edd16e09dac44d593487bc22b2fc7fc_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:94f30db2064d0d62776af04715a67f90d3fb852855c123eff51285122e296328_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:f58c4b24482819abd2cb67f30d3e1034d61dd85a043f76bc3f487e48941bd201_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:087c99d8838e9c2bd9a298fc320e954ea27203bbceaced070930c87f8a6581a8_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:94a7dea2910f1f440c42c143f930886b529b00a3d6a0eab08d06596f157977a9_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:e40d93d9d76fe8aa344905015d75ae13f94622f6e64de432b73af1930136f8de_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:e5244c1382ad165701a9e156618d8452d78e70675d33668cbdaf6d93f99a58f1_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:4275a746d036f4a674f2a41c584d1061160392818c0bf47f1e831034654c3c26_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:6cc5bc1fe92aecfb16bb3b6ccf833d06dc4484f8f7c9ffb7bedc3b3e49ace7b6_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:b1c91e9df4b0bb9437394b92444480d6417a39bb46c8474d8c8027ab01732ca4_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:b839e918e2b695ee22e954273f016c6ecdebc1f6048e538560b7162f21f9b83a_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:10d6f4417f63579b5ad0c2642e68049bf4b0cbc07393f05f5ccd6d93ad9b4551_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:b413d37ad30595df599c3aa8c7dbfad08acc6fa9a59e5300d6e66746d0ed7c92_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:ed69dc576cf04d5ed270a4a271aa89a5476b46d58a85c937f1c63d6680b08b73_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:f73c95e3c84116b5fb7320af22e69d252df69d4559f4ce7bdfd59f42902338c7_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:41e5ab72e781b1baa72b7158b2fb6af247c52042f828b496a15ff78adde413a3_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:498e05a439ac63b3a42882dd908d086078f697ff8c29dc2effedec8b26dd6521_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:5b0ca20174d1c6cdb3229bf625a906acf64509575c3092895e341ec301c5e92e_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:a214782e432451ca21a5042abd90bf44c57ed01563dfa4d1b81ef72f38ef2265_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:09758d53ef928e8740a95a31572462681a0f70c1c2a6eaa6a72a45fddf4538b7_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:5f4554659280456cba1fb0078dceb46964a9759f1c5ec0a8fa5d4a6f2bc4889f_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:8afff49beebd4fd88ccf687a421bca80c6d3295a38ef9fcef92ab2049d5f78db_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:be1e659b4f556e0dd65aa36141fa4ab940c5bdee4cf96e1425addb95330c9a09_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:1eb37889b6fd96e9bb95257e30918212f290caf50d9dbe76b6e46af067cdeda6_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:8705162c817322ffdabfee74c5fec3ce4f37be667f46634981cb66db0354ef10_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:b73e4453cb4a353d458ce8fe0641dfd1314ba383d836f1631e0cca5d9ffdca4e_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:fa557386c42c9144dcef16957fc0f02b6e631d037cb982c70a043ce11d760556_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:01f59a1b847d03122126fb3db62daa1e924d2bed5da9506061013800085c100b_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:10ed1c8ea558924ddfa1d3ab6a43d34a6edd16e09dac44d593487bc22b2fc7fc_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:94f30db2064d0d62776af04715a67f90d3fb852855c123eff51285122e296328_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:f58c4b24482819abd2cb67f30d3e1034d61dd85a043f76bc3f487e48941bd201_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:087c99d8838e9c2bd9a298fc320e954ea27203bbceaced070930c87f8a6581a8_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:94a7dea2910f1f440c42c143f930886b529b00a3d6a0eab08d06596f157977a9_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:e40d93d9d76fe8aa344905015d75ae13f94622f6e64de432b73af1930136f8de_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:e5244c1382ad165701a9e156618d8452d78e70675d33668cbdaf6d93f99a58f1_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "js-yaml: js-yaml prototype pollution in merge"
},
{
"cve": "CVE-2025-64756",
"cwe": {
"id": "CWE-78",
"name": "Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)"
},
"discovery_date": "2025-11-17T18:01:28.077927+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:4275a746d036f4a674f2a41c584d1061160392818c0bf47f1e831034654c3c26_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:6cc5bc1fe92aecfb16bb3b6ccf833d06dc4484f8f7c9ffb7bedc3b3e49ace7b6_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:b1c91e9df4b0bb9437394b92444480d6417a39bb46c8474d8c8027ab01732ca4_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:b839e918e2b695ee22e954273f016c6ecdebc1f6048e538560b7162f21f9b83a_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:41e5ab72e781b1baa72b7158b2fb6af247c52042f828b496a15ff78adde413a3_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:498e05a439ac63b3a42882dd908d086078f697ff8c29dc2effedec8b26dd6521_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:5b0ca20174d1c6cdb3229bf625a906acf64509575c3092895e341ec301c5e92e_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:a214782e432451ca21a5042abd90bf44c57ed01563dfa4d1b81ef72f38ef2265_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:09758d53ef928e8740a95a31572462681a0f70c1c2a6eaa6a72a45fddf4538b7_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:5f4554659280456cba1fb0078dceb46964a9759f1c5ec0a8fa5d4a6f2bc4889f_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:8afff49beebd4fd88ccf687a421bca80c6d3295a38ef9fcef92ab2049d5f78db_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:be1e659b4f556e0dd65aa36141fa4ab940c5bdee4cf96e1425addb95330c9a09_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:1eb37889b6fd96e9bb95257e30918212f290caf50d9dbe76b6e46af067cdeda6_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:8705162c817322ffdabfee74c5fec3ce4f37be667f46634981cb66db0354ef10_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:b73e4453cb4a353d458ce8fe0641dfd1314ba383d836f1631e0cca5d9ffdca4e_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:fa557386c42c9144dcef16957fc0f02b6e631d037cb982c70a043ce11d760556_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:01f59a1b847d03122126fb3db62daa1e924d2bed5da9506061013800085c100b_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:10ed1c8ea558924ddfa1d3ab6a43d34a6edd16e09dac44d593487bc22b2fc7fc_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:94f30db2064d0d62776af04715a67f90d3fb852855c123eff51285122e296328_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:f58c4b24482819abd2cb67f30d3e1034d61dd85a043f76bc3f487e48941bd201_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:087c99d8838e9c2bd9a298fc320e954ea27203bbceaced070930c87f8a6581a8_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:94a7dea2910f1f440c42c143f930886b529b00a3d6a0eab08d06596f157977a9_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:e40d93d9d76fe8aa344905015d75ae13f94622f6e64de432b73af1930136f8de_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:e5244c1382ad165701a9e156618d8452d78e70675d33668cbdaf6d93f99a58f1_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2415451"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in glob. This vulnerability allows arbitrary command execution via processing files with malicious names when the glob command-line interface (CLI) is used with the -c/--cmd option, enabling shell metacharacters to trigger command injection.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "glob: glob: Command Injection Vulnerability via Malicious Filenames",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This flaw in glob allows arbitrary command execution when the `glob` command-line interface is used with the `-c/--cmd` option to process files with malicious names. The vulnerability is triggered by shell metacharacters in filenames, leading to command injection. The glob CLI tool utilizes the -c option to execute shell commands over the files which matched the searched pattern by using the shell:true parameter when creating the subprocess which will further execute the command informed via \u0027-c\u0027 option, this parameter allows the shell meta characters to be used and processed when executing the command. Given that information glob misses to sanitize the file name to eliminate such characters and expressions from the filename, leading to code execution as when performing the shell expansion such characters will be interpreted as shell commands.\n\nTo exploit this vulnerability the targeted system should run the glob CLI over a file with a maliciously crafted filename, additionally the attacker needs to have enough permission to create such file or trick the user to download and process the required file with the glob CLI.\n\nThis flaw is present in the command line interface of the nodejs-glob package. When the package is used by npm, the command line interface is not used at all, so it cannot be triggered. However, the command line interface implementation is still present on the system, but not directly exposed to the user\u0027s $PATH. To reflect this condition, nodejs packages have been rated with a low severity.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:10d6f4417f63579b5ad0c2642e68049bf4b0cbc07393f05f5ccd6d93ad9b4551_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:b413d37ad30595df599c3aa8c7dbfad08acc6fa9a59e5300d6e66746d0ed7c92_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:ed69dc576cf04d5ed270a4a271aa89a5476b46d58a85c937f1c63d6680b08b73_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:f73c95e3c84116b5fb7320af22e69d252df69d4559f4ce7bdfd59f42902338c7_s390x"
],
"known_not_affected": [
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:4275a746d036f4a674f2a41c584d1061160392818c0bf47f1e831034654c3c26_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:6cc5bc1fe92aecfb16bb3b6ccf833d06dc4484f8f7c9ffb7bedc3b3e49ace7b6_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:b1c91e9df4b0bb9437394b92444480d6417a39bb46c8474d8c8027ab01732ca4_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:b839e918e2b695ee22e954273f016c6ecdebc1f6048e538560b7162f21f9b83a_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:41e5ab72e781b1baa72b7158b2fb6af247c52042f828b496a15ff78adde413a3_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:498e05a439ac63b3a42882dd908d086078f697ff8c29dc2effedec8b26dd6521_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:5b0ca20174d1c6cdb3229bf625a906acf64509575c3092895e341ec301c5e92e_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:a214782e432451ca21a5042abd90bf44c57ed01563dfa4d1b81ef72f38ef2265_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:09758d53ef928e8740a95a31572462681a0f70c1c2a6eaa6a72a45fddf4538b7_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:5f4554659280456cba1fb0078dceb46964a9759f1c5ec0a8fa5d4a6f2bc4889f_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:8afff49beebd4fd88ccf687a421bca80c6d3295a38ef9fcef92ab2049d5f78db_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:be1e659b4f556e0dd65aa36141fa4ab940c5bdee4cf96e1425addb95330c9a09_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:1eb37889b6fd96e9bb95257e30918212f290caf50d9dbe76b6e46af067cdeda6_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:8705162c817322ffdabfee74c5fec3ce4f37be667f46634981cb66db0354ef10_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:b73e4453cb4a353d458ce8fe0641dfd1314ba383d836f1631e0cca5d9ffdca4e_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:fa557386c42c9144dcef16957fc0f02b6e631d037cb982c70a043ce11d760556_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:01f59a1b847d03122126fb3db62daa1e924d2bed5da9506061013800085c100b_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:10ed1c8ea558924ddfa1d3ab6a43d34a6edd16e09dac44d593487bc22b2fc7fc_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:94f30db2064d0d62776af04715a67f90d3fb852855c123eff51285122e296328_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:f58c4b24482819abd2cb67f30d3e1034d61dd85a043f76bc3f487e48941bd201_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:087c99d8838e9c2bd9a298fc320e954ea27203bbceaced070930c87f8a6581a8_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:94a7dea2910f1f440c42c143f930886b529b00a3d6a0eab08d06596f157977a9_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:e40d93d9d76fe8aa344905015d75ae13f94622f6e64de432b73af1930136f8de_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:e5244c1382ad165701a9e156618d8452d78e70675d33668cbdaf6d93f99a58f1_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-64756"
},
{
"category": "external",
"summary": "RHBZ#2415451",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2415451"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-64756",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-64756"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-64756",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-64756"
},
{
"category": "external",
"summary": "https://github.com/isaacs/node-glob/commit/47473c046b91c67269df7a66eab782a6c2716146",
"url": "https://github.com/isaacs/node-glob/commit/47473c046b91c67269df7a66eab782a6c2716146"
},
{
"category": "external",
"summary": "https://github.com/isaacs/node-glob/security/advisories/GHSA-5j98-mcp5-4vw2",
"url": "https://github.com/isaacs/node-glob/security/advisories/GHSA-5j98-mcp5-4vw2"
}
],
"release_date": "2025-11-17T17:29:08.029000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-06-16T16:32:52+00:00",
"details": "The container images provided by this update can be downloaded from the\nRed Hat container registry at registry.redhat.io using the \"podman pull\" command.",
"product_ids": [
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:10d6f4417f63579b5ad0c2642e68049bf4b0cbc07393f05f5ccd6d93ad9b4551_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:b413d37ad30595df599c3aa8c7dbfad08acc6fa9a59e5300d6e66746d0ed7c92_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:ed69dc576cf04d5ed270a4a271aa89a5476b46d58a85c937f1c63d6680b08b73_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:f73c95e3c84116b5fb7320af22e69d252df69d4559f4ce7bdfd59f42902338c7_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:26411"
},
{
"category": "workaround",
"details": "To mitigate this issue, avoid using the `glob` command-line interface with the `-c` or `--cmd` option when processing filenames from untrusted sources. If programmatic use of `glob` is necessary, ensure that filenames are thoroughly sanitized before being passed to commands executed with shell interpretation enabled.",
"product_ids": [
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:4275a746d036f4a674f2a41c584d1061160392818c0bf47f1e831034654c3c26_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:6cc5bc1fe92aecfb16bb3b6ccf833d06dc4484f8f7c9ffb7bedc3b3e49ace7b6_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:b1c91e9df4b0bb9437394b92444480d6417a39bb46c8474d8c8027ab01732ca4_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:b839e918e2b695ee22e954273f016c6ecdebc1f6048e538560b7162f21f9b83a_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:10d6f4417f63579b5ad0c2642e68049bf4b0cbc07393f05f5ccd6d93ad9b4551_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:b413d37ad30595df599c3aa8c7dbfad08acc6fa9a59e5300d6e66746d0ed7c92_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:ed69dc576cf04d5ed270a4a271aa89a5476b46d58a85c937f1c63d6680b08b73_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:f73c95e3c84116b5fb7320af22e69d252df69d4559f4ce7bdfd59f42902338c7_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:41e5ab72e781b1baa72b7158b2fb6af247c52042f828b496a15ff78adde413a3_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:498e05a439ac63b3a42882dd908d086078f697ff8c29dc2effedec8b26dd6521_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:5b0ca20174d1c6cdb3229bf625a906acf64509575c3092895e341ec301c5e92e_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:a214782e432451ca21a5042abd90bf44c57ed01563dfa4d1b81ef72f38ef2265_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:09758d53ef928e8740a95a31572462681a0f70c1c2a6eaa6a72a45fddf4538b7_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:5f4554659280456cba1fb0078dceb46964a9759f1c5ec0a8fa5d4a6f2bc4889f_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:8afff49beebd4fd88ccf687a421bca80c6d3295a38ef9fcef92ab2049d5f78db_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:be1e659b4f556e0dd65aa36141fa4ab940c5bdee4cf96e1425addb95330c9a09_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:1eb37889b6fd96e9bb95257e30918212f290caf50d9dbe76b6e46af067cdeda6_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:8705162c817322ffdabfee74c5fec3ce4f37be667f46634981cb66db0354ef10_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:b73e4453cb4a353d458ce8fe0641dfd1314ba383d836f1631e0cca5d9ffdca4e_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:fa557386c42c9144dcef16957fc0f02b6e631d037cb982c70a043ce11d760556_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:01f59a1b847d03122126fb3db62daa1e924d2bed5da9506061013800085c100b_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:10ed1c8ea558924ddfa1d3ab6a43d34a6edd16e09dac44d593487bc22b2fc7fc_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:94f30db2064d0d62776af04715a67f90d3fb852855c123eff51285122e296328_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:f58c4b24482819abd2cb67f30d3e1034d61dd85a043f76bc3f487e48941bd201_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:087c99d8838e9c2bd9a298fc320e954ea27203bbceaced070930c87f8a6581a8_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:94a7dea2910f1f440c42c143f930886b529b00a3d6a0eab08d06596f157977a9_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:e40d93d9d76fe8aa344905015d75ae13f94622f6e64de432b73af1930136f8de_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:e5244c1382ad165701a9e156618d8452d78e70675d33668cbdaf6d93f99a58f1_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:4275a746d036f4a674f2a41c584d1061160392818c0bf47f1e831034654c3c26_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:6cc5bc1fe92aecfb16bb3b6ccf833d06dc4484f8f7c9ffb7bedc3b3e49ace7b6_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:b1c91e9df4b0bb9437394b92444480d6417a39bb46c8474d8c8027ab01732ca4_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/alloy-rhel10@sha256:b839e918e2b695ee22e954273f016c6ecdebc1f6048e538560b7162f21f9b83a_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:10d6f4417f63579b5ad0c2642e68049bf4b0cbc07393f05f5ccd6d93ad9b4551_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:b413d37ad30595df599c3aa8c7dbfad08acc6fa9a59e5300d6e66746d0ed7c92_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:ed69dc576cf04d5ed270a4a271aa89a5476b46d58a85c937f1c63d6680b08b73_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/grafana-rhel10@sha256:f73c95e3c84116b5fb7320af22e69d252df69d4559f4ce7bdfd59f42902338c7_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:41e5ab72e781b1baa72b7158b2fb6af247c52042f828b496a15ff78adde413a3_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:498e05a439ac63b3a42882dd908d086078f697ff8c29dc2effedec8b26dd6521_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:5b0ca20174d1c6cdb3229bf625a906acf64509575c3092895e341ec301c5e92e_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/keepalived-rhel10@sha256:a214782e432451ca21a5042abd90bf44c57ed01563dfa4d1b81ef72f38ef2265_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:09758d53ef928e8740a95a31572462681a0f70c1c2a6eaa6a72a45fddf4538b7_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:5f4554659280456cba1fb0078dceb46964a9759f1c5ec0a8fa5d4a6f2bc4889f_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:8afff49beebd4fd88ccf687a421bca80c6d3295a38ef9fcef92ab2049d5f78db_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:be1e659b4f556e0dd65aa36141fa4ab940c5bdee4cf96e1425addb95330c9a09_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:1eb37889b6fd96e9bb95257e30918212f290caf50d9dbe76b6e46af067cdeda6_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:8705162c817322ffdabfee74c5fec3ce4f37be667f46634981cb66db0354ef10_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:b73e4453cb4a353d458ce8fe0641dfd1314ba383d836f1631e0cca5d9ffdca4e_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-9-rhel9@sha256:fa557386c42c9144dcef16957fc0f02b6e631d037cb982c70a043ce11d760556_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:01f59a1b847d03122126fb3db62daa1e924d2bed5da9506061013800085c100b_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:10ed1c8ea558924ddfa1d3ab6a43d34a6edd16e09dac44d593487bc22b2fc7fc_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:94f30db2064d0d62776af04715a67f90d3fb852855c123eff51285122e296328_s390x",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:f58c4b24482819abd2cb67f30d3e1034d61dd85a043f76bc3f487e48941bd201_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:087c99d8838e9c2bd9a298fc320e954ea27203bbceaced070930c87f8a6581a8_arm64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:94a7dea2910f1f440c42c143f930886b529b00a3d6a0eab08d06596f157977a9_ppc64le",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:e40d93d9d76fe8aa344905015d75ae13f94622f6e64de432b73af1930136f8de_amd64",
"Red Hat Ceph Storage 9.0:registry.redhat.io/rhceph/snmp-notifier-rhel10@sha256:e5244c1382ad165701a9e156618d8452d78e70675d33668cbdaf6d93f99a58f1_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "glob: glob: Command Injection Vulnerability via Malicious Filenames"
}
]
}
SSA-485750
Vulnerability from csaf_siemens - Published: 2026-03-10 00:00 - Updated: 2026-03-10 00:00| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIDIS Prime
Siemens / SIDIS Prime
|
vers:intdot/<4.0.800 |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIDIS Prime
Siemens / SIDIS Prime
|
vers:intdot/<4.0.800 |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIDIS Prime
Siemens / SIDIS Prime
|
vers:intdot/<4.0.800 |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIDIS Prime
Siemens / SIDIS Prime
|
vers:intdot/<4.0.800 |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIDIS Prime
Siemens / SIDIS Prime
|
vers:intdot/<4.0.800 |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIDIS Prime
Siemens / SIDIS Prime
|
vers:intdot/<4.0.800 |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIDIS Prime
Siemens / SIDIS Prime
|
vers:intdot/<4.0.800 |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIDIS Prime
Siemens / SIDIS Prime
|
vers:intdot/<4.0.800 |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIDIS Prime
Siemens / SIDIS Prime
|
vers:intdot/<4.0.800 |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIDIS Prime
Siemens / SIDIS Prime
|
vers:intdot/<4.0.800 |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIDIS Prime
Siemens / SIDIS Prime
|
vers:intdot/<4.0.800 |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIDIS Prime
Siemens / SIDIS Prime
|
vers:intdot/<4.0.800 |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIDIS Prime
Siemens / SIDIS Prime
|
vers:intdot/<4.0.800 |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIDIS Prime
Siemens / SIDIS Prime
|
vers:intdot/<4.0.800 |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIDIS Prime
Siemens / SIDIS Prime
|
vers:intdot/<4.0.800 |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIDIS Prime
Siemens / SIDIS Prime
|
vers:intdot/<4.0.800 |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIDIS Prime
Siemens / SIDIS Prime
|
vers:intdot/<4.0.800 |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIDIS Prime
Siemens / SIDIS Prime
|
vers:intdot/<4.0.800 |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIDIS Prime
Siemens / SIDIS Prime
|
vers:intdot/<4.0.800 |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIDIS Prime
Siemens / SIDIS Prime
|
vers:intdot/<4.0.800 |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIDIS Prime
Siemens / SIDIS Prime
|
vers:intdot/<4.0.800 |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIDIS Prime
Siemens / SIDIS Prime
|
vers:intdot/<4.0.800 |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIDIS Prime
Siemens / SIDIS Prime
|
vers:intdot/<4.0.800 |
Vendor Fix
|
{
"document": {
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Disclosure is not limited. (TLPv2: TLP:CLEAR)",
"tlp": {
"label": "WHITE"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "SIDIS Prime before V4.0.800 is affected by multiple vulnerabilities in the components OpenSSL, SQLite, and several Node.js packages as described below.\n\nSiemens has released a new version of SIDIS Prime and recommends to update to the latest version.",
"title": "Summary"
},
{
"category": "general",
"text": "As a general security measure, Siemens strongly recommends to protect network access to devices with appropriate mechanisms. In order to operate the devices in a protected IT environment, Siemens recommends to configure the environment according to Siemens\u0027 operational guidelines for Industrial Security (Download: https://www.siemens.com/cert/operational-guidelines-industrial-security), and to follow the recommendations in the product manuals.\nAdditional information on Industrial Security by Siemens can be found at: https://www.siemens.com/industrialsecurity",
"title": "General Recommendations"
},
{
"category": "general",
"text": "For further inquiries on security vulnerabilities in Siemens products and solutions, please contact the Siemens ProductCERT: https://www.siemens.com/cert/advisories",
"title": "Additional Resources"
},
{
"category": "legal_disclaimer",
"text": "The use of Siemens Security Advisories is subject to the terms and conditions listed on: https://www.siemens.com/productcert/terms-of-use.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "productcert@siemens.com",
"name": "Siemens ProductCERT",
"namespace": "https://www.siemens.com"
},
"references": [
{
"category": "self",
"summary": "SSA-485750: Multiple Vulnerabilities in SIDIS Prime Before V4.0.800 - HTML Version",
"url": "https://cert-portal.siemens.com/productcert/html/ssa-485750.html"
},
{
"category": "self",
"summary": "SSA-485750: Multiple Vulnerabilities in SIDIS Prime Before V4.0.800 - CSAF Version",
"url": "https://cert-portal.siemens.com/productcert/csaf/ssa-485750.json"
}
],
"title": "SSA-485750: Multiple Vulnerabilities in SIDIS Prime Before V4.0.800",
"tracking": {
"current_release_date": "2026-03-10T00:00:00.000Z",
"generator": {
"engine": {
"name": "Siemens ProductCERT CSAF Generator",
"version": "1"
}
},
"id": "SSA-485750",
"initial_release_date": "2026-03-10T00:00:00.000Z",
"revision_history": [
{
"date": "2026-03-10T00:00:00.000Z",
"legacy_version": "1.0",
"number": "1",
"summary": "Publication Date"
}
],
"status": "interim",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.0.800",
"product": {
"name": "SIDIS Prime",
"product_id": "1"
}
}
],
"category": "product_name",
"name": "SIDIS Prime"
}
],
"category": "vendor",
"name": "Siemens"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-29857",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"notes": [
{
"category": "summary",
"text": "An issue was discovered in ECCurve.java and ECCurve.cs in Bouncy Castle Java (BC Java) before 1.78, BC Java LTS before 2.73.6, BC-FJA before 1.0.2.5, and BC C# .Net before 2.3.1. Importing an EC certificate with crafted F2m parameters can lead to excessive CPU consumption during the evaluation of the curve parameters.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V4.0.800 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2024-29857"
},
{
"cve": "CVE-2024-30171",
"cwe": {
"id": "CWE-203",
"name": "Observable Discrepancy"
},
"notes": [
{
"category": "summary",
"text": "An issue was discovered in Bouncy Castle Java TLS API and JSSE Provider before 1.78. Timing-based leakage may occur in RSA based handshakes because of exception processing.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V4.0.800 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2024-30171"
},
{
"cve": "CVE-2024-30172",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "summary",
"text": "An issue was discovered in Bouncy Castle Java Cryptography APIs before 1.78. An Ed25519 verification code infinite loop can occur via a crafted signature and public key.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V4.0.800 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2024-30172"
},
{
"cve": "CVE-2024-41996",
"cwe": {
"id": "CWE-295",
"name": "Improper Certificate Validation"
},
"notes": [
{
"category": "summary",
"text": "Validating the order of the public keys in the Diffie-Hellman Key Agreement Protocol, when an approved safe prime is used, allows remote attackers (from the client side) to trigger unnecessarily expensive server-side DHE modular-exponentiation calculations. The client may cause asymmetric resource consumption. The basic attack scenario is that the client must claim that it can only communicate with DHE, and the server must be configured to allow DHE and validate the order of the public key.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V4.0.800 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2024-41996"
},
{
"cve": "CVE-2025-6965",
"cwe": {
"id": "CWE-197",
"name": "Numeric Truncation Error"
},
"notes": [
{
"category": "summary",
"text": "There exists a vulnerability in SQLite versions before 3.50.2 where the number of aggregate terms could exceed the number of columns available. This could lead to a memory corruption issue. We recommend upgrading to version 3.50.2 or above.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V4.0.800 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:H/A:L",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2025-6965"
},
{
"cve": "CVE-2025-7783",
"cwe": {
"id": "CWE-330",
"name": "Use of Insufficiently Random Values"
},
"notes": [
{
"category": "summary",
"text": "Use of Insufficiently Random Values vulnerability in form-data allows HTTP Parameter Pollution (HPP). This vulnerability is associated with program files lib/form_data.Js.\r\n\r\nThis issue affects form-data: \u003c 2.5.4, 3.0.0 - 3.0.3, 4.0.0 - 4.0.3.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V4.0.800 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2025-7783"
},
{
"cve": "CVE-2025-9230",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"notes": [
{
"category": "summary",
"text": "An application trying to decrypt CMS messages encrypted using password based encryption can trigger an out-of-bounds read and write. Impact summary: This out-of-bounds read may trigger a crash which leads to Denial of Service for an application. The out-of-bounds write can cause a memory corruption which can have various consequences including a Denial of Service or Execution of attacker-supplied code. Although the consequences of a successful exploit of this vulnerability could be severe, the probability that the attacker would be able to perform it is low. Besides, password based (PWRI) encryption support in CMS messages is very rarely used. For that reason the issue was assessed as Moderate severity according to our Security Policy. The FIPS modules in 3.5, 3.4, 3.3, 3.2, 3.1 and 3.0 are not affected by this issue, as the CMS implementation is outside the OpenSSL FIPS module boundary.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V4.0.800 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2025-9230"
},
{
"cve": "CVE-2025-9232",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"notes": [
{
"category": "summary",
"text": "Issue summary: An application using the OpenSSL HTTP client API functions may\ntrigger an out-of-bounds read if the \u0027no_proxy\u0027 environment variable is set and\nthe host portion of the authority component of the HTTP URL is an IPv6 address.\n\nImpact summary: An out-of-bounds read can trigger a crash which leads to\nDenial of Service for an application.\n\nThe OpenSSL HTTP client API functions can be used directly by applications\nbut they are also used by the OCSP client functions and CMP (Certificate\nManagement Protocol) client implementation in OpenSSL. However the URLs used\nby these implementations are unlikely to be controlled by an attacker.\n\nIn this vulnerable code the out of bounds read can only trigger a crash.\nFurthermore the vulnerability requires an attacker-controlled URL to be\npassed from an application to the OpenSSL function and the user has to have\na \u0027no_proxy\u0027 environment variable set. For the aforementioned reasons the\nissue was assessed as Low severity.\n\nThe vulnerable code was introduced in the following patch releases:\n3.0.16, 3.1.8, 3.2.4, 3.3.3, 3.4.0 and 3.5.0.\n\nThe FIPS modules in 3.5, 3.4, 3.3, 3.2, 3.1 and 3.0 are not affected by this\nissue, as the HTTP client implementation is outside the OpenSSL FIPS module\nboundary.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V4.0.800 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2025-9232"
},
{
"cve": "CVE-2025-9670",
"cwe": {
"id": "CWE-1333",
"name": "Inefficient Regular Expression Complexity"
},
"notes": [
{
"category": "summary",
"text": "A security flaw has been discovered in mixmark-io turndown up to 7.2.1. This affects an unknown function of the file src/commonmark-rules.js. Performing manipulation results in inefficient regular expression complexity. It is possible to initiate the attack remotely. The exploit has been released to the public and may be exploited.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V4.0.800 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2025-9670"
},
{
"cve": "CVE-2025-12816",
"cwe": {
"id": "CWE-436",
"name": "Interpretation Conflict"
},
"notes": [
{
"category": "summary",
"text": "An interpretation-conflict (CWE-436) vulnerability in node-forge versions 1.3.1 and earlier enables unauthenticated attackers to craft ASN.1 structures to desynchronize schema validations, yielding a semantic divergence that may bypass downstream cryptographic verifications and security decisions.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V4.0.800 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.6,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2025-12816"
},
{
"cve": "CVE-2025-15284",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "summary",
"text": "Improper Input Validation vulnerability in qs (parse modules) allows HTTP DoS.This issue affects qs: \u003c 6.14.1.\n\n\nSummaryThe arrayLimit\u00a0option in qs does not enforce limits for bracket notation (a[]=1\u0026a[]=2), allowing attackers to cause denial-of-service via memory exhaustion. Applications using arrayLimit\u00a0for DoS protection are vulnerable.\n\nDetailsThe arrayLimit\u00a0option only checks limits for indexed notation (a[0]=1\u0026a[1]=2) but completely bypasses it for bracket notation (a[]=1\u0026a[]=2).\n\nVulnerable code\u00a0(lib/parse.js:159-162):\n\nif (root === \u0027[]\u0027 \u0026\u0026 options.parseArrays) {\n obj = utils.combine([], leaf); // No arrayLimit check\n}\n\n\n\n\n\nWorking code\u00a0(lib/parse.js:175):\n\nelse if (index \u003c= options.arrayLimit) { // Limit checked here\n obj = [];\n obj[index] = leaf;\n}\n\n\n\n\n\nThe bracket notation handler at line 159 uses utils.combine([], leaf)\u00a0without validating against options.arrayLimit, while indexed notation at line 175 checks index \u003c= options.arrayLimit\u00a0before creating arrays.\n\nPoCTest 1 - Basic bypass:\n\nnpm install qs\n\n\n\n\n\nconst qs = require(\u0027qs\u0027);\nconst result = qs.parse(\u0027a[]=1\u0026a[]=2\u0026a[]=3\u0026a[]=4\u0026a[]=5\u0026a[]=6\u0027, { arrayLimit: 5 });\nconsole.log(result.a.length); // Output: 6 (should be max 5)\n\n\n\n\n\nTest 2 - DoS demonstration:\n\nconst qs = require(\u0027qs\u0027);\nconst attack = \u0027a[]=\u0027 + Array(10000).fill(\u0027x\u0027).join(\u0027\u0026a[]=\u0027);\nconst result = qs.parse(attack, { arrayLimit: 100 });\nconsole.log(result.a.length); // Output: 10000 (should be max 100)\n\n\n\n\n\nConfiguration:\n\n * arrayLimit: 5\u00a0(test 1) or arrayLimit: 100\u00a0(test 2)\n * Use bracket notation: a[]=value\u00a0(not indexed a[0]=value)\n\n\nImpactDenial of Service via memory exhaustion. Affects applications using qs.parse()\u00a0with user-controlled input and arrayLimit\u00a0for protection.\n\nAttack scenario:\n\n * Attacker sends HTTP request: GET /api/search?filters[]=x\u0026filters[]=x\u0026...\u0026filters[]=x\u00a0(100,000+ times)\n * Application parses with qs.parse(query, { arrayLimit: 100 })\n * qs ignores limit, parses all 100,000 elements into array\n * Server memory exhausted \u2192 application crashes or becomes unresponsive\n * Service unavailable for all users\nReal-world impact:\n\n * Single malicious request can crash server\n * No authentication required\n * Easy to automate and scale\n * Affects any endpoint parsing query strings with bracket notation",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V4.0.800 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2025-15284"
},
{
"cve": "CVE-2025-58751",
"cwe": {
"id": "CWE-22",
"name": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)"
},
"notes": [
{
"category": "summary",
"text": "Vite is a frontend tooling framework for JavaScript. Prior to versions 7.1.5, 7.0.7, 6.3.6, and 5.4.20, files starting with the same name with the public directory were served bypassing the `server.fs` settings. Only apps that explicitly expose the Vite dev server to the network (using --host or `server.host` config option), use the public directory feature (enabled by default), and have a symlink in the public directory are affected. Versions 7.1.5, 7.0.7, 6.3.6, and 5.4.20 fix the issue.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V4.0.800 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2025-58751"
},
{
"cve": "CVE-2025-58752",
"cwe": {
"id": "CWE-23",
"name": "Relative Path Traversal"
},
"notes": [
{
"category": "summary",
"text": "Vite is a frontend tooling framework for JavaScript. Prior to versions 7.1.5, 7.0.7, 6.3.6, and 5.4.20, any HTML files on the machine were served regardless of the `server.fs` settings. Only apps that explicitly expose the Vite dev server to the network (using --host or server.host config option) and use `appType: \u0027spa\u0027` (default) or `appType: \u0027mpa\u0027` are affected. This vulnerability also affects the preview server. The preview server allowed HTML files not under the output directory to be served. Versions 7.1.5, 7.0.7, 6.3.6, and 5.4.20 fix the issue.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V4.0.800 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2025-58752"
},
{
"cve": "CVE-2025-58754",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"notes": [
{
"category": "summary",
"text": "Axios is a promise based HTTP client for the browser and Node.js. When Axios starting in version 0.28.0 and prior to versions 0.30.2 and 1.12.0 runs on Node.js and is given a URL with the `data:` scheme, it does not perform HTTP. Instead, its Node http adapter decodes the entire payload into memory (`Buffer`/`Blob`) and returns a synthetic 200 response. This path ignores `maxContentLength` / `maxBodyLength` (which only protect HTTP responses), so an attacker can supply a very large `data:` URI and cause the process to allocate unbounded memory and crash (DoS), even if the caller requested `responseType: \u0027stream\u0027`. Versions 0.30.2 and 1.12.0 contain a patch for the issue.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V4.0.800 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2025-58754"
},
{
"cve": "CVE-2025-62522",
"cwe": {
"id": "CWE-22",
"name": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)"
},
"notes": [
{
"category": "summary",
"text": "Vite is a frontend tooling framework for JavaScript. In versions from 2.9.18 to before 3.0.0, 3.2.9 to before 4.0.0, 4.5.3 to before 5.0.0, 5.2.6 to before 5.4.21, 6.0.0 to before 6.4.1, 7.0.0 to before 7.0.8, and 7.1.0 to before 7.1.11, files denied by server.fs.deny were sent if the URL ended with \\ when the dev server is running on Windows. Only apps explicitly exposing the Vite dev server to the network and running the dev server on Windows were affected. This issue has been patched in versions 5.4.21, 6.4.1, 7.0.8, and 7.1.11.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V4.0.800 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2025-62522"
},
{
"cve": "CVE-2025-64718",
"cwe": {
"id": "CWE-1321",
"name": "Improperly Controlled Modification of Object Prototype Attributes (\u0027Prototype Pollution\u0027)"
},
"notes": [
{
"category": "summary",
"text": "js-yaml is a JavaScript YAML parser and dumper. In js-yaml before 4.1.1 and 3.14.2, it\u0027s possible for an attacker to modify the prototype of the result of a parsed yaml document via prototype pollution (`__proto__`). All users who parse untrusted yaml documents may be impacted. The problem is patched in js-yaml 4.1.1 and 3.14.2. Users can protect against this kind of attack on the server by using `node --disable-proto=delete` or `deno` (in Deno, pollution protection is on by default).",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V4.0.800 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2025-64718"
},
{
"cve": "CVE-2025-64756",
"cwe": {
"id": "CWE-78",
"name": "Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)"
},
"notes": [
{
"category": "summary",
"text": "Glob matches files using patterns the shell uses. Starting in version 10.2.0 and prior to versions 10.5.0 and 11.1.0, the glob CLI contains a command injection vulnerability in its -c/--cmd option that allows arbitrary command execution when processing files with malicious names. When glob -c \u003ccommand\u003e \u003cpatterns\u003e are used, matched filenames are passed to a shell with shell: true, enabling shell metacharacters in filenames to trigger command injection and achieve arbitrary code execution under the user or CI account privileges. This issue has been patched in versions 10.5.0 and 11.1.0.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V4.0.800 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2025-64756"
},
{
"cve": "CVE-2025-66030",
"cwe": {
"id": "CWE-190",
"name": "Integer Overflow or Wraparound"
},
"notes": [
{
"category": "summary",
"text": "Forge (also called `node-forge`) is a native implementation of Transport Layer Security in JavaScript. An Integer Overflow vulnerability in node-forge versions 1.3.1 and below enables remote, unauthenticated attackers to craft ASN.1 structures containing OIDs with oversized arcs. These arcs may be decoded as smaller, trusted OIDs due to 32-bit bitwise truncation, enabling the bypass of downstream OID-based security decisions. This issue has been patched in version 1.3.2.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V4.0.800 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2025-66030"
},
{
"cve": "CVE-2025-66031",
"cwe": {
"id": "CWE-674",
"name": "Uncontrolled Recursion"
},
"notes": [
{
"category": "summary",
"text": "Forge (also called `node-forge`) is a native implementation of Transport Layer Security in JavaScript. An Uncontrolled Recursion vulnerability in node-forge versions 1.3.1 and below enables remote, unauthenticated attackers to craft deep ASN.1 structures that trigger unbounded recursive parsing. This leads to a Denial-of-Service (DoS) via stack exhaustion when parsing untrusted DER inputs. This issue has been patched in version 1.3.2.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V4.0.800 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2025-66031"
},
{
"cve": "CVE-2025-66035",
"cwe": {
"id": "CWE-201",
"name": "Insertion of Sensitive Information Into Sent Data"
},
"notes": [
{
"category": "summary",
"text": "Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. Prior to versions 19.2.16, 20.3.14, and 21.0.1, there is a XSRF token leakage via protocol-relative URLs in angular HTTP clients. The vulnerability is a Credential Leak by App Logic that leads to the unauthorized disclosure of the Cross-Site Request Forgery (XSRF) token to an attacker-controlled domain. Angular\u0027s HttpClient has a built-in XSRF protection mechanism that works by checking if a request URL starts with a protocol (http:// or https://) to determine if it is cross-origin. If the URL starts with protocol-relative URL (//), it is incorrectly treated as a same-origin request, and the XSRF token is automatically added to the X-XSRF-TOKEN header. This issue has been patched in versions 19.2.16, 20.3.14, and 21.0.1. A workaround for this issue involves avoiding using protocol-relative URLs (URLs starting with //) in HttpClient requests. All backend communication URLs should be hardcoded as relative paths (starting with a single /) or fully qualified, trusted absolute URLs.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V4.0.800 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.6,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2025-66035"
},
{
"cve": "CVE-2025-66412",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"notes": [
{
"category": "summary",
"text": "Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. Prior to 21.0.2, 20.3.15, and 19.2.17, A Stored Cross-Site Scripting (XSS) vulnerability has been identified in the Angular Template Compiler. It occurs because the compiler\u0027s internal security schema is incomplete, allowing attackers to bypass Angular\u0027s built-in security sanitization. Specifically, the schema fails to classify certain URL-holding attributes (e.g., those that could contain javascript: URLs) as requiring strict URL security, enabling the injection of malicious scripts. This vulnerability is fixed in 21.0.2, 20.3.15, and 19.2.17.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V4.0.800 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.0,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2025-66412"
},
{
"cve": "CVE-2025-69277",
"cwe": {
"id": "CWE-184",
"name": "Incomplete List of Disallowed Inputs"
},
"notes": [
{
"category": "summary",
"text": "libsodium before ad3004e, in atypical use cases involving certain custom cryptography or untrusted data to crypto_core_ed25519_is_valid_point, mishandles checks for whether an elliptic curve point is valid because it sometimes allows points that aren\u0027t in the main cryptographic group.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V4.0.800 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2025-69277"
},
{
"cve": "CVE-2026-22610",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"notes": [
{
"category": "summary",
"text": "Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. Prior to versions 19.2.18, 20.3.16, 21.0.7, and 21.1.0-rc.0, a cross-site scripting (XSS) vulnerability has been identified in the Angular Template Compiler. The vulnerability exists because Angular\u2019s internal sanitization schema fails to recognize the href and xlink:href attributes of SVG \u003cscript\u003e elements as a Resource URL context. This issue has been patched in versions 19.2.18, 20.3.16, 21.0.7, and 21.1.0-rc.0.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V4.0.800 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.0,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2026-22610"
}
]
}
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.