Vulnerability-Lookup

WID-SEC-W-2022-0169

Vulnerability from csaf_certbund - Published: 2022-04-19 22:00 - Updated: 2026-01-25 23:00

Summary

Oracle MySQL: Mehrere Schwachstellen

Severity

Hoch

Notes

Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.

Produktbeschreibung: MySQL ist ein Open Source Datenbankserver von Oracle.

Angriff: Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Oracle MySQL ausnutzen, um die Vertraulichkeit, Integrität und Verfügbarkeit zu gefährden.

Betroffene Betriebssysteme: - Linux - MacOS X - NetApp Appliance - UNIX - Windows

CVE-2021-22570

Affected products

Known affected 9 products

Product	Identifier	Version
Juniper Junos Space <22.2R1 Juniper / Junos Space		<22.2R1
Dell Data Protection Advisor <19.12 Dell / Data Protection Advisor		<19.12
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift Red Hat	`cpe:/a:redhat:openshift:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
NetApp ActiveIQ Unified Manager NetApp	`cpe:/a:netapp:active_iq_unified_manager:-`	—

Last affected 6 products

Product	Identifier	Version	Remediation
Oracle MySQL <=5.7.37 Oracle / MySQL		<=5.7.37
Oracle MySQL <=7.4.35 Oracle / MySQL		<=7.4.35
Oracle MySQL <=7.5.25 Oracle / MySQL		<=7.5.25
Oracle MySQL <=7.6.21 Oracle / MySQL		<=7.6.21
Oracle MySQL <=8.0.29 Oracle / MySQL		<=8.0.29
Oracle MySQL <=8.0.28 Oracle / MySQL		<=8.0.28

CVE-2021-41184

Affected products

Known affected 9 products

Product	Identifier	Version
Juniper Junos Space <22.2R1 Juniper / Junos Space		<22.2R1
Dell Data Protection Advisor <19.12 Dell / Data Protection Advisor		<19.12
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift Red Hat	`cpe:/a:redhat:openshift:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
NetApp ActiveIQ Unified Manager NetApp	`cpe:/a:netapp:active_iq_unified_manager:-`	—

Last affected 6 products

Product	Identifier	Version	Remediation
Oracle MySQL <=5.7.37 Oracle / MySQL		<=5.7.37
Oracle MySQL <=7.4.35 Oracle / MySQL		<=7.4.35
Oracle MySQL <=7.5.25 Oracle / MySQL		<=7.5.25
Oracle MySQL <=7.6.21 Oracle / MySQL		<=7.6.21
Oracle MySQL <=8.0.29 Oracle / MySQL		<=8.0.29
Oracle MySQL <=8.0.28 Oracle / MySQL		<=8.0.28

CVE-2021-42340

Affected products

Known affected 9 products

Product	Identifier	Version
Juniper Junos Space <22.2R1 Juniper / Junos Space		<22.2R1
Dell Data Protection Advisor <19.12 Dell / Data Protection Advisor		<19.12
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift Red Hat	`cpe:/a:redhat:openshift:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
NetApp ActiveIQ Unified Manager NetApp	`cpe:/a:netapp:active_iq_unified_manager:-`	—

Last affected 6 products

Product	Identifier	Version	Remediation
Oracle MySQL <=5.7.37 Oracle / MySQL		<=5.7.37
Oracle MySQL <=7.4.35 Oracle / MySQL		<=7.4.35
Oracle MySQL <=7.5.25 Oracle / MySQL		<=7.5.25
Oracle MySQL <=7.6.21 Oracle / MySQL		<=7.6.21
Oracle MySQL <=8.0.29 Oracle / MySQL		<=8.0.29
Oracle MySQL <=8.0.28 Oracle / MySQL		<=8.0.28

CVE-2021-44832

Affected products

Known affected 9 products

Product	Identifier	Version
Juniper Junos Space <22.2R1 Juniper / Junos Space		<22.2R1
Dell Data Protection Advisor <19.12 Dell / Data Protection Advisor		<19.12
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift Red Hat	`cpe:/a:redhat:openshift:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
NetApp ActiveIQ Unified Manager NetApp	`cpe:/a:netapp:active_iq_unified_manager:-`	—

Last affected 6 products

Product	Identifier	Version	Remediation
Oracle MySQL <=5.7.37 Oracle / MySQL		<=5.7.37
Oracle MySQL <=7.4.35 Oracle / MySQL		<=7.4.35
Oracle MySQL <=7.5.25 Oracle / MySQL		<=7.5.25
Oracle MySQL <=7.6.21 Oracle / MySQL		<=7.6.21
Oracle MySQL <=8.0.29 Oracle / MySQL		<=8.0.29
Oracle MySQL <=8.0.28 Oracle / MySQL		<=8.0.28

CVE-2022-0778

Affected products

Known affected 9 products

Product	Identifier	Version
Juniper Junos Space <22.2R1 Juniper / Junos Space		<22.2R1
Dell Data Protection Advisor <19.12 Dell / Data Protection Advisor		<19.12
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift Red Hat	`cpe:/a:redhat:openshift:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
NetApp ActiveIQ Unified Manager NetApp	`cpe:/a:netapp:active_iq_unified_manager:-`	—

Last affected 6 products

Product	Identifier	Version	Remediation
Oracle MySQL <=5.7.37 Oracle / MySQL		<=5.7.37
Oracle MySQL <=7.4.35 Oracle / MySQL		<=7.4.35
Oracle MySQL <=7.5.25 Oracle / MySQL		<=7.5.25
Oracle MySQL <=7.6.21 Oracle / MySQL		<=7.6.21
Oracle MySQL <=8.0.29 Oracle / MySQL		<=8.0.29
Oracle MySQL <=8.0.28 Oracle / MySQL		<=8.0.28

CVE-2022-21412

Affected products

Known affected 9 products

Product	Identifier	Version
Juniper Junos Space <22.2R1 Juniper / Junos Space		<22.2R1
Dell Data Protection Advisor <19.12 Dell / Data Protection Advisor		<19.12
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift Red Hat	`cpe:/a:redhat:openshift:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
NetApp ActiveIQ Unified Manager NetApp	`cpe:/a:netapp:active_iq_unified_manager:-`	—

Last affected 6 products

Product	Identifier	Version	Remediation
Oracle MySQL <=5.7.37 Oracle / MySQL		<=5.7.37
Oracle MySQL <=7.4.35 Oracle / MySQL		<=7.4.35
Oracle MySQL <=7.5.25 Oracle / MySQL		<=7.5.25
Oracle MySQL <=7.6.21 Oracle / MySQL		<=7.6.21
Oracle MySQL <=8.0.29 Oracle / MySQL		<=8.0.29
Oracle MySQL <=8.0.28 Oracle / MySQL		<=8.0.28

CVE-2022-21413

Affected products

Known affected 9 products

Product	Identifier	Version
Juniper Junos Space <22.2R1 Juniper / Junos Space		<22.2R1
Dell Data Protection Advisor <19.12 Dell / Data Protection Advisor		<19.12
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift Red Hat	`cpe:/a:redhat:openshift:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
NetApp ActiveIQ Unified Manager NetApp	`cpe:/a:netapp:active_iq_unified_manager:-`	—

Last affected 6 products

Product	Identifier	Version	Remediation
Oracle MySQL <=5.7.37 Oracle / MySQL		<=5.7.37
Oracle MySQL <=7.4.35 Oracle / MySQL		<=7.4.35
Oracle MySQL <=7.5.25 Oracle / MySQL		<=7.5.25
Oracle MySQL <=7.6.21 Oracle / MySQL		<=7.6.21
Oracle MySQL <=8.0.29 Oracle / MySQL		<=8.0.29
Oracle MySQL <=8.0.28 Oracle / MySQL		<=8.0.28

CVE-2022-21414

Affected products

Known affected 9 products

Product	Identifier	Version
Juniper Junos Space <22.2R1 Juniper / Junos Space		<22.2R1
Dell Data Protection Advisor <19.12 Dell / Data Protection Advisor		<19.12
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift Red Hat	`cpe:/a:redhat:openshift:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
NetApp ActiveIQ Unified Manager NetApp	`cpe:/a:netapp:active_iq_unified_manager:-`	—

Last affected 6 products

Product	Identifier	Version	Remediation
Oracle MySQL <=5.7.37 Oracle / MySQL		<=5.7.37
Oracle MySQL <=7.4.35 Oracle / MySQL		<=7.4.35
Oracle MySQL <=7.5.25 Oracle / MySQL		<=7.5.25
Oracle MySQL <=7.6.21 Oracle / MySQL		<=7.6.21
Oracle MySQL <=8.0.29 Oracle / MySQL		<=8.0.29
Oracle MySQL <=8.0.28 Oracle / MySQL		<=8.0.28

CVE-2022-21415

Affected products

Known affected 9 products

Product	Identifier	Version
Juniper Junos Space <22.2R1 Juniper / Junos Space		<22.2R1
Dell Data Protection Advisor <19.12 Dell / Data Protection Advisor		<19.12
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift Red Hat	`cpe:/a:redhat:openshift:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
NetApp ActiveIQ Unified Manager NetApp	`cpe:/a:netapp:active_iq_unified_manager:-`	—

Last affected 6 products

Product	Identifier	Version	Remediation
Oracle MySQL <=5.7.37 Oracle / MySQL		<=5.7.37
Oracle MySQL <=7.4.35 Oracle / MySQL		<=7.4.35
Oracle MySQL <=7.5.25 Oracle / MySQL		<=7.5.25
Oracle MySQL <=7.6.21 Oracle / MySQL		<=7.6.21
Oracle MySQL <=8.0.29 Oracle / MySQL		<=8.0.29
Oracle MySQL <=8.0.28 Oracle / MySQL		<=8.0.28

CVE-2022-21417

Affected products

Known affected 9 products

Product	Identifier	Version
Juniper Junos Space <22.2R1 Juniper / Junos Space		<22.2R1
Dell Data Protection Advisor <19.12 Dell / Data Protection Advisor		<19.12
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift Red Hat	`cpe:/a:redhat:openshift:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
NetApp ActiveIQ Unified Manager NetApp	`cpe:/a:netapp:active_iq_unified_manager:-`	—

Last affected 6 products

Product	Identifier	Version	Remediation
Oracle MySQL <=5.7.37 Oracle / MySQL		<=5.7.37
Oracle MySQL <=7.4.35 Oracle / MySQL		<=7.4.35
Oracle MySQL <=7.5.25 Oracle / MySQL		<=7.5.25
Oracle MySQL <=7.6.21 Oracle / MySQL		<=7.6.21
Oracle MySQL <=8.0.29 Oracle / MySQL		<=8.0.29
Oracle MySQL <=8.0.28 Oracle / MySQL		<=8.0.28

CVE-2022-21418

Affected products

Known affected 9 products

Product	Identifier	Version
Juniper Junos Space <22.2R1 Juniper / Junos Space		<22.2R1
Dell Data Protection Advisor <19.12 Dell / Data Protection Advisor		<19.12
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift Red Hat	`cpe:/a:redhat:openshift:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
NetApp ActiveIQ Unified Manager NetApp	`cpe:/a:netapp:active_iq_unified_manager:-`	—

Last affected 6 products

Product	Identifier	Version	Remediation
Oracle MySQL <=5.7.37 Oracle / MySQL		<=5.7.37
Oracle MySQL <=7.4.35 Oracle / MySQL		<=7.4.35
Oracle MySQL <=7.5.25 Oracle / MySQL		<=7.5.25
Oracle MySQL <=7.6.21 Oracle / MySQL		<=7.6.21
Oracle MySQL <=8.0.29 Oracle / MySQL		<=8.0.29
Oracle MySQL <=8.0.28 Oracle / MySQL		<=8.0.28

CVE-2022-21423

Affected products

Known affected 9 products

Product	Identifier	Version
Juniper Junos Space <22.2R1 Juniper / Junos Space		<22.2R1
Dell Data Protection Advisor <19.12 Dell / Data Protection Advisor		<19.12
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift Red Hat	`cpe:/a:redhat:openshift:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
NetApp ActiveIQ Unified Manager NetApp	`cpe:/a:netapp:active_iq_unified_manager:-`	—

Last affected 6 products

Product	Identifier	Version	Remediation
Oracle MySQL <=5.7.37 Oracle / MySQL		<=5.7.37
Oracle MySQL <=7.4.35 Oracle / MySQL		<=7.4.35
Oracle MySQL <=7.5.25 Oracle / MySQL		<=7.5.25
Oracle MySQL <=7.6.21 Oracle / MySQL		<=7.6.21
Oracle MySQL <=8.0.29 Oracle / MySQL		<=8.0.29
Oracle MySQL <=8.0.28 Oracle / MySQL		<=8.0.28

CVE-2022-21425

Affected products

Known affected 9 products

Product	Identifier	Version
Juniper Junos Space <22.2R1 Juniper / Junos Space		<22.2R1
Dell Data Protection Advisor <19.12 Dell / Data Protection Advisor		<19.12
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift Red Hat	`cpe:/a:redhat:openshift:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
NetApp ActiveIQ Unified Manager NetApp	`cpe:/a:netapp:active_iq_unified_manager:-`	—

Last affected 6 products

Product	Identifier	Version	Remediation
Oracle MySQL <=5.7.37 Oracle / MySQL		<=5.7.37
Oracle MySQL <=7.4.35 Oracle / MySQL		<=7.4.35
Oracle MySQL <=7.5.25 Oracle / MySQL		<=7.5.25
Oracle MySQL <=7.6.21 Oracle / MySQL		<=7.6.21
Oracle MySQL <=8.0.29 Oracle / MySQL		<=8.0.29
Oracle MySQL <=8.0.28 Oracle / MySQL		<=8.0.28

CVE-2022-21427

Affected products

Known affected 9 products

Product	Identifier	Version
Juniper Junos Space <22.2R1 Juniper / Junos Space		<22.2R1
Dell Data Protection Advisor <19.12 Dell / Data Protection Advisor		<19.12
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift Red Hat	`cpe:/a:redhat:openshift:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
NetApp ActiveIQ Unified Manager NetApp	`cpe:/a:netapp:active_iq_unified_manager:-`	—

Last affected 6 products

Product	Identifier	Version	Remediation
Oracle MySQL <=5.7.37 Oracle / MySQL		<=5.7.37
Oracle MySQL <=7.4.35 Oracle / MySQL		<=7.4.35
Oracle MySQL <=7.5.25 Oracle / MySQL		<=7.5.25
Oracle MySQL <=7.6.21 Oracle / MySQL		<=7.6.21
Oracle MySQL <=8.0.29 Oracle / MySQL		<=8.0.29
Oracle MySQL <=8.0.28 Oracle / MySQL		<=8.0.28

CVE-2022-21435

Affected products

Known affected 9 products

Product	Identifier	Version
Juniper Junos Space <22.2R1 Juniper / Junos Space		<22.2R1
Dell Data Protection Advisor <19.12 Dell / Data Protection Advisor		<19.12
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift Red Hat	`cpe:/a:redhat:openshift:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
NetApp ActiveIQ Unified Manager NetApp	`cpe:/a:netapp:active_iq_unified_manager:-`	—

Last affected 6 products

Product	Identifier	Version	Remediation
Oracle MySQL <=5.7.37 Oracle / MySQL		<=5.7.37
Oracle MySQL <=7.4.35 Oracle / MySQL		<=7.4.35
Oracle MySQL <=7.5.25 Oracle / MySQL		<=7.5.25
Oracle MySQL <=7.6.21 Oracle / MySQL		<=7.6.21
Oracle MySQL <=8.0.29 Oracle / MySQL		<=8.0.29
Oracle MySQL <=8.0.28 Oracle / MySQL		<=8.0.28

CVE-2022-21436

Affected products

Known affected 9 products

Product	Identifier	Version
Juniper Junos Space <22.2R1 Juniper / Junos Space		<22.2R1
Dell Data Protection Advisor <19.12 Dell / Data Protection Advisor		<19.12
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift Red Hat	`cpe:/a:redhat:openshift:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
NetApp ActiveIQ Unified Manager NetApp	`cpe:/a:netapp:active_iq_unified_manager:-`	—

Last affected 6 products

Product	Identifier	Version	Remediation
Oracle MySQL <=5.7.37 Oracle / MySQL		<=5.7.37
Oracle MySQL <=7.4.35 Oracle / MySQL		<=7.4.35
Oracle MySQL <=7.5.25 Oracle / MySQL		<=7.5.25
Oracle MySQL <=7.6.21 Oracle / MySQL		<=7.6.21
Oracle MySQL <=8.0.29 Oracle / MySQL		<=8.0.29
Oracle MySQL <=8.0.28 Oracle / MySQL		<=8.0.28

CVE-2022-21437

Affected products

Known affected 9 products

Product	Identifier	Version
Juniper Junos Space <22.2R1 Juniper / Junos Space		<22.2R1
Dell Data Protection Advisor <19.12 Dell / Data Protection Advisor		<19.12
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift Red Hat	`cpe:/a:redhat:openshift:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
NetApp ActiveIQ Unified Manager NetApp	`cpe:/a:netapp:active_iq_unified_manager:-`	—

Last affected 6 products

Product	Identifier	Version	Remediation
Oracle MySQL <=5.7.37 Oracle / MySQL		<=5.7.37
Oracle MySQL <=7.4.35 Oracle / MySQL		<=7.4.35
Oracle MySQL <=7.5.25 Oracle / MySQL		<=7.5.25
Oracle MySQL <=7.6.21 Oracle / MySQL		<=7.6.21
Oracle MySQL <=8.0.29 Oracle / MySQL		<=8.0.29
Oracle MySQL <=8.0.28 Oracle / MySQL		<=8.0.28

CVE-2022-21438

Affected products

Known affected 9 products

Product	Identifier	Version
Juniper Junos Space <22.2R1 Juniper / Junos Space		<22.2R1
Dell Data Protection Advisor <19.12 Dell / Data Protection Advisor		<19.12
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift Red Hat	`cpe:/a:redhat:openshift:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
NetApp ActiveIQ Unified Manager NetApp	`cpe:/a:netapp:active_iq_unified_manager:-`	—

Last affected 6 products

Product	Identifier	Version	Remediation
Oracle MySQL <=5.7.37 Oracle / MySQL		<=5.7.37
Oracle MySQL <=7.4.35 Oracle / MySQL		<=7.4.35
Oracle MySQL <=7.5.25 Oracle / MySQL		<=7.5.25
Oracle MySQL <=7.6.21 Oracle / MySQL		<=7.6.21
Oracle MySQL <=8.0.29 Oracle / MySQL		<=8.0.29
Oracle MySQL <=8.0.28 Oracle / MySQL		<=8.0.28

CVE-2022-21440

Affected products

Known affected 9 products

Product	Identifier	Version
Juniper Junos Space <22.2R1 Juniper / Junos Space		<22.2R1
Dell Data Protection Advisor <19.12 Dell / Data Protection Advisor		<19.12
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift Red Hat	`cpe:/a:redhat:openshift:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
NetApp ActiveIQ Unified Manager NetApp	`cpe:/a:netapp:active_iq_unified_manager:-`	—

Last affected 6 products

Product	Identifier	Version	Remediation
Oracle MySQL <=5.7.37 Oracle / MySQL		<=5.7.37
Oracle MySQL <=7.4.35 Oracle / MySQL		<=7.4.35
Oracle MySQL <=7.5.25 Oracle / MySQL		<=7.5.25
Oracle MySQL <=7.6.21 Oracle / MySQL		<=7.6.21
Oracle MySQL <=8.0.29 Oracle / MySQL		<=8.0.29
Oracle MySQL <=8.0.28 Oracle / MySQL		<=8.0.28

CVE-2022-21444

Affected products

Known affected 9 products

Product	Identifier	Version
Juniper Junos Space <22.2R1 Juniper / Junos Space		<22.2R1
Dell Data Protection Advisor <19.12 Dell / Data Protection Advisor		<19.12
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift Red Hat	`cpe:/a:redhat:openshift:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
NetApp ActiveIQ Unified Manager NetApp	`cpe:/a:netapp:active_iq_unified_manager:-`	—

Last affected 6 products

Product	Identifier	Version	Remediation
Oracle MySQL <=5.7.37 Oracle / MySQL		<=5.7.37
Oracle MySQL <=7.4.35 Oracle / MySQL		<=7.4.35
Oracle MySQL <=7.5.25 Oracle / MySQL		<=7.5.25
Oracle MySQL <=7.6.21 Oracle / MySQL		<=7.6.21
Oracle MySQL <=8.0.29 Oracle / MySQL		<=8.0.29
Oracle MySQL <=8.0.28 Oracle / MySQL		<=8.0.28

CVE-2022-21451

Affected products

Known affected 9 products

Product	Identifier	Version
Juniper Junos Space <22.2R1 Juniper / Junos Space		<22.2R1
Dell Data Protection Advisor <19.12 Dell / Data Protection Advisor		<19.12
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift Red Hat	`cpe:/a:redhat:openshift:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
NetApp ActiveIQ Unified Manager NetApp	`cpe:/a:netapp:active_iq_unified_manager:-`	—

Last affected 6 products

Product	Identifier	Version	Remediation
Oracle MySQL <=5.7.37 Oracle / MySQL		<=5.7.37
Oracle MySQL <=7.4.35 Oracle / MySQL		<=7.4.35
Oracle MySQL <=7.5.25 Oracle / MySQL		<=7.5.25
Oracle MySQL <=7.6.21 Oracle / MySQL		<=7.6.21
Oracle MySQL <=8.0.29 Oracle / MySQL		<=8.0.29
Oracle MySQL <=8.0.28 Oracle / MySQL		<=8.0.28

CVE-2022-21452

Affected products

Known affected 9 products

Product	Identifier	Version
Juniper Junos Space <22.2R1 Juniper / Junos Space		<22.2R1
Dell Data Protection Advisor <19.12 Dell / Data Protection Advisor		<19.12
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift Red Hat	`cpe:/a:redhat:openshift:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
NetApp ActiveIQ Unified Manager NetApp	`cpe:/a:netapp:active_iq_unified_manager:-`	—

Last affected 6 products

Product	Identifier	Version	Remediation
Oracle MySQL <=5.7.37 Oracle / MySQL		<=5.7.37
Oracle MySQL <=7.4.35 Oracle / MySQL		<=7.4.35
Oracle MySQL <=7.5.25 Oracle / MySQL		<=7.5.25
Oracle MySQL <=7.6.21 Oracle / MySQL		<=7.6.21
Oracle MySQL <=8.0.29 Oracle / MySQL		<=8.0.29
Oracle MySQL <=8.0.28 Oracle / MySQL		<=8.0.28

CVE-2022-21454

Affected products

Known affected 9 products

Product	Identifier	Version
Juniper Junos Space <22.2R1 Juniper / Junos Space		<22.2R1
Dell Data Protection Advisor <19.12 Dell / Data Protection Advisor		<19.12
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift Red Hat	`cpe:/a:redhat:openshift:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
NetApp ActiveIQ Unified Manager NetApp	`cpe:/a:netapp:active_iq_unified_manager:-`	—

Last affected 6 products

Product	Identifier	Version	Remediation
Oracle MySQL <=5.7.37 Oracle / MySQL		<=5.7.37
Oracle MySQL <=7.4.35 Oracle / MySQL		<=7.4.35
Oracle MySQL <=7.5.25 Oracle / MySQL		<=7.5.25
Oracle MySQL <=7.6.21 Oracle / MySQL		<=7.6.21
Oracle MySQL <=8.0.29 Oracle / MySQL		<=8.0.29
Oracle MySQL <=8.0.28 Oracle / MySQL		<=8.0.28

CVE-2022-21457

Affected products

Known affected 9 products

Product	Identifier	Version
Juniper Junos Space <22.2R1 Juniper / Junos Space		<22.2R1
Dell Data Protection Advisor <19.12 Dell / Data Protection Advisor		<19.12
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift Red Hat	`cpe:/a:redhat:openshift:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
NetApp ActiveIQ Unified Manager NetApp	`cpe:/a:netapp:active_iq_unified_manager:-`	—

Last affected 6 products

Product	Identifier	Version	Remediation
Oracle MySQL <=5.7.37 Oracle / MySQL		<=5.7.37
Oracle MySQL <=7.4.35 Oracle / MySQL		<=7.4.35
Oracle MySQL <=7.5.25 Oracle / MySQL		<=7.5.25
Oracle MySQL <=7.6.21 Oracle / MySQL		<=7.6.21
Oracle MySQL <=8.0.29 Oracle / MySQL		<=8.0.29
Oracle MySQL <=8.0.28 Oracle / MySQL		<=8.0.28

CVE-2022-21459

Affected products

Known affected 9 products

Product	Identifier	Version
Juniper Junos Space <22.2R1 Juniper / Junos Space		<22.2R1
Dell Data Protection Advisor <19.12 Dell / Data Protection Advisor		<19.12
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift Red Hat	`cpe:/a:redhat:openshift:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
NetApp ActiveIQ Unified Manager NetApp	`cpe:/a:netapp:active_iq_unified_manager:-`	—

Last affected 6 products

Product	Identifier	Version	Remediation
Oracle MySQL <=5.7.37 Oracle / MySQL		<=5.7.37
Oracle MySQL <=7.4.35 Oracle / MySQL		<=7.4.35
Oracle MySQL <=7.5.25 Oracle / MySQL		<=7.5.25
Oracle MySQL <=7.6.21 Oracle / MySQL		<=7.6.21
Oracle MySQL <=8.0.29 Oracle / MySQL		<=8.0.29
Oracle MySQL <=8.0.28 Oracle / MySQL		<=8.0.28

CVE-2022-21460

Affected products

Known affected 9 products

Product	Identifier	Version
Juniper Junos Space <22.2R1 Juniper / Junos Space		<22.2R1
Dell Data Protection Advisor <19.12 Dell / Data Protection Advisor		<19.12
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift Red Hat	`cpe:/a:redhat:openshift:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
NetApp ActiveIQ Unified Manager NetApp	`cpe:/a:netapp:active_iq_unified_manager:-`	—

Last affected 6 products

Product	Identifier	Version	Remediation
Oracle MySQL <=5.7.37 Oracle / MySQL		<=5.7.37
Oracle MySQL <=7.4.35 Oracle / MySQL		<=7.4.35
Oracle MySQL <=7.5.25 Oracle / MySQL		<=7.5.25
Oracle MySQL <=7.6.21 Oracle / MySQL		<=7.6.21
Oracle MySQL <=8.0.29 Oracle / MySQL		<=8.0.29
Oracle MySQL <=8.0.28 Oracle / MySQL		<=8.0.28

CVE-2022-21462

Affected products

Known affected 9 products

Product	Identifier	Version
Juniper Junos Space <22.2R1 Juniper / Junos Space		<22.2R1
Dell Data Protection Advisor <19.12 Dell / Data Protection Advisor		<19.12
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift Red Hat	`cpe:/a:redhat:openshift:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
NetApp ActiveIQ Unified Manager NetApp	`cpe:/a:netapp:active_iq_unified_manager:-`	—

Last affected 6 products

Product	Identifier	Version	Remediation
Oracle MySQL <=5.7.37 Oracle / MySQL		<=5.7.37
Oracle MySQL <=7.4.35 Oracle / MySQL		<=7.4.35
Oracle MySQL <=7.5.25 Oracle / MySQL		<=7.5.25
Oracle MySQL <=7.6.21 Oracle / MySQL		<=7.6.21
Oracle MySQL <=8.0.29 Oracle / MySQL		<=8.0.29
Oracle MySQL <=8.0.28 Oracle / MySQL		<=8.0.28

CVE-2022-21478

Affected products

Known affected 9 products

Product	Identifier	Version
Juniper Junos Space <22.2R1 Juniper / Junos Space		<22.2R1
Dell Data Protection Advisor <19.12 Dell / Data Protection Advisor		<19.12
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift Red Hat	`cpe:/a:redhat:openshift:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
NetApp ActiveIQ Unified Manager NetApp	`cpe:/a:netapp:active_iq_unified_manager:-`	—

Last affected 6 products

Product	Identifier	Version	Remediation
Oracle MySQL <=5.7.37 Oracle / MySQL		<=5.7.37
Oracle MySQL <=7.4.35 Oracle / MySQL		<=7.4.35
Oracle MySQL <=7.5.25 Oracle / MySQL		<=7.5.25
Oracle MySQL <=7.6.21 Oracle / MySQL		<=7.6.21
Oracle MySQL <=8.0.29 Oracle / MySQL		<=8.0.29
Oracle MySQL <=8.0.28 Oracle / MySQL		<=8.0.28

CVE-2022-21479

Affected products

Known affected 9 products

Product	Identifier	Version
Juniper Junos Space <22.2R1 Juniper / Junos Space		<22.2R1
Dell Data Protection Advisor <19.12 Dell / Data Protection Advisor		<19.12
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift Red Hat	`cpe:/a:redhat:openshift:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
NetApp ActiveIQ Unified Manager NetApp	`cpe:/a:netapp:active_iq_unified_manager:-`	—

Last affected 6 products

Product	Identifier	Version	Remediation
Oracle MySQL <=5.7.37 Oracle / MySQL		<=5.7.37
Oracle MySQL <=7.4.35 Oracle / MySQL		<=7.4.35
Oracle MySQL <=7.5.25 Oracle / MySQL		<=7.5.25
Oracle MySQL <=7.6.21 Oracle / MySQL		<=7.6.21
Oracle MySQL <=8.0.29 Oracle / MySQL		<=8.0.29
Oracle MySQL <=8.0.28 Oracle / MySQL		<=8.0.28

CVE-2022-21482

Affected products

Known affected 9 products

Product	Identifier	Version
Juniper Junos Space <22.2R1 Juniper / Junos Space		<22.2R1
Dell Data Protection Advisor <19.12 Dell / Data Protection Advisor		<19.12
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift Red Hat	`cpe:/a:redhat:openshift:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
NetApp ActiveIQ Unified Manager NetApp	`cpe:/a:netapp:active_iq_unified_manager:-`	—

Last affected 6 products

Product	Identifier	Version	Remediation
Oracle MySQL <=5.7.37 Oracle / MySQL		<=5.7.37
Oracle MySQL <=7.4.35 Oracle / MySQL		<=7.4.35
Oracle MySQL <=7.5.25 Oracle / MySQL		<=7.5.25
Oracle MySQL <=7.6.21 Oracle / MySQL		<=7.6.21
Oracle MySQL <=8.0.29 Oracle / MySQL		<=8.0.29
Oracle MySQL <=8.0.28 Oracle / MySQL		<=8.0.28

CVE-2022-21483

Affected products

Known affected 9 products

Product	Identifier	Version
Juniper Junos Space <22.2R1 Juniper / Junos Space		<22.2R1
Dell Data Protection Advisor <19.12 Dell / Data Protection Advisor		<19.12
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift Red Hat	`cpe:/a:redhat:openshift:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
NetApp ActiveIQ Unified Manager NetApp	`cpe:/a:netapp:active_iq_unified_manager:-`	—

Last affected 6 products

Product	Identifier	Version	Remediation
Oracle MySQL <=5.7.37 Oracle / MySQL		<=5.7.37
Oracle MySQL <=7.4.35 Oracle / MySQL		<=7.4.35
Oracle MySQL <=7.5.25 Oracle / MySQL		<=7.5.25
Oracle MySQL <=7.6.21 Oracle / MySQL		<=7.6.21
Oracle MySQL <=8.0.29 Oracle / MySQL		<=8.0.29
Oracle MySQL <=8.0.28 Oracle / MySQL		<=8.0.28

CVE-2022-21484

Affected products

Known affected 9 products

Product	Identifier	Version
Juniper Junos Space <22.2R1 Juniper / Junos Space		<22.2R1
Dell Data Protection Advisor <19.12 Dell / Data Protection Advisor		<19.12
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift Red Hat	`cpe:/a:redhat:openshift:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
NetApp ActiveIQ Unified Manager NetApp	`cpe:/a:netapp:active_iq_unified_manager:-`	—

Last affected 6 products

Product	Identifier	Version	Remediation
Oracle MySQL <=5.7.37 Oracle / MySQL		<=5.7.37
Oracle MySQL <=7.4.35 Oracle / MySQL		<=7.4.35
Oracle MySQL <=7.5.25 Oracle / MySQL		<=7.5.25
Oracle MySQL <=7.6.21 Oracle / MySQL		<=7.6.21
Oracle MySQL <=8.0.29 Oracle / MySQL		<=8.0.29
Oracle MySQL <=8.0.28 Oracle / MySQL		<=8.0.28

CVE-2022-21485

Affected products

Known affected 9 products

Product	Identifier	Version
Juniper Junos Space <22.2R1 Juniper / Junos Space		<22.2R1
Dell Data Protection Advisor <19.12 Dell / Data Protection Advisor		<19.12
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift Red Hat	`cpe:/a:redhat:openshift:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
NetApp ActiveIQ Unified Manager NetApp	`cpe:/a:netapp:active_iq_unified_manager:-`	—

Last affected 6 products

Product	Identifier	Version	Remediation
Oracle MySQL <=5.7.37 Oracle / MySQL		<=5.7.37
Oracle MySQL <=7.4.35 Oracle / MySQL		<=7.4.35
Oracle MySQL <=7.5.25 Oracle / MySQL		<=7.5.25
Oracle MySQL <=7.6.21 Oracle / MySQL		<=7.6.21
Oracle MySQL <=8.0.29 Oracle / MySQL		<=8.0.29
Oracle MySQL <=8.0.28 Oracle / MySQL		<=8.0.28

CVE-2022-21486

Affected products

Known affected 9 products

Product	Identifier	Version
Juniper Junos Space <22.2R1 Juniper / Junos Space		<22.2R1
Dell Data Protection Advisor <19.12 Dell / Data Protection Advisor		<19.12
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift Red Hat	`cpe:/a:redhat:openshift:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
NetApp ActiveIQ Unified Manager NetApp	`cpe:/a:netapp:active_iq_unified_manager:-`	—

Last affected 6 products

Product	Identifier	Version	Remediation
Oracle MySQL <=5.7.37 Oracle / MySQL		<=5.7.37
Oracle MySQL <=7.4.35 Oracle / MySQL		<=7.4.35
Oracle MySQL <=7.5.25 Oracle / MySQL		<=7.5.25
Oracle MySQL <=7.6.21 Oracle / MySQL		<=7.6.21
Oracle MySQL <=8.0.29 Oracle / MySQL		<=8.0.29
Oracle MySQL <=8.0.28 Oracle / MySQL		<=8.0.28

CVE-2022-21489

Affected products

Known affected 9 products

Product	Identifier	Version
Juniper Junos Space <22.2R1 Juniper / Junos Space		<22.2R1
Dell Data Protection Advisor <19.12 Dell / Data Protection Advisor		<19.12
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift Red Hat	`cpe:/a:redhat:openshift:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
NetApp ActiveIQ Unified Manager NetApp	`cpe:/a:netapp:active_iq_unified_manager:-`	—

Last affected 6 products

Product	Identifier	Version	Remediation
Oracle MySQL <=5.7.37 Oracle / MySQL		<=5.7.37
Oracle MySQL <=7.4.35 Oracle / MySQL		<=7.4.35
Oracle MySQL <=7.5.25 Oracle / MySQL		<=7.5.25
Oracle MySQL <=7.6.21 Oracle / MySQL		<=7.6.21
Oracle MySQL <=8.0.29 Oracle / MySQL		<=8.0.29
Oracle MySQL <=8.0.28 Oracle / MySQL		<=8.0.28

CVE-2022-21490

Affected products

Known affected 9 products

Product	Identifier	Version
Juniper Junos Space <22.2R1 Juniper / Junos Space		<22.2R1
Dell Data Protection Advisor <19.12 Dell / Data Protection Advisor		<19.12
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift Red Hat	`cpe:/a:redhat:openshift:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
NetApp ActiveIQ Unified Manager NetApp	`cpe:/a:netapp:active_iq_unified_manager:-`	—

Last affected 6 products

Product	Identifier	Version	Remediation
Oracle MySQL <=5.7.37 Oracle / MySQL		<=5.7.37
Oracle MySQL <=7.4.35 Oracle / MySQL		<=7.4.35
Oracle MySQL <=7.5.25 Oracle / MySQL		<=7.5.25
Oracle MySQL <=7.6.21 Oracle / MySQL		<=7.6.21
Oracle MySQL <=8.0.29 Oracle / MySQL		<=8.0.29
Oracle MySQL <=8.0.28 Oracle / MySQL		<=8.0.28

CVE-2022-22965

Affected products

Known affected 9 products

Product	Identifier	Version
Juniper Junos Space <22.2R1 Juniper / Junos Space		<22.2R1
Dell Data Protection Advisor <19.12 Dell / Data Protection Advisor		<19.12
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift Red Hat	`cpe:/a:redhat:openshift:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
NetApp ActiveIQ Unified Manager NetApp	`cpe:/a:netapp:active_iq_unified_manager:-`	—

Last affected 6 products

Product	Identifier	Version	Remediation
Oracle MySQL <=5.7.37 Oracle / MySQL		<=5.7.37
Oracle MySQL <=7.4.35 Oracle / MySQL		<=7.4.35
Oracle MySQL <=7.5.25 Oracle / MySQL		<=7.5.25
Oracle MySQL <=7.6.21 Oracle / MySQL		<=7.6.21
Oracle MySQL <=8.0.29 Oracle / MySQL		<=8.0.29
Oracle MySQL <=8.0.28 Oracle / MySQL		<=8.0.28

CVE-2022-23181

Affected products

Known affected 9 products

Product	Identifier	Version
Juniper Junos Space <22.2R1 Juniper / Junos Space		<22.2R1
Dell Data Protection Advisor <19.12 Dell / Data Protection Advisor		<19.12
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift Red Hat	`cpe:/a:redhat:openshift:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
NetApp ActiveIQ Unified Manager NetApp	`cpe:/a:netapp:active_iq_unified_manager:-`	—

Last affected 6 products

Product	Identifier	Version	Remediation
Oracle MySQL <=5.7.37 Oracle / MySQL		<=5.7.37
Oracle MySQL <=7.4.35 Oracle / MySQL		<=7.4.35
Oracle MySQL <=7.5.25 Oracle / MySQL		<=7.5.25
Oracle MySQL <=7.6.21 Oracle / MySQL		<=7.6.21
Oracle MySQL <=8.0.29 Oracle / MySQL		<=8.0.29
Oracle MySQL <=8.0.28 Oracle / MySQL		<=8.0.28

CVE-2022-23305

Affected products

Known affected 9 products

Product	Identifier	Version
Juniper Junos Space <22.2R1 Juniper / Junos Space		<22.2R1
Dell Data Protection Advisor <19.12 Dell / Data Protection Advisor		<19.12
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift Red Hat	`cpe:/a:redhat:openshift:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
NetApp ActiveIQ Unified Manager NetApp	`cpe:/a:netapp:active_iq_unified_manager:-`	—

Last affected 6 products

Product	Identifier	Version	Remediation
Oracle MySQL <=5.7.37 Oracle / MySQL		<=5.7.37
Oracle MySQL <=7.4.35 Oracle / MySQL		<=7.4.35
Oracle MySQL <=7.5.25 Oracle / MySQL		<=7.5.25
Oracle MySQL <=7.6.21 Oracle / MySQL		<=7.6.21
Oracle MySQL <=8.0.29 Oracle / MySQL		<=8.0.29
Oracle MySQL <=8.0.28 Oracle / MySQL		<=8.0.28

References

31 references

URL	Category
https://wid.cert-bund.de/.well-known/csaf/white/2…	self
https://wid.cert-bund.de/portal/wid/securityadvis…	self
https://www.oracle.com/security-alerts/cpuapr2022…	external
https://security.netapp.com/advisory/ntap-2022042…	external
https://ubuntu.com/security/notices/USN-5400-1	external
https://ubuntu.com/security/notices/USN-5400-2	external
https://ubuntu.com/security/notices/USN-5400-3	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://ubuntu.com/security/notices/USN-5490-1	external
https://alas.aws.amazon.com/AL2022/ALAS-2022-098.html	external
https://access.redhat.com/errata/RHSA-2022:6306	external
https://access.redhat.com/errata/RHSA-2022:6518	external
https://access.redhat.com/errata/RHSA-2022:6590	external
https://linux.oracle.com/errata/ELSA-2022-6590.html	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://supportportal.juniper.net/s/article/2022-…	external
https://www.oracle.com/security-alerts/linuxbulle…	external
https://access.redhat.com/errata/RHSA-2022:7119	external
https://linux.oracle.com/errata/ELSA-2022-7119.html	external
https://alas.aws.amazon.com/AL2022/ALAS-2022-165.html	external
https://access.redhat.com/errata/RHSA-2022:7464	external
https://access.redhat.com/errata/RHSA-2022:7970	external
https://linux.oracle.com/errata/ELSA-2022-7970.html	external
https://access.redhat.com/errata/RHSA-2022:8860	external
https://access.redhat.com/errata/RHSA-2022:8847	external
https://access.redhat.com/errata/RHSA-2022:8893	external
https://alas.aws.amazon.com/AL2/ALAS-2023-1931.html	external
https://alas.aws.amazon.com/ALAS-2023-1676.html	external
https://alas.aws.amazon.com/AL2/ALAS-2023-1948.html	external
https://access.redhat.com/errata/RHSA-2024:3433	external
https://www.dell.com/support/kbdoc/en-us/00028173…	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "hoch"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "MySQL ist ein Open Source Datenbankserver von Oracle.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Oracle MySQL ausnutzen, um die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit zu gef\u00e4hrden.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- Linux\n- MacOS X\n- NetApp Appliance\n- UNIX\n- Windows",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2022-0169 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2022/wid-sec-w-2022-0169.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2022-0169 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2022-0169"
      },
      {
        "category": "external",
        "summary": "Oracle Critical Patch Update April 2022 - Appendix Oracle MySQL vom 2022-04-19",
        "url": "https://www.oracle.com/security-alerts/cpuapr2022.html#AppendixMSQL"
      },
      {
        "category": "external",
        "summary": "NetApp Security Advisory NTAP-20220429-0005 vom 2022-04-29",
        "url": "https://security.netapp.com/advisory/ntap-20220429-0005/"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-5400-1 vom 2022-05-03",
        "url": "https://ubuntu.com/security/notices/USN-5400-1"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-5400-2 vom 2022-05-04",
        "url": "https://ubuntu.com/security/notices/USN-5400-2"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-5400-3 vom 2022-05-05",
        "url": "https://ubuntu.com/security/notices/USN-5400-3"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2022:2003-1 vom 2022-06-07",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2022-June/011247.html"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-5490-1 vom 2022-06-21",
        "url": "https://ubuntu.com/security/notices/USN-5490-1"
      },
      {
        "category": "external",
        "summary": "Amazon Linux Security Advisory ALAS-2022-098 vom 2022-07-21",
        "url": "https://alas.aws.amazon.com/AL2022/ALAS-2022-098.html"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2022:6306 vom 2022-09-01",
        "url": "https://access.redhat.com/errata/RHSA-2022:6306"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2022:6518 vom 2022-09-14",
        "url": "https://access.redhat.com/errata/RHSA-2022:6518"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2022:6590 vom 2022-09-21",
        "url": "https://access.redhat.com/errata/RHSA-2022:6590"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2022-6590 vom 2022-09-22",
        "url": "https://linux.oracle.com/errata/ELSA-2022-6590.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2022:1040-3 vom 2022-10-06",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2022-October/012505.html"
      },
      {
        "category": "external",
        "summary": "Juniper Security Bulletin",
        "url": "https://supportportal.juniper.net/s/article/2022-10-Security-Bulletin-Junos-Space-Multiple-vulnerabilities-resolved-in-22-2R1-release"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Bulletin-October 2022 vom 2022-10-18",
        "url": "https://www.oracle.com/security-alerts/linuxbulletinoct2022.html"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2022:7119 vom 2022-10-25",
        "url": "https://access.redhat.com/errata/RHSA-2022:7119"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2022-7119 vom 2022-10-27",
        "url": "https://linux.oracle.com/errata/ELSA-2022-7119.html"
      },
      {
        "category": "external",
        "summary": "Amazon Linux Security Advisory ALAS-2022-165 vom 2022-11-04",
        "url": "https://alas.aws.amazon.com/AL2022/ALAS-2022-165.html"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2022:7464 vom 2022-11-08",
        "url": "https://access.redhat.com/errata/RHSA-2022:7464"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2022:7970 vom 2022-11-15",
        "url": "https://access.redhat.com/errata/RHSA-2022:7970"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2022-7970 vom 2022-11-22",
        "url": "https://linux.oracle.com/errata/ELSA-2022-7970.html"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2022:8860 vom 2022-12-08",
        "url": "https://access.redhat.com/errata/RHSA-2022:8860"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2022:8847 vom 2022-12-08",
        "url": "https://access.redhat.com/errata/RHSA-2022:8847"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2022:8893 vom 2022-12-15",
        "url": "https://access.redhat.com/errata/RHSA-2022:8893"
      },
      {
        "category": "external",
        "summary": "Amazon Linux Security Advisory ALAS-2023-1931 vom 2023-02-06",
        "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-1931.html"
      },
      {
        "category": "external",
        "summary": "Amazon Linux Security Advisory ALAS-2023-1676 vom 2023-02-06",
        "url": "https://alas.aws.amazon.com/ALAS-2023-1676.html"
      },
      {
        "category": "external",
        "summary": "Amazon Linux Security Advisory ALAS2-2023-1948 vom 2023-02-22",
        "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-1948.html"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2024:3433 vom 2024-05-28",
        "url": "https://access.redhat.com/errata/RHSA-2024:3433"
      },
      {
        "category": "external",
        "summary": "Deell Security Update",
        "url": "https://www.dell.com/support/kbdoc/en-us/000281732/dsa-2025-075-security-update-for-dell-data-protection-advisor-for-multiple-component-vulnerabilities"
      }
    ],
    "source_lang": "en-US",
    "title": "Oracle MySQL: Mehrere Schwachstellen",
    "tracking": {
      "current_release_date": "2026-01-25T23:00:00.000+00:00",
      "generator": {
        "date": "2026-01-26T09:21:26.964+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.5.0"
        }
      },
      "id": "WID-SEC-W-2022-0169",
      "initial_release_date": "2022-04-19T22:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2022-04-19T22:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        },
        {
          "date": "2022-05-01T22:00:00.000+00:00",
          "number": "2",
          "summary": "Neue Updates von NetApp aufgenommen"
        },
        {
          "date": "2022-05-03T22:00:00.000+00:00",
          "number": "3",
          "summary": "Neue Updates von Ubuntu aufgenommen"
        },
        {
          "date": "2022-05-04T22:00:00.000+00:00",
          "number": "4",
          "summary": "Neue Updates von Ubuntu aufgenommen"
        },
        {
          "date": "2022-05-05T22:00:00.000+00:00",
          "number": "5",
          "summary": "Neue Updates von Ubuntu aufgenommen"
        },
        {
          "date": "2022-06-07T22:00:00.000+00:00",
          "number": "6",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2022-06-21T22:00:00.000+00:00",
          "number": "7",
          "summary": "Neue Updates von Ubuntu aufgenommen"
        },
        {
          "date": "2022-07-20T22:00:00.000+00:00",
          "number": "8",
          "summary": "Neue Updates von Amazon aufgenommen"
        },
        {
          "date": "2022-09-01T22:00:00.000+00:00",
          "number": "9",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2022-09-14T22:00:00.000+00:00",
          "number": "10",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2022-09-20T22:00:00.000+00:00",
          "number": "11",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2022-09-21T22:00:00.000+00:00",
          "number": "12",
          "summary": "Neue Updates von Oracle Linux aufgenommen"
        },
        {
          "date": "2022-10-06T22:00:00.000+00:00",
          "number": "13",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2022-10-12T22:00:00.000+00:00",
          "number": "14",
          "summary": "Neue Updates aufgenommen"
        },
        {
          "date": "2022-10-18T22:00:00.000+00:00",
          "number": "15",
          "summary": "Neue Updates aufgenommen"
        },
        {
          "date": "2022-10-25T22:00:00.000+00:00",
          "number": "16",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2022-10-26T22:00:00.000+00:00",
          "number": "17",
          "summary": "Neue Updates von Oracle Linux aufgenommen"
        },
        {
          "date": "2022-11-06T23:00:00.000+00:00",
          "number": "18",
          "summary": "Neue Updates von Amazon aufgenommen"
        },
        {
          "date": "2022-11-08T23:00:00.000+00:00",
          "number": "19",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2022-11-15T23:00:00.000+00:00",
          "number": "20",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2022-11-21T23:00:00.000+00:00",
          "number": "21",
          "summary": "Neue Updates von Oracle Linux aufgenommen"
        },
        {
          "date": "2022-12-07T23:00:00.000+00:00",
          "number": "22",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2022-12-15T23:00:00.000+00:00",
          "number": "23",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2023-02-06T23:00:00.000+00:00",
          "number": "24",
          "summary": "Neue Updates von Amazon aufgenommen"
        },
        {
          "date": "2023-02-22T23:00:00.000+00:00",
          "number": "25",
          "summary": "Neue Updates von Amazon aufgenommen"
        },
        {
          "date": "2024-05-28T22:00:00.000+00:00",
          "number": "26",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2026-01-25T23:00:00.000+00:00",
          "number": "27",
          "summary": "Neue Updates von Dell aufgenommen"
        }
      ],
      "status": "final",
      "version": "27"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Amazon Linux 2",
            "product": {
              "name": "Amazon Linux 2",
              "product_id": "398363",
              "product_identification_helper": {
                "cpe": "cpe:/o:amazon:linux_2:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Amazon"
      },
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003c19.12",
                "product": {
                  "name": "Dell Data Protection Advisor \u003c19.12",
                  "product_id": "T050283"
                }
              },
              {
                "category": "product_version",
                "name": "19.12",
                "product": {
                  "name": "Dell Data Protection Advisor 19.12",
                  "product_id": "T050283-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:dell:data_protection_advisor:19.12"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Data Protection Advisor"
          }
        ],
        "category": "vendor",
        "name": "Dell"
      },
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003c22.2R1",
                "product": {
                  "name": "Juniper Junos Space \u003c22.2R1",
                  "product_id": "T003343"
                }
              },
              {
                "category": "product_version",
                "name": "22.2R1",
                "product": {
                  "name": "Juniper Junos Space 22.2R1",
                  "product_id": "T003343-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:juniper:junos_space:-"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Junos Space"
          }
        ],
        "category": "vendor",
        "name": "Juniper"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "NetApp ActiveIQ Unified Manager",
            "product": {
              "name": "NetApp ActiveIQ Unified Manager",
              "product_id": "T016960",
              "product_identification_helper": {
                "cpe": "cpe:/a:netapp:active_iq_unified_manager:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "NetApp"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Oracle Linux",
            "product": {
              "name": "Oracle Linux",
              "product_id": "T004914",
              "product_identification_helper": {
                "cpe": "cpe:/o:oracle:linux:-"
              }
            }
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003c=8.0.29",
                "product": {
                  "name": "Oracle MySQL \u003c=8.0.29",
                  "product_id": "T022871"
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c=8.0.29",
                "product": {
                  "name": "Oracle MySQL \u003c=8.0.29",
                  "product_id": "T022871-fixed"
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c=8.0.28",
                "product": {
                  "name": "Oracle MySQL \u003c=8.0.28",
                  "product_id": "T022872"
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c=8.0.28",
                "product": {
                  "name": "Oracle MySQL \u003c=8.0.28",
                  "product_id": "T022872-fixed"
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c=5.7.37",
                "product": {
                  "name": "Oracle MySQL \u003c=5.7.37",
                  "product_id": "T022873"
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c=5.7.37",
                "product": {
                  "name": "Oracle MySQL \u003c=5.7.37",
                  "product_id": "T022873-fixed"
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c=7.4.35",
                "product": {
                  "name": "Oracle MySQL \u003c=7.4.35",
                  "product_id": "T022874"
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c=7.4.35",
                "product": {
                  "name": "Oracle MySQL \u003c=7.4.35",
                  "product_id": "T022874-fixed"
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c=7.5.25",
                "product": {
                  "name": "Oracle MySQL \u003c=7.5.25",
                  "product_id": "T022875"
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c=7.5.25",
                "product": {
                  "name": "Oracle MySQL \u003c=7.5.25",
                  "product_id": "T022875-fixed"
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c=7.6.21",
                "product": {
                  "name": "Oracle MySQL \u003c=7.6.21",
                  "product_id": "T022876"
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c=7.6.21",
                "product": {
                  "name": "Oracle MySQL \u003c=7.6.21",
                  "product_id": "T022876-fixed"
                }
              }
            ],
            "category": "product_name",
            "name": "MySQL"
          }
        ],
        "category": "vendor",
        "name": "Oracle"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Red Hat Enterprise Linux",
            "product": {
              "name": "Red Hat Enterprise Linux",
              "product_id": "67646",
              "product_identification_helper": {
                "cpe": "cpe:/o:redhat:enterprise_linux:-"
              }
            }
          },
          {
            "category": "product_name",
            "name": "Red Hat OpenShift",
            "product": {
              "name": "Red Hat OpenShift",
              "product_id": "367115",
              "product_identification_helper": {
                "cpe": "cpe:/a:redhat:openshift:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "SUSE Linux",
            "product": {
              "name": "SUSE Linux",
              "product_id": "T002207",
              "product_identification_helper": {
                "cpe": "cpe:/o:suse:suse_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Ubuntu Linux",
            "product": {
              "name": "Ubuntu Linux",
              "product_id": "T000126",
              "product_identification_helper": {
                "cpe": "cpe:/o:canonical:ubuntu_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Ubuntu"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2021-22570",
      "product_status": {
        "known_affected": [
          "T003343",
          "T050283",
          "T002207",
          "67646",
          "T000126",
          "367115",
          "398363",
          "T004914",
          "T016960"
        ],
        "last_affected": [
          "T022873",
          "T022874",
          "T022875",
          "T022876",
          "T022871",
          "T022872"
        ]
      },
      "release_date": "2022-04-19T22:00:00.000+00:00",
      "title": "CVE-2021-22570"
    },
    {
      "cve": "CVE-2021-41184",
      "product_status": {
        "known_affected": [
          "T003343",
          "T050283",
          "T002207",
          "67646",
          "T000126",
          "367115",
          "398363",
          "T004914",
          "T016960"
        ],
        "last_affected": [
          "T022873",
          "T022874",
          "T022875",
          "T022876",
          "T022871",
          "T022872"
        ]
      },
      "release_date": "2022-04-19T22:00:00.000+00:00",
      "title": "CVE-2021-41184"
    },
    {
      "cve": "CVE-2021-42340",
      "product_status": {
        "known_affected": [
          "T003343",
          "T050283",
          "T002207",
          "67646",
          "T000126",
          "367115",
          "398363",
          "T004914",
          "T016960"
        ],
        "last_affected": [
          "T022873",
          "T022874",
          "T022875",
          "T022876",
          "T022871",
          "T022872"
        ]
      },
      "release_date": "2022-04-19T22:00:00.000+00:00",
      "title": "CVE-2021-42340"
    },
    {
      "cve": "CVE-2021-44832",
      "product_status": {
        "known_affected": [
          "T003343",
          "T050283",
          "T002207",
          "67646",
          "T000126",
          "367115",
          "398363",
          "T004914",
          "T016960"
        ],
        "last_affected": [
          "T022873",
          "T022874",
          "T022875",
          "T022876",
          "T022871",
          "T022872"
        ]
      },
      "release_date": "2022-04-19T22:00:00.000+00:00",
      "title": "CVE-2021-44832"
    },
    {
      "cve": "CVE-2022-0778",
      "product_status": {
        "known_affected": [
          "T003343",
          "T050283",
          "T002207",
          "67646",
          "T000126",
          "367115",
          "398363",
          "T004914",
          "T016960"
        ],
        "last_affected": [
          "T022873",
          "T022874",
          "T022875",
          "T022876",
          "T022871",
          "T022872"
        ]
      },
      "release_date": "2022-04-19T22:00:00.000+00:00",
      "title": "CVE-2022-0778"
    },
    {
      "cve": "CVE-2022-21412",
      "product_status": {
        "known_affected": [
          "T003343",
          "T050283",
          "T002207",
          "67646",
          "T000126",
          "367115",
          "398363",
          "T004914",
          "T016960"
        ],
        "last_affected": [
          "T022873",
          "T022874",
          "T022875",
          "T022876",
          "T022871",
          "T022872"
        ]
      },
      "release_date": "2022-04-19T22:00:00.000+00:00",
      "title": "CVE-2022-21412"
    },
    {
      "cve": "CVE-2022-21413",
      "product_status": {
        "known_affected": [
          "T003343",
          "T050283",
          "T002207",
          "67646",
          "T000126",
          "367115",
          "398363",
          "T004914",
          "T016960"
        ],
        "last_affected": [
          "T022873",
          "T022874",
          "T022875",
          "T022876",
          "T022871",
          "T022872"
        ]
      },
      "release_date": "2022-04-19T22:00:00.000+00:00",
      "title": "CVE-2022-21413"
    },
    {
      "cve": "CVE-2022-21414",
      "product_status": {
        "known_affected": [
          "T003343",
          "T050283",
          "T002207",
          "67646",
          "T000126",
          "367115",
          "398363",
          "T004914",
          "T016960"
        ],
        "last_affected": [
          "T022873",
          "T022874",
          "T022875",
          "T022876",
          "T022871",
          "T022872"
        ]
      },
      "release_date": "2022-04-19T22:00:00.000+00:00",
      "title": "CVE-2022-21414"
    },
    {
      "cve": "CVE-2022-21415",
      "product_status": {
        "known_affected": [
          "T003343",
          "T050283",
          "T002207",
          "67646",
          "T000126",
          "367115",
          "398363",
          "T004914",
          "T016960"
        ],
        "last_affected": [
          "T022873",
          "T022874",
          "T022875",
          "T022876",
          "T022871",
          "T022872"
        ]
      },
      "release_date": "2022-04-19T22:00:00.000+00:00",
      "title": "CVE-2022-21415"
    },
    {
      "cve": "CVE-2022-21417",
      "product_status": {
        "known_affected": [
          "T003343",
          "T050283",
          "T002207",
          "67646",
          "T000126",
          "367115",
          "398363",
          "T004914",
          "T016960"
        ],
        "last_affected": [
          "T022873",
          "T022874",
          "T022875",
          "T022876",
          "T022871",
          "T022872"
        ]
      },
      "release_date": "2022-04-19T22:00:00.000+00:00",
      "title": "CVE-2022-21417"
    },
    {
      "cve": "CVE-2022-21418",
      "product_status": {
        "known_affected": [
          "T003343",
          "T050283",
          "T002207",
          "67646",
          "T000126",
          "367115",
          "398363",
          "T004914",
          "T016960"
        ],
        "last_affected": [
          "T022873",
          "T022874",
          "T022875",
          "T022876",
          "T022871",
          "T022872"
        ]
      },
      "release_date": "2022-04-19T22:00:00.000+00:00",
      "title": "CVE-2022-21418"
    },
    {
      "cve": "CVE-2022-21423",
      "product_status": {
        "known_affected": [
          "T003343",
          "T050283",
          "T002207",
          "67646",
          "T000126",
          "367115",
          "398363",
          "T004914",
          "T016960"
        ],
        "last_affected": [
          "T022873",
          "T022874",
          "T022875",
          "T022876",
          "T022871",
          "T022872"
        ]
      },
      "release_date": "2022-04-19T22:00:00.000+00:00",
      "title": "CVE-2022-21423"
    },
    {
      "cve": "CVE-2022-21425",
      "product_status": {
        "known_affected": [
          "T003343",
          "T050283",
          "T002207",
          "67646",
          "T000126",
          "367115",
          "398363",
          "T004914",
          "T016960"
        ],
        "last_affected": [
          "T022873",
          "T022874",
          "T022875",
          "T022876",
          "T022871",
          "T022872"
        ]
      },
      "release_date": "2022-04-19T22:00:00.000+00:00",
      "title": "CVE-2022-21425"
    },
    {
      "cve": "CVE-2022-21427",
      "product_status": {
        "known_affected": [
          "T003343",
          "T050283",
          "T002207",
          "67646",
          "T000126",
          "367115",
          "398363",
          "T004914",
          "T016960"
        ],
        "last_affected": [
          "T022873",
          "T022874",
          "T022875",
          "T022876",
          "T022871",
          "T022872"
        ]
      },
      "release_date": "2022-04-19T22:00:00.000+00:00",
      "title": "CVE-2022-21427"
    },
    {
      "cve": "CVE-2022-21435",
      "product_status": {
        "known_affected": [
          "T003343",
          "T050283",
          "T002207",
          "67646",
          "T000126",
          "367115",
          "398363",
          "T004914",
          "T016960"
        ],
        "last_affected": [
          "T022873",
          "T022874",
          "T022875",
          "T022876",
          "T022871",
          "T022872"
        ]
      },
      "release_date": "2022-04-19T22:00:00.000+00:00",
      "title": "CVE-2022-21435"
    },
    {
      "cve": "CVE-2022-21436",
      "product_status": {
        "known_affected": [
          "T003343",
          "T050283",
          "T002207",
          "67646",
          "T000126",
          "367115",
          "398363",
          "T004914",
          "T016960"
        ],
        "last_affected": [
          "T022873",
          "T022874",
          "T022875",
          "T022876",
          "T022871",
          "T022872"
        ]
      },
      "release_date": "2022-04-19T22:00:00.000+00:00",
      "title": "CVE-2022-21436"
    },
    {
      "cve": "CVE-2022-21437",
      "product_status": {
        "known_affected": [
          "T003343",
          "T050283",
          "T002207",
          "67646",
          "T000126",
          "367115",
          "398363",
          "T004914",
          "T016960"
        ],
        "last_affected": [
          "T022873",
          "T022874",
          "T022875",
          "T022876",
          "T022871",
          "T022872"
        ]
      },
      "release_date": "2022-04-19T22:00:00.000+00:00",
      "title": "CVE-2022-21437"
    },
    {
      "cve": "CVE-2022-21438",
      "product_status": {
        "known_affected": [
          "T003343",
          "T050283",
          "T002207",
          "67646",
          "T000126",
          "367115",
          "398363",
          "T004914",
          "T016960"
        ],
        "last_affected": [
          "T022873",
          "T022874",
          "T022875",
          "T022876",
          "T022871",
          "T022872"
        ]
      },
      "release_date": "2022-04-19T22:00:00.000+00:00",
      "title": "CVE-2022-21438"
    },
    {
      "cve": "CVE-2022-21440",
      "product_status": {
        "known_affected": [
          "T003343",
          "T050283",
          "T002207",
          "67646",
          "T000126",
          "367115",
          "398363",
          "T004914",
          "T016960"
        ],
        "last_affected": [
          "T022873",
          "T022874",
          "T022875",
          "T022876",
          "T022871",
          "T022872"
        ]
      },
      "release_date": "2022-04-19T22:00:00.000+00:00",
      "title": "CVE-2022-21440"
    },
    {
      "cve": "CVE-2022-21444",
      "product_status": {
        "known_affected": [
          "T003343",
          "T050283",
          "T002207",
          "67646",
          "T000126",
          "367115",
          "398363",
          "T004914",
          "T016960"
        ],
        "last_affected": [
          "T022873",
          "T022874",
          "T022875",
          "T022876",
          "T022871",
          "T022872"
        ]
      },
      "release_date": "2022-04-19T22:00:00.000+00:00",
      "title": "CVE-2022-21444"
    },
    {
      "cve": "CVE-2022-21451",
      "product_status": {
        "known_affected": [
          "T003343",
          "T050283",
          "T002207",
          "67646",
          "T000126",
          "367115",
          "398363",
          "T004914",
          "T016960"
        ],
        "last_affected": [
          "T022873",
          "T022874",
          "T022875",
          "T022876",
          "T022871",
          "T022872"
        ]
      },
      "release_date": "2022-04-19T22:00:00.000+00:00",
      "title": "CVE-2022-21451"
    },
    {
      "cve": "CVE-2022-21452",
      "product_status": {
        "known_affected": [
          "T003343",
          "T050283",
          "T002207",
          "67646",
          "T000126",
          "367115",
          "398363",
          "T004914",
          "T016960"
        ],
        "last_affected": [
          "T022873",
          "T022874",
          "T022875",
          "T022876",
          "T022871",
          "T022872"
        ]
      },
      "release_date": "2022-04-19T22:00:00.000+00:00",
      "title": "CVE-2022-21452"
    },
    {
      "cve": "CVE-2022-21454",
      "product_status": {
        "known_affected": [
          "T003343",
          "T050283",
          "T002207",
          "67646",
          "T000126",
          "367115",
          "398363",
          "T004914",
          "T016960"
        ],
        "last_affected": [
          "T022873",
          "T022874",
          "T022875",
          "T022876",
          "T022871",
          "T022872"
        ]
      },
      "release_date": "2022-04-19T22:00:00.000+00:00",
      "title": "CVE-2022-21454"
    },
    {
      "cve": "CVE-2022-21457",
      "product_status": {
        "known_affected": [
          "T003343",
          "T050283",
          "T002207",
          "67646",
          "T000126",
          "367115",
          "398363",
          "T004914",
          "T016960"
        ],
        "last_affected": [
          "T022873",
          "T022874",
          "T022875",
          "T022876",
          "T022871",
          "T022872"
        ]
      },
      "release_date": "2022-04-19T22:00:00.000+00:00",
      "title": "CVE-2022-21457"
    },
    {
      "cve": "CVE-2022-21459",
      "product_status": {
        "known_affected": [
          "T003343",
          "T050283",
          "T002207",
          "67646",
          "T000126",
          "367115",
          "398363",
          "T004914",
          "T016960"
        ],
        "last_affected": [
          "T022873",
          "T022874",
          "T022875",
          "T022876",
          "T022871",
          "T022872"
        ]
      },
      "release_date": "2022-04-19T22:00:00.000+00:00",
      "title": "CVE-2022-21459"
    },
    {
      "cve": "CVE-2022-21460",
      "product_status": {
        "known_affected": [
          "T003343",
          "T050283",
          "T002207",
          "67646",
          "T000126",
          "367115",
          "398363",
          "T004914",
          "T016960"
        ],
        "last_affected": [
          "T022873",
          "T022874",
          "T022875",
          "T022876",
          "T022871",
          "T022872"
        ]
      },
      "release_date": "2022-04-19T22:00:00.000+00:00",
      "title": "CVE-2022-21460"
    },
    {
      "cve": "CVE-2022-21462",
      "product_status": {
        "known_affected": [
          "T003343",
          "T050283",
          "T002207",
          "67646",
          "T000126",
          "367115",
          "398363",
          "T004914",
          "T016960"
        ],
        "last_affected": [
          "T022873",
          "T022874",
          "T022875",
          "T022876",
          "T022871",
          "T022872"
        ]
      },
      "release_date": "2022-04-19T22:00:00.000+00:00",
      "title": "CVE-2022-21462"
    },
    {
      "cve": "CVE-2022-21478",
      "product_status": {
        "known_affected": [
          "T003343",
          "T050283",
          "T002207",
          "67646",
          "T000126",
          "367115",
          "398363",
          "T004914",
          "T016960"
        ],
        "last_affected": [
          "T022873",
          "T022874",
          "T022875",
          "T022876",
          "T022871",
          "T022872"
        ]
      },
      "release_date": "2022-04-19T22:00:00.000+00:00",
      "title": "CVE-2022-21478"
    },
    {
      "cve": "CVE-2022-21479",
      "product_status": {
        "known_affected": [
          "T003343",
          "T050283",
          "T002207",
          "67646",
          "T000126",
          "367115",
          "398363",
          "T004914",
          "T016960"
        ],
        "last_affected": [
          "T022873",
          "T022874",
          "T022875",
          "T022876",
          "T022871",
          "T022872"
        ]
      },
      "release_date": "2022-04-19T22:00:00.000+00:00",
      "title": "CVE-2022-21479"
    },
    {
      "cve": "CVE-2022-21482",
      "product_status": {
        "known_affected": [
          "T003343",
          "T050283",
          "T002207",
          "67646",
          "T000126",
          "367115",
          "398363",
          "T004914",
          "T016960"
        ],
        "last_affected": [
          "T022873",
          "T022874",
          "T022875",
          "T022876",
          "T022871",
          "T022872"
        ]
      },
      "release_date": "2022-04-19T22:00:00.000+00:00",
      "title": "CVE-2022-21482"
    },
    {
      "cve": "CVE-2022-21483",
      "product_status": {
        "known_affected": [
          "T003343",
          "T050283",
          "T002207",
          "67646",
          "T000126",
          "367115",
          "398363",
          "T004914",
          "T016960"
        ],
        "last_affected": [
          "T022873",
          "T022874",
          "T022875",
          "T022876",
          "T022871",
          "T022872"
        ]
      },
      "release_date": "2022-04-19T22:00:00.000+00:00",
      "title": "CVE-2022-21483"
    },
    {
      "cve": "CVE-2022-21484",
      "product_status": {
        "known_affected": [
          "T003343",
          "T050283",
          "T002207",
          "67646",
          "T000126",
          "367115",
          "398363",
          "T004914",
          "T016960"
        ],
        "last_affected": [
          "T022873",
          "T022874",
          "T022875",
          "T022876",
          "T022871",
          "T022872"
        ]
      },
      "release_date": "2022-04-19T22:00:00.000+00:00",
      "title": "CVE-2022-21484"
    },
    {
      "cve": "CVE-2022-21485",
      "product_status": {
        "known_affected": [
          "T003343",
          "T050283",
          "T002207",
          "67646",
          "T000126",
          "367115",
          "398363",
          "T004914",
          "T016960"
        ],
        "last_affected": [
          "T022873",
          "T022874",
          "T022875",
          "T022876",
          "T022871",
          "T022872"
        ]
      },
      "release_date": "2022-04-19T22:00:00.000+00:00",
      "title": "CVE-2022-21485"
    },
    {
      "cve": "CVE-2022-21486",
      "product_status": {
        "known_affected": [
          "T003343",
          "T050283",
          "T002207",
          "67646",
          "T000126",
          "367115",
          "398363",
          "T004914",
          "T016960"
        ],
        "last_affected": [
          "T022873",
          "T022874",
          "T022875",
          "T022876",
          "T022871",
          "T022872"
        ]
      },
      "release_date": "2022-04-19T22:00:00.000+00:00",
      "title": "CVE-2022-21486"
    },
    {
      "cve": "CVE-2022-21489",
      "product_status": {
        "known_affected": [
          "T003343",
          "T050283",
          "T002207",
          "67646",
          "T000126",
          "367115",
          "398363",
          "T004914",
          "T016960"
        ],
        "last_affected": [
          "T022873",
          "T022874",
          "T022875",
          "T022876",
          "T022871",
          "T022872"
        ]
      },
      "release_date": "2022-04-19T22:00:00.000+00:00",
      "title": "CVE-2022-21489"
    },
    {
      "cve": "CVE-2022-21490",
      "product_status": {
        "known_affected": [
          "T003343",
          "T050283",
          "T002207",
          "67646",
          "T000126",
          "367115",
          "398363",
          "T004914",
          "T016960"
        ],
        "last_affected": [
          "T022873",
          "T022874",
          "T022875",
          "T022876",
          "T022871",
          "T022872"
        ]
      },
      "release_date": "2022-04-19T22:00:00.000+00:00",
      "title": "CVE-2022-21490"
    },
    {
      "cve": "CVE-2022-22965",
      "product_status": {
        "known_affected": [
          "T003343",
          "T050283",
          "T002207",
          "67646",
          "T000126",
          "367115",
          "398363",
          "T004914",
          "T016960"
        ],
        "last_affected": [
          "T022873",
          "T022874",
          "T022875",
          "T022876",
          "T022871",
          "T022872"
        ]
      },
      "release_date": "2022-04-19T22:00:00.000+00:00",
      "title": "CVE-2022-22965"
    },
    {
      "cve": "CVE-2022-23181",
      "product_status": {
        "known_affected": [
          "T003343",
          "T050283",
          "T002207",
          "67646",
          "T000126",
          "367115",
          "398363",
          "T004914",
          "T016960"
        ],
        "last_affected": [
          "T022873",
          "T022874",
          "T022875",
          "T022876",
          "T022871",
          "T022872"
        ]
      },
      "release_date": "2022-04-19T22:00:00.000+00:00",
      "title": "CVE-2022-23181"
    },
    {
      "cve": "CVE-2022-23305",
      "product_status": {
        "known_affected": [
          "T003343",
          "T050283",
          "T002207",
          "67646",
          "T000126",
          "367115",
          "398363",
          "T004914",
          "T016960"
        ],
        "last_affected": [
          "T022873",
          "T022874",
          "T022875",
          "T022876",
          "T022871",
          "T022872"
        ]
      },
      "release_date": "2022-04-19T22:00:00.000+00:00",
      "title": "CVE-2022-23305"
    }
  ]
}

CVE-2021-22570 (GCVE-0-2021-22570)

Vulnerability from cvelistv5 – Published: 2022-01-26 00:00 – Updated: 2025-04-21 13:56

Title

Nullptr Dereference in Protobuf

Summary

Nullptr dereference when a null char is present in a proto symbol. The symbol is parsed incorrectly, leading to an unchecked call into the proto file's name during generation of the resulting error message. Since the symbol is incorrectly parsed, the file is nullptr. We recommend upgrading to version 3.15.0 or greater.

Severity

6.5 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

SSVC

Exploitation: none Automatable: no Technical Impact: partial

CISA Coordinator (v2.0.3)

CWE

CWE-476 - NULL Pointer Dereference

Assigner

Google

References

11 references

URL	Tags
https://github.com/protocolbuffers/protobuf/relea…
https://lists.fedoraproject.org/archives/list/pac…	vendor-advisory
https://lists.fedoraproject.org/archives/list/pac…	vendor-advisory
https://lists.fedoraproject.org/archives/list/pac…	vendor-advisory
https://lists.fedoraproject.org/archives/list/pac…	vendor-advisory
https://lists.fedoraproject.org/archives/list/pac…	vendor-advisory
https://lists.fedoraproject.org/archives/list/pac…	vendor-advisory
https://lists.fedoraproject.org/archives/list/pac…	vendor-advisory
https://www.oracle.com/security-alerts/cpuapr2022.html
https://security.netapp.com/advisory/ntap-2022042…
https://lists.debian.org/debian-lts-announce/2023…	mailing-list

Impacted products

1 product

Vendor	Product	Version
Google LLC	Protobuf	Affected: unspecified , < 3.15.0 (custom)

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-03T18:44:13.764Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://github.com/protocolbuffers/protobuf/releases/tag/v3.15.0"
          },
          {
            "name": "FEDORA-2022-ffe4a1cedd",
            "tags": [
              "vendor-advisory",
              "x_transferred"
            ],
            "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IFX6KPNOFHYD6L4XES5PCM3QNSKZBOTQ/"
          },
          {
            "name": "FEDORA-2022-2d3e6eb9e4",
            "tags": [
              "vendor-advisory",
              "x_transferred"
            ],
            "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3DVUZPALAQ34TQP6KFNLM4IZS6B32XSA/"
          },
          {
            "name": "FEDORA-2022-fedff53e4e",
            "tags": [
              "vendor-advisory",
              "x_transferred"
            ],
            "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NVTWVQRB5OCCTMKEQFY5MYED3DXDVSLP/"
          },
          {
            "name": "FEDORA-2022-486d5f349d",
            "tags": [
              "vendor-advisory",
              "x_transferred"
            ],
            "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BTRGBRC5KGCA4SK5MUNLPYJRAGXMBIYY/"
          },
          {
            "name": "FEDORA-2022-d1a15f9cdb",
            "tags": [
              "vendor-advisory",
              "x_transferred"
            ],
            "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5PAGL5M2KGYPN3VEQCRJJE6NA7D5YG5X/"
          },
          {
            "name": "FEDORA-2022-49b52819a4",
            "tags": [
              "vendor-advisory",
              "x_transferred"
            ],
            "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KQJB6ZPRLKV6WCMX2PRRRQBFAOXFBK6B/"
          },
          {
            "name": "FEDORA-2022-57923346cf",
            "tags": [
              "vendor-advisory",
              "x_transferred"
            ],
            "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MRWRAXAFR3JR7XCFWTHC2KALSZKWACCE/"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://www.oracle.com/security-alerts/cpuapr2022.html"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://security.netapp.com/advisory/ntap-20220429-0005/"
          },
          {
            "name": "[debian-lts-announce] 20230418 [SECURITY] [DLA 3393-1] protobuf security update",
            "tags": [
              "mailing-list",
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2023/04/msg00019.html"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2021-22570",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2025-04-21T13:35:59.211541Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2025-04-21T13:56:58.459Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "Protobuf",
          "vendor": "Google LLC",
          "versions": [
            {
              "lessThan": "3.15.0",
              "status": "affected",
              "version": "unspecified",
              "versionType": "custom"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "Nullptr dereference when a null char is present in a proto symbol. The symbol is parsed incorrectly, leading to an unchecked call into the proto file\u0027s name during generation of the resulting error message. Since the symbol is incorrectly parsed, the file is nullptr. We recommend upgrading to version 3.15.0 or greater."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-476",
              "description": "CWE-476 NULL Pointer Dereference",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2023-04-18T00:00:00.000Z",
        "orgId": "14ed7db2-1595-443d-9d34-6215bf890778",
        "shortName": "Google"
      },
      "references": [
        {
          "url": "https://github.com/protocolbuffers/protobuf/releases/tag/v3.15.0"
        },
        {
          "name": "FEDORA-2022-ffe4a1cedd",
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IFX6KPNOFHYD6L4XES5PCM3QNSKZBOTQ/"
        },
        {
          "name": "FEDORA-2022-2d3e6eb9e4",
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3DVUZPALAQ34TQP6KFNLM4IZS6B32XSA/"
        },
        {
          "name": "FEDORA-2022-fedff53e4e",
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NVTWVQRB5OCCTMKEQFY5MYED3DXDVSLP/"
        },
        {
          "name": "FEDORA-2022-486d5f349d",
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BTRGBRC5KGCA4SK5MUNLPYJRAGXMBIYY/"
        },
        {
          "name": "FEDORA-2022-d1a15f9cdb",
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5PAGL5M2KGYPN3VEQCRJJE6NA7D5YG5X/"
        },
        {
          "name": "FEDORA-2022-49b52819a4",
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KQJB6ZPRLKV6WCMX2PRRRQBFAOXFBK6B/"
        },
        {
          "name": "FEDORA-2022-57923346cf",
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MRWRAXAFR3JR7XCFWTHC2KALSZKWACCE/"
        },
        {
          "url": "https://www.oracle.com/security-alerts/cpuapr2022.html"
        },
        {
          "url": "https://security.netapp.com/advisory/ntap-20220429-0005/"
        },
        {
          "name": "[debian-lts-announce] 20230418 [SECURITY] [DLA 3393-1] protobuf security update",
          "tags": [
            "mailing-list"
          ],
          "url": "https://lists.debian.org/debian-lts-announce/2023/04/msg00019.html"
        }
      ],
      "source": {
        "discovery": "INTERNAL"
      },
      "title": "Nullptr Dereference in Protobuf",
      "x_generator": {
        "engine": "Vulnogram 0.0.9"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "14ed7db2-1595-443d-9d34-6215bf890778",
    "assignerShortName": "Google",
    "cveId": "CVE-2021-22570",
    "datePublished": "2022-01-26T00:00:00.000Z",
    "dateReserved": "2021-01-05T00:00:00.000Z",
    "dateUpdated": "2025-04-21T13:56:58.459Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2021-41184 (GCVE-0-2021-41184)

Vulnerability from cvelistv5 – Published: 2021-10-26 00:00 – Updated: 2025-11-04 16:09

Title

XSS in the `of` option of the `.position()` util

Summary

jQuery-UI is the official jQuery user interface library. Prior to version 1.13.0, accepting the value of the `of` option of the `.position()` util from untrusted sources may execute untrusted code. The issue is fixed in jQuery UI 1.13.0. Any string value passed to the `of` option is now treated as a CSS selector. A workaround is to not accept the value of the `of` option from untrusted sources.

Severity

6.5 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N

CWE

CWE-79 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Assigner

GitHub_M

References

15 references

URL	Tags
https://blog.jqueryui.com/2021/10/jquery-ui-1-13-…
https://github.com/jquery/jquery-ui/security/advi…
https://github.com/jquery/jquery-ui/commit/effa32…
https://lists.fedoraproject.org/archives/list/pac…	vendor-advisory
https://lists.fedoraproject.org/archives/list/pac…	vendor-advisory
https://lists.fedoraproject.org/archives/list/pac…	vendor-advisory
https://www.oracle.com/security-alerts/cpuapr2022.html
https://security.netapp.com/advisory/ntap-2021111…
https://www.drupal.org/sa-core-2022-001
https://www.oracle.com/security-alerts/cpujul2022.html
https://www.tenable.com/security/tns-2022-09
https://lists.fedoraproject.org/archives/list/pac…	vendor-advisory
https://lists.fedoraproject.org/archives/list/pac…	vendor-advisory
https://lists.debian.org/debian-lts-announce/2023…
http://seclists.org/fulldisclosure/2024/Aug/37

Impacted products

1 product

Vendor	Product	Version
jquery	jquery-ui	Affected: < 1.13.0

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2025-11-04T16:09:17.971Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://blog.jqueryui.com/2021/10/jquery-ui-1-13-0-released/"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://github.com/jquery/jquery-ui/security/advisories/GHSA-gpqq-952q-5327"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://github.com/jquery/jquery-ui/commit/effa323f1505f2ce7a324e4f429fa9032c72f280"
          },
          {
            "name": "FEDORA-2021-51c256bf87",
            "tags": [
              "vendor-advisory",
              "x_transferred"
            ],
            "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/O74SXYY7RGXREQDQUDQD4BPJ4QQTD2XQ/"
          },
          {
            "name": "FEDORA-2021-ab38307fc3",
            "tags": [
              "vendor-advisory",
              "x_transferred"
            ],
            "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SNXA7XRKGINWSUIPIZ6ZBCTV6N3KSHES/"
          },
          {
            "name": "FEDORA-2021-013ab302be",
            "tags": [
              "vendor-advisory",
              "x_transferred"
            ],
            "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NXIUUBRVLA4E7G7MMIKCEN75YN7UFERW/"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://www.oracle.com/security-alerts/cpuapr2022.html"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://security.netapp.com/advisory/ntap-20211118-0004/"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://www.drupal.org/sa-core-2022-001"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://www.oracle.com/security-alerts/cpujul2022.html"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://www.tenable.com/security/tns-2022-09"
          },
          {
            "name": "FEDORA-2022-9d655503ea",
            "tags": [
              "vendor-advisory",
              "x_transferred"
            ],
            "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HVKIOWSXL2RF2ULNAP7PHESYCFSZIJE3/"
          },
          {
            "name": "FEDORA-2022-bf18450366",
            "tags": [
              "vendor-advisory",
              "x_transferred"
            ],
            "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SGSY236PYSFYIEBRGDERLA7OSY6D7XL4/"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2023/08/msg00040.html"
          },
          {
            "url": "http://seclists.org/fulldisclosure/2024/Aug/37"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "jquery-ui",
          "vendor": "jquery",
          "versions": [
            {
              "status": "affected",
              "version": "\u003c 1.13.0"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "jQuery-UI is the official jQuery user interface library. Prior to version 1.13.0, accepting the value of the `of` option of the `.position()` util from untrusted sources may execute untrusted code. The issue is fixed in jQuery UI 1.13.0. Any string value passed to the `of` option is now treated as a CSS selector. A workaround is to not accept the value of the `of` option from untrusted sources."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
            "version": "3.1"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-79",
              "description": "CWE-79: Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2023-08-31T02:06:17.867Z",
        "orgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
        "shortName": "GitHub_M"
      },
      "references": [
        {
          "url": "https://blog.jqueryui.com/2021/10/jquery-ui-1-13-0-released/"
        },
        {
          "url": "https://github.com/jquery/jquery-ui/security/advisories/GHSA-gpqq-952q-5327"
        },
        {
          "url": "https://github.com/jquery/jquery-ui/commit/effa323f1505f2ce7a324e4f429fa9032c72f280"
        },
        {
          "name": "FEDORA-2021-51c256bf87",
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/O74SXYY7RGXREQDQUDQD4BPJ4QQTD2XQ/"
        },
        {
          "name": "FEDORA-2021-ab38307fc3",
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SNXA7XRKGINWSUIPIZ6ZBCTV6N3KSHES/"
        },
        {
          "name": "FEDORA-2021-013ab302be",
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NXIUUBRVLA4E7G7MMIKCEN75YN7UFERW/"
        },
        {
          "url": "https://www.oracle.com/security-alerts/cpuapr2022.html"
        },
        {
          "url": "https://security.netapp.com/advisory/ntap-20211118-0004/"
        },
        {
          "url": "https://www.drupal.org/sa-core-2022-001"
        },
        {
          "url": "https://www.oracle.com/security-alerts/cpujul2022.html"
        },
        {
          "url": "https://www.tenable.com/security/tns-2022-09"
        },
        {
          "name": "FEDORA-2022-9d655503ea",
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HVKIOWSXL2RF2ULNAP7PHESYCFSZIJE3/"
        },
        {
          "name": "FEDORA-2022-bf18450366",
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SGSY236PYSFYIEBRGDERLA7OSY6D7XL4/"
        },
        {
          "url": "https://lists.debian.org/debian-lts-announce/2023/08/msg00040.html"
        }
      ],
      "source": {
        "advisory": "GHSA-gpqq-952q-5327",
        "discovery": "UNKNOWN"
      },
      "title": "XSS in the `of` option of the `.position()` util"
    }
  },
  "cveMetadata": {
    "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
    "assignerShortName": "GitHub_M",
    "cveId": "CVE-2021-41184",
    "datePublished": "2021-10-26T00:00:00.000Z",
    "dateReserved": "2021-09-15T00:00:00.000Z",
    "dateUpdated": "2025-11-04T16:09:17.971Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

CVE-2021-42340 (GCVE-0-2021-42340)

Vulnerability from cvelistv5 – Published: 2021-10-14 19:55 – Updated: 2024-08-04 03:30

Title

DoS via memory leak with WebSocket connections

Summary

The fix for bug 63362 present in Apache Tomcat 10.1.0-M1 to 10.1.0-M5, 10.0.0-M1 to 10.0.11, 9.0.40 to 9.0.53 and 8.5.60 to 8.5.71 introduced a memory leak. The object introduced to collect metrics for HTTP upgrade connections was not released for WebSocket connections once the connection was closed. This created a memory leak that, over time, could lead to a denial of service via an OutOfMemoryError.

Severity

No CVSS data available.

CWE

CWE-772 - Missing Release of Resource after Effective Lifetime

Assigner

apache

References

9 references

URL	Tags
https://lists.apache.org/thread.html/r83a35be60f0…	x_refsource_MISC
https://lists.apache.org/thread.html/r8097a2d1550…	mailing-listx_refsource_MLIST
https://www.debian.org/security/2021/dsa-5009	vendor-advisoryx_refsource_DEBIAN
https://www.oracle.com/security-alerts/cpujan2022.html	x_refsource_MISC
https://security.netapp.com/advisory/ntap-2021110…	x_refsource_CONFIRM
https://kc.mcafee.com/corporate/index?page=conten…	x_refsource_CONFIRM
https://www.oracle.com/security-alerts/cpuapr2022.html	x_refsource_MISC
https://www.oracle.com/security-alerts/cpujul2022.html	x_refsource_MISC
https://security.gentoo.org/glsa/202208-34	vendor-advisoryx_refsource_GENTOO

Impacted products

1 product

Vendor	Product	Version
Apache Software Foundation	Apache Tomcat	Affected: Apache Tomcat 10 10.0.0-M10 to 10.0.11 Affected: Apache Tomcat 10 10.1.0-M1 to 10.1.0-M5 Affected: Apache Tomcat 9 9.0.40 to 9.0.53 Affected: Apache Tomcat 8 8.5.60 to 8.5.71

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-04T03:30:38.354Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://lists.apache.org/thread.html/r83a35be60f06aca2065f188ee542b9099695d57ced2e70e0885f905c%40%3Cannounce.tomcat.apache.org%3E"
          },
          {
            "name": "[myfaces-commits] 20211021 [myfaces-tobago] branch tobago-5.x updated: build: workaround for CVE-2021-42340",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "https://lists.apache.org/thread.html/r8097a2d1550aa78e585fc77e602b9046e6d4099d8d132497c5387784%40%3Ccommits.myfaces.apache.org%3E"
          },
          {
            "name": "DSA-5009",
            "tags": [
              "vendor-advisory",
              "x_refsource_DEBIAN",
              "x_transferred"
            ],
            "url": "https://www.debian.org/security/2021/dsa-5009"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://www.oracle.com/security-alerts/cpujan2022.html"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://security.netapp.com/advisory/ntap-20211104-0001/"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://kc.mcafee.com/corporate/index?page=content\u0026id=SB10379"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://www.oracle.com/security-alerts/cpuapr2022.html"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://www.oracle.com/security-alerts/cpujul2022.html"
          },
          {
            "name": "GLSA-202208-34",
            "tags": [
              "vendor-advisory",
              "x_refsource_GENTOO",
              "x_transferred"
            ],
            "url": "https://security.gentoo.org/glsa/202208-34"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "Apache Tomcat",
          "vendor": "Apache Software Foundation",
          "versions": [
            {
              "status": "affected",
              "version": "Apache Tomcat 10 10.0.0-M10 to 10.0.11"
            },
            {
              "status": "affected",
              "version": "Apache Tomcat 10 10.1.0-M1 to 10.1.0-M5"
            },
            {
              "status": "affected",
              "version": "Apache Tomcat 9 9.0.40 to 9.0.53"
            },
            {
              "status": "affected",
              "version": "Apache Tomcat 8 8.5.60 to 8.5.71"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "The fix for bug 63362 present in Apache Tomcat 10.1.0-M1 to 10.1.0-M5, 10.0.0-M1 to 10.0.11, 9.0.40 to 9.0.53 and 8.5.60 to 8.5.71 introduced a memory leak. The object introduced to collect metrics for HTTP upgrade connections was not released for WebSocket connections once the connection was closed. This created a memory leak that, over time, could lead to a denial of service via an OutOfMemoryError."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-772",
              "description": "CWE-772 Missing Release of Resource after Effective Lifetime",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2022-08-21T04:07:37.000Z",
        "orgId": "f0158376-9dc2-43b6-827c-5f631a4d8d09",
        "shortName": "apache"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://lists.apache.org/thread.html/r83a35be60f06aca2065f188ee542b9099695d57ced2e70e0885f905c%40%3Cannounce.tomcat.apache.org%3E"
        },
        {
          "name": "[myfaces-commits] 20211021 [myfaces-tobago] branch tobago-5.x updated: build: workaround for CVE-2021-42340",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "https://lists.apache.org/thread.html/r8097a2d1550aa78e585fc77e602b9046e6d4099d8d132497c5387784%40%3Ccommits.myfaces.apache.org%3E"
        },
        {
          "name": "DSA-5009",
          "tags": [
            "vendor-advisory",
            "x_refsource_DEBIAN"
          ],
          "url": "https://www.debian.org/security/2021/dsa-5009"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://www.oracle.com/security-alerts/cpujan2022.html"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://security.netapp.com/advisory/ntap-20211104-0001/"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://kc.mcafee.com/corporate/index?page=content\u0026id=SB10379"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://www.oracle.com/security-alerts/cpuapr2022.html"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://www.oracle.com/security-alerts/cpujul2022.html"
        },
        {
          "name": "GLSA-202208-34",
          "tags": [
            "vendor-advisory",
            "x_refsource_GENTOO"
          ],
          "url": "https://security.gentoo.org/glsa/202208-34"
        }
      ],
      "source": {
        "discovery": "UNKNOWN"
      },
      "title": "DoS via memory leak with WebSocket connections",
      "x_generator": {
        "engine": "Vulnogram 0.0.9"
      },
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "security@apache.org",
          "ID": "CVE-2021-42340",
          "STATE": "PUBLIC",
          "TITLE": "DoS via memory leak with WebSocket connections"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "Apache Tomcat",
                      "version": {
                        "version_data": [
                          {
                            "version_affected": "=",
                            "version_name": "Apache Tomcat 10",
                            "version_value": "10.0.0-M10 to 10.0.11"
                          },
                          {
                            "version_affected": "=",
                            "version_name": "Apache Tomcat 10",
                            "version_value": "10.1.0-M1 to 10.1.0-M5"
                          },
                          {
                            "version_affected": "=",
                            "version_name": "Apache Tomcat 9",
                            "version_value": "9.0.40 to 9.0.53"
                          },
                          {
                            "version_affected": "=",
                            "version_name": "Apache Tomcat 8",
                            "version_value": "8.5.60 to 8.5.71"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "Apache Software Foundation"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "The fix for bug 63362 present in Apache Tomcat 10.1.0-M1 to 10.1.0-M5, 10.0.0-M1 to 10.0.11, 9.0.40 to 9.0.53 and 8.5.60 to 8.5.71 introduced a memory leak. The object introduced to collect metrics for HTTP upgrade connections was not released for WebSocket connections once the connection was closed. This created a memory leak that, over time, could lead to a denial of service via an OutOfMemoryError."
            }
          ]
        },
        "generator": {
          "engine": "Vulnogram 0.0.9"
        },
        "impact": [
          {}
        ],
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "CWE-772 Missing Release of Resource after Effective Lifetime"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://lists.apache.org/thread.html/r83a35be60f06aca2065f188ee542b9099695d57ced2e70e0885f905c%40%3Cannounce.tomcat.apache.org%3E",
              "refsource": "MISC",
              "url": "https://lists.apache.org/thread.html/r83a35be60f06aca2065f188ee542b9099695d57ced2e70e0885f905c%40%3Cannounce.tomcat.apache.org%3E"
            },
            {
              "name": "[myfaces-commits] 20211021 [myfaces-tobago] branch tobago-5.x updated: build: workaround for CVE-2021-42340",
              "refsource": "MLIST",
              "url": "https://lists.apache.org/thread.html/r8097a2d1550aa78e585fc77e602b9046e6d4099d8d132497c5387784@%3Ccommits.myfaces.apache.org%3E"
            },
            {
              "name": "DSA-5009",
              "refsource": "DEBIAN",
              "url": "https://www.debian.org/security/2021/dsa-5009"
            },
            {
              "name": "https://www.oracle.com/security-alerts/cpujan2022.html",
              "refsource": "MISC",
              "url": "https://www.oracle.com/security-alerts/cpujan2022.html"
            },
            {
              "name": "https://security.netapp.com/advisory/ntap-20211104-0001/",
              "refsource": "CONFIRM",
              "url": "https://security.netapp.com/advisory/ntap-20211104-0001/"
            },
            {
              "name": "https://kc.mcafee.com/corporate/index?page=content\u0026id=SB10379",
              "refsource": "CONFIRM",
              "url": "https://kc.mcafee.com/corporate/index?page=content\u0026id=SB10379"
            },
            {
              "name": "https://www.oracle.com/security-alerts/cpuapr2022.html",
              "refsource": "MISC",
              "url": "https://www.oracle.com/security-alerts/cpuapr2022.html"
            },
            {
              "name": "https://www.oracle.com/security-alerts/cpujul2022.html",
              "refsource": "MISC",
              "url": "https://www.oracle.com/security-alerts/cpujul2022.html"
            },
            {
              "name": "GLSA-202208-34",
              "refsource": "GENTOO",
              "url": "https://security.gentoo.org/glsa/202208-34"
            }
          ]
        },
        "source": {
          "discovery": "UNKNOWN"
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "f0158376-9dc2-43b6-827c-5f631a4d8d09",
    "assignerShortName": "apache",
    "cveId": "CVE-2021-42340",
    "datePublished": "2021-10-14T19:55:14.000Z",
    "dateReserved": "2021-10-13T00:00:00.000Z",
    "dateUpdated": "2024-08-04T03:30:38.354Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2021-44832 (GCVE-0-2021-44832)

Vulnerability from cvelistv5 – Published: 2021-12-28 19:35 – Updated: 2026-05-29 18:53

Title

Apache Log4j2 vulnerable to RCE via JDBC Appender when attacker controls configuration

Summary

Apache Log4j2 versions 2.0-beta7 through 2.17.0 (excluding security fix releases 2.3.2 and 2.12.4) are vulnerable to a remote code execution (RCE) attack when a configuration uses a JDBC Appender with a JNDI LDAP data source URI when an attacker has control of the target LDAP server. This issue is fixed by limiting JNDI data source names to the java protocol in Log4j2 versions 2.17.1, 2.12.4, and 2.3.2.

Severity

6.6 (Medium)


                        
                          CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H

SSVC

Exploitation: none Automatable: no Technical Impact: total

CISA Coordinator (v2.0.3)

CWE

CWE-20 - Improper Input Validation
CWE-74 - Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')

Assigner

apache

References

12 references

URL	Tags
https://tools.cisco.com/security/center/content/C…	vendor-advisoryx_refsource_CISCO
https://lists.apache.org/thread/s1o5vlo78ypqxnzn6…	x_refsource_MISC
https://issues.apache.org/jira/browse/LOG4J2-3293	x_refsource_MISC
http://www.openwall.com/lists/oss-security/2021/12/28/1	mailing-listx_refsource_MLIST
https://lists.debian.org/debian-lts-announce/2021…	mailing-listx_refsource_MLIST
https://cert-portal.siemens.com/productcert/pdf/s…	x_refsource_CONFIRM
https://lists.fedoraproject.org/archives/list/pac…	vendor-advisoryx_refsource_FEDORA
https://lists.fedoraproject.org/archives/list/pac…	vendor-advisoryx_refsource_FEDORA
https://www.oracle.com/security-alerts/cpujan2022.html	x_refsource_MISC
https://security.netapp.com/advisory/ntap-2022010…	x_refsource_CONFIRM
https://www.oracle.com/security-alerts/cpuapr2022.html	x_refsource_MISC
https://www.oracle.com/security-alerts/cpujul2022.html	x_refsource_MISC

Impacted products

1 product

Vendor	Product	Version
Apache Software Foundation	Apache Log4j2	Affected: log4j-core , < 2.17.1 (custom)

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-04T04:32:13.076Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "20211210 Vulnerabilities in Apache Log4j Library Affecting Cisco Products: December 2021",
            "tags": [
              "vendor-advisory",
              "x_refsource_CISCO",
              "x_transferred"
            ],
            "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-apache-log4j-qRuKNEbd"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://lists.apache.org/thread/s1o5vlo78ypqxnzn6p8zf6t9shtq5143"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://issues.apache.org/jira/browse/LOG4J2-3293"
          },
          {
            "name": "[oss-security] 20211228 CVE-2021-44832: Apache Log4j2 vulnerable to RCE via JDBC Appender when attacker controls configuration",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "http://www.openwall.com/lists/oss-security/2021/12/28/1"
          },
          {
            "name": "[debian-lts-announce] 20211229 [SECURITY] [DLA 2870-1] apache-log4j2 security update",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2021/12/msg00036.html"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-784507.pdf"
          },
          {
            "name": "FEDORA-2021-c6f471ce0f",
            "tags": [
              "vendor-advisory",
              "x_refsource_FEDORA",
              "x_transferred"
            ],
            "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/EVV25FXL4FU5X6X5BSL7RLQ7T6F65MRA/"
          },
          {
            "name": "FEDORA-2021-1bd9151bab",
            "tags": [
              "vendor-advisory",
              "x_refsource_FEDORA",
              "x_transferred"
            ],
            "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/T57MPJUW3MA6QGWZRTMCHHMMPQNVKGFC/"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://www.oracle.com/security-alerts/cpujan2022.html"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://security.netapp.com/advisory/ntap-20220104-0001/"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://www.oracle.com/security-alerts/cpuapr2022.html"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://www.oracle.com/security-alerts/cpujul2022.html"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "HIGH",
              "attackVector": "NETWORK",
              "availabilityImpact": "HIGH",
              "baseScore": 6.6,
              "baseSeverity": "MEDIUM",
              "confidentialityImpact": "HIGH",
              "integrityImpact": "HIGH",
              "privilegesRequired": "HIGH",
              "scope": "UNCHANGED",
              "userInteraction": "NONE",
              "vectorString": "CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2021-44832",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2026-05-29T18:53:35.535632Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2026-05-29T18:53:46.103Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "Apache Log4j2",
          "vendor": "Apache Software Foundation",
          "versions": [
            {
              "changes": [
                {
                  "at": "2.13.0",
                  "status": "affected"
                },
                {
                  "at": "2.12.4",
                  "status": "unaffected"
                },
                {
                  "at": "2.4",
                  "status": "affected"
                },
                {
                  "at": "2.3.2",
                  "status": "unaffected"
                },
                {
                  "at": "2.0-beta7",
                  "status": "affected"
                }
              ],
              "lessThan": "2.17.1",
              "status": "affected",
              "version": "log4j-core",
              "versionType": "custom"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "Apache Log4j2 versions 2.0-beta7 through 2.17.0 (excluding security fix releases 2.3.2 and 2.12.4) are vulnerable to a remote code execution (RCE) attack when a configuration uses a JDBC Appender with a JNDI LDAP data source URI when an attacker has control of the target LDAP server. This issue is fixed by limiting JNDI data source names to the java protocol in Log4j2 versions 2.17.1, 2.12.4, and 2.3.2."
        }
      ],
      "metrics": [
        {
          "other": {
            "content": {
              "other": "moderate"
            },
            "type": "unknown"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-20",
              "description": "CWE-20 Improper Input Validation",
              "lang": "en",
              "type": "CWE"
            }
          ]
        },
        {
          "descriptions": [
            {
              "cweId": "CWE-74",
              "description": "CWE-74 Improper Neutralization of Special Elements in Output Used by a Downstream Component (\u0027Injection\u0027)",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2022-07-25T16:41:33.000Z",
        "orgId": "f0158376-9dc2-43b6-827c-5f631a4d8d09",
        "shortName": "apache"
      },
      "references": [
        {
          "name": "20211210 Vulnerabilities in Apache Log4j Library Affecting Cisco Products: December 2021",
          "tags": [
            "vendor-advisory",
            "x_refsource_CISCO"
          ],
          "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-apache-log4j-qRuKNEbd"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://lists.apache.org/thread/s1o5vlo78ypqxnzn6p8zf6t9shtq5143"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://issues.apache.org/jira/browse/LOG4J2-3293"
        },
        {
          "name": "[oss-security] 20211228 CVE-2021-44832: Apache Log4j2 vulnerable to RCE via JDBC Appender when attacker controls configuration",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "http://www.openwall.com/lists/oss-security/2021/12/28/1"
        },
        {
          "name": "[debian-lts-announce] 20211229 [SECURITY] [DLA 2870-1] apache-log4j2 security update",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "https://lists.debian.org/debian-lts-announce/2021/12/msg00036.html"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-784507.pdf"
        },
        {
          "name": "FEDORA-2021-c6f471ce0f",
          "tags": [
            "vendor-advisory",
            "x_refsource_FEDORA"
          ],
          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/EVV25FXL4FU5X6X5BSL7RLQ7T6F65MRA/"
        },
        {
          "name": "FEDORA-2021-1bd9151bab",
          "tags": [
            "vendor-advisory",
            "x_refsource_FEDORA"
          ],
          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/T57MPJUW3MA6QGWZRTMCHHMMPQNVKGFC/"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://www.oracle.com/security-alerts/cpujan2022.html"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://security.netapp.com/advisory/ntap-20220104-0001/"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://www.oracle.com/security-alerts/cpuapr2022.html"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://www.oracle.com/security-alerts/cpujul2022.html"
        }
      ],
      "source": {
        "defect": [
          "LOG4J2-3293",
          ""
        ],
        "discovery": "UNKNOWN"
      },
      "timeline": [
        {
          "lang": "en",
          "time": "2021-12-27T00:00:00.000Z",
          "value": "reported"
        },
        {
          "lang": "en",
          "time": "2021-12-27T00:00:00.000Z",
          "value": "patch proposed, 2.17.1-rc1"
        },
        {
          "lang": "en",
          "time": "2021-12-28T00:00:00.000Z",
          "value": "fixed"
        },
        {
          "lang": "en",
          "time": "2021-12-28T00:00:00.000Z",
          "value": "public"
        }
      ],
      "title": "Apache Log4j2 vulnerable to RCE via JDBC Appender when attacker controls configuration",
      "x_generator": {
        "engine": "Vulnogram 0.0.9"
      },
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "security@apache.org",
          "ID": "CVE-2021-44832",
          "STATE": "PUBLIC",
          "TITLE": "Apache Log4j2 vulnerable to RCE via JDBC Appender when attacker controls configuration"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "Apache Log4j2",
                      "version": {
                        "version_data": [
                          {
                            "version_affected": "\u003c",
                            "version_name": "log4j-core",
                            "version_value": "2.17.1"
                          },
                          {
                            "version_affected": "\u003e=",
                            "version_name": "log4j-core",
                            "version_value": "2.13.0"
                          },
                          {
                            "version_affected": "\u003c",
                            "version_name": "log4j-core",
                            "version_value": "2.12.4"
                          },
                          {
                            "version_affected": "\u003e=",
                            "version_name": "log4j-core",
                            "version_value": "2.4"
                          },
                          {
                            "version_affected": "\u003c",
                            "version_name": "log4j-core",
                            "version_value": "2.3.2"
                          },
                          {
                            "version_affected": "\u003e=",
                            "version_name": "log4j-core",
                            "version_value": "2.0-beta7"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "Apache Software Foundation"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Apache Log4j2 versions 2.0-beta7 through 2.17.0 (excluding security fix releases 2.3.2 and 2.12.4) are vulnerable to a remote code execution (RCE) attack when a configuration uses a JDBC Appender with a JNDI LDAP data source URI when an attacker has control of the target LDAP server. This issue is fixed by limiting JNDI data source names to the java protocol in Log4j2 versions 2.17.1, 2.12.4, and 2.3.2."
            }
          ]
        },
        "generator": {
          "engine": "Vulnogram 0.0.9"
        },
        "impact": [
          {
            "other": "moderate"
          }
        ],
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "CWE-20 Improper Input Validation"
                }
              ]
            },
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "CWE-74 Improper Neutralization of Special Elements in Output Used by a Downstream Component (\u0027Injection\u0027)"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "20211210 Vulnerabilities in Apache Log4j Library Affecting Cisco Products: December 2021",
              "refsource": "CISCO",
              "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-apache-log4j-qRuKNEbd"
            },
            {
              "name": "https://lists.apache.org/thread/s1o5vlo78ypqxnzn6p8zf6t9shtq5143",
              "refsource": "MISC",
              "url": "https://lists.apache.org/thread/s1o5vlo78ypqxnzn6p8zf6t9shtq5143"
            },
            {
              "name": "https://issues.apache.org/jira/browse/LOG4J2-3293",
              "refsource": "MISC",
              "url": "https://issues.apache.org/jira/browse/LOG4J2-3293"
            },
            {
              "name": "[oss-security] 20211228 CVE-2021-44832: Apache Log4j2 vulnerable to RCE via JDBC Appender when attacker controls configuration",
              "refsource": "MLIST",
              "url": "http://www.openwall.com/lists/oss-security/2021/12/28/1"
            },
            {
              "name": "[debian-lts-announce] 20211229 [SECURITY] [DLA 2870-1] apache-log4j2 security update",
              "refsource": "MLIST",
              "url": "https://lists.debian.org/debian-lts-announce/2021/12/msg00036.html"
            },
            {
              "name": "https://cert-portal.siemens.com/productcert/pdf/ssa-784507.pdf",
              "refsource": "CONFIRM",
              "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-784507.pdf"
            },
            {
              "name": "FEDORA-2021-c6f471ce0f",
              "refsource": "FEDORA",
              "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/EVV25FXL4FU5X6X5BSL7RLQ7T6F65MRA/"
            },
            {
              "name": "FEDORA-2021-1bd9151bab",
              "refsource": "FEDORA",
              "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/T57MPJUW3MA6QGWZRTMCHHMMPQNVKGFC/"
            },
            {
              "name": "https://www.oracle.com/security-alerts/cpujan2022.html",
              "refsource": "MISC",
              "url": "https://www.oracle.com/security-alerts/cpujan2022.html"
            },
            {
              "name": "https://security.netapp.com/advisory/ntap-20220104-0001/",
              "refsource": "CONFIRM",
              "url": "https://security.netapp.com/advisory/ntap-20220104-0001/"
            },
            {
              "name": "https://www.oracle.com/security-alerts/cpuapr2022.html",
              "refsource": "MISC",
              "url": "https://www.oracle.com/security-alerts/cpuapr2022.html"
            },
            {
              "name": "https://www.oracle.com/security-alerts/cpujul2022.html",
              "refsource": "MISC",
              "url": "https://www.oracle.com/security-alerts/cpujul2022.html"
            }
          ]
        },
        "source": {
          "defect": [
            "LOG4J2-3293",
            ""
          ],
          "discovery": "UNKNOWN"
        },
        "timeline": [
          {
            "lang": "en",
            "time": "2021-12-27T00:00:00.000Z",
            "value": "reported"
          },
          {
            "lang": "en",
            "time": "2021-12-27T00:00:00.000Z",
            "value": "patch proposed, 2.17.1-rc1"
          },
          {
            "lang": "en",
            "time": "2021-12-28T00:00:00.000Z",
            "value": "fixed"
          },
          {
            "lang": "en",
            "time": "2021-12-28T00:00:00.000Z",
            "value": "public"
          }
        ]
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "f0158376-9dc2-43b6-827c-5f631a4d8d09",
    "assignerShortName": "apache",
    "cveId": "CVE-2021-44832",
    "datePublished": "2021-12-28T19:35:11.000Z",
    "dateReserved": "2021-12-11T00:00:00.000Z",
    "dateUpdated": "2026-05-29T18:53:46.103Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

CVE-2022-0778 (GCVE-0-2022-0778)

Vulnerability from cvelistv5 – Published: 2022-03-15 17:05 – Updated: 2026-05-22 13:28

Title

Infinite loop in BN_mod_sqrt() reachable when parsing certificates

Summary

The BN_mod_sqrt() function, which computes a modular square root, contains a bug that can cause it to loop forever for non-prime moduli. Internally this function is used when parsing certificates that contain elliptic curve public keys in compressed form or explicit elliptic curve parameters with a base point encoded in compressed form. It is possible to trigger the infinite loop by crafting a certificate that has invalid explicit curve parameters. Since certificate parsing happens prior to verification of the certificate signature, any process that parses an externally supplied certificate may thus be subject to a denial of service attack. The infinite loop can also be reached when parsing crafted private keys as they can contain explicit elliptic curve parameters. Thus vulnerable situations include: - TLS clients consuming server certificates - TLS servers consuming client certificates - Hosting providers taking certificates or private keys from customers - Certificate authorities parsing certification requests from subscribers - Anything else which parses ASN.1 elliptic curve parameters Also any other applications that use the BN_mod_sqrt() where the attacker can control the parameter values are vulnerable to this DoS issue. In the OpenSSL 1.0.2 version the public key is not parsed during initial parsing of the certificate which makes it slightly harder to trigger the infinite loop. However any operation which requires the public key from the certificate will trigger the infinite loop. In particular the attacker can use a self-signed certificate to trigger the loop during verification of the certificate signature. This issue affects OpenSSL versions 1.0.2, 1.1.1 and 3.0. It was addressed in the releases of 1.1.1n and 3.0.2 on the 15th March 2022. Fixed in OpenSSL 3.0.2 (Affected 3.0.0,3.0.1). Fixed in OpenSSL 1.1.1n (Affected 1.1.1-1.1.1m). Fixed in OpenSSL 1.0.2zd (Affected 1.0.2-1.0.2zc).

Severity

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

SSVC

Exploitation: none Automatable: yes Technical Impact: partial

CISA Coordinator (v2.0.3)

CWE

Infinite loop
CWE-835 - Loop with Unreachable Exit Condition ('Infinite Loop')

Assigner

openssl

References

34 references

URL	Tags
https://www.openssl.org/news/secadv/20220315.txt
https://git.openssl.org/gitweb/?p=openssl.git%3Ba…
https://git.openssl.org/gitweb/?p=openssl.git%3Ba…
https://git.openssl.org/gitweb/?p=openssl.git%3Ba…
https://www.debian.org/security/2022/dsa-5103	vendor-advisory
https://lists.debian.org/debian-lts-announce/2022…	mailing-list
https://lists.debian.org/debian-lts-announce/2022…	mailing-list
https://lists.fedoraproject.org/archives/list/pac…	vendor-advisory
https://lists.fedoraproject.org/archives/list/pac…	vendor-advisory
https://lists.fedoraproject.org/archives/list/pac…	vendor-advisory
https://www.oracle.com/security-alerts/cpuapr2022.html
https://security.netapp.com/advisory/ntap-2022032…
https://psirt.global.sonicwall.com/vuln-detail/SN…
https://www.tenable.com/security/tns-2022-06
https://www.tenable.com/security/tns-2022-07
https://www.tenable.com/security/tns-2022-08
http://seclists.org/fulldisclosure/2022/May/33	mailing-list
http://seclists.org/fulldisclosure/2022/May/35	mailing-list
http://seclists.org/fulldisclosure/2022/May/38	mailing-list
https://www.oracle.com/security-alerts/cpujul2022.html
https://support.apple.com/kb/HT213257
https://support.apple.com/kb/HT213256
https://support.apple.com/kb/HT213255
https://www.tenable.com/security/tns-2022-09
https://security.netapp.com/advisory/ntap-2022042…
http://packetstormsecurity.com/files/167344/OpenS…
https://cert-portal.siemens.com/productcert/pdf/s…
https://security.gentoo.org/glsa/202210-02	vendor-advisory
https://security.netapp.com/advisory/ntap-2024062…
https://cert-portal.siemens.com/productcert/html/…
https://cert-portal.siemens.com/productcert/html/…
https://cert-portal.siemens.com/productcert/html/…
https://cert-portal.siemens.com/productcert/html/…
https://cert-portal.siemens.com/productcert/html/…

Impacted products

484 products

Vendor	Product	Version
OpenSSL	OpenSSL	Affected: Fixed in OpenSSL 3.0.2 (Affected 3.0.0,3.0.1) Affected: Fixed in OpenSSL 1.1.1n (Affected 1.1.1-1.1.1m) Affected: Fixed in OpenSSL 1.0.2zd (Affected 1.0.2-1.0.2zc)
Siemens	BFCClient	Affected: 0 , < V2.17 (custom)
Siemens	Industrial Edge - OPC UA Connector	Affected: All versions < V1.7
Siemens	Industrial Edge - SIMATIC S7 Connector App	Affected: All versions < V1.7
Siemens	OpenPCS 7 V8.2	Affected: 0 , < * (custom)
Siemens	OpenPCS 7 V9.0	Affected: 0 , < * (custom)
Siemens	OpenPCS 7 V9.1	Affected: 0 , < * (custom)
Siemens	RUGGEDCOM CROSSBOW Station Access Controller (SAC)	Affected: All versions only when running on ROX II < V2.15.1
Siemens	RUGGEDCOM RM1224 LTE(4G) EU	Affected: 0 , < V7.2 (custom)
Siemens	RUGGEDCOM RM1224 LTE(4G) NAM	Affected: 0 , < V7.2 (custom)
Siemens	RUGGEDCOM ROX MX5000	Affected: 0 , < V2.15.1 (custom)
Siemens	RUGGEDCOM ROX MX5000RE	Affected: 0 , < V2.15.1 (custom)
Siemens	RUGGEDCOM ROX RX1400	Affected: 0 , < V2.15.1 (custom)
Siemens	RUGGEDCOM ROX RX1500	Affected: 0 , < V2.15.1 (custom)
Siemens	RUGGEDCOM ROX RX1501	Affected: 0 , < V2.15.1 (custom)
Siemens	RUGGEDCOM ROX RX1510	Affected: 0 , < V2.15.1 (custom)
Siemens	RUGGEDCOM ROX RX1511	Affected: 0 , < V2.15.1 (custom)
Siemens	RUGGEDCOM ROX RX1512	Affected: 0 , < V2.15.1 (custom)
Siemens	RUGGEDCOM ROX RX1524	Affected: 0 , < V2.15.1 (custom)
Siemens	RUGGEDCOM ROX RX1536	Affected: 0 , < V2.15.1 (custom)
Siemens	RUGGEDCOM ROX RX5000	Affected: 0 , < V2.15.1 (custom)
Siemens	SCALANCE LPE9403	Affected: All versions < V2.0
Siemens	SCALANCE M804PB	Affected: 0 , < V7.2 (custom)
Siemens	SCALANCE M812-1 ADSL-Router	Affected: 0 , < V7.2 (custom)
Siemens	SCALANCE M816-1 ADSL-Router	Affected: 0 , < V7.2 (custom)
Siemens	SCALANCE M826-2 SHDSL-Router	Affected: 0 , < V7.2 (custom)
Siemens	SCALANCE M874-2	Affected: 0 , < V7.2 (custom)
Siemens	SCALANCE M874-3	Affected: 0 , < V7.2 (custom)
Siemens	SCALANCE M876-3	Affected: 0 , < V7.2 (custom)
Siemens	SCALANCE M876-3 (ROK)	Affected: 0 , < V7.2 (custom)
Siemens	SCALANCE M876-4	Affected: 0 , < V7.2 (custom)
Siemens	SCALANCE M876-4 (EU)	Affected: 0 , < V7.2 (custom)
Siemens	SCALANCE M876-4 (NAM)	Affected: 0 , < V7.2 (custom)
Siemens	SCALANCE MUM853-1 (EU)	Affected: 0 , < V7.2 (custom)
Siemens	SCALANCE MUM856-1 (EU)	Affected: 0 , < V7.2 (custom)
Siemens	SCALANCE MUM856-1 (RoW)	Affected: 0 , < V7.2 (custom)
Siemens	SCALANCE S615 EEC LAN-Router	Affected: 0 , < V7.2 (custom)
Siemens	SCALANCE S615 LAN-Router	Affected: 0 , < V7.2 (custom)
Siemens	SCALANCE SC622-2C	Affected: All versions < V2.3.1
Siemens	SCALANCE SC632-2C	Affected: All versions < V2.3.1
Siemens	SCALANCE SC636-2C	Affected: All versions < V2.3.1
Siemens	SCALANCE SC642-2C	Affected: All versions < V2.3.1
Siemens	SCALANCE SC646-2C	Affected: All versions < V2.3.1
Siemens	SCALANCE W1748-1 M12	Affected: 0 , < * (custom)
Siemens	SCALANCE W1750D (JP)	Affected: 0 , < V8.7.1.11 (custom)
Siemens	SCALANCE W1750D (ROW)	Affected: 0 , < V8.7.1.11 (custom)
Siemens	SCALANCE W1750D (USA)	Affected: 0 , < V8.7.1.11 (custom)
Siemens	SCALANCE W1788-1 M12	Affected: 0 , < * (custom)
Siemens	SCALANCE W1788-2 EEC M12	Affected: 0 , < * (custom)
Siemens	SCALANCE W1788-2 M12	Affected: 0 , < * (custom)
Siemens	SCALANCE W1788-2IA M12	Affected: 0 , < * (custom)
Siemens	SCALANCE W721-1 RJ45	Affected: 0 , < V6.6.0 (custom)
Siemens	SCALANCE W722-1 RJ45	Affected: 0 , < V6.6.0 (custom)
Siemens	SCALANCE W734-1 RJ45	Affected: 0 , < V6.6.0 (custom)
Siemens	SCALANCE W734-1 RJ45 (USA)	Affected: 0 , < V6.6.0 (custom)
Siemens	SCALANCE W738-1 M12	Affected: 0 , < V6.6.0 (custom)
Siemens	SCALANCE W748-1 M12	Affected: 0 , < V6.6.0 (custom)
Siemens	SCALANCE W748-1 RJ45	Affected: 0 , < V6.6.0 (custom)
Siemens	SCALANCE W761-1 RJ45	Affected: 0 , < V6.6.0 (custom)
Siemens	SCALANCE W774-1 M12 EEC	Affected: 0 , < V6.6.0 (custom)
Siemens	SCALANCE W774-1 RJ45	Affected: 0 , < V6.6.0 (custom)
Siemens	SCALANCE W774-1 RJ45 (USA)	Affected: 0 , < V6.6.0 (custom)
Siemens	SCALANCE W778-1 M12	Affected: 0 , < V6.6.0 (custom)
Siemens	SCALANCE W778-1 M12 EEC	Affected: 0 , < V6.6.0 (custom)
Siemens	SCALANCE W778-1 M12 EEC (USA)	Affected: 0 , < V6.6.0 (custom)
Siemens	SCALANCE W786-1 RJ45	Affected: 0 , < V6.6.0 (custom)
Siemens	SCALANCE W786-2 RJ45	Affected: 0 , < V6.6.0 (custom)
Siemens	SCALANCE W786-2 SFP	Affected: 0 , < V6.6.0 (custom)
Siemens	SCALANCE W786-2IA RJ45	Affected: 0 , < V6.6.0 (custom)
Siemens	SCALANCE W788-1 M12	Affected: 0 , < V6.6.0 (custom)
Siemens	SCALANCE W788-1 RJ45	Affected: 0 , < V6.6.0 (custom)
Siemens	SCALANCE W788-2 M12	Affected: 0 , < V6.6.0 (custom)
Siemens	SCALANCE W788-2 M12 EEC	Affected: 0 , < V6.6.0 (custom)
Siemens	SCALANCE W788-2 RJ45	Affected: 0 , < V6.6.0 (custom)
Siemens	SCALANCE WAM763-1	Affected: All versions < V2.0
Siemens	SCALANCE WAM766-1	Affected: All versions < V2.0
Siemens	SCALANCE WAM766-1 (US)	Affected: All versions < V2.0
Siemens	SCALANCE WAM766-1 EEC	Affected: All versions < V2.0
Siemens	SCALANCE WAM766-1 EEC (US)	Affected: All versions < V2.0
Siemens	SCALANCE WUM763-1	Affected: All versions < V2.0
Siemens	SCALANCE WUM766-1	Affected: All versions < V2.0
Siemens	SCALANCE WUM766-1 (USA)	Affected: All versions < V2.0
Siemens	SCALANCE X200-4P IRT	Affected: 0 , < V5.5.2 (custom)
Siemens	SCALANCE X201-3P IRT	Affected: 0 , < V5.5.2 (custom)
Siemens	SCALANCE X201-3P IRT PRO	Affected: 0 , < V5.5.2 (custom)
Siemens	SCALANCE X202-2IRT	Affected: 0 , < V5.5.2 (custom)
Siemens	SCALANCE X202-2P IRT	Affected: 0 , < V5.5.2 (custom)
Siemens	SCALANCE X202-2P IRT PRO	Affected: 0 , < V5.5.2 (custom)
Siemens	SCALANCE X204-2	Affected: 0 , < * (custom)
Siemens	SCALANCE X204-2FM	Affected: 0 , < * (custom)
Siemens	SCALANCE X204-2LD	Affected: 0 , < * (custom)
Siemens	SCALANCE X204-2LD TS	Affected: 0 , < * (custom)
Siemens	SCALANCE X204-2TS	Affected: 0 , < * (custom)
Siemens	SCALANCE X204IRT	Affected: 0 , < V5.5.2 (custom)
Siemens	SCALANCE X204IRT PRO	Affected: 0 , < V5.5.2 (custom)
Siemens	SCALANCE X206-1	Affected: 0 , < * (custom)
Siemens	SCALANCE X206-1LD	Affected: 0 , < * (custom)
Siemens	SCALANCE X208	Affected: 0 , < * (custom)
Siemens	SCALANCE X208PRO	Affected: 0 , < * (custom)
Siemens	SCALANCE X212-2	Affected: 0 , < * (custom)
Siemens	SCALANCE X212-2LD	Affected: 0 , < * (custom)
Siemens	SCALANCE X216	Affected: 0 , < * (custom)
Siemens	SCALANCE X224	Affected: 0 , < * (custom)
Siemens	SCALANCE X302-7 EEC (230V, coated)	Affected: 0 , < V4.1.7 (custom)
Siemens	SCALANCE X302-7 EEC (230V)	Affected: 0 , < V4.1.7 (custom)
Siemens	SCALANCE X302-7 EEC (24V, coated)	Affected: 0 , < V4.1.7 (custom)
Siemens	SCALANCE X302-7 EEC (24V)	Affected: 0 , < V4.1.7 (custom)
Siemens	SCALANCE X302-7 EEC (2x 230V, coated)	Affected: 0 , < V4.1.7 (custom)
Siemens	SCALANCE X302-7 EEC (2x 230V)	Affected: 0 , < V4.1.7 (custom)
Siemens	SCALANCE X302-7 EEC (2x 24V, coated)	Affected: 0 , < V4.1.7 (custom)
Siemens	SCALANCE X302-7 EEC (2x 24V)	Affected: 0 , < V4.1.7 (custom)
Siemens	SCALANCE X304-2FE	Affected: 0 , < V4.1.7 (custom)
Siemens	SCALANCE X306-1LD FE	Affected: 0 , < V4.1.7 (custom)
Siemens	SCALANCE X307-2 EEC (230V, coated)	Affected: 0 , < V4.1.7 (custom)
Siemens	SCALANCE X307-2 EEC (230V)	Affected: 0 , < V4.1.7 (custom)
Siemens	SCALANCE X307-2 EEC (24V, coated)	Affected: 0 , < V4.1.7 (custom)
Siemens	SCALANCE X307-2 EEC (24V)	Affected: 0 , < V4.1.7 (custom)
Siemens	SCALANCE X307-2 EEC (2x 230V, coated)	Affected: 0 , < V4.1.7 (custom)
Siemens	SCALANCE X307-2 EEC (2x 230V)	Affected: 0 , < V4.1.7 (custom)
Siemens	SCALANCE X307-2 EEC (2x 24V, coated)	Affected: 0 , < V4.1.7 (custom)
Siemens	SCALANCE X307-2 EEC (2x 24V)	Affected: 0 , < V4.1.7 (custom)
Siemens	SCALANCE X307-3	Affected: 0 , < V4.1.7 (custom)
Siemens	SCALANCE X307-3LD	Affected: 0 , < V4.1.7 (custom)
Siemens	SCALANCE X308-2	Affected: 0 , < V4.1.7 (custom)
Siemens	SCALANCE X308-2 RD (inkl. SIPLUS variants)	Affected: 0 , < V4.1.7 (custom)
Siemens	SCALANCE X308-2LD	Affected: 0 , < V4.1.7 (custom)
Siemens	SCALANCE X308-2LH	Affected: 0 , < V4.1.7 (custom)
Siemens	SCALANCE X308-2LH+	Affected: 0 , < V4.1.7 (custom)
Siemens	SCALANCE X308-2M	Affected: 0 , < V4.1.7 (custom)
Siemens	SCALANCE X308-2M PoE	Affected: 0 , < V4.1.7 (custom)
Siemens	SCALANCE X308-2M TS	Affected: 0 , < V4.1.7 (custom)
Siemens	SCALANCE X310	Affected: 0 , < V4.1.7 (custom)
Siemens	SCALANCE X310FE	Affected: 0 , < V4.1.7 (custom)
Siemens	SCALANCE X320-1 FE	Affected: 0 , < V4.1.7 (custom)
Siemens	SCALANCE X320-1-2LD FE	Affected: 0 , < V4.1.7 (custom)
Siemens	SCALANCE X408-2	Affected: 0 , < V4.1.7 (custom)
Siemens	SCALANCE XB205-3 (SC, PN)	Affected: 0 , < V4.4 (custom)
Siemens	SCALANCE XB205-3 (ST, E/IP)	Affected: 0 , < V4.4 (custom)
Siemens	SCALANCE XB205-3 (ST, PN)	Affected: 0 , < V4.4 (custom)
Siemens	SCALANCE XB205-3LD (SC, E/IP)	Affected: 0 , < V4.4 (custom)
Siemens	SCALANCE XB205-3LD (SC, PN)	Affected: 0 , < V4.4 (custom)
Siemens	SCALANCE XB208 (E/IP)	Affected: 0 , < V4.4 (custom)
Siemens	SCALANCE XB208 (PN)	Affected: 0 , < V4.4 (custom)
Siemens	SCALANCE XB213-3 (SC, E/IP)	Affected: 0 , < V4.4 (custom)
Siemens	SCALANCE XB213-3 (SC, PN)	Affected: 0 , < V4.4 (custom)
Siemens	SCALANCE XB213-3 (ST, E/IP)	Affected: 0 , < V4.4 (custom)
Siemens	SCALANCE XB213-3 (ST, PN)	Affected: 0 , < V4.4 (custom)
Siemens	SCALANCE XB213-3LD (SC, E/IP)	Affected: 0 , < V4.4 (custom)
Siemens	SCALANCE XB213-3LD (SC, PN)	Affected: 0 , < V4.4 (custom)
Siemens	SCALANCE XB216 (E/IP)	Affected: 0 , < V4.4 (custom)
Siemens	SCALANCE XB216 (PN)	Affected: 0 , < V4.4 (custom)
Siemens	SCALANCE XC206-2 (SC)	Affected: 0 , < V4.4 (custom)
Siemens	SCALANCE XC206-2 (ST/BFOC)	Affected: 0 , < V4.4 (custom)
Siemens	SCALANCE XC206-2G PoE	Affected: 0 , < V4.4 (custom)
Siemens	SCALANCE XC206-2G PoE (54 V DC)	Affected: 0 , < V4.4 (custom)
Siemens	SCALANCE XC206-2G PoE EEC (54 V DC)	Affected: 0 , < V4.4 (custom)
Siemens	SCALANCE XC206-2SFP	Affected: 0 , < V4.4 (custom)
Siemens	SCALANCE XC206-2SFP EEC	Affected: 0 , < V4.4 (custom)
Siemens	SCALANCE XC206-2SFP G	Affected: 0 , < V4.4 (custom)
Siemens	SCALANCE XC206-2SFP G (EIP DEF.)	Affected: 0 , < V4.4 (custom)
Siemens	SCALANCE XC206-2SFP G EEC	Affected: 0 , < V4.4 (custom)
Siemens	SCALANCE XC208	Affected: 0 , < V4.4 (custom)
Siemens	SCALANCE XC208EEC	Affected: 0 , < V4.4 (custom)
Siemens	SCALANCE XC208G	Affected: 0 , < V4.4 (custom)
Siemens	SCALANCE XC208G (EIP def.)	Affected: 0 , < V4.4 (custom)
Siemens	SCALANCE XC208G EEC	Affected: 0 , < V4.4 (custom)
Siemens	SCALANCE XC208G PoE	Affected: 0 , < V4.4 (custom)
Siemens	SCALANCE XC208G PoE (54 V DC)	Affected: 0 , < V4.4 (custom)
Siemens	SCALANCE XC216	Affected: 0 , < V4.4 (custom)
Siemens	SCALANCE XC216-3G PoE	Affected: 0 , < V4.4 (custom)
Siemens	SCALANCE XC216-3G PoE (54 V DC)	Affected: 0 , < V4.4 (custom)
Siemens	SCALANCE XC216-4C	Affected: 0 , < V4.4 (custom)
Siemens	SCALANCE XC216-4C G	Affected: 0 , < V4.4 (custom)
Siemens	SCALANCE XC216-4C G (EIP Def.)	Affected: 0 , < V4.4 (custom)
Siemens	SCALANCE XC216-4C G EEC	Affected: 0 , < V4.4 (custom)
Siemens	SCALANCE XC216EEC	Affected: 0 , < V4.4 (custom)
Siemens	SCALANCE XC224	Affected: 0 , < V4.4 (custom)
Siemens	SCALANCE XC224-4C G	Affected: 0 , < V4.4 (custom)
Siemens	SCALANCE XC224-4C G (EIP Def.)	Affected: 0 , < V4.4 (custom)
Siemens	SCALANCE XC224-4C G EEC	Affected: 0 , < V4.4 (custom)
Siemens	SCALANCE XF201-3P IRT	Affected: 0 , < V5.5.2 (custom)
Siemens	SCALANCE XF202-2P IRT	Affected: 0 , < V5.5.2 (custom)
Siemens	SCALANCE XF204	Affected: 0 , < * (custom)
Siemens	SCALANCE XF204	Affected: 0 , < V4.4 (custom)
Siemens	SCALANCE XF204 DNA	Affected: 0 , < V4.4 (custom)
Siemens	SCALANCE XF204-2	Affected: 0 , < * (custom)
Siemens	SCALANCE XF204-2BA	Affected: 0 , < V4.4 (custom)
Siemens	SCALANCE XF204-2BA DNA	Affected: 0 , < V4.4 (custom)
Siemens	SCALANCE XF204-2BA IRT	Affected: 0 , < V5.5.2 (custom)
Siemens	SCALANCE XF204IRT	Affected: 0 , < V5.5.2 (custom)
Siemens	SCALANCE XF206-1	Affected: 0 , < * (custom)
Siemens	SCALANCE XF208	Affected: 0 , < * (custom)
Siemens	SCALANCE XM408-4C	Affected: All versions < V6.5
Siemens	SCALANCE XM408-4C (L3 int.)	Affected: All versions < V6.5
Siemens	SCALANCE XM408-8C	Affected: All versions < V6.5
Siemens	SCALANCE XM408-8C (L3 int.)	Affected: All versions < V6.5
Siemens	SCALANCE XM416-4C	Affected: All versions < V6.5
Siemens	SCALANCE XM416-4C (L3 int.)	Affected: All versions < V6.5
Siemens	SCALANCE XP208	Affected: 0 , < V4.4 (custom)
Siemens	SCALANCE XP208 (Ethernet/IP)	Affected: 0 , < V4.4 (custom)
Siemens	SCALANCE XP208EEC	Affected: 0 , < V4.4 (custom)
Siemens	SCALANCE XP208PoE EEC	Affected: 0 , < V4.4 (custom)
Siemens	SCALANCE XP216	Affected: 0 , < V4.4 (custom)
Siemens	SCALANCE XP216 (Ethernet/IP)	Affected: 0 , < V4.4 (custom)
Siemens	SCALANCE XP216EEC	Affected: 0 , < V4.4 (custom)
Siemens	SCALANCE XP216POE EEC	Affected: 0 , < V4.4 (custom)
Siemens	SCALANCE XR324-12M (230V, ports on front)	Affected: 0 , < V4.1.7 (custom)
Siemens	SCALANCE XR324-12M (230V, ports on rear)	Affected: 0 , < V4.1.7 (custom)
Siemens	SCALANCE XR324-12M (24V, ports on front)	Affected: 0 , < V4.1.7 (custom)
Siemens	SCALANCE XR324-12M (24V, ports on rear)	Affected: 0 , < V4.1.7 (custom)
Siemens	SCALANCE XR324-12M TS (24V)	Affected: 0 , < V4.1.7 (custom)
Siemens	SCALANCE XR324-4M EEC (100-240VAC/60-250VDC, ports on front)	Affected: 0 , < V4.1.7 (custom)
Siemens	SCALANCE XR324-4M EEC (100-240VAC/60-250VDC, ports on rear)	Affected: 0 , < V4.1.7 (custom)
Siemens	SCALANCE XR324-4M EEC (24V, ports on front)	Affected: 0 , < V4.1.7 (custom)
Siemens	SCALANCE XR324-4M EEC (24V, ports on rear)	Affected: 0 , < V4.1.7 (custom)
Siemens	SCALANCE XR324-4M EEC (2x 100-240VAC/60-250VDC, ports on front)	Affected: 0 , < V4.1.7 (custom)
Siemens	SCALANCE XR324-4M EEC (2x 100-240VAC/60-250VDC, ports on rear)	Affected: 0 , < V4.1.7 (custom)
Siemens	SCALANCE XR324-4M EEC (2x 24V, ports on front)	Affected: 0 , < V4.1.7 (custom)
Siemens	SCALANCE XR324-4M EEC (2x 24V, ports on rear)	Affected: 0 , < V4.1.7 (custom)
Siemens	SCALANCE XR324-4M PoE (230V, ports on front)	Affected: 0 , < V4.1.7 (custom)
Siemens	SCALANCE XR324-4M PoE (230V, ports on rear)	Affected: 0 , < V4.1.7 (custom)
Siemens	SCALANCE XR324-4M PoE (24V, ports on front)	Affected: 0 , < V4.1.7 (custom)
Siemens	SCALANCE XR324-4M PoE (24V, ports on rear)	Affected: 0 , < V4.1.7 (custom)
Siemens	SCALANCE XR324-4M PoE TS (24V, ports on front)	Affected: 0 , < V4.1.7 (custom)
Siemens	SCALANCE XR324WG (24 x FE, AC 230V)	Affected: 0 , < V4.4 (custom)
Siemens	SCALANCE XR324WG (24 X FE, DC 24V)	Affected: 0 , < V4.4 (custom)
Siemens	SCALANCE XR326-2C PoE WG	Affected: 0 , < V4.4 (custom)
Siemens	SCALANCE XR326-2C PoE WG (without UL)	Affected: 0 , < V4.4 (custom)
Siemens	SCALANCE XR328-4C WG (24XFE, 4XGE, 24V)	Affected: 0 , < V4.4 (custom)
Siemens	SCALANCE XR328-4C WG (24xFE, 4xGE,DC24V)	Affected: 0 , < V4.4 (custom)
Siemens	SCALANCE XR328-4C WG (24xFE,4xGE,AC230V)	Affected: 0 , < V4.4 (custom)
Siemens	SCALANCE XR328-4C WG (28xGE, AC 230V)	Affected: 0 , < V4.4 (custom)
Siemens	SCALANCE XR328-4C WG (28xGE, DC 24V)	Affected: 0 , < V4.4 (custom)
Siemens	SCALANCE XR524-8C, 1x230V	Affected: All versions < V6.5
Siemens	SCALANCE XR524-8C, 1x230V (L3 int.)	Affected: All versions < V6.5
Siemens	SCALANCE XR524-8C, 24V	Affected: All versions < V6.5
Siemens	SCALANCE XR524-8C, 24V (L3 int.)	Affected: All versions < V6.5
Siemens	SCALANCE XR524-8C, 2x230V	Affected: All versions < V6.5
Siemens	SCALANCE XR524-8C, 2x230V (L3 int.)	Affected: All versions < V6.5
Siemens	SCALANCE XR526-8C, 1x230V	Affected: All versions < V6.5
Siemens	SCALANCE XR526-8C, 1x230V (L3 int.)	Affected: All versions < V6.5
Siemens	SCALANCE XR526-8C, 24V	Affected: All versions < V6.5
Siemens	SCALANCE XR526-8C, 24V (L3 int.)	Affected: All versions < V6.5
Siemens	SCALANCE XR526-8C, 2x230V	Affected: All versions < V6.5
Siemens	SCALANCE XR526-8C, 2x230V (L3 int.)	Affected: All versions < V6.5
Siemens	SCALANCE XR528-6M	Affected: All versions < V6.5
Siemens	SCALANCE XR528-6M (2HR2, L3 int.)	Affected: All versions < V6.5
Siemens	SCALANCE XR528-6M (2HR2)	Affected: All versions < V6.5
Siemens	SCALANCE XR528-6M (L3 int.)	Affected: All versions < V6.5
Siemens	SCALANCE XR552-12M	Affected: All versions < V6.5
Siemens	SCALANCE XR552-12M (2HR2, L3 int.)	Affected: All versions < V6.5
Siemens	SCALANCE XR552-12M (2HR2)	Affected: All versions < V6.5
Siemens	Security Configuration Tool (SCT)	Affected: 0 , < * (custom)
Siemens	SIMATIC Cloud Connect 7 CC712	Affected: All versions < V1.9
Siemens	SIMATIC Cloud Connect 7 CC716	Affected: All versions < V1.9
Siemens	SIMATIC CP 1242-7 V2	Affected: 0 , < V3.4.29 (custom)
Siemens	SIMATIC CP 1243-1	Affected: 0 , < V3.4.29 (custom)
Siemens	SIMATIC CP 1243-7 LTE EU	Affected: 0 , < V3.4.29 (custom)
Siemens	SIMATIC CP 1243-7 LTE US	Affected: 0 , < V3.4.29 (custom)
Siemens	SIMATIC CP 1243-8 IRC	Affected: 0 , < V3.4.29 (custom)
Siemens	SIMATIC CP 1542SP-1	Affected: 0 , < V2.2.28 (custom)
Siemens	SIMATIC CP 1543-1	Affected: 0 , < V3.0.37 (custom)
Siemens	SIMATIC CP 1543SP-1	Affected: 0 , < V2.2.28 (custom)
Siemens	SIMATIC CP 1545-1	Affected: 0 , < V1.1.80 (custom)
Siemens	SIMATIC CP 1626	Affected: 0 , < * (custom)
Siemens	SIMATIC CP 1628	Affected: 0 , < * (custom)
Siemens	SIMATIC CP 343-1 Advanced	Affected: 0 , < * (custom)
Siemens	SIMATIC CP 443-1 Advanced	Affected: 0 , < V3.3.11 (custom)
Siemens	SIMATIC CP 443-1 OPC UA	Affected: 0 , < * (custom)
Siemens	SIMATIC Drive Controller CPU 1504D TF	Affected: 0 , < V2.9.7 (custom)
Siemens	SIMATIC Drive Controller CPU 1507D TF	Affected: 0 , < V2.9.7 (custom)
Siemens	SIMATIC ET 200SP CPU 1510SP F-1 PN	Affected: 0 , < * (custom)
Siemens	SIMATIC ET 200SP CPU 1510SP F-1 PN	Affected: 0 , < V2.9.7 (custom)
Siemens	SIMATIC ET 200SP CPU 1510SP-1 PN	Affected: 0 , < * (custom)
Siemens	SIMATIC ET 200SP CPU 1510SP-1 PN	Affected: 0 , < V2.9.7 (custom)
Siemens	SIMATIC ET 200SP CPU 1512SP F-1 PN	Affected: 0 , < * (custom)
Siemens	SIMATIC ET 200SP CPU 1512SP F-1 PN	Affected: 0 , < V2.9.7 (custom)
Siemens	SIMATIC ET 200SP CPU 1512SP-1 PN	Affected: 0 , < * (custom)
Siemens	SIMATIC ET 200SP CPU 1512SP-1 PN	Affected: 0 , < V2.9.7 (custom)
Siemens	SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants)	Affected: 0 , < V21.9.7 (custom)
Siemens	SIMATIC HMI Unified Comfort Panels family	Affected: All versions < V18
Siemens	SIMATIC Logon V1.6	Affected: 0 , < V1.6 Upd6 (custom)
Siemens	SIMATIC MV540 H	Affected: 0 , < V3.3 (custom)
Siemens	SIMATIC MV540 S	Affected: All versions < V3.3
Siemens	SIMATIC MV550 H	Affected: All versions < V3.3
Siemens	SIMATIC MV550 S	Affected: All versions < V3.3
Siemens	SIMATIC MV560 U	Affected: All versions < V3.3
Siemens	SIMATIC MV560 X	Affected: All versions < V3.3
Siemens	SIMATIC NET PC Software V14	Affected: 0 , < * (custom)
Siemens	SIMATIC NET PC Software V15	Affected: 0 , < * (custom)
Siemens	SIMATIC NET PC Software V16	Affected: 0 , < V16 Update 6 (custom)
Siemens	SIMATIC NET PC Software V17	Affected: 0 , < V17 SP1 Update 1 (custom)
Siemens	SIMATIC PCS 7 TeleControl	Affected: 0 , < V9.1 Update 1 (custom)
Siemens	SIMATIC PCS 7 V8.2	Affected: 0 , < * (custom)
Siemens	SIMATIC PCS 7 V9.0	Affected: 0 , < * (custom)
Siemens	SIMATIC PCS 7 V9.1	Affected: 0 , < V9.1 SP2 UC04 (custom)
Siemens	SIMATIC PCS neo (Administration Console)	Affected: 0 , < V4.0 (custom)
Siemens	SIMATIC PDM	Affected: 0 , < V9.2 SP2 (custom)
Siemens	SIMATIC Process Historian OPC UA Server	Affected: 0 , < V2020 SP1 Update 1 (custom)
Siemens	SIMATIC RF166C	Affected: All versions < V2.0.1
Siemens	SIMATIC RF185C	Affected: All versions < V2.0.1
Siemens	SIMATIC RF186C	Affected: All versions < V2.0.1
Siemens	SIMATIC RF186CI	Affected: All versions < V2.0.1
Siemens	SIMATIC RF188C	Affected: All versions < V2.0.1
Siemens	SIMATIC RF188CI	Affected: All versions < V2.0.1
Siemens	SIMATIC RF360R	Affected: All versions < V2.0.1
Siemens	SIMATIC RF610R	Affected: All versions < V4.0.1
Siemens	SIMATIC RF615R	Affected: All versions < V4.0.1
Siemens	SIMATIC RF650R	Affected: All versions < V4.0.1
Siemens	SIMATIC RF680R	Affected: All versions < V4.0.1
Siemens	SIMATIC RF685R	Affected: All versions < V4.0.1
Siemens	SIMATIC S7-1200 CPU 1211C AC/DC/Rly	Affected: 0 , < V4.6.0 (custom)
Siemens	SIMATIC S7-1200 CPU 1211C DC/DC/DC	Affected: 0 , < V4.6.0 (custom)
Siemens	SIMATIC S7-1200 CPU 1211C DC/DC/Rly	Affected: 0 , < V4.6.0 (custom)
Siemens	SIMATIC S7-1200 CPU 1212C AC/DC/Rly	Affected: 0 , < V4.6.0 (custom)
Siemens	SIMATIC S7-1200 CPU 1212C DC/DC/DC	Affected: 0 , < V4.6.0 (custom)
Siemens	SIMATIC S7-1200 CPU 1212C DC/DC/Rly	Affected: 0 , < V4.6.0 (custom)
Siemens	SIMATIC S7-1200 CPU 1212FC DC/DC/DC	Affected: 0 , < V4.6.0 (custom)
Siemens	SIMATIC S7-1200 CPU 1212FC DC/DC/Rly	Affected: 0 , < V4.6.0 (custom)
Siemens	SIMATIC S7-1200 CPU 1214C AC/DC/Rly	Affected: 0 , < V4.6.0 (custom)
Siemens	SIMATIC S7-1200 CPU 1214C DC/DC/DC	Affected: 0 , < V4.6.0 (custom)
Siemens	SIMATIC S7-1200 CPU 1214C DC/DC/Rly	Affected: 0 , < V4.6.0 (custom)
Siemens	SIMATIC S7-1200 CPU 1214FC DC/DC/DC	Affected: 0 , < V4.6.0 (custom)
Siemens	SIMATIC S7-1200 CPU 1214FC DC/DC/Rly	Affected: 0 , < V4.6.0 (custom)
Siemens	SIMATIC S7-1200 CPU 1215C AC/DC/Rly	Affected: 0 , < V4.6.0 (custom)
Siemens	SIMATIC S7-1200 CPU 1215C DC/DC/DC	Affected: 0 , < V4.6.0 (custom)
Siemens	SIMATIC S7-1200 CPU 1215C DC/DC/Rly	Affected: 0 , < V4.6.0 (custom)
Siemens	SIMATIC S7-1200 CPU 1215FC DC/DC/DC	Affected: 0 , < V4.6.0 (custom)
Siemens	SIMATIC S7-1200 CPU 1215FC DC/DC/Rly	Affected: 0 , < V4.6.0 (custom)
Siemens	SIMATIC S7-1200 CPU 1217C DC/DC/DC	Affected: 0 , < V4.6.0 (custom)
Siemens	SIMATIC S7-1500 CPU 1511-1 PN	Affected: 0 , < * (custom)
Siemens	SIMATIC S7-1500 CPU 1511-1 PN	Affected: 0 , < V2.9.7 (custom)
Siemens	SIMATIC S7-1500 CPU 1511C-1 PN	Affected: 0 , < V2.9.7 (custom)
Siemens	SIMATIC S7-1500 CPU 1511F-1 PN	Affected: 0 , < * (custom)
Siemens	SIMATIC S7-1500 CPU 1511F-1 PN	Affected: 0 , < V2.9.7 (custom)
Siemens	SIMATIC S7-1500 CPU 1511T-1 PN	Affected: 0 , < V2.9.7 (custom)
Siemens	SIMATIC S7-1500 CPU 1511TF-1 PN	Affected: 0 , < V2.9.7 (custom)
Siemens	SIMATIC S7-1500 CPU 1512C-1 PN	Affected: 0 , < V2.9.7 (custom)
Siemens	SIMATIC S7-1500 CPU 1513-1 PN	Affected: 0 , < * (custom)
Siemens	SIMATIC S7-1500 CPU 1513-1 PN	Affected: 0 , < V2.9.7 (custom)
Siemens	SIMATIC S7-1500 CPU 1513F-1 PN	Affected: 0 , < * (custom)
Siemens	SIMATIC S7-1500 CPU 1513F-1 PN	Affected: 0 , < V2.9.7 (custom)
Siemens	SIMATIC S7-1500 CPU 1513R-1 PN	Affected: 0 , < V2.9.7 (custom)
Siemens	SIMATIC S7-1500 CPU 1515-2 PN	Affected: 0 , < * (custom)
Siemens	SIMATIC S7-1500 CPU 1515-2 PN	Affected: 0 , < V2.9.7 (custom)
Siemens	SIMATIC S7-1500 CPU 1515F-2 PN	Affected: 0 , < * (custom)
Siemens	SIMATIC S7-1500 CPU 1515F-2 PN	Affected: 0 , < V2.9.7 (custom)
Siemens	SIMATIC S7-1500 CPU 1515R-2 PN	Affected: 0 , < V2.9.7 (custom)
Siemens	SIMATIC S7-1500 CPU 1515T-2 PN	Affected: 0 , < V2.9.7 (custom)
Siemens	SIMATIC S7-1500 CPU 1515TF-2 PN	Affected: 0 , < V2.9.7 (custom)
Siemens	SIMATIC S7-1500 CPU 1516-3 PN/DP	Affected: 0 , < * (custom)
Siemens	SIMATIC S7-1500 CPU 1516-3 PN/DP	Affected: 0 , < V2.9.7 (custom)
Siemens	SIMATIC S7-1500 CPU 1516F-3 PN/DP	Affected: 0 , < * (custom)
Siemens	SIMATIC S7-1500 CPU 1516F-3 PN/DP	Affected: 0 , < V2.9.7 (custom)
Siemens	SIMATIC S7-1500 CPU 1516T-3 PN/DP	Affected: 0 , < V3.0.1 (custom)
Siemens	SIMATIC S7-1500 CPU 1516TF-3 PN/DP	Affected: 0 , < V3.0.1 (custom)
Siemens	SIMATIC S7-1500 CPU 1517-3 PN/DP	Affected: 0 , < V3.0.1 (custom)
Siemens	SIMATIC S7-1500 CPU 1517F-3 PN/DP	Affected: 0 , < V3.0.1 (custom)
Siemens	SIMATIC S7-1500 CPU 1517H-3 PN	Affected: 0 , < V3.0.1 (custom)
Siemens	SIMATIC S7-1500 CPU 1517T-3 PN/DP	Affected: 0 , < V3.0.1 (custom)
Siemens	SIMATIC S7-1500 CPU 1517TF-3 PN/DP	Affected: 0 , < V3.0.1 (custom)
Siemens	SIMATIC S7-1500 CPU 1518-4 PN/DP	Affected: 0 , < V3.0.1 (custom)
Siemens	SIMATIC S7-1500 CPU 1518-4 PN/DP MFP	Affected: 0 , < V3.0.1 (custom)
Siemens	SIMATIC S7-1500 CPU 1518F-4 PN/DP	Affected: 0 , < V3.0.1 (custom)
Siemens	SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP	Affected: 0 , < V3.0.1 (custom)
Siemens	SIMATIC S7-1500 CPU 1518HF-4 PN	Affected: 0 , < V3.0.1 (custom)
Siemens	SIMATIC S7-1500 CPU 1518T-4 PN/DP	Affected: 0 , < V3.0.1 (custom)
Siemens	SIMATIC S7-1500 CPU 1518TF-4 PN/DP	Affected: 0 , < V3.0.1 (custom)
Siemens	SIMATIC S7-1500 CPU S7-1518-4 PN/DP ODK	Affected: 0 , < V2.9.7 (custom)
Siemens	SIMATIC S7-1500 CPU S7-1518F-4 PN/DP ODK	Affected: 0 , < V2.9.7 (custom)
Siemens	SIMATIC S7-1500 ET 200pro: CPU 1513PRO F-2 PN	Affected: 0 , < V2.9.7 (custom)
Siemens	SIMATIC S7-1500 ET 200pro: CPU 1513PRO-2 PN	Affected: 0 , < V2.9.7 (custom)
Siemens	SIMATIC S7-1500 ET 200pro: CPU 1516PRO F-2 PN	Affected: 0 , < V2.9.7 (custom)
Siemens	SIMATIC S7-1500 ET 200pro: CPU 1516PRO-2 PN	Affected: 0 , < V2.9.7 (custom)
Siemens	SIMATIC S7-1500 Software Controller V2	Affected: 0 , < V21.9.7 (custom)
Siemens	SIMATIC S7-PLCSIM Advanced	Affected: 0 , < V5.0 (custom)
Siemens	SIMATIC STEP 7 V15.1	Affected: 0 , < * (custom)
Siemens	SIMATIC STEP 7 V16	Affected: 0 , < * (custom)
Siemens	SIMATIC STEP 7 V17	Affected: 0 , < V17 Update 5 (custom)
Siemens	SIMATIC STEP 7 V5	Affected: 0 , < V5.7 HF4 (custom)
Siemens	SIMATIC WinCC Unified (TIA Portal)	Affected: All versions < V17 Update 5
Siemens	SIMATIC WinCC V15.1	Affected: 0 , < * (custom)
Siemens	SIMATIC WinCC V16	Affected: 0 , < * (custom)
Siemens	SIMATIC WinCC V17	Affected: 0 , < V17 Update 5 (custom)
Siemens	SIMATIC WinCC V7.3	Affected: 0 , < * (custom)
Siemens	SIMATIC WinCC V7.4	Affected: 0 , < V7.4 SP1 Update 22 (custom)
Siemens	SIMATIC WinCC V7.5	Affected: 0 , < V7.5 SP2 Update 16 (custom)
Siemens	SIMOCODE ES V15.1	Affected: 0 , < * (custom)
Siemens	SIMOCODE ES V16	Affected: 0 , < * (custom)
Siemens	SIMOCODE ES V17	Affected: 0 , < V17 Update 5 (custom)
Siemens	SIMOTION	Affected: V5.1 , < V5.5.1 (custom)
Siemens	SIMOTION SCOUT TIA V5.3	Affected: 0 , < * (custom)
Siemens	SIMOTION SCOUT TIA V5.4	Affected: 0 , < * (custom)
Siemens	SINAMICS DCC V15.1	Affected: 0 , < * (custom)
Siemens	SINAMICS DCC V16	Affected: 0 , < * (custom)
Siemens	SINAMICS Startdrive V15.1	Affected: 0 , < * (custom)
Siemens	SINAMICS Startdrive V16	Affected: 0 , < * (custom)
Siemens	SINAMICS Startdrive V17	Affected: 0 , < * (custom)
Siemens	SINAUT Software ST7sc	Affected: 0 , < * (custom)
Siemens	SINAUT ST7CC	Affected: 0 , < * (custom)
Siemens	SINEC INS	Affected: 0 , < V1.0 SP2 (custom)
Siemens	SINEC NMS	Affected: 0 , < V1.0 SP3 (custom)
Siemens	SINEMA Remote Connect Server	Affected: 0 , < V3.1 (custom)
Siemens	SIPLUS ET 200SP CP 1543SP-1 ISEC	Affected: 0 , < V2.2.28 (custom)
Siemens	SIPLUS ET 200SP CP 1543SP-1 ISEC TX RAIL	Affected: 0 , < V2.2.28 (custom)
Siemens	SIPLUS ET 200SP CPU 1510SP F-1 PN	Affected: 0 , < V2.9.7 (custom)
Siemens	SIPLUS ET 200SP CPU 1510SP F-1 PN RAIL	Affected: 0 , < V2.9.7 (custom)
Siemens	SIPLUS ET 200SP CPU 1510SP-1 PN	Affected: 0 , < V2.9.7 (custom)
Siemens	SIPLUS ET 200SP CPU 1510SP-1 PN RAIL	Affected: 0 , < V2.9.7 (custom)
Siemens	SIPLUS ET 200SP CPU 1512SP F-1 PN	Affected: 0 , < * (custom)
Siemens	SIPLUS ET 200SP CPU 1512SP F-1 PN	Affected: 0 , < V2.9.7 (custom)
Siemens	SIPLUS ET 200SP CPU 1512SP F-1 PN RAIL	Affected: 0 , < V2.9.7 (custom)
Siemens	SIPLUS ET 200SP CPU 1512SP-1 PN	Affected: 0 , < V2.9.7 (custom)
Siemens	SIPLUS ET 200SP CPU 1512SP-1 PN RAIL	Affected: 0 , < V2.9.7 (custom)
Siemens	SIPLUS NET CP 1242-7 V2	Affected: 0 , < V3.4.29 (custom)
Siemens	SIPLUS NET CP 1543-1	Affected: 0 , < V3.0.37 (custom)
Siemens	SIPLUS NET CP 343-1 Advanced	Affected: 0 , < * (custom)
Siemens	SIPLUS NET CP 443-1 Advanced	Affected: 0 , < V3.3.11 (custom)
Siemens	SIPLUS NET SCALANCE X202-2P IRT	Affected: 0 , < V5.5.2 (custom)
Siemens	SIPLUS NET SCALANCE XC206-2	Affected: 0 , < V4.4 (custom)
Siemens	SIPLUS NET SCALANCE XC206-2SFP	Affected: 0 , < V4.4 (custom)
Siemens	SIPLUS NET SCALANCE XC208	Affected: 0 , < V4.4 (custom)
Siemens	SIPLUS NET SCALANCE XC216-4C	Affected: 0 , < V4.4 (custom)
Siemens	SIPLUS S7-1200 CP 1243-1	Affected: 0 , < V3.4.29 (custom)
Siemens	SIPLUS S7-1200 CP 1243-1 RAIL	Affected: 0 , < V3.4.29 (custom)
Siemens	SIPLUS S7-1200 CPU 1212 AC/DC/RLY	Affected: 0 , < V4.6.0 (custom)
Siemens	SIPLUS S7-1200 CPU 1212 DC/DC/RLY	Affected: 0 , < V4.6.0 (custom)
Siemens	SIPLUS S7-1200 CPU 1212C AC/DC/RLY	Affected: 0 , < V4.6.0 (custom)
Siemens	SIPLUS S7-1200 CPU 1212C DC/DC/DC	Affected: 0 , < V4.6.0 (custom)
Siemens	SIPLUS S7-1200 CPU 1212C DC/DC/DC RAIL	Affected: 0 , < V4.6.0 (custom)
Siemens	SIPLUS S7-1200 CPU 1214 AC/DC/RLY	Affected: 0 , < V4.6.0 (custom)
Siemens	SIPLUS S7-1200 CPU 1214 DC/DC/RLY	Affected: 0 , < V4.6.0 (custom)
Siemens	SIPLUS S7-1200 CPU 1214C AC/DC/RLY	Affected: 0 , < V4.6.0 (custom)
Siemens	SIPLUS S7-1200 CPU 1214C DC/DC/DC	Affected: 0 , < V4.6.0 (custom)
Siemens	SIPLUS S7-1200 CPU 1214C DC/DC/DC RAIL	Affected: 0 , < V4.6.0 (custom)
Siemens	SIPLUS S7-1200 CPU 1214C DC/DC/RLY	Affected: 0 , < V4.6.0 (custom)
Siemens	SIPLUS S7-1200 CPU 1214FC DC/DC/DC	Affected: 0 , < V4.6.0 (custom)
Siemens	SIPLUS S7-1200 CPU 1214FC DC/DC/RLY	Affected: 0 , < V4.6.0 (custom)
Siemens	SIPLUS S7-1200 CPU 1215 AC/DC/RLY	Affected: 0 , < V4.6.0 (custom)
Siemens	SIPLUS S7-1200 CPU 1215 DC/DC/DC	Affected: 0 , < V4.6.0 (custom)
Siemens	SIPLUS S7-1200 CPU 1215 DC/DC/RLY	Affected: 0 , < V4.6.0 (custom)
Siemens	SIPLUS S7-1200 CPU 1215C AC/DC/RLY	Affected: 0 , < V4.6.0 (custom)
Siemens	SIPLUS S7-1200 CPU 1215C DC/DC/DC	Affected: 0 , < V4.6.0 (custom)
Siemens	SIPLUS S7-1200 CPU 1215FC DC/DC/DC	Affected: 0 , < V4.6.0 (custom)
Siemens	SIPLUS S7-1500 CPU 1511-1 PN	Affected: 0 , < * (custom)
Siemens	SIPLUS S7-1500 CPU 1511-1 PN	Affected: 0 , < V2.9.7 (custom)
Siemens	SIPLUS S7-1500 CPU 1511-1 PN T1 RAIL	Affected: 0 , < V2.9.7 (custom)
Siemens	SIPLUS S7-1500 CPU 1511-1 PN TX RAIL	Affected: 0 , < V2.9.7 (custom)
Siemens	SIPLUS S7-1500 CPU 1511F-1 PN	Affected: 0 , < * (custom)
Siemens	SIPLUS S7-1500 CPU 1511F-1 PN	Affected: 0 , < V2.9.7 (custom)
Siemens	SIPLUS S7-1500 CPU 1513-1 PN	Affected: 0 , < * (custom)
Siemens	SIPLUS S7-1500 CPU 1513-1 PN	Affected: 0 , < V2.9.7 (custom)
Siemens	SIPLUS S7-1500 CPU 1513F-1 PN	Affected: 0 , < * (custom)
Siemens	SIPLUS S7-1500 CPU 1513F-1 PN	Affected: 0 , < V2.9.7 (custom)
Siemens	SIPLUS S7-1500 CPU 1515F-2 PN	Affected: 0 , < V2.9.7 (custom)
Siemens	SIPLUS S7-1500 CPU 1515F-2 PN RAIL	Affected: 0 , < V2.9.7 (custom)
Siemens	SIPLUS S7-1500 CPU 1515F-2 PN T2 RAIL	Affected: 0 , < V2.9.7 (custom)
Siemens	SIPLUS S7-1500 CPU 1515R-2 PN	Affected: 0 , < V2.9.7 (custom)
Siemens	SIPLUS S7-1500 CPU 1515R-2 PN TX RAIL	Affected: 0 , < V2.9.7 (custom)
Siemens	SIPLUS S7-1500 CPU 1516-3 PN/DP	Affected: 0 , < * (custom)
Siemens	SIPLUS S7-1500 CPU 1516-3 PN/DP	Affected: 0 , < V2.9.7 (custom)
Siemens	SIPLUS S7-1500 CPU 1516-3 PN/DP RAIL	Affected: 0 , < V2.9.7 (custom)
Siemens	SIPLUS S7-1500 CPU 1516-3 PN/DP TX RAIL	Affected: 0 , < V2.9.7 (custom)
Siemens	SIPLUS S7-1500 CPU 1516F-3 PN/DP	Affected: 0 , < * (custom)
Siemens	SIPLUS S7-1500 CPU 1516F-3 PN/DP	Affected: 0 , < V2.9.7 (custom)
Siemens	SIPLUS S7-1500 CPU 1516F-3 PN/DP RAIL	Affected: 0 , < V2.9.7 (custom)
Siemens	SIPLUS S7-1500 CPU 1517H-3 PN	Affected: 0 , < V3.0.1 (custom)
Siemens	SIPLUS S7-1500 CPU 1518-4 PN/DP	Affected: 0 , < V3.0.1 (custom)
Siemens	SIPLUS S7-1500 CPU 1518-4 PN/DP MFP	Affected: 0 , < V3.0.1 (custom)
Siemens	SIPLUS S7-1500 CPU 1518F-4 PN/DP	Affected: 0 , < V3.0.1 (custom)
Siemens	SIPLUS S7-1500 CPU 1518HF-4 PN	Affected: 0 , < V3.0.1 (custom)
Siemens	SIPLUS TIM 1531 IRC	Affected: 0 , < V2.4.8 (custom)
Siemens	SIRIUS Safety ES V17 (TIA Portal)	Affected: 0 , < V17 Update 5 (custom)
Siemens	SIRIUS Soft Starter ES V15.1 (TIA Portal)	Affected: 0 , < * (custom)
Siemens	SIRIUS Soft Starter ES V16 (TIA Portal)	Affected: 0 , < * (custom)
Siemens	SIRIUS Soft Starter ES V17 (TIA Portal)	Affected: 0 , < V17 Update 5 (custom)
Siemens	TeleControl Server Basic V3	Affected: 0 , < V3.1.1 (custom)
Siemens	TIA Administrator	Affected: 0 , < V1.0.8 (custom)
Siemens	TIA Portal Cloud V16	Affected: 0 , < * (custom)
Siemens	TIA Portal Cloud V17	Affected: 0 , < V2.3 (custom)
Siemens	TIM 1531 IRC	Affected: 0 , < V2.4.8 (custom)
Siemens	SIMATIC S7-1500 CPU 1518-4 PN/DP MFP	Affected: V3.1.0 , < V3.1.5 (custom)
Siemens	SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP	Affected: V3.1.0 , < V3.1.5 (custom)
Siemens	SIPLUS S7-1500 CPU 1518-4 PN/DP MFP	Affected: V3.1.0 , < V3.1.5 (custom)

Date Public

2022-03-15 00:00

Credits

Tavis Ormandy (Google)

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T23:40:03.765Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://www.openssl.org/news/secadv/20220315.txt"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.openssl.org/gitweb/?p=openssl.git%3Ba=commitdiff%3Bh=a466912611aa6cbdf550cd10601390e587451246"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.openssl.org/gitweb/?p=openssl.git%3Ba=commitdiff%3Bh=3118eb64934499d93db3230748a452351d1d9a65"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.openssl.org/gitweb/?p=openssl.git%3Ba=commitdiff%3Bh=380085481c64de749a6dd25cdf0bcf4360b30f83"
          },
          {
            "name": "DSA-5103",
            "tags": [
              "vendor-advisory",
              "x_transferred"
            ],
            "url": "https://www.debian.org/security/2022/dsa-5103"
          },
          {
            "name": "[debian-lts-announce] 20220317 [SECURITY] [DLA 2952-1] openssl security update",
            "tags": [
              "mailing-list",
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2022/03/msg00023.html"
          },
          {
            "name": "[debian-lts-announce] 20220317 [SECURITY] [DLA 2953-1] openssl1.0 security update",
            "tags": [
              "mailing-list",
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2022/03/msg00024.html"
          },
          {
            "name": "FEDORA-2022-a5f51502f0",
            "tags": [
              "vendor-advisory",
              "x_transferred"
            ],
            "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GDB3GQVJPXJE7X5C5JN6JAA4XUDWD6E6/"
          },
          {
            "name": "FEDORA-2022-9e88b5d8d7",
            "tags": [
              "vendor-advisory",
              "x_transferred"
            ],
            "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/323SNN6ZX7PRJJWP2BUAFLPUAE42XWLZ/"
          },
          {
            "name": "FEDORA-2022-8bb51f6901",
            "tags": [
              "vendor-advisory",
              "x_transferred"
            ],
            "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/W6K3PR542DXWLEFFMFIDMME4CWMHJRMG/"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://www.oracle.com/security-alerts/cpuapr2022.html"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://security.netapp.com/advisory/ntap-20220321-0002/"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2022-0002"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://www.tenable.com/security/tns-2022-06"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://www.tenable.com/security/tns-2022-07"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://www.tenable.com/security/tns-2022-08"
          },
          {
            "name": "20220516 APPLE-SA-2022-05-16-4 Security Update 2022-004 Catalina",
            "tags": [
              "mailing-list",
              "x_transferred"
            ],
            "url": "http://seclists.org/fulldisclosure/2022/May/33"
          },
          {
            "name": "20220516 APPLE-SA-2022-05-16-3 macOS Big Sur 11.6.6",
            "tags": [
              "mailing-list",
              "x_transferred"
            ],
            "url": "http://seclists.org/fulldisclosure/2022/May/35"
          },
          {
            "name": "20220516 APPLE-SA-2022-05-16-2 macOS Monterey 12.4",
            "tags": [
              "mailing-list",
              "x_transferred"
            ],
            "url": "http://seclists.org/fulldisclosure/2022/May/38"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://www.oracle.com/security-alerts/cpujul2022.html"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT213257"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT213256"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT213255"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://www.tenable.com/security/tns-2022-09"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://security.netapp.com/advisory/ntap-20220429-0005/"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "http://packetstormsecurity.com/files/167344/OpenSSL-1.0.2-1.1.1-3.0-BN_mod_sqrt-Infinite-Loop.html"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-712929.pdf"
          },
          {
            "name": "GLSA-202210-02",
            "tags": [
              "vendor-advisory",
              "x_transferred"
            ],
            "url": "https://security.gentoo.org/glsa/202210-02"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://security.netapp.com/advisory/ntap-20240621-0006/"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "affected": [
          {
            "defaultStatus": "unknown",
            "product": "BFCClient",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V2.17",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "Industrial Edge - OPC UA Connector",
            "vendor": "Siemens",
            "versions": [
              {
                "status": "affected",
                "version": "All versions \u003c V1.7"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "Industrial Edge - SIMATIC S7 Connector App",
            "vendor": "Siemens",
            "versions": [
              {
                "status": "affected",
                "version": "All versions \u003c V1.7"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "OpenPCS 7 V8.2",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "*",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "OpenPCS 7 V9.0",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "*",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "OpenPCS 7 V9.1",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "*",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "RUGGEDCOM CROSSBOW Station Access Controller (SAC)",
            "vendor": "Siemens",
            "versions": [
              {
                "status": "affected",
                "version": "All versions only when running on ROX II \u003c V2.15.1"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "RUGGEDCOM RM1224 LTE(4G) EU",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V7.2",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "RUGGEDCOM RM1224 LTE(4G) NAM",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V7.2",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "RUGGEDCOM ROX MX5000",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V2.15.1",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "RUGGEDCOM ROX MX5000RE",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V2.15.1",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "RUGGEDCOM ROX RX1400",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V2.15.1",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "RUGGEDCOM ROX RX1500",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V2.15.1",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "RUGGEDCOM ROX RX1501",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V2.15.1",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "RUGGEDCOM ROX RX1510",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V2.15.1",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "RUGGEDCOM ROX RX1511",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V2.15.1",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "RUGGEDCOM ROX RX1512",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V2.15.1",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "RUGGEDCOM ROX RX1524",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V2.15.1",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "RUGGEDCOM ROX RX1536",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V2.15.1",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "RUGGEDCOM ROX RX5000",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V2.15.1",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE LPE9403",
            "vendor": "Siemens",
            "versions": [
              {
                "status": "affected",
                "version": "All versions \u003c V2.0"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE M804PB",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V7.2",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE M812-1 ADSL-Router",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V7.2",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE M812-1 ADSL-Router",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V7.2",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE M816-1 ADSL-Router",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V7.2",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE M816-1 ADSL-Router",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V7.2",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE M826-2 SHDSL-Router",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V7.2",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE M874-2",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V7.2",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE M874-3",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V7.2",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE M876-3",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V7.2",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE M876-3 (ROK)",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V7.2",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE M876-4",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V7.2",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE M876-4 (EU)",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V7.2",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE M876-4 (NAM)",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V7.2",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE MUM853-1 (EU)",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V7.2",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE MUM856-1 (EU)",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V7.2",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE MUM856-1 (RoW)",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V7.2",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE S615 EEC LAN-Router",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V7.2",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE S615 LAN-Router",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V7.2",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE SC622-2C",
            "vendor": "Siemens",
            "versions": [
              {
                "status": "affected",
                "version": "All versions \u003c V2.3.1"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE SC632-2C",
            "vendor": "Siemens",
            "versions": [
              {
                "status": "affected",
                "version": "All versions \u003c V2.3.1"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE SC636-2C",
            "vendor": "Siemens",
            "versions": [
              {
                "status": "affected",
                "version": "All versions \u003c V2.3.1"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE SC642-2C",
            "vendor": "Siemens",
            "versions": [
              {
                "status": "affected",
                "version": "All versions \u003c V2.3.1"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE SC646-2C",
            "vendor": "Siemens",
            "versions": [
              {
                "status": "affected",
                "version": "All versions \u003c V2.3.1"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE W1748-1 M12",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "*",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE W1748-1 M12",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "*",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE W1750D (JP)",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V8.7.1.11",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE W1750D (ROW)",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V8.7.1.11",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE W1750D (USA)",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V8.7.1.11",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE W1788-1 M12",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "*",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE W1788-2 EEC M12",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "*",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE W1788-2 M12",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "*",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE W1788-2IA M12",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "*",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE W721-1 RJ45",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V6.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE W721-1 RJ45",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V6.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE W721-1 RJ45",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V6.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE W721-1 RJ45",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V6.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE W722-1 RJ45",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V6.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE W722-1 RJ45",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V6.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE W722-1 RJ45",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V6.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE W722-1 RJ45",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V6.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE W722-1 RJ45",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V6.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE W722-1 RJ45",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V6.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE W734-1 RJ45",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V6.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE W734-1 RJ45",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V6.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE W734-1 RJ45",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V6.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE W734-1 RJ45",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V6.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE W734-1 RJ45",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V6.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE W734-1 RJ45",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V6.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE W734-1 RJ45 (USA)",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V6.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE W734-1 RJ45 (USA)",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V6.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE W738-1 M12",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V6.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE W738-1 M12",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V6.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE W738-1 M12",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V6.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE W738-1 M12",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V6.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE W748-1 M12",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V6.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE W748-1 M12",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V6.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE W748-1 M12",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V6.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE W748-1 M12",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V6.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE W748-1 RJ45",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V6.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE W748-1 RJ45",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V6.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE W748-1 RJ45",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V6.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE W748-1 RJ45",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V6.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE W761-1 RJ45",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V6.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE W761-1 RJ45",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V6.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE W761-1 RJ45",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V6.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE W761-1 RJ45",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V6.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE W774-1 M12 EEC",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V6.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE W774-1 M12 EEC",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V6.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE W774-1 M12 EEC",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V6.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE W774-1 M12 EEC",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V6.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE W774-1 RJ45",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V6.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE W774-1 RJ45",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V6.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE W774-1 RJ45",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V6.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE W774-1 RJ45",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V6.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE W774-1 RJ45",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V6.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE W774-1 RJ45",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V6.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE W774-1 RJ45",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V6.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE W774-1 RJ45",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V6.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE W774-1 RJ45 (USA)",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V6.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE W774-1 RJ45 (USA)",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V6.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE W778-1 M12",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V6.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE W778-1 M12",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V6.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE W778-1 M12",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V6.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE W778-1 M12",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V6.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE W778-1 M12 EEC",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V6.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE W778-1 M12 EEC",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V6.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE W778-1 M12 EEC (USA)",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V6.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE W778-1 M12 EEC (USA)",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V6.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE W786-1 RJ45",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V6.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE W786-1 RJ45",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V6.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE W786-1 RJ45",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V6.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE W786-1 RJ45",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V6.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE W786-2 RJ45",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V6.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE W786-2 RJ45",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V6.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE W786-2 RJ45",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V6.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE W786-2 RJ45",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V6.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE W786-2 RJ45",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V6.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE W786-2 RJ45",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V6.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE W786-2 SFP",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V6.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE W786-2 SFP",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V6.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE W786-2 SFP",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V6.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE W786-2 SFP",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V6.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE W786-2IA RJ45",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V6.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE W786-2IA RJ45",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V6.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE W786-2IA RJ45",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V6.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE W786-2IA RJ45",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V6.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE W788-1 M12",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V6.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE W788-1 M12",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V6.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE W788-1 M12",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V6.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE W788-1 M12",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V6.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE W788-1 RJ45",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V6.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE W788-1 RJ45",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V6.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE W788-1 RJ45",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V6.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE W788-1 RJ45",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V6.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE W788-2 M12",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V6.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE W788-2 M12",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V6.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE W788-2 M12",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V6.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE W788-2 M12",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V6.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE W788-2 M12 EEC",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V6.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE W788-2 M12 EEC",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V6.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE W788-2 M12 EEC",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V6.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE W788-2 M12 EEC",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V6.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE W788-2 M12 EEC",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V6.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE W788-2 M12 EEC",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V6.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE W788-2 RJ45",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V6.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE W788-2 RJ45",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V6.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE W788-2 RJ45",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V6.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE W788-2 RJ45",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V6.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE W788-2 RJ45",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V6.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE W788-2 RJ45",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V6.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE WAM763-1",
            "vendor": "Siemens",
            "versions": [
              {
                "status": "affected",
                "version": "All versions \u003c V2.0"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE WAM766-1",
            "vendor": "Siemens",
            "versions": [
              {
                "status": "affected",
                "version": "All versions \u003c V2.0"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE WAM766-1 (US)",
            "vendor": "Siemens",
            "versions": [
              {
                "status": "affected",
                "version": "All versions \u003c V2.0"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE WAM766-1 EEC",
            "vendor": "Siemens",
            "versions": [
              {
                "status": "affected",
                "version": "All versions \u003c V2.0"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE WAM766-1 EEC (US)",
            "vendor": "Siemens",
            "versions": [
              {
                "status": "affected",
                "version": "All versions \u003c V2.0"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE WUM763-1",
            "vendor": "Siemens",
            "versions": [
              {
                "status": "affected",
                "version": "All versions \u003c V2.0"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE WUM763-1",
            "vendor": "Siemens",
            "versions": [
              {
                "status": "affected",
                "version": "All versions \u003c V2.0"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE WUM766-1",
            "vendor": "Siemens",
            "versions": [
              {
                "status": "affected",
                "version": "All versions \u003c V2.0"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE WUM766-1 (USA)",
            "vendor": "Siemens",
            "versions": [
              {
                "status": "affected",
                "version": "All versions \u003c V2.0"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE X200-4P IRT",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V5.5.2",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE X201-3P IRT",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V5.5.2",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE X201-3P IRT PRO",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V5.5.2",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE X202-2IRT",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V5.5.2",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE X202-2IRT",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V5.5.2",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE X202-2P IRT",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V5.5.2",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE X202-2P IRT PRO",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V5.5.2",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE X204-2",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "*",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE X204-2FM",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "*",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE X204-2LD",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "*",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE X204-2LD TS",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "*",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE X204-2TS",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "*",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE X204IRT",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V5.5.2",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE X204IRT",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V5.5.2",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE X204IRT PRO",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V5.5.2",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE X206-1",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "*",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE X206-1LD",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "*",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE X208",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "*",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE X208PRO",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "*",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE X212-2",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "*",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE X212-2LD",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "*",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE X216",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "*",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE X224",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "*",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE X302-7 EEC (230V, coated)",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.1.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE X302-7 EEC (230V)",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.1.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE X302-7 EEC (24V, coated)",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.1.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE X302-7 EEC (24V)",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.1.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE X302-7 EEC (2x 230V, coated)",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.1.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE X302-7 EEC (2x 230V)",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.1.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE X302-7 EEC (2x 24V, coated)",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.1.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE X302-7 EEC (2x 24V)",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.1.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE X304-2FE",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.1.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE X306-1LD FE",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.1.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE X307-2 EEC (230V, coated)",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.1.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE X307-2 EEC (230V)",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.1.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE X307-2 EEC (24V, coated)",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.1.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE X307-2 EEC (24V)",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.1.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE X307-2 EEC (2x 230V, coated)",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.1.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE X307-2 EEC (2x 230V)",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.1.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE X307-2 EEC (2x 24V, coated)",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.1.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE X307-2 EEC (2x 24V)",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.1.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE X307-3",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.1.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE X307-3",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.1.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE X307-3LD",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.1.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE X307-3LD",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.1.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE X308-2",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.1.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE X308-2 RD (inkl. SIPLUS variants)",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.1.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE X308-2LD",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.1.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE X308-2LD",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.1.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE X308-2LH",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.1.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE X308-2LH",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.1.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE X308-2LH+",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.1.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE X308-2LH+",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.1.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE X308-2M",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.1.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE X308-2M",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.1.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE X308-2M PoE",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.1.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE X308-2M PoE",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.1.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE X308-2M TS",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.1.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE X308-2M TS",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.1.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE X310",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.1.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE X310",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.1.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE X310FE",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.1.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE X310FE",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.1.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE X320-1 FE",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.1.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE X320-1-2LD FE",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.1.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE X408-2",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.1.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XB205-3 (SC, PN)",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.4",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XB205-3 (ST, E/IP)",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.4",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XB205-3 (ST, E/IP)",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.4",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XB205-3 (ST, PN)",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.4",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XB205-3LD (SC, E/IP)",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.4",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XB205-3LD (SC, PN)",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.4",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XB208 (E/IP)",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.4",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XB208 (PN)",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.4",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XB213-3 (SC, E/IP)",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.4",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XB213-3 (SC, PN)",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.4",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XB213-3 (ST, E/IP)",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.4",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XB213-3 (ST, PN)",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.4",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XB213-3LD (SC, E/IP)",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.4",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XB213-3LD (SC, PN)",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.4",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XB216 (E/IP)",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.4",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XB216 (PN)",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.4",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XC206-2 (SC)",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.4",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XC206-2 (ST/BFOC)",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.4",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XC206-2G PoE",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.4",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XC206-2G PoE (54 V DC)",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.4",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XC206-2G PoE EEC (54 V DC)",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.4",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XC206-2SFP",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.4",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XC206-2SFP EEC",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.4",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XC206-2SFP G",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.4",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XC206-2SFP G (EIP DEF.)",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.4",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XC206-2SFP G EEC",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.4",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XC208",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.4",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XC208EEC",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.4",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XC208G",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.4",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XC208G (EIP def.)",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.4",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XC208G EEC",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.4",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XC208G PoE",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.4",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XC208G PoE (54 V DC)",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.4",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XC216",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.4",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XC216-3G PoE",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.4",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XC216-3G PoE (54 V DC)",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.4",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XC216-4C",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.4",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XC216-4C G",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.4",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XC216-4C G (EIP Def.)",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.4",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XC216-4C G EEC",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.4",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XC216EEC",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.4",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XC224",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.4",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XC224-4C G",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.4",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XC224-4C G (EIP Def.)",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.4",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XC224-4C G EEC",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.4",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XF201-3P IRT",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V5.5.2",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XF202-2P IRT",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V5.5.2",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XF204",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "*",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XF204",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.4",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XF204 DNA",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.4",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XF204-2",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "*",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XF204-2BA",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.4",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XF204-2BA DNA",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.4",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XF204-2BA IRT",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V5.5.2",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XF204IRT",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V5.5.2",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XF206-1",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "*",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XF208",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "*",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XM408-4C",
            "vendor": "Siemens",
            "versions": [
              {
                "status": "affected",
                "version": "All versions \u003c V6.5"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XM408-4C (L3 int.)",
            "vendor": "Siemens",
            "versions": [
              {
                "status": "affected",
                "version": "All versions \u003c V6.5"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XM408-8C",
            "vendor": "Siemens",
            "versions": [
              {
                "status": "affected",
                "version": "All versions \u003c V6.5"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XM408-8C (L3 int.)",
            "vendor": "Siemens",
            "versions": [
              {
                "status": "affected",
                "version": "All versions \u003c V6.5"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XM416-4C",
            "vendor": "Siemens",
            "versions": [
              {
                "status": "affected",
                "version": "All versions \u003c V6.5"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XM416-4C (L3 int.)",
            "vendor": "Siemens",
            "versions": [
              {
                "status": "affected",
                "version": "All versions \u003c V6.5"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XP208",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.4",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XP208 (Ethernet/IP)",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.4",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XP208EEC",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.4",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XP208PoE EEC",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.4",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XP216",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.4",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XP216 (Ethernet/IP)",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.4",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XP216EEC",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.4",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XP216POE EEC",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.4",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XR324-12M (230V, ports on front)",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.1.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XR324-12M (230V, ports on front)",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.1.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XR324-12M (230V, ports on rear)",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.1.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XR324-12M (230V, ports on rear)",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.1.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XR324-12M (24V, ports on front)",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.1.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XR324-12M (24V, ports on front)",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.1.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XR324-12M (24V, ports on rear)",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.1.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XR324-12M (24V, ports on rear)",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.1.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XR324-12M TS (24V)",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.1.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XR324-12M TS (24V)",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.1.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XR324-4M EEC (100-240VAC/60-250VDC, ports on front)",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.1.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XR324-4M EEC (100-240VAC/60-250VDC, ports on front)",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.1.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XR324-4M EEC (100-240VAC/60-250VDC, ports on rear)",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.1.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XR324-4M EEC (100-240VAC/60-250VDC, ports on rear)",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.1.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XR324-4M EEC (24V, ports on front)",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.1.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XR324-4M EEC (24V, ports on front)",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.1.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XR324-4M EEC (24V, ports on rear)",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.1.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XR324-4M EEC (24V, ports on rear)",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.1.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XR324-4M EEC (2x 100-240VAC/60-250VDC, ports on front)",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.1.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XR324-4M EEC (2x 100-240VAC/60-250VDC, ports on front)",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.1.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XR324-4M EEC (2x 100-240VAC/60-250VDC, ports on rear)",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.1.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XR324-4M EEC (2x 100-240VAC/60-250VDC, ports on rear)",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.1.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XR324-4M EEC (2x 24V, ports on front)",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.1.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XR324-4M EEC (2x 24V, ports on front)",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.1.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XR324-4M EEC (2x 24V, ports on rear)",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.1.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XR324-4M EEC (2x 24V, ports on rear)",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.1.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XR324-4M PoE (230V, ports on front)",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.1.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XR324-4M PoE (230V, ports on front)",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.1.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XR324-4M PoE (230V, ports on rear)",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.1.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XR324-4M PoE (230V, ports on rear)",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.1.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XR324-4M PoE (24V, ports on front)",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.1.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XR324-4M PoE (24V, ports on front)",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.1.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XR324-4M PoE (24V, ports on rear)",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.1.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XR324-4M PoE (24V, ports on rear)",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.1.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XR324-4M PoE TS (24V, ports on front)",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.1.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XR324-4M PoE TS (24V, ports on front)",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.1.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XR324WG (24 x FE, AC 230V)",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.4",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XR324WG (24 X FE, DC 24V)",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.4",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XR326-2C PoE WG",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.4",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XR326-2C PoE WG (without UL)",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.4",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XR328-4C WG (24XFE, 4XGE, 24V)",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.4",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XR328-4C WG (24xFE, 4xGE,DC24V)",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.4",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XR328-4C WG (24xFE,4xGE,AC230V)",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.4",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XR328-4C WG (24xFE,4xGE,AC230V)",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.4",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XR328-4C WG (28xGE, AC 230V)",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.4",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XR328-4C WG (28xGE, DC 24V)",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.4",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XR524-8C, 1x230V",
            "vendor": "Siemens",
            "versions": [
              {
                "status": "affected",
                "version": "All versions \u003c V6.5"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XR524-8C, 1x230V (L3 int.)",
            "vendor": "Siemens",
            "versions": [
              {
                "status": "affected",
                "version": "All versions \u003c V6.5"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XR524-8C, 24V",
            "vendor": "Siemens",
            "versions": [
              {
                "status": "affected",
                "version": "All versions \u003c V6.5"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XR524-8C, 24V (L3 int.)",
            "vendor": "Siemens",
            "versions": [
              {
                "status": "affected",
                "version": "All versions \u003c V6.5"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XR524-8C, 2x230V",
            "vendor": "Siemens",
            "versions": [
              {
                "status": "affected",
                "version": "All versions \u003c V6.5"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XR524-8C, 2x230V (L3 int.)",
            "vendor": "Siemens",
            "versions": [
              {
                "status": "affected",
                "version": "All versions \u003c V6.5"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XR526-8C, 1x230V",
            "vendor": "Siemens",
            "versions": [
              {
                "status": "affected",
                "version": "All versions \u003c V6.5"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XR526-8C, 1x230V (L3 int.)",
            "vendor": "Siemens",
            "versions": [
              {
                "status": "affected",
                "version": "All versions \u003c V6.5"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XR526-8C, 24V",
            "vendor": "Siemens",
            "versions": [
              {
                "status": "affected",
                "version": "All versions \u003c V6.5"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XR526-8C, 24V (L3 int.)",
            "vendor": "Siemens",
            "versions": [
              {
                "status": "affected",
                "version": "All versions \u003c V6.5"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XR526-8C, 2x230V",
            "vendor": "Siemens",
            "versions": [
              {
                "status": "affected",
                "version": "All versions \u003c V6.5"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XR526-8C, 2x230V (L3 int.)",
            "vendor": "Siemens",
            "versions": [
              {
                "status": "affected",
                "version": "All versions \u003c V6.5"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XR528-6M",
            "vendor": "Siemens",
            "versions": [
              {
                "status": "affected",
                "version": "All versions \u003c V6.5"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XR528-6M (2HR2, L3 int.)",
            "vendor": "Siemens",
            "versions": [
              {
                "status": "affected",
                "version": "All versions \u003c V6.5"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XR528-6M (2HR2)",
            "vendor": "Siemens",
            "versions": [
              {
                "status": "affected",
                "version": "All versions \u003c V6.5"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XR528-6M (L3 int.)",
            "vendor": "Siemens",
            "versions": [
              {
                "status": "affected",
                "version": "All versions \u003c V6.5"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XR552-12M",
            "vendor": "Siemens",
            "versions": [
              {
                "status": "affected",
                "version": "All versions \u003c V6.5"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XR552-12M (2HR2, L3 int.)",
            "vendor": "Siemens",
            "versions": [
              {
                "status": "affected",
                "version": "All versions \u003c V6.5"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XR552-12M (2HR2)",
            "vendor": "Siemens",
            "versions": [
              {
                "status": "affected",
                "version": "All versions \u003c V6.5"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SCALANCE XR552-12M (2HR2)",
            "vendor": "Siemens",
            "versions": [
              {
                "status": "affected",
                "version": "All versions \u003c V6.5"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "Security Configuration Tool (SCT)",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "*",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC Cloud Connect 7 CC712",
            "vendor": "Siemens",
            "versions": [
              {
                "status": "affected",
                "version": "All versions \u003c V1.9"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC Cloud Connect 7 CC716",
            "vendor": "Siemens",
            "versions": [
              {
                "status": "affected",
                "version": "All versions \u003c V1.9"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC CP 1242-7 V2",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V3.4.29",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC CP 1243-1",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V3.4.29",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC CP 1243-7 LTE EU",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V3.4.29",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC CP 1243-7 LTE US",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V3.4.29",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC CP 1243-8 IRC",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V3.4.29",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC CP 1542SP-1",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V2.2.28",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC CP 1543-1",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V3.0.37",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC CP 1543SP-1",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V2.2.28",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC CP 1545-1",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V1.1.80",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC CP 1626",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "*",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC CP 1628",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "*",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC CP 343-1 Advanced",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "*",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC CP 443-1 Advanced",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V3.3.11",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC CP 443-1 OPC UA",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "*",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC Drive Controller CPU 1504D TF",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V2.9.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC Drive Controller CPU 1507D TF",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V2.9.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC ET 200SP CPU 1510SP F-1 PN",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "*",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC ET 200SP CPU 1510SP F-1 PN",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V2.9.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC ET 200SP CPU 1510SP-1 PN",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "*",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC ET 200SP CPU 1510SP-1 PN",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V2.9.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC ET 200SP CPU 1512SP F-1 PN",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "*",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC ET 200SP CPU 1512SP F-1 PN",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V2.9.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC ET 200SP CPU 1512SP-1 PN",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "*",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC ET 200SP CPU 1512SP-1 PN",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V2.9.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants)",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V21.9.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC HMI Unified Comfort Panels family",
            "vendor": "Siemens",
            "versions": [
              {
                "status": "affected",
                "version": "All versions \u003c V18"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC Logon V1.6",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V1.6 Upd6",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC MV540 H",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V3.3",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC MV540 S",
            "vendor": "Siemens",
            "versions": [
              {
                "status": "affected",
                "version": "All versions \u003c V3.3"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC MV550 H",
            "vendor": "Siemens",
            "versions": [
              {
                "status": "affected",
                "version": "All versions \u003c V3.3"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC MV550 S",
            "vendor": "Siemens",
            "versions": [
              {
                "status": "affected",
                "version": "All versions \u003c V3.3"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC MV560 U",
            "vendor": "Siemens",
            "versions": [
              {
                "status": "affected",
                "version": "All versions \u003c V3.3"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC MV560 X",
            "vendor": "Siemens",
            "versions": [
              {
                "status": "affected",
                "version": "All versions \u003c V3.3"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC NET PC Software V14",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "*",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC NET PC Software V15",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "*",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC NET PC Software V16",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V16 Update 6",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC NET PC Software V17",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V17 SP1 Update 1",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC PCS 7 TeleControl",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V9.1 Update 1",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC PCS 7 V8.2",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "*",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC PCS 7 V9.0",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "*",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC PCS 7 V9.1",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V9.1 SP2 UC04",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC PCS neo (Administration Console)",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC PDM",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V9.2 SP2",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC Process Historian OPC UA Server",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V2020 SP1 Update 1",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC RF166C",
            "vendor": "Siemens",
            "versions": [
              {
                "status": "affected",
                "version": "All versions \u003c V2.0.1"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC RF185C",
            "vendor": "Siemens",
            "versions": [
              {
                "status": "affected",
                "version": "All versions \u003c V2.0.1"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC RF186C",
            "vendor": "Siemens",
            "versions": [
              {
                "status": "affected",
                "version": "All versions \u003c V2.0.1"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC RF186CI",
            "vendor": "Siemens",
            "versions": [
              {
                "status": "affected",
                "version": "All versions \u003c V2.0.1"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC RF188C",
            "vendor": "Siemens",
            "versions": [
              {
                "status": "affected",
                "version": "All versions \u003c V2.0.1"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC RF188CI",
            "vendor": "Siemens",
            "versions": [
              {
                "status": "affected",
                "version": "All versions \u003c V2.0.1"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC RF360R",
            "vendor": "Siemens",
            "versions": [
              {
                "status": "affected",
                "version": "All versions \u003c V2.0.1"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC RF610R",
            "vendor": "Siemens",
            "versions": [
              {
                "status": "affected",
                "version": "All versions \u003c V4.0.1"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC RF615R",
            "vendor": "Siemens",
            "versions": [
              {
                "status": "affected",
                "version": "All versions \u003c V4.0.1"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC RF650R",
            "vendor": "Siemens",
            "versions": [
              {
                "status": "affected",
                "version": "All versions \u003c V4.0.1"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC RF680R",
            "vendor": "Siemens",
            "versions": [
              {
                "status": "affected",
                "version": "All versions \u003c V4.0.1"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC RF685R",
            "vendor": "Siemens",
            "versions": [
              {
                "status": "affected",
                "version": "All versions \u003c V4.0.1"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC S7-1200 CPU 1211C AC/DC/Rly",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC S7-1200 CPU 1211C DC/DC/DC",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC S7-1200 CPU 1211C DC/DC/Rly",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC S7-1200 CPU 1212C AC/DC/Rly",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC S7-1200 CPU 1212C DC/DC/DC",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC S7-1200 CPU 1212C DC/DC/Rly",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC S7-1200 CPU 1212FC DC/DC/DC",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC S7-1200 CPU 1212FC DC/DC/Rly",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC S7-1200 CPU 1214C AC/DC/Rly",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC S7-1200 CPU 1214C DC/DC/DC",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC S7-1200 CPU 1214C DC/DC/Rly",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC S7-1200 CPU 1214FC DC/DC/DC",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC S7-1200 CPU 1214FC DC/DC/Rly",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC S7-1200 CPU 1215C AC/DC/Rly",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC S7-1200 CPU 1215C DC/DC/DC",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC S7-1200 CPU 1215C DC/DC/Rly",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC S7-1200 CPU 1215FC DC/DC/DC",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC S7-1200 CPU 1215FC DC/DC/Rly",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC S7-1200 CPU 1217C DC/DC/DC",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC S7-1500 CPU 1511-1 PN",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "*",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC S7-1500 CPU 1511-1 PN",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V2.9.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC S7-1500 CPU 1511-1 PN",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V2.9.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC S7-1500 CPU 1511C-1 PN",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V2.9.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC S7-1500 CPU 1511C-1 PN",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V2.9.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC S7-1500 CPU 1511F-1 PN",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "*",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC S7-1500 CPU 1511F-1 PN",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V2.9.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC S7-1500 CPU 1511F-1 PN",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V2.9.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC S7-1500 CPU 1511T-1 PN",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V2.9.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC S7-1500 CPU 1511TF-1 PN",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V2.9.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC S7-1500 CPU 1512C-1 PN",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V2.9.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC S7-1500 CPU 1512C-1 PN",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V2.9.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC S7-1500 CPU 1513-1 PN",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "*",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC S7-1500 CPU 1513-1 PN",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V2.9.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC S7-1500 CPU 1513-1 PN",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V2.9.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC S7-1500 CPU 1513F-1 PN",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "*",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC S7-1500 CPU 1513F-1 PN",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V2.9.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC S7-1500 CPU 1513F-1 PN",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V2.9.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC S7-1500 CPU 1513R-1 PN",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V2.9.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC S7-1500 CPU 1515-2 PN",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "*",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC S7-1500 CPU 1515-2 PN",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V2.9.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC S7-1500 CPU 1515-2 PN",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V2.9.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC S7-1500 CPU 1515F-2 PN",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "*",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC S7-1500 CPU 1515F-2 PN",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V2.9.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC S7-1500 CPU 1515F-2 PN",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V2.9.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC S7-1500 CPU 1515R-2 PN",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V2.9.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC S7-1500 CPU 1515T-2 PN",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V2.9.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC S7-1500 CPU 1515TF-2 PN",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V2.9.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC S7-1500 CPU 1516-3 PN/DP",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "*",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC S7-1500 CPU 1516-3 PN/DP",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V2.9.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC S7-1500 CPU 1516-3 PN/DP",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V2.9.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC S7-1500 CPU 1516F-3 PN/DP",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "*",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC S7-1500 CPU 1516F-3 PN/DP",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V2.9.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC S7-1500 CPU 1516F-3 PN/DP",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V2.9.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC S7-1500 CPU 1516T-3 PN/DP",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V3.0.1",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC S7-1500 CPU 1516TF-3 PN/DP",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V3.0.1",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC S7-1500 CPU 1517-3 PN/DP",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V3.0.1",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC S7-1500 CPU 1517F-3 PN/DP",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V3.0.1",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC S7-1500 CPU 1517H-3 PN",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V3.0.1",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC S7-1500 CPU 1517T-3 PN/DP",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V3.0.1",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC S7-1500 CPU 1517TF-3 PN/DP",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V3.0.1",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC S7-1500 CPU 1518-4 PN/DP",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V3.0.1",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC S7-1500 CPU 1518-4 PN/DP MFP",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V3.0.1",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC S7-1500 CPU 1518F-4 PN/DP",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V3.0.1",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V3.0.1",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC S7-1500 CPU 1518HF-4 PN",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V3.0.1",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC S7-1500 CPU 1518T-4 PN/DP",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V3.0.1",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC S7-1500 CPU 1518TF-4 PN/DP",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V3.0.1",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC S7-1500 CPU S7-1518-4 PN/DP ODK",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V2.9.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC S7-1500 CPU S7-1518F-4 PN/DP ODK",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V2.9.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC S7-1500 ET 200pro: CPU 1513PRO F-2 PN",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V2.9.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC S7-1500 ET 200pro: CPU 1513PRO-2 PN",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V2.9.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC S7-1500 ET 200pro: CPU 1516PRO F-2 PN",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V2.9.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC S7-1500 ET 200pro: CPU 1516PRO-2 PN",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V2.9.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC S7-1500 Software Controller V2",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V21.9.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC S7-PLCSIM Advanced",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V5.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC STEP 7 V15.1",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "*",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC STEP 7 V16",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "*",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC STEP 7 V17",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V17 Update 5",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC STEP 7 V5",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V5.7 HF4",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC WinCC Unified (TIA Portal)",
            "vendor": "Siemens",
            "versions": [
              {
                "status": "affected",
                "version": "All versions \u003c V17 Update 5"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC WinCC V15.1",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "*",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC WinCC V16",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "*",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC WinCC V17",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V17 Update 5",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC WinCC V7.3",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "*",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC WinCC V7.4",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V7.4 SP1 Update 22",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC WinCC V7.5",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V7.5 SP2 Update 16",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMOCODE ES V15.1",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "*",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMOCODE ES V16",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "*",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMOCODE ES V17",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V17 Update 5",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMOTION",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V5.5.1",
                "status": "affected",
                "version": "V5.1",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMOTION SCOUT TIA V5.3",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "*",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMOTION SCOUT TIA V5.4",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "*",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SINAMICS DCC V15.1",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "*",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SINAMICS DCC V16",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "*",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SINAMICS Startdrive V15.1",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "*",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SINAMICS Startdrive V16",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "*",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SINAMICS Startdrive V17",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "*",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SINAUT Software ST7sc",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "*",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SINAUT ST7CC",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "*",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SINEC INS",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V1.0 SP2",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SINEC NMS",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V1.0 SP3",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SINEMA Remote Connect Server",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V3.1",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIPLUS ET 200SP CP 1543SP-1 ISEC",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V2.2.28",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIPLUS ET 200SP CP 1543SP-1 ISEC TX RAIL",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V2.2.28",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIPLUS ET 200SP CPU 1510SP F-1 PN",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V2.9.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIPLUS ET 200SP CPU 1510SP F-1 PN RAIL",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V2.9.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIPLUS ET 200SP CPU 1510SP-1 PN",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V2.9.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIPLUS ET 200SP CPU 1510SP-1 PN",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V2.9.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIPLUS ET 200SP CPU 1510SP-1 PN RAIL",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V2.9.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIPLUS ET 200SP CPU 1510SP-1 PN RAIL",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V2.9.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIPLUS ET 200SP CPU 1512SP F-1 PN",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "*",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIPLUS ET 200SP CPU 1512SP F-1 PN",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V2.9.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIPLUS ET 200SP CPU 1512SP F-1 PN",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V2.9.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIPLUS ET 200SP CPU 1512SP F-1 PN RAIL",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V2.9.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIPLUS ET 200SP CPU 1512SP F-1 PN RAIL",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V2.9.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIPLUS ET 200SP CPU 1512SP-1 PN",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V2.9.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIPLUS ET 200SP CPU 1512SP-1 PN",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V2.9.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIPLUS ET 200SP CPU 1512SP-1 PN RAIL",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V2.9.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIPLUS ET 200SP CPU 1512SP-1 PN RAIL",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V2.9.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIPLUS NET CP 1242-7 V2",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V3.4.29",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIPLUS NET CP 1543-1",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V3.0.37",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIPLUS NET CP 343-1 Advanced",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "*",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIPLUS NET CP 443-1 Advanced",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V3.3.11",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIPLUS NET SCALANCE X202-2P IRT",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V5.5.2",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIPLUS NET SCALANCE XC206-2",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.4",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIPLUS NET SCALANCE XC206-2SFP",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.4",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIPLUS NET SCALANCE XC208",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.4",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIPLUS NET SCALANCE XC216-4C",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.4",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIPLUS S7-1200 CP 1243-1",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V3.4.29",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIPLUS S7-1200 CP 1243-1 RAIL",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V3.4.29",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIPLUS S7-1200 CPU 1212 AC/DC/RLY",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIPLUS S7-1200 CPU 1212 DC/DC/RLY",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIPLUS S7-1200 CPU 1212 DC/DC/RLY",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIPLUS S7-1200 CPU 1212C AC/DC/RLY",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIPLUS S7-1200 CPU 1212C DC/DC/DC",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIPLUS S7-1200 CPU 1212C DC/DC/DC",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIPLUS S7-1200 CPU 1212C DC/DC/DC RAIL",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIPLUS S7-1200 CPU 1214 AC/DC/RLY",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIPLUS S7-1200 CPU 1214 DC/DC/RLY",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIPLUS S7-1200 CPU 1214C AC/DC/RLY",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIPLUS S7-1200 CPU 1214C AC/DC/RLY",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIPLUS S7-1200 CPU 1214C DC/DC/DC",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIPLUS S7-1200 CPU 1214C DC/DC/DC",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIPLUS S7-1200 CPU 1214C DC/DC/DC",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIPLUS S7-1200 CPU 1214C DC/DC/DC RAIL",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIPLUS S7-1200 CPU 1214C DC/DC/RLY",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIPLUS S7-1200 CPU 1214C DC/DC/RLY",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIPLUS S7-1200 CPU 1214FC DC/DC/DC",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIPLUS S7-1200 CPU 1214FC DC/DC/RLY",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIPLUS S7-1200 CPU 1215 AC/DC/RLY",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIPLUS S7-1200 CPU 1215 AC/DC/RLY",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIPLUS S7-1200 CPU 1215 DC/DC/DC",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIPLUS S7-1200 CPU 1215 DC/DC/DC",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIPLUS S7-1200 CPU 1215 DC/DC/RLY",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIPLUS S7-1200 CPU 1215 DC/DC/RLY",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIPLUS S7-1200 CPU 1215 DC/DC/RLY",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIPLUS S7-1200 CPU 1215C AC/DC/RLY",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIPLUS S7-1200 CPU 1215C DC/DC/DC",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIPLUS S7-1200 CPU 1215FC DC/DC/DC",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V4.6.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIPLUS S7-1500 CPU 1511-1 PN",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "*",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIPLUS S7-1500 CPU 1511-1 PN",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V2.9.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIPLUS S7-1500 CPU 1511-1 PN",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V2.9.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIPLUS S7-1500 CPU 1511-1 PN",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V2.9.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIPLUS S7-1500 CPU 1511-1 PN",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V2.9.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIPLUS S7-1500 CPU 1511-1 PN T1 RAIL",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V2.9.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIPLUS S7-1500 CPU 1511-1 PN T1 RAIL",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V2.9.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIPLUS S7-1500 CPU 1511-1 PN TX RAIL",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V2.9.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIPLUS S7-1500 CPU 1511-1 PN TX RAIL",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V2.9.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIPLUS S7-1500 CPU 1511F-1 PN",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "*",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIPLUS S7-1500 CPU 1511F-1 PN",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V2.9.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIPLUS S7-1500 CPU 1511F-1 PN",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V2.9.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIPLUS S7-1500 CPU 1513-1 PN",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "*",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIPLUS S7-1500 CPU 1513-1 PN",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V2.9.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIPLUS S7-1500 CPU 1513-1 PN",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V2.9.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIPLUS S7-1500 CPU 1513-1 PN",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V2.9.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIPLUS S7-1500 CPU 1513-1 PN",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V2.9.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIPLUS S7-1500 CPU 1513F-1 PN",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "*",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIPLUS S7-1500 CPU 1513F-1 PN",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V2.9.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIPLUS S7-1500 CPU 1513F-1 PN",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V2.9.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIPLUS S7-1500 CPU 1515F-2 PN",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V2.9.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIPLUS S7-1500 CPU 1515F-2 PN",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V2.9.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIPLUS S7-1500 CPU 1515F-2 PN RAIL",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V2.9.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIPLUS S7-1500 CPU 1515F-2 PN T2 RAIL",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V2.9.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIPLUS S7-1500 CPU 1515R-2 PN",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V2.9.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIPLUS S7-1500 CPU 1515R-2 PN TX RAIL",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V2.9.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIPLUS S7-1500 CPU 1516-3 PN/DP",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "*",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIPLUS S7-1500 CPU 1516-3 PN/DP",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "*",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIPLUS S7-1500 CPU 1516-3 PN/DP",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V2.9.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIPLUS S7-1500 CPU 1516-3 PN/DP",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V2.9.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIPLUS S7-1500 CPU 1516-3 PN/DP",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V2.9.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIPLUS S7-1500 CPU 1516-3 PN/DP",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V2.9.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIPLUS S7-1500 CPU 1516-3 PN/DP RAIL",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V2.9.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIPLUS S7-1500 CPU 1516-3 PN/DP TX RAIL",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V2.9.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIPLUS S7-1500 CPU 1516F-3 PN/DP",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "*",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIPLUS S7-1500 CPU 1516F-3 PN/DP",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V2.9.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIPLUS S7-1500 CPU 1516F-3 PN/DP",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V2.9.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIPLUS S7-1500 CPU 1516F-3 PN/DP RAIL",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V2.9.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIPLUS S7-1500 CPU 1516F-3 PN/DP RAIL",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V2.9.7",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIPLUS S7-1500 CPU 1517H-3 PN",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V3.0.1",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIPLUS S7-1500 CPU 1518-4 PN/DP",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V3.0.1",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIPLUS S7-1500 CPU 1518-4 PN/DP MFP",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V3.0.1",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIPLUS S7-1500 CPU 1518F-4 PN/DP",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V3.0.1",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIPLUS S7-1500 CPU 1518HF-4 PN",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V3.0.1",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIPLUS TIM 1531 IRC",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V2.4.8",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIRIUS Safety ES V17 (TIA Portal)",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V17 Update 5",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIRIUS Soft Starter ES V15.1 (TIA Portal)",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "*",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIRIUS Soft Starter ES V16 (TIA Portal)",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "*",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIRIUS Soft Starter ES V17 (TIA Portal)",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V17 Update 5",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "TeleControl Server Basic V3",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V3.1.1",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "TIA Administrator",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V1.0.8",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "TIA Portal Cloud V16",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "*",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "TIA Portal Cloud V17",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V2.3",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "TIM 1531 IRC",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V2.4.8",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC S7-1500 CPU 1518-4 PN/DP MFP",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V3.1.5",
                "status": "affected",
                "version": "V3.1.0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC S7-1500 CPU 1518-4 PN/DP MFP",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V3.1.5",
                "status": "affected",
                "version": "V3.1.0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V3.1.5",
                "status": "affected",
                "version": "V3.1.0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V3.1.5",
                "status": "affected",
                "version": "V3.1.0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SIPLUS S7-1500 CPU 1518-4 PN/DP MFP",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V3.1.5",
                "status": "affected",
                "version": "V3.1.0",
                "versionType": "custom"
              }
            ]
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2026-04-14T08:58:00.706Z",
          "orgId": "0b142b55-0307-4c5a-b3c9-f314f3fb7c5e",
          "shortName": "siemens-SADP"
        },
        "references": [
          {
            "url": "https://cert-portal.siemens.com/productcert/html/ssa-712929.html"
          },
          {
            "url": "https://cert-portal.siemens.com/productcert/html/ssa-398330.html"
          },
          {
            "url": "https://cert-portal.siemens.com/productcert/html/ssa-108696.html"
          },
          {
            "url": "https://cert-portal.siemens.com/productcert/html/ssa-028723.html"
          },
          {
            "url": "https://cert-portal.siemens.com/productcert/html/ssa-019200.html"
          }
        ],
        "x_adpType": "supplier"
      },
      {
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "LOW",
              "attackVector": "NETWORK",
              "availabilityImpact": "HIGH",
              "baseScore": 7.5,
              "baseSeverity": "HIGH",
              "confidentialityImpact": "NONE",
              "integrityImpact": "NONE",
              "privilegesRequired": "NONE",
              "scope": "UNCHANGED",
              "userInteraction": "NONE",
              "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2022-0778",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "yes"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2026-05-22T13:27:14.476267Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "problemTypes": [
          {
            "descriptions": [
              {
                "cweId": "CWE-835",
                "description": "CWE-835 Loop with Unreachable Exit Condition (\u0027Infinite Loop\u0027)",
                "lang": "en",
                "type": "CWE"
              }
            ]
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2026-05-22T13:28:08.544Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "OpenSSL",
          "vendor": "OpenSSL",
          "versions": [
            {
              "status": "affected",
              "version": "Fixed in OpenSSL 3.0.2 (Affected 3.0.0,3.0.1)"
            },
            {
              "status": "affected",
              "version": "Fixed in OpenSSL 1.1.1n (Affected 1.1.1-1.1.1m)"
            },
            {
              "status": "affected",
              "version": "Fixed in OpenSSL 1.0.2zd (Affected 1.0.2-1.0.2zc)"
            }
          ]
        }
      ],
      "credits": [
        {
          "lang": "en",
          "value": "Tavis Ormandy (Google)"
        }
      ],
      "datePublic": "2022-03-15T00:00:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "value": "The BN_mod_sqrt() function, which computes a modular square root, contains a bug that can cause it to loop forever for non-prime moduli. Internally this function is used when parsing certificates that contain elliptic curve public keys in compressed form or explicit elliptic curve parameters with a base point encoded in compressed form. It is possible to trigger the infinite loop by crafting a certificate that has invalid explicit curve parameters. Since certificate parsing happens prior to verification of the certificate signature, any process that parses an externally supplied certificate may thus be subject to a denial of service attack. The infinite loop can also be reached when parsing crafted private keys as they can contain explicit elliptic curve parameters. Thus vulnerable situations include: - TLS clients consuming server certificates - TLS servers consuming client certificates - Hosting providers taking certificates or private keys from customers - Certificate authorities parsing certification requests from subscribers - Anything else which parses ASN.1 elliptic curve parameters Also any other applications that use the BN_mod_sqrt() where the attacker can control the parameter values are vulnerable to this DoS issue. In the OpenSSL 1.0.2 version the public key is not parsed during initial parsing of the certificate which makes it slightly harder to trigger the infinite loop. However any operation which requires the public key from the certificate will trigger the infinite loop. In particular the attacker can use a self-signed certificate to trigger the loop during verification of the certificate signature. This issue affects OpenSSL versions 1.0.2, 1.1.1 and 3.0. It was addressed in the releases of 1.1.1n and 3.0.2 on the 15th March 2022. Fixed in OpenSSL 3.0.2 (Affected 3.0.0,3.0.1). Fixed in OpenSSL 1.1.1n (Affected 1.1.1-1.1.1m). Fixed in OpenSSL 1.0.2zd (Affected 1.0.2-1.0.2zc)."
        }
      ],
      "metrics": [
        {
          "other": {
            "content": {
              "lang": "eng",
              "url": "https://www.openssl.org/policies/secpolicy.html#High",
              "value": "High"
            },
            "type": "unknown"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "Infinite loop",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2024-06-21T19:07:01.186Z",
        "orgId": "3a12439a-ef3a-4c79-92e6-6081a721f1e5",
        "shortName": "openssl"
      },
      "references": [
        {
          "url": "https://www.openssl.org/news/secadv/20220315.txt"
        },
        {
          "url": "https://git.openssl.org/gitweb/?p=openssl.git%3Ba=commitdiff%3Bh=a466912611aa6cbdf550cd10601390e587451246"
        },
        {
          "url": "https://git.openssl.org/gitweb/?p=openssl.git%3Ba=commitdiff%3Bh=3118eb64934499d93db3230748a452351d1d9a65"
        },
        {
          "url": "https://git.openssl.org/gitweb/?p=openssl.git%3Ba=commitdiff%3Bh=380085481c64de749a6dd25cdf0bcf4360b30f83"
        },
        {
          "name": "DSA-5103",
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://www.debian.org/security/2022/dsa-5103"
        },
        {
          "name": "[debian-lts-announce] 20220317 [SECURITY] [DLA 2952-1] openssl security update",
          "tags": [
            "mailing-list"
          ],
          "url": "https://lists.debian.org/debian-lts-announce/2022/03/msg00023.html"
        },
        {
          "name": "[debian-lts-announce] 20220317 [SECURITY] [DLA 2953-1] openssl1.0 security update",
          "tags": [
            "mailing-list"
          ],
          "url": "https://lists.debian.org/debian-lts-announce/2022/03/msg00024.html"
        },
        {
          "name": "FEDORA-2022-a5f51502f0",
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GDB3GQVJPXJE7X5C5JN6JAA4XUDWD6E6/"
        },
        {
          "name": "FEDORA-2022-9e88b5d8d7",
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/323SNN6ZX7PRJJWP2BUAFLPUAE42XWLZ/"
        },
        {
          "name": "FEDORA-2022-8bb51f6901",
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/W6K3PR542DXWLEFFMFIDMME4CWMHJRMG/"
        },
        {
          "url": "https://www.oracle.com/security-alerts/cpuapr2022.html"
        },
        {
          "url": "https://security.netapp.com/advisory/ntap-20220321-0002/"
        },
        {
          "url": "https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2022-0002"
        },
        {
          "url": "https://www.tenable.com/security/tns-2022-06"
        },
        {
          "url": "https://www.tenable.com/security/tns-2022-07"
        },
        {
          "url": "https://www.tenable.com/security/tns-2022-08"
        },
        {
          "name": "20220516 APPLE-SA-2022-05-16-4 Security Update 2022-004 Catalina",
          "tags": [
            "mailing-list"
          ],
          "url": "http://seclists.org/fulldisclosure/2022/May/33"
        },
        {
          "name": "20220516 APPLE-SA-2022-05-16-3 macOS Big Sur 11.6.6",
          "tags": [
            "mailing-list"
          ],
          "url": "http://seclists.org/fulldisclosure/2022/May/35"
        },
        {
          "name": "20220516 APPLE-SA-2022-05-16-2 macOS Monterey 12.4",
          "tags": [
            "mailing-list"
          ],
          "url": "http://seclists.org/fulldisclosure/2022/May/38"
        },
        {
          "url": "https://www.oracle.com/security-alerts/cpujul2022.html"
        },
        {
          "url": "https://support.apple.com/kb/HT213257"
        },
        {
          "url": "https://support.apple.com/kb/HT213256"
        },
        {
          "url": "https://support.apple.com/kb/HT213255"
        },
        {
          "url": "https://www.tenable.com/security/tns-2022-09"
        },
        {
          "url": "https://security.netapp.com/advisory/ntap-20220429-0005/"
        },
        {
          "url": "http://packetstormsecurity.com/files/167344/OpenSSL-1.0.2-1.1.1-3.0-BN_mod_sqrt-Infinite-Loop.html"
        },
        {
          "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-712929.pdf"
        },
        {
          "name": "GLSA-202210-02",
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://security.gentoo.org/glsa/202210-02"
        },
        {
          "url": "https://security.netapp.com/advisory/ntap-20240621-0006/"
        }
      ],
      "title": "Infinite loop in BN_mod_sqrt() reachable when parsing certificates"
    }
  },
  "cveMetadata": {
    "assignerOrgId": "3a12439a-ef3a-4c79-92e6-6081a721f1e5",
    "assignerShortName": "openssl",
    "cveId": "CVE-2022-0778",
    "datePublished": "2022-03-15T17:05:20.382Z",
    "dateReserved": "2022-02-28T00:00:00.000Z",
    "dateUpdated": "2026-05-22T13:28:08.544Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

CVE-2022-21412 (GCVE-0-2022-21412)

Vulnerability from cvelistv5 – Published: 2022-04-19 20:36 – Updated: 2024-09-24 20:13

Summary

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.28 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).

Severity

4.9 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H

SSVC

Exploitation: none Automatable: no Technical Impact: partial

CISA Coordinator (v2.0.3)

CWE

Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server.

Assigner

oracle

References

2 references

URL	Tags
https://www.oracle.com/security-alerts/cpuapr2022.html	x_refsource_MISC
https://security.netapp.com/advisory/ntap-2022042…	x_refsource_CONFIRM

Impacted products

1 product

Vendor	Product	Version
Oracle Corporation	MySQL Server	Affected: 8.0.28 and prior

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-03T02:38:56.148Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://www.oracle.com/security-alerts/cpuapr2022.html"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://security.netapp.com/advisory/ntap-20220429-0005/"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2022-21412",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-09-24T17:43:41.507167Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-09-24T20:13:49.942Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "MySQL Server",
          "vendor": "Oracle Corporation",
          "versions": [
            {
              "status": "affected",
              "version": "8.0.28 and prior"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.28 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H)."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 4.9,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "HIGH",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server.  Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server.",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2022-04-29T13:06:26.000Z",
        "orgId": "43595867-4340-4103-b7a2-9a5208d29a85",
        "shortName": "oracle"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://www.oracle.com/security-alerts/cpuapr2022.html"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://security.netapp.com/advisory/ntap-20220429-0005/"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "secalert_us@oracle.com",
          "ID": "CVE-2022-21412",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "MySQL Server",
                      "version": {
                        "version_data": [
                          {
                            "version_affected": "=",
                            "version_value": "8.0.28 and prior"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "Oracle Corporation"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.28 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H)."
            }
          ]
        },
        "impact": {
          "cvss": {
            "baseScore": "4.9",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          }
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server.  Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server."
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://www.oracle.com/security-alerts/cpuapr2022.html",
              "refsource": "MISC",
              "url": "https://www.oracle.com/security-alerts/cpuapr2022.html"
            },
            {
              "name": "https://security.netapp.com/advisory/ntap-20220429-0005/",
              "refsource": "CONFIRM",
              "url": "https://security.netapp.com/advisory/ntap-20220429-0005/"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "43595867-4340-4103-b7a2-9a5208d29a85",
    "assignerShortName": "oracle",
    "cveId": "CVE-2022-21412",
    "datePublished": "2022-04-19T20:36:48.000Z",
    "dateReserved": "2021-11-15T00:00:00.000Z",
    "dateUpdated": "2024-09-24T20:13:49.942Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2022-21413 (GCVE-0-2022-21413)

Vulnerability from cvelistv5 – Published: 2022-04-19 20:36 – Updated: 2025-02-05 19:23

Summary

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: DML). Supported versions that are affected are 8.0.28 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).

Severity

4.9 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H

SSVC

Exploitation: none Automatable: no Technical Impact: partial

CISA Coordinator (v2.0.3)

CWE

Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server.
CWE-noinfo Not enough information

Assigner

oracle

References

2 references

URL	Tags
https://www.oracle.com/security-alerts/cpuapr2022.html	x_refsource_MISC
https://security.netapp.com/advisory/ntap-2022042…	x_refsource_CONFIRM

Impacted products

1 product

Vendor	Product	Version
Oracle Corporation	MySQL Server	Affected: 8.0.28 and prior

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-03T02:38:56.095Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://www.oracle.com/security-alerts/cpuapr2022.html"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://security.netapp.com/advisory/ntap-20220429-0005/"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2022-21413",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-09-24T17:43:40.654273Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "problemTypes": [
          {
            "descriptions": [
              {
                "description": "CWE-noinfo Not enough information",
                "lang": "en",
                "type": "CWE"
              }
            ]
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2025-02-05T19:23:08.616Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "MySQL Server",
          "vendor": "Oracle Corporation",
          "versions": [
            {
              "status": "affected",
              "version": "8.0.28 and prior"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: DML). Supported versions that are affected are 8.0.28 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H)."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 4.9,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "HIGH",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server.  Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server.",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2022-04-29T13:06:32.000Z",
        "orgId": "43595867-4340-4103-b7a2-9a5208d29a85",
        "shortName": "oracle"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://www.oracle.com/security-alerts/cpuapr2022.html"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://security.netapp.com/advisory/ntap-20220429-0005/"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "secalert_us@oracle.com",
          "ID": "CVE-2022-21413",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "MySQL Server",
                      "version": {
                        "version_data": [
                          {
                            "version_affected": "=",
                            "version_value": "8.0.28 and prior"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "Oracle Corporation"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: DML). Supported versions that are affected are 8.0.28 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H)."
            }
          ]
        },
        "impact": {
          "cvss": {
            "baseScore": "4.9",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          }
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server.  Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server."
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://www.oracle.com/security-alerts/cpuapr2022.html",
              "refsource": "MISC",
              "url": "https://www.oracle.com/security-alerts/cpuapr2022.html"
            },
            {
              "name": "https://security.netapp.com/advisory/ntap-20220429-0005/",
              "refsource": "CONFIRM",
              "url": "https://security.netapp.com/advisory/ntap-20220429-0005/"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "43595867-4340-4103-b7a2-9a5208d29a85",
    "assignerShortName": "oracle",
    "cveId": "CVE-2022-21413",
    "datePublished": "2022-04-19T20:36:50.000Z",
    "dateReserved": "2021-11-15T00:00:00.000Z",
    "dateUpdated": "2025-02-05T19:23:08.616Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2022-21414 (GCVE-0-2022-21414)

Vulnerability from cvelistv5 – Published: 2022-04-19 20:36 – Updated: 2024-09-24 20:13

Summary

Severity

4.9 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H

SSVC

Exploitation: none Automatable: no Technical Impact: partial

CISA Coordinator (v2.0.3)

CWE

Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server.

Assigner

oracle

References

2 references

URL	Tags
https://www.oracle.com/security-alerts/cpuapr2022.html	x_refsource_MISC
https://security.netapp.com/advisory/ntap-2022042…	x_refsource_CONFIRM

Impacted products

1 product

Vendor	Product	Version
Oracle Corporation	MySQL Server	Affected: 8.0.28 and prior

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-03T02:38:56.284Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://www.oracle.com/security-alerts/cpuapr2022.html"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://security.netapp.com/advisory/ntap-20220429-0005/"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2022-21414",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-09-24T17:43:39.727867Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-09-24T20:13:36.826Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "MySQL Server",
          "vendor": "Oracle Corporation",
          "versions": [
            {
              "status": "affected",
              "version": "8.0.28 and prior"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.28 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H)."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 4.9,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "HIGH",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server.  Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server.",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2022-04-29T13:06:28.000Z",
        "orgId": "43595867-4340-4103-b7a2-9a5208d29a85",
        "shortName": "oracle"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://www.oracle.com/security-alerts/cpuapr2022.html"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://security.netapp.com/advisory/ntap-20220429-0005/"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "secalert_us@oracle.com",
          "ID": "CVE-2022-21414",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "MySQL Server",
                      "version": {
                        "version_data": [
                          {
                            "version_affected": "=",
                            "version_value": "8.0.28 and prior"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "Oracle Corporation"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.28 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H)."
            }
          ]
        },
        "impact": {
          "cvss": {
            "baseScore": "4.9",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          }
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server.  Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server."
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://www.oracle.com/security-alerts/cpuapr2022.html",
              "refsource": "MISC",
              "url": "https://www.oracle.com/security-alerts/cpuapr2022.html"
            },
            {
              "name": "https://security.netapp.com/advisory/ntap-20220429-0005/",
              "refsource": "CONFIRM",
              "url": "https://security.netapp.com/advisory/ntap-20220429-0005/"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "43595867-4340-4103-b7a2-9a5208d29a85",
    "assignerShortName": "oracle",
    "cveId": "CVE-2022-21414",
    "datePublished": "2022-04-19T20:36:51.000Z",
    "dateReserved": "2021-11-15T00:00:00.000Z",
    "dateUpdated": "2024-09-24T20:13:36.826Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2022-21415 (GCVE-0-2022-21415)

Vulnerability from cvelistv5 – Published: 2022-04-19 20:36 – Updated: 2024-09-24 20:13

Summary

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Replication). Supported versions that are affected are 8.0.28 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).

Severity

4.9 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H

SSVC

Exploitation: none Automatable: no Technical Impact: partial

CISA Coordinator (v2.0.3)

CWE

Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server.

Assigner

oracle

References

2 references

URL	Tags
https://www.oracle.com/security-alerts/cpuapr2022.html	x_refsource_MISC
https://security.netapp.com/advisory/ntap-2022042…	x_refsource_CONFIRM

Impacted products

1 product

Vendor	Product	Version
Oracle Corporation	MySQL Server	Affected: 8.0.28 and prior

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-03T02:38:56.141Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://www.oracle.com/security-alerts/cpuapr2022.html"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://security.netapp.com/advisory/ntap-20220429-0005/"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2022-21415",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-09-24T17:43:38.851821Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-09-24T20:13:29.168Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "MySQL Server",
          "vendor": "Oracle Corporation",
          "versions": [
            {
              "status": "affected",
              "version": "8.0.28 and prior"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Replication). Supported versions that are affected are 8.0.28 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H)."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 4.9,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "HIGH",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server.  Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server.",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2022-04-29T13:06:44.000Z",
        "orgId": "43595867-4340-4103-b7a2-9a5208d29a85",
        "shortName": "oracle"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://www.oracle.com/security-alerts/cpuapr2022.html"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://security.netapp.com/advisory/ntap-20220429-0005/"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "secalert_us@oracle.com",
          "ID": "CVE-2022-21415",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "MySQL Server",
                      "version": {
                        "version_data": [
                          {
                            "version_affected": "=",
                            "version_value": "8.0.28 and prior"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "Oracle Corporation"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Replication). Supported versions that are affected are 8.0.28 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H)."
            }
          ]
        },
        "impact": {
          "cvss": {
            "baseScore": "4.9",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          }
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server.  Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server."
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://www.oracle.com/security-alerts/cpuapr2022.html",
              "refsource": "MISC",
              "url": "https://www.oracle.com/security-alerts/cpuapr2022.html"
            },
            {
              "name": "https://security.netapp.com/advisory/ntap-20220429-0005/",
              "refsource": "CONFIRM",
              "url": "https://security.netapp.com/advisory/ntap-20220429-0005/"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "43595867-4340-4103-b7a2-9a5208d29a85",
    "assignerShortName": "oracle",
    "cveId": "CVE-2022-21415",
    "datePublished": "2022-04-19T20:36:53.000Z",
    "dateReserved": "2021-11-15T00:00:00.000Z",
    "dateUpdated": "2024-09-24T20:13:29.168Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2022-21417 (GCVE-0-2022-21417)

Vulnerability from cvelistv5 – Published: 2022-04-19 20:36 – Updated: 2024-09-24 20:13

Summary

Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 5.7.37 and prior and 8.0.28 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).

Severity

4.9 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H

SSVC

Exploitation: none Automatable: no Technical Impact: partial

CISA Coordinator (v2.0.3)

CWE

Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server.

Assigner

oracle

References

2 references

URL	Tags
https://www.oracle.com/security-alerts/cpuapr2022.html	x_refsource_MISC
https://security.netapp.com/advisory/ntap-2022042…	x_refsource_CONFIRM

Impacted products

1 product

Vendor	Product	Version
Oracle Corporation	MySQL Server	Affected: 5.7.37 and prior Affected: 8.0.28 and prior

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-03T02:38:56.118Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://www.oracle.com/security-alerts/cpuapr2022.html"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://security.netapp.com/advisory/ntap-20220429-0005/"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2022-21417",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-09-24T17:43:37.250874Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-09-24T20:13:16.675Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "MySQL Server",
          "vendor": "Oracle Corporation",
          "versions": [
            {
              "status": "affected",
              "version": "5.7.37 and prior"
            },
            {
              "status": "affected",
              "version": "8.0.28 and prior"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 5.7.37 and prior and 8.0.28 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H)."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 4.9,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "HIGH",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server.  Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server.",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2022-04-29T13:06:42.000Z",
        "orgId": "43595867-4340-4103-b7a2-9a5208d29a85",
        "shortName": "oracle"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://www.oracle.com/security-alerts/cpuapr2022.html"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://security.netapp.com/advisory/ntap-20220429-0005/"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "secalert_us@oracle.com",
          "ID": "CVE-2022-21417",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "MySQL Server",
                      "version": {
                        "version_data": [
                          {
                            "version_affected": "=",
                            "version_value": "5.7.37 and prior"
                          },
                          {
                            "version_affected": "=",
                            "version_value": "8.0.28 and prior"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "Oracle Corporation"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 5.7.37 and prior and 8.0.28 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H)."
            }
          ]
        },
        "impact": {
          "cvss": {
            "baseScore": "4.9",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          }
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server.  Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server."
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://www.oracle.com/security-alerts/cpuapr2022.html",
              "refsource": "MISC",
              "url": "https://www.oracle.com/security-alerts/cpuapr2022.html"
            },
            {
              "name": "https://security.netapp.com/advisory/ntap-20220429-0005/",
              "refsource": "CONFIRM",
              "url": "https://security.netapp.com/advisory/ntap-20220429-0005/"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "43595867-4340-4103-b7a2-9a5208d29a85",
    "assignerShortName": "oracle",
    "cveId": "CVE-2022-21417",
    "datePublished": "2022-04-19T20:36:56.000Z",
    "dateReserved": "2021-11-15T00:00:00.000Z",
    "dateUpdated": "2024-09-24T20:13:16.675Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date	Other

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

WID-SEC-W-2022-0169

CVE-2021-22570 (GCVE-0-2021-22570)

CVE-2021-41184 (GCVE-0-2021-41184)

CVE-2021-42340 (GCVE-0-2021-42340)

CVE-2021-44832 (GCVE-0-2021-44832)

CVE-2022-0778 (GCVE-0-2022-0778)

CVE-2022-21412 (GCVE-0-2022-21412)

CVE-2022-21413 (GCVE-0-2022-21413)

CVE-2022-21414 (GCVE-0-2022-21414)

CVE-2022-21415 (GCVE-0-2022-21415)

CVE-2022-21417 (GCVE-0-2022-21417)

Tags

Sightings

Nomenclature