製品・ソフトウェアに関する情報

JVN脆弱性詳細

QOS.CH SLF4J における信頼性のないデータのデシリアライゼーションに関する脆弱性

Title	QOS.CH SLF4J における信頼性のないデータのデシリアライゼーションに関する脆弱性
Summary	QOS.CH SLF4J には、信頼性のないデータのデシリアライゼーションに関する脆弱性が存在します。
Possible impacts	情報を取得される、情報を改ざんされる、およびサービス運用妨害 (DoS) 状態にされる可能性があります。
Solution	ベンダより正式な対策が公開されています。ベンダ情報を参照して適切な対策を実施してください。
Publication Date	March 14, 2018, midnight
Registration Date	May 24, 2018, 3:27 p.m.
Last Update	May 24, 2018, 3:27 p.m.

CVSS3.0 : 緊急
Score	9.8
Vector	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CVSS2.0 : 危険
Score	7.5
Vector	AV:N/AC:L/Au:N/C:P/I:P/A:P

Affected System

レッドハット

JBoss Enterprise Application Platform

Red Hat Enterprise Linux Desktop

Red Hat Enterprise Linux Server

Red Hat Enterprise Linux Workstation

QOS.ch

SLF4J 1.8.0-beta2 未満

CVE (情報セキュリティ共通脆弱性識別子)

No	Name	URL
Common Vulnerabilities and Exposures (CVE)
1	CVE-2018-8088	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8088
National Vulnerability Database (NVD)
2	CVE-2018-8088	https://nvd.nist.gov/vuln/detail/CVE-2018-8088

CWE (共通脆弱性タイプ一覧)

No	Name	URL
JVNDB
1	CWE-502	https://cwe.mitre.org/data/definitions/502.html

ベンダー情報

No	Name	URL
GitHub
1	fix SLF4J-431	https://github.com/qos-ch/slf4j/commit/d2b27fba88e983f921558da27fc29b5f5d269405
QOS.ch
2	SLF4J-430	https://jira.qos.ch/browse/SLF4J-430
3	SLF4J-431	https://jira.qos.ch/browse/SLF4J-431
Red Hat Security Advisory
4	RHSA-2018:0582	https://access.redhat.com/errata/RHSA-2018:0582
5	RHSA-2018:0592	https://access.redhat.com/errata/RHSA-2018:0592
6	RHSA-2018:0627	https://access.redhat.com/errata/RHSA-2018:0627
7	RHSA-2018:0628	https://access.redhat.com/errata/RHSA-2018:0628
8	RHSA-2018:0629	https://access.redhat.com/errata/RHSA-2018:0629
9	RHSA-2018:0630	https://access.redhat.com/errata/RHSA-2018:0630
10	RHSA-2018:1247	https://access.redhat.com/errata/RHSA-2018:1247
11	RHSA-2018:1248	https://access.redhat.com/errata/RHSA-2018:1248
12	RHSA-2018:1249	https://access.redhat.com/errata/RHSA-2018:1249
13	RHSA-2018:1251	https://access.redhat.com/errata/RHSA-2018:1251
14	RHSA-2018:1323	https://access.redhat.com/errata/RHSA-2018:1323
15	RHSA-2018:1447	https://access.redhat.com/errata/RHSA-2018:1447
16	RHSA-2018:1448	https://access.redhat.com/errata/RHSA-2018:1448
17	RHSA-2018:1449	https://access.redhat.com/errata/RHSA-2018:1449
18	RHSA-2018:1450	https://access.redhat.com/errata/RHSA-2018:1450
19	RHSA-2018:1451	https://access.redhat.com/errata/RHSA-2018:1451
20	RHSA-2018:1525	https://access.redhat.com/errata/RHSA-2018:1525
21	RHSA-2018:1575	https://access.redhat.com/errata/RHSA-2018:1575

Change Log

No	Changed Details	Date of change
1	[2018年05月24日] 掲載	May 24, 2018, 1:51 p.m.

NVD Vulnerability Information

CVE-2018-8088

Summary	org.slf4j.ext.EventData in the slf4j-ext module in QOS.CH SLF4J before 1.8.0-beta2 allows remote attackers to bypass intended access restrictions via crafted data. EventData in the slf4j-ext module in QOS.CH SLF4J, has been fixed in SLF4J versions 1.7.26 later and in the 2.0.x series.
Publication Date	March 21, 2018, 1:29 a.m.
Registration Date	Jan. 28, 2021, 10 a.m.
Last Update	Nov. 21, 2024, 1:13 p.m.

Affected software configurations

Configuration1	or higher	or less	more than	less than
cpe:2.3:a:qos:slf4j:1.8.0:alpha1::::::
cpe:2.3:a:qos:slf4j:1.8.0:alpha2::::::
cpe:2.3:a:qos:slf4j:1.8.0:beta1::::::
cpe:2.3:a:qos:slf4j:1.8.0:beta2::::::
cpe:2.3:a:qos:slf4j::::::::				1.7.26

Configuration2		or higher	or less	more than	less than
cpe:2.3:a:redhat:jboss_enterprise_application_platform:7.1:::::::*
execution environment
1	cpe:2.3:o:redhat:enterprise_linux:6.0:::::::*
2	cpe:2.3:o:redhat:enterprise_linux:7.0:::::::*

Configuration3		or higher	or less	more than	less than
cpe:2.3:a:redhat:jboss_enterprise_application_platform:6.0.0:::::::*
cpe:2.3:a:redhat:jboss_enterprise_application_platform:6.4.0:::::::*
execution environment
1	cpe:2.3:o:redhat:enterprise_linux:5.0:::::::*
2	cpe:2.3:o:redhat:enterprise_linux:6.0:::::::*
3	cpe:2.3:o:redhat:enterprise_linux:7.0:::::::*

Configuration4		or higher	or less	more than	less than
cpe:2.3:a:redhat:virtualization:4.0:::::::*
cpe:2.3:a:redhat:virtualization_host:4.0:::::::*
execution environment
1	cpe:2.3:o:redhat:enterprise_linux_server:7.0:::::::*

Configuration5	or higher	or less	more than	less than
cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:::::::*
cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:::::::*
cpe:2.3:o:redhat:enterprise_linux_server:7.0:::::::*
cpe:2.3:o:redhat:enterprise_linux_server_aus:7.4:::::::*
cpe:2.3:o:redhat:enterprise_linux_server_tus:7.4:::::::*
cpe:2.3:o:redhat:enterprise_linux_eus:7.4:::::::*
cpe:2.3:o:redhat:enterprise_linux_server_aus:7.7:::::::*
cpe:2.3:o:redhat:enterprise_linux_eus:7.6:::::::*
cpe:2.3:o:redhat:enterprise_linux_server_aus:7.6:::::::*
cpe:2.3:o:redhat:enterprise_linux_server_tus:7.6:::::::*
cpe:2.3:o:redhat:enterprise_linux_eus:7.5:::::::*
cpe:2.3:o:redhat:enterprise_linux_server_tus:7.7:::::::*
cpe:2.3:o:redhat:enterprise_linux_eus:7.7:::::::*

Configuration6	or higher	or less	more than	less than
cpe:2.3:a:oracle:utilities_framework:4.2.0.3.0:::::::*
cpe:2.3:a:oracle:utilities_framework:4.3.0.2.0:::::::*
cpe:2.3:a:oracle:utilities_framework:4.2.0.2.0:::::::*
cpe:2.3:a:oracle:utilities_framework:4.3.0.3.0:::::::*
cpe:2.3:a:oracle:utilities_framework:4.3.0.4.0:::::::*
cpe:2.3:a:oracle:utilities_framework:4.3.0.5.0:::::::*
cpe:2.3:a:oracle:utilities_framework:4.3.0.6.0:::::::*
cpe:2.3:a:oracle:utilities_framework:4.4.0.0.0:::::::*
cpe:2.3:a:oracle:goldengate_stream_analytics::::::::				19.1.0.0.1
cpe:2.3:a:oracle:goldengate_application_adapters:12.3.2.1.0:::::::*

Related information, measures and tools

No	URL	タグ
1	http://www.securityfocus.com/bid/103737	Third Party Advisory VDB Entry
2	http://www.securityfocus.com/bid/103737	Third Party Advisory VDB Entry
3	http://www.securitytracker.com/id/1040627	Third Party Advisory VDB Entry
4	http://www.securitytracker.com/id/1040627	Third Party Advisory VDB Entry
5	https://access.redhat.com/errata/RHSA-2018:0582	Third Party Advisory
6	https://access.redhat.com/errata/RHSA-2018:0582	Third Party Advisory
7	https://access.redhat.com/errata/RHSA-2018:0592	Third Party Advisory
8	https://access.redhat.com/errata/RHSA-2018:0592	Third Party Advisory
9	https://access.redhat.com/errata/RHSA-2018:0627	Third Party Advisory
10	https://access.redhat.com/errata/RHSA-2018:0627	Third Party Advisory
11	https://access.redhat.com/errata/RHSA-2018:0628	Third Party Advisory
12	https://access.redhat.com/errata/RHSA-2018:0628	Third Party Advisory
13	https://access.redhat.com/errata/RHSA-2018:0629	Third Party Advisory
14	https://access.redhat.com/errata/RHSA-2018:0629	Third Party Advisory
15	https://access.redhat.com/errata/RHSA-2018:0630	Third Party Advisory
16	https://access.redhat.com/errata/RHSA-2018:0630	Third Party Advisory
17	https://access.redhat.com/errata/RHSA-2018:1247	Third Party Advisory
18	https://access.redhat.com/errata/RHSA-2018:1247	Third Party Advisory
19	https://access.redhat.com/errata/RHSA-2018:1248	Third Party Advisory
20	https://access.redhat.com/errata/RHSA-2018:1248	Third Party Advisory
21	https://access.redhat.com/errata/RHSA-2018:1249	Third Party Advisory
22	https://access.redhat.com/errata/RHSA-2018:1249	Third Party Advisory
23	https://access.redhat.com/errata/RHSA-2018:1251	Third Party Advisory
24	https://access.redhat.com/errata/RHSA-2018:1251	Third Party Advisory
25	https://access.redhat.com/errata/RHSA-2018:1323	Third Party Advisory
26	https://access.redhat.com/errata/RHSA-2018:1323	Third Party Advisory
27	https://access.redhat.com/errata/RHSA-2018:1447	Third Party Advisory
28	https://access.redhat.com/errata/RHSA-2018:1447	Third Party Advisory
29	https://access.redhat.com/errata/RHSA-2018:1448	Third Party Advisory
30	https://access.redhat.com/errata/RHSA-2018:1448	Third Party Advisory
31	https://access.redhat.com/errata/RHSA-2018:1449	Third Party Advisory
32	https://access.redhat.com/errata/RHSA-2018:1449	Third Party Advisory
33	https://access.redhat.com/errata/RHSA-2018:1450	Third Party Advisory
34	https://access.redhat.com/errata/RHSA-2018:1450	Third Party Advisory
35	https://access.redhat.com/errata/RHSA-2018:1451	Third Party Advisory
36	https://access.redhat.com/errata/RHSA-2018:1451	Third Party Advisory
37	https://access.redhat.com/errata/RHSA-2018:1525	Third Party Advisory
38	https://access.redhat.com/errata/RHSA-2018:1525	Third Party Advisory
39	https://access.redhat.com/errata/RHSA-2018:1575	Third Party Advisory
40	https://access.redhat.com/errata/RHSA-2018:1575	Third Party Advisory
41	https://access.redhat.com/errata/RHSA-2018:2143	Third Party Advisory
42	https://access.redhat.com/errata/RHSA-2018:2143	Third Party Advisory
43	https://access.redhat.com/errata/RHSA-2018:2419	Third Party Advisory
44	https://access.redhat.com/errata/RHSA-2018:2419	Third Party Advisory
45	https://access.redhat.com/errata/RHSA-2018:2420	Third Party Advisory
46	https://access.redhat.com/errata/RHSA-2018:2420	Third Party Advisory
47	https://access.redhat.com/errata/RHSA-2018:2669	Third Party Advisory
48	https://access.redhat.com/errata/RHSA-2018:2669	Third Party Advisory
49	https://access.redhat.com/errata/RHSA-2018:2930	Third Party Advisory
50	https://access.redhat.com/errata/RHSA-2018:2930	Third Party Advisory
51	https://access.redhat.com/errata/RHSA-2019:2413	Third Party Advisory
52	https://access.redhat.com/errata/RHSA-2019:2413	Third Party Advisory
53	https://access.redhat.com/errata/RHSA-2019:3140	Third Party Advisory
54	https://access.redhat.com/errata/RHSA-2019:3140	Third Party Advisory
55	https://github.com/qos-ch/slf4j/commit/d2b27fba88e983f921558da27fc29b5f5d269405	Patch Third Party Advisory
56	https://github.com/qos-ch/slf4j/commit/d2b27fba88e983f921558da27fc29b5f5d269405	Patch Third Party Advisory
57	https://jira.qos.ch/browse/SLF4J-430	Issue Tracking Vendor Advisory
58	https://jira.qos.ch/browse/SLF4J-430	Issue Tracking Vendor Advisory
59	https://jira.qos.ch/browse/SLF4J-431	Issue Tracking Vendor Advisory
60	https://jira.qos.ch/browse/SLF4J-431	Issue Tracking Vendor Advisory
61	https://lists.apache.org/thread.html/956ba8e76b6793a6670b2eb0129a5e3003ce2124ca3130fd57d48d0f%40%3Cdevnull.infra.apache.org%3E
62	https://lists.apache.org/thread.html/956ba8e76b6793a6670b2eb0129a5e3003ce2124ca3130fd57d48d0f%40%3Cdevnull.infra.apache.org%3E
63	https://lists.apache.org/thread.html/95ce76613c869dbccf1d3d29327099ccc71aeec156f76c30853044fa%40%3Cdevnull.infra.apache.org%3E
64	https://lists.apache.org/thread.html/95ce76613c869dbccf1d3d29327099ccc71aeec156f76c30853044fa%40%3Cdevnull.infra.apache.org%3E
65	https://lists.apache.org/thread.html/r0f376559fd39cf1a53ac3afbc1fc5d62649dcac9916d4697445a94fa%40%3Cissues.zookeeper.apache.org%3E
66	https://lists.apache.org/thread.html/r0f376559fd39cf1a53ac3afbc1fc5d62649dcac9916d4697445a94fa%40%3Cissues.zookeeper.apache.org%3E
67	https://lists.apache.org/thread.html/r1660c72a660f0522947ca6ce329dcc74e1ee20c58bbe208472754489%40%3Ccommon-issues.hadoop.apache.org%3E
68	https://lists.apache.org/thread.html/r1660c72a660f0522947ca6ce329dcc74e1ee20c58bbe208472754489%40%3Ccommon-issues.hadoop.apache.org%3E
69	https://lists.apache.org/thread.html/r17e7e6abc53d29c0e269153517d36f4bec2755b95900596e6df15cbe%40%3Cnotifications.iotdb.apache.org%3E
70	https://lists.apache.org/thread.html/r17e7e6abc53d29c0e269153517d36f4bec2755b95900596e6df15cbe%40%3Cnotifications.iotdb.apache.org%3E
71	https://lists.apache.org/thread.html/r2d05924f903403927a2f4e78d9b1249a42f0bd09f69a7c1954d74a42%40%3Creviews.iotdb.apache.org%3E
72	https://lists.apache.org/thread.html/r2d05924f903403927a2f4e78d9b1249a42f0bd09f69a7c1954d74a42%40%3Creviews.iotdb.apache.org%3E
73	https://lists.apache.org/thread.html/r32be21da011479df41468a62bc09d12f0d3b4e3a71679d33cb0e8c56%40%3Cissues.zookeeper.apache.org%3E
74	https://lists.apache.org/thread.html/r32be21da011479df41468a62bc09d12f0d3b4e3a71679d33cb0e8c56%40%3Cissues.zookeeper.apache.org%3E
75	https://lists.apache.org/thread.html/r37644f0a00aca9fbcbc21c0f9a91f927b63153ec3607be469cd515e5%40%3Creviews.iotdb.apache.org%3E
76	https://lists.apache.org/thread.html/r37644f0a00aca9fbcbc21c0f9a91f927b63153ec3607be469cd515e5%40%3Creviews.iotdb.apache.org%3E
77	https://lists.apache.org/thread.html/r48247c12cf652e95a01fc94ee5aa8641f3ec481235774790e53eb55e%40%3Creviews.iotdb.apache.org%3E
78	https://lists.apache.org/thread.html/r48247c12cf652e95a01fc94ee5aa8641f3ec481235774790e53eb55e%40%3Creviews.iotdb.apache.org%3E
79	https://lists.apache.org/thread.html/r573eb577a67503e72181eee637d9b0ac042197e632bcdfce76af06a3%40%3Cissues.flink.apache.org%3E
80	https://lists.apache.org/thread.html/r573eb577a67503e72181eee637d9b0ac042197e632bcdfce76af06a3%40%3Cissues.flink.apache.org%3E
81	https://lists.apache.org/thread.html/r5cf87a035b297c19f4043a37b73c341576dd92f819bd3e4aa27de541%40%3Cissues.flink.apache.org%3E
82	https://lists.apache.org/thread.html/r5cf87a035b297c19f4043a37b73c341576dd92f819bd3e4aa27de541%40%3Cissues.flink.apache.org%3E
83	https://lists.apache.org/thread.html/r767861f053c15f9e9201b939a0d508dd58475a072e76135eaaca17f0%40%3Ccommon-issues.hadoop.apache.org%3E
84	https://lists.apache.org/thread.html/r767861f053c15f9e9201b939a0d508dd58475a072e76135eaaca17f0%40%3Ccommon-issues.hadoop.apache.org%3E
85	https://lists.apache.org/thread.html/r81711cde77c2c5742b7b8533c978e79771b700af0ef4d3149d70df25%40%3Cnotifications.logging.apache.org%3E
86	https://lists.apache.org/thread.html/r81711cde77c2c5742b7b8533c978e79771b700af0ef4d3149d70df25%40%3Cnotifications.logging.apache.org%3E
87	https://lists.apache.org/thread.html/r891761d5014f9ffd79d9737482de832462de538b6c4bdcef21aad729%40%3Cissues.flink.apache.org%3E
88	https://lists.apache.org/thread.html/r891761d5014f9ffd79d9737482de832462de538b6c4bdcef21aad729%40%3Cissues.flink.apache.org%3E
89	https://lists.apache.org/thread.html/r9584c4304c888f651d214341a939bd264ed30c9e3d0d30fe85097ecf%40%3Ccommits.pulsar.apache.org%3E
90	https://lists.apache.org/thread.html/r9584c4304c888f651d214341a939bd264ed30c9e3d0d30fe85097ecf%40%3Ccommits.pulsar.apache.org%3E
91	https://lists.apache.org/thread.html/r99a6552e45ca6ba1082031421f51799a4a665eda905ab2c2aa9d6ffa%40%3Cdev.flink.apache.org%3E
92	https://lists.apache.org/thread.html/r99a6552e45ca6ba1082031421f51799a4a665eda905ab2c2aa9d6ffa%40%3Cdev.flink.apache.org%3E
93	https://lists.apache.org/thread.html/r9e25496608036573736cee484d8d03dae400f09e443b0000b6adc042%40%3Ccommits.iotdb.apache.org%3E
94	https://lists.apache.org/thread.html/r9e25496608036573736cee484d8d03dae400f09e443b0000b6adc042%40%3Ccommits.iotdb.apache.org%3E
95	https://lists.apache.org/thread.html/raabf1a00b2652575fca9fcb44166a828a0cab97a7d1594001eabc991%40%3Ccommon-issues.hadoop.apache.org%3E
96	https://lists.apache.org/thread.html/raabf1a00b2652575fca9fcb44166a828a0cab97a7d1594001eabc991%40%3Ccommon-issues.hadoop.apache.org%3E
97	https://lists.apache.org/thread.html/rc378b97d52856f9f3c5ced14771fed8357e4187a3a0f9a2f0515931a%40%3Cissues.zookeeper.apache.org%3E
98	https://lists.apache.org/thread.html/rc378b97d52856f9f3c5ced14771fed8357e4187a3a0f9a2f0515931a%40%3Cissues.zookeeper.apache.org%3E
99	https://lists.apache.org/thread.html/rc7de83170d3402af15bfed3d59f80aea20f250535bdce30e4cad24db%40%3Cissues.flink.apache.org%3E
100	https://lists.apache.org/thread.html/rc7de83170d3402af15bfed3d59f80aea20f250535bdce30e4cad24db%40%3Cissues.flink.apache.org%3E
101	https://lists.apache.org/thread.html/rd0e44e8ef71eeaaa3cf3d1b8b41eb25894372e2995ec908ce7624d26%40%3Ccommits.pulsar.apache.org%3E
102	https://lists.apache.org/thread.html/rd0e44e8ef71eeaaa3cf3d1b8b41eb25894372e2995ec908ce7624d26%40%3Ccommits.pulsar.apache.org%3E
103	https://lists.apache.org/thread.html/rd86db9679150e9297b5c0fcb6f0e80a8b81b54fcf423de5a914bca78%40%3Ccommon-commits.hadoop.apache.org%3E
104	https://lists.apache.org/thread.html/rd86db9679150e9297b5c0fcb6f0e80a8b81b54fcf423de5a914bca78%40%3Ccommon-commits.hadoop.apache.org%3E
105	https://lists.apache.org/thread.html/re6fb6b0de9d679310437ff87fc94e39da5a14dce9c73864a41837462%40%3Ccommon-commits.hadoop.apache.org%3E
106	https://lists.apache.org/thread.html/re6fb6b0de9d679310437ff87fc94e39da5a14dce9c73864a41837462%40%3Ccommon-commits.hadoop.apache.org%3E
107	https://lists.apache.org/thread.html/reb3eeb985afdead17fadb7c33d5d472c1015a85ea5c9b038ec77f378%40%3Ccommon-dev.hadoop.apache.org%3E
108	https://lists.apache.org/thread.html/reb3eeb985afdead17fadb7c33d5d472c1015a85ea5c9b038ec77f378%40%3Ccommon-dev.hadoop.apache.org%3E
109	https://lists.apache.org/thread.html/rf58e1bee31d66665437dde9acd9abed53f8483034b69fa9ca7cde09c%40%3Cdev.zookeeper.apache.org%3E
110	https://lists.apache.org/thread.html/rf58e1bee31d66665437dde9acd9abed53f8483034b69fa9ca7cde09c%40%3Cdev.zookeeper.apache.org%3E
111	https://lists.apache.org/thread.html/rfb45527bad7220ada9e30957762e1da254ce405e67cc3ddf6f3558d9%40%3Creviews.iotdb.apache.org%3E
112	https://lists.apache.org/thread.html/rfb45527bad7220ada9e30957762e1da254ce405e67cc3ddf6f3558d9%40%3Creviews.iotdb.apache.org%3E
113	https://lists.apache.org/thread.html/rfe52b7cbba4dcba521e13130e5d28d5818b78d70db0af1b470fa0264%40%3Ccommon-issues.hadoop.apache.org%3E
114	https://lists.apache.org/thread.html/rfe52b7cbba4dcba521e13130e5d28d5818b78d70db0af1b470fa0264%40%3Ccommon-issues.hadoop.apache.org%3E
115	https://security.netapp.com/advisory/ntap-20231227-0010/
116	https://security.netapp.com/advisory/ntap-20231227-0010/
117	https://www.oracle.com/security-alerts/cpujul2020.html	Third Party Advisory
118	https://www.oracle.com/security-alerts/cpujul2020.html	Third Party Advisory
119	https://www.oracle.com/security-alerts/cpuoct2020.html	Third Party Advisory
120	https://www.oracle.com/security-alerts/cpuoct2020.html	Third Party Advisory
121	https://www.oracle.com/security-alerts/cpuoct2021.html
122	https://www.oracle.com/security-alerts/cpuoct2021.html
123	https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html	Patch Third Party Advisory
124	https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html	Patch Third Party Advisory
125	https://www.slf4j.org/news.html
126	https://www.slf4j.org/news.html

Common Vulnerabilities List

Configuration5	or higher	or less	more than	less than
cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:::::::*
cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:::::::*
cpe:2.3:o:redhat:enterprise_linux_server:7.0:::::::*
cpe:2.3:o:redhat:enterprise_linux_server_aus:7.4:::::::*
cpe:2.3:o:redhat:enterprise_linux_server_tus:7.4:::::::*
cpe:2.3:o:redhat:enterprise_linux_eus:7.4:::::::*
cpe:2.3:o:redhat:enterprise_linux_server_aus:7.7:::::::*
cpe:2.3:o:redhat:enterprise_linux_eus:7.6:::::::*
cpe:2.3:o:redhat:enterprise_linux_server_aus:7.6:::::::*
cpe:2.3:o:redhat:enterprise_linux_server_tus:7.6:::::::*
cpe:2.3:o:redhat:enterprise_linux_eus:7.5:::::::*
cpe:2.3:o:redhat:enterprise_linux_server_tus:7.7:::::::*
cpe:2.3:o:redhat:enterprise_linux_eus:7.7:::::::*

Configuration6	or higher	or less	more than	less than
cpe:2.3:a:oracle:utilities_framework:4.2.0.3.0:::::::*
cpe:2.3:a:oracle:utilities_framework:4.3.0.2.0:::::::*
cpe:2.3:a:oracle:utilities_framework:4.2.0.2.0:::::::*
cpe:2.3:a:oracle:utilities_framework:4.3.0.3.0:::::::*
cpe:2.3:a:oracle:utilities_framework:4.3.0.4.0:::::::*
cpe:2.3:a:oracle:utilities_framework:4.3.0.5.0:::::::*
cpe:2.3:a:oracle:utilities_framework:4.3.0.6.0:::::::*
cpe:2.3:a:oracle:utilities_framework:4.4.0.0.0:::::::*
cpe:2.3:a:oracle:goldengate_stream_analytics::::::::				19.1.0.0.1
cpe:2.3:a:oracle:goldengate_application_adapters:12.3.2.1.0:::::::*