NVD Vulnerability Detail
Search Exploit, PoC
CVE-2019-10219
Summary

A vulnerability was found in Hibernate-Validator. The SafeHtml validator annotation fails to properly sanitize payloads consisting of potentially malicious code in HTML comments and instructions. This vulnerability can result in an XSS attack.

Publication Date Nov. 9, 2019, 12:15 a.m.
Registration Date Jan. 26, 2021, 11:37 a.m.
Last Update Nov. 21, 2024, 1:18 p.m.
CVSS3.1 : MEDIUM
スコア 6.1
Vector CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
攻撃元区分(AV) ネットワーク
攻撃条件の複雑さ(AC)
攻撃に必要な特権レベル(PR) 不要
利用者の関与(UI)
影響の想定範囲(S) 変更あり
機密性への影響(C)
完全性への影響(I)
可用性への影響(A) なし
CVSS2.0 : MEDIUM
Score 4.3
Vector AV:N/AC:M/Au:N/C:N/I:P/A:N
攻撃元区分(AV) ネットワーク
攻撃条件の複雑さ(AC)
攻撃前の認証要否(Au) 不要
機密性への影響(C) なし
完全性への影響(I)
可用性への影響(A) なし
Get all privileges. いいえ
Get user privileges いいえ
Get other privileges いいえ
User operation required はい
Affected software configurations
Configuration1 or higher or less more than less than
cpe:2.3:a:redhat:hibernate_validator:*:*:*:*:*:*:*:* 6.0.18
cpe:2.3:a:redhat:hibernate_validator:6.1.0:alpha1:*:*:*:*:*:*
cpe:2.3:a:redhat:hibernate_validator:6.1.0:alpha2:*:*:*:*:*:*
cpe:2.3:a:redhat:hibernate_validator:6.1.0:alpha3:*:*:*:*:*:*
cpe:2.3:a:redhat:hibernate_validator:6.1.0:alpha4:*:*:*:*:*:*
cpe:2.3:a:redhat:hibernate_validator:6.1.0:alpha5:*:*:*:*:*:*
cpe:2.3:a:redhat:hibernate_validator:6.1.0:alpha6:*:*:*:*:*:*
Configuration2 or higher or less more than less than
cpe:2.3:a:redhat:single_sign-on:-:*:*:*:text-only:*:*:*
cpe:2.3:a:redhat:jboss_enterprise_application_platform:-:*:*:*:text-only:*:*:*
cpe:2.3:a:redhat:jboss_data_grid:-:*:*:*:text-only:*:*:*
cpe:2.3:a:redhat:openshift_application_runtimes:-:*:*:*:text-only:*:*:*
cpe:2.3:a:redhat:fuse:1.0:*:*:*:*:*:*:*
Configuration3 or higher or less more than less than
cpe:2.3:a:redhat:jboss_enterprise_application_platform:7.2:*:*:*:*:*:*:*
cpe:2.3:a:redhat:jboss_enterprise_application_platform:7.3:*:*:*:*:*:*:*
execution environment
1 cpe:2.3:o:redhat:enterprise_linux:6.0:*:*:*:*:*:*:*
Configuration4 or higher or less more than less than
cpe:2.3:a:netapp:active_iq_unified_manager:-:*:*:*:*:vmware_vsphere:*:*
cpe:2.3:o:netapp:element:-:*:*:*:*:vcenter_server:*:*
cpe:2.3:a:netapp:active_iq_unified_manager:-:*:*:*:*:linux:*:*
cpe:2.3:a:netapp:active_iq_unified_manager:-:*:*:*:*:windows:*:*
cpe:2.3:a:netapp:snapcenter_plug-in:-:*:*:*:*:vmware_vsphere:*:*
cpe:2.3:a:netapp:management_services_for_element_software_and_netapp_hci:-:*:*:*:*:*:*:*
Configuration5 or higher or less more than less than
cpe:2.3:a:oracle:flexcube_investor_servicing:12.3.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:flexcube_investor_servicing:12.1.0:*:*:*:*:*:*:*
cpe:2.3:o:oracle:solaris:11:*:*:*:*:*:*:*
cpe:2.3:a:oracle:flexcube_private_banking:12.1.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:insurance_policy_administration_j2ee:10.2.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:flexcube_private_banking:12.0.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:flexcube_investor_servicing:12.0.4:*:*:*:*:*:*:*
cpe:2.3:a:oracle:database_server:12.1.0.2:*:*:*:*:*:*:*
cpe:2.3:a:oracle:hospitality_suite8:8.10.2:*:*:*:*:*:*:*
cpe:2.3:a:oracle:database_server:12.1.0.1:*:*:*:*:*:*:*
cpe:2.3:a:oracle:weblogic_server:12.1.3.0.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:retail_integration_bus:13.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:insurance_rules_palette:10.2.0:*:*:*:*:*:*:*
cpe:2.3:o:oracle:solaris:10:*:*:*:*:*:*:*
cpe:2.3:a:oracle:retail_back_office:14.1:*:*:*:*:*:*:*
cpe:2.3:a:oracle:access_manager:11.1.2.3.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:weblogic_server:12.2.1.3.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:business_intelligence:12.2.1.3.0:*:*:*:enterprise:*:*:*
cpe:2.3:a:oracle:hospitality_reporting_and_analytics:9.1.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:http_server:12.2.1.3.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:flexcube_investor_servicing:12.4.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:database_server:19c:*:*:*:*:*:*:*
cpe:2.3:a:oracle:peoplesoft_enterprise_peopletools:8.57:*:*:*:*:*:*:*
cpe:2.3:a:oracle:bi_publisher:11.1.1.9.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:bi_publisher:12.2.1.3.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:retail_predictive_application_server:15.0.3:*:*:*:*:*:*:*
cpe:2.3:a:oracle:policy_automation:10.4.7:*:*:*:*:*:*:*
cpe:2.3:a:oracle:enterprise_data_quality:12.2.1.3.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:managed_file_transfer:12.2.1.3.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:application_testing_suite:13.3.0.1:*:*:*:*:*:*:*
cpe:2.3:a:oracle:retail_order_broker:16.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:retail_returns_management:14.1:*:*:*:*:*:*:*
cpe:2.3:a:oracle:retail_point-of-sale:14.1:*:*:*:*:*:*:*
cpe:2.3:a:oracle:retail_central_office:14.1:*:*:*:*:*:*:*
cpe:2.3:a:oracle:banking_platform:2.6.2:*:*:*:*:*:*:*
cpe:2.3:a:oracle:primavera_unifier:18.8:*:*:*:*:*:*:*
cpe:2.3:a:oracle:webcenter_portal:12.2.1.3.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:utilities_framework:4.2.0.3.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:utilities_framework:4.2.0.2.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:access_manager:12.2.1.3.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:bi_publisher:12.2.1.4.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:business_process_management_suite:12.2.1.3.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:data_integrator:12.2.1.3.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:communications_operations_monitor:3.4:*:*:*:*:*:*:*
cpe:2.3:a:oracle:business_intelligence:12.2.1.4.0:*:*:*:enterprise:*:*:*
cpe:2.3:a:oracle:primavera_unifier:*:*:*:*:*:*:*:* 17.7 17.12
cpe:2.3:a:oracle:utilities_framework:4.4.0.0.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:instantis_enterprisetrack:17.1:*:*:*:*:*:*:*
cpe:2.3:a:oracle:instantis_enterprisetrack:17.2:*:*:*:*:*:*:*
cpe:2.3:a:oracle:instantis_enterprisetrack:17.3:*:*:*:*:*:*:*
cpe:2.3:a:oracle:agile_plm:9.3.3:*:*:*:*:*:*:*
cpe:2.3:a:oracle:agile_plm:9.3.6:*:*:*:*:*:*:*
cpe:2.3:a:oracle:communications_unified_inventory_management:7.3.4:*:*:*:*:*:*:*
cpe:2.3:a:oracle:communications_unified_inventory_management:7.3.5:*:*:*:*:*:*:*
cpe:2.3:a:oracle:communications_unified_inventory_management:7.4.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:fusion_middleware:12.2.1.3.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:banking_digital_experience:18.3:*:*:*:*:*:*:*
cpe:2.3:a:oracle:banking_digital_experience:19.1:*:*:*:*:*:*:*
cpe:2.3:a:oracle:banking_digital_experience:18.1:*:*:*:*:*:*:*
cpe:2.3:a:oracle:weblogic_server:12.2.1.4.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:fusion_middleware:12.2.1.4.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:business_intelligence:5.5.0.0.0:*:*:*:enterprise:*:*:*
cpe:2.3:a:oracle:peoplesoft_enterprise_peopletools:8.58:*:*:*:*:*:*:*
cpe:2.3:a:oracle:hyperion_financial_management:11.1.2.4:*:*:*:*:*:*:*
cpe:2.3:a:oracle:primavera_unifier:19.12:*:*:*:*:*:*:*
cpe:2.3:a:oracle:webcenter_portal:12.2.1.4.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:fusion_middleware_mapviewer:12.2.1.4.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:sd-wan_edge:9.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:weblogic_server:14.1.1.0.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:sd-wan_aware:8.2:*:*:*:*:*:*:*
cpe:2.3:a:oracle:enterprise_manager_base_platform:13.4.0.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:utilities_framework:*:*:*:*:*:*:*:* 4.3.0.1.0 4.3.0.6.0
cpe:2.3:a:oracle:utilities_framework:4.4.0.2.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:hospitality_opera_5_property_services:5.6:*:*:*:*:*:*:*
cpe:2.3:a:oracle:http_server:12.2.1.4.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:banking_digital_experience:19.2:*:*:*:*:*:*:*
cpe:2.3:a:oracle:banking_digital_experience:20.1:*:*:*:*:*:*:*
cpe:2.3:a:oracle:enterprise_manager_ops_center:12.4.0.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:enterprise_session_border_controller:8.4:*:*:*:*:*:*:*
cpe:2.3:a:oracle:communications_unified_inventory_management:7.3.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:communications_services_gatekeeper:7.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:banking_platform:2.7.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:banking_platform:2.7.1:*:*:*:*:*:*:*
cpe:2.3:a:oracle:goldengate_application_adapters:19.1.0.0.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:agile_engineering_data_management:6.2.1.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:data_integrator:12.2.1.4.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:argus_safety:8.2.2:*:*:*:*:*:*:*
cpe:2.3:a:oracle:communications_metasolv_solution:6.3.1:*:*:*:*:*:*:*
cpe:2.3:a:oracle:retail_financial_integration:16.0.3:*:*:*:*:*:*:*
cpe:2.3:a:oracle:primavera_unifier:20.12:*:*:*:*:*:*:*
cpe:2.3:a:oracle:managed_file_transfer:12.2.1.4.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:zfs_storage_appliance_kit:8.8:*:*:*:*:*:*:*
cpe:2.3:a:oracle:communications_network_integrity:7.3.5:*:*:*:*:*:*:*
cpe:2.3:a:oracle:communications_network_integrity:7.3.6:*:*:*:*:*:*:*
cpe:2.3:a:oracle:retail_order_broker:18.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:business_process_management_suite:12.2.1.4.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:bi_publisher:5.5.0.0.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:insurance_rules_palette:10.2.4:*:*:*:*:*:*:*
cpe:2.3:a:oracle:insurance_rules_palette:11.0.2:*:*:*:*:*:*:*
cpe:2.3:a:oracle:insurance_policy_administration_j2ee:10.2.4:*:*:*:*:*:*:*
cpe:2.3:a:oracle:insurance_policy_administration_j2ee:11.0.2:*:*:*:*:*:*:*
cpe:2.3:a:oracle:communications_billing_and_revenue_management_elastic_charging_engine:11.3:*:*:*:*:*:*:*
cpe:2.3:a:oracle:communications_billing_and_revenue_management_elastic_charging_engine:12.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:hospitality_cruise_shipboard_property_management_system:20.1.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:communications_interactive_session_recorder:6.3:*:*:*:*:*:*:*
cpe:2.3:a:oracle:communications_interactive_session_recorder:6.4:*:*:*:*:*:*:*
cpe:2.3:o:oracle:communications_messaging_server:8.1:*:*:*:*:*:*:*
cpe:2.3:a:oracle:business_activity_monitoring:12.2.1.4.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:commerce_guided_search:11.3.2:*:*:*:*:*:*:*
cpe:2.3:a:oracle:commerce_platform:*:*:*:*:*:*:*:* 11.3.0 11.3.2
cpe:2.3:a:oracle:communications_operations_monitor:4.2:*:*:*:*:*:*:*
cpe:2.3:a:oracle:communications_operations_monitor:4.3:*:*:*:*:*:*:*
cpe:2.3:a:oracle:access_manager:12.2.1.4.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:agile_product_lifecycle_management_integration_pack:3.6:*:*:*:*:e-business_suite:*:*
cpe:2.3:a:oracle:banking_enterprise_default_management:2.10.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:banking_enterprise_default_management:2.12.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:banking_party_management:2.7.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:business_intelligence:5.9.0.0.0:*:*:*:enterprise:*:*:*
cpe:2.3:a:oracle:communications_application_session_controller:3.9.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:communications_calendar_server:8.0.0.6.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:1.14.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:communications_converged_application_server_-_service_controller:6.2:*:*:*:*:*:*:*
cpe:2.3:a:oracle:communications_convergence:3.0.2.2.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:communications_design_studio:7.4.2:*:*:*:*:*:*:*
cpe:2.3:a:oracle:communications_messaging_server:8.1:*:*:*:*:*:*:*
cpe:2.3:a:oracle:communications_operations_monitor:4.4:*:*:*:*:*:*:*
cpe:2.3:a:oracle:communications_operations_monitor:5.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:communications_pricing_design_center:12.0.0.3.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:communications_pricing_design_center:12.0.0.4.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:communications_session_border_controller:8.3:*:*:*:*:*:*:*
cpe:2.3:a:oracle:communications_session_border_controller:8.4:*:*:*:*:*:*:*
cpe:2.3:a:oracle:communications_session_border_controller:9.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:communications_unified_inventory_management:7.4.1:*:*:*:*:*:*:*
cpe:2.3:a:oracle:database_server:21c:*:*:*:*:*:*:*
cpe:2.3:a:oracle:documaker:*:*:*:*:*:*:*:* 12.6.0 12.6.4
cpe:2.3:a:oracle:enterprise_data_quality:12.2.1.4.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:enterprise_manager_base_platform:13.5.0.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:enterprise_session_border_controller:9.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:financial_services_analytical_applications_infrastructure:*:*:*:*:*:*:*:* 8.0.7 8.1.1
cpe:2.3:a:oracle:graalvm:20.3.4:*:*:*:enterprise:*:*:*
cpe:2.3:a:oracle:graalvm:21.3.0:*:*:*:enterprise:*:*:*
cpe:2.3:a:oracle:healthcare_data_repository:7.0.2:*:*:*:*:*:*:*
cpe:2.3:a:oracle:healthcare_data_repository:8.1.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:healthcare_foundation:8.1.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:hyperion_financial_management:11.2.6.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:insurance_policy_administration:11.0.2:*:*:*:*:*:*:*
cpe:2.3:a:oracle:insurance_policy_administration:11.3.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:insurance_rules_palette:*:*:*:*:*:*:*:* 11.1.0 11.3.0
cpe:2.3:a:oracle:peoplesoft_enterprise_cs_sa_integration_pack:9.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:peoplesoft_enterprise_cs_sa_integration_pack:9.2:*:*:*:*:*:*:*
cpe:2.3:a:oracle:real-time_decision_server:3.2.0.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:real_user_experience_insight:13.4.1.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:real_user_experience_insight:13.5.1.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:retail_assortment_planning:16.0.3:*:*:*:*:*:*:*
cpe:2.3:a:oracle:retail_customer_management_and_segmentation_foundation:*:*:*:*:*:*:*:* 16.0 19.0
cpe:2.3:a:oracle:retail_eftlink:16.0.3:*:*:*:*:*:*:*
cpe:2.3:a:oracle:retail_eftlink:17.0.2:*:*:*:*:*:*:*
cpe:2.3:a:oracle:retail_eftlink:18.0.1:*:*:*:*:*:*:*
cpe:2.3:a:oracle:retail_eftlink:19.0.1:*:*:*:*:*:*:*
cpe:2.3:a:oracle:retail_extract_transform_and_load:13.2.8:*:*:*:*:*:*:*
cpe:2.3:a:oracle:retail_financial_integration:14.1.3.2:*:*:*:*:*:*:*
cpe:2.3:a:oracle:retail_financial_integration:15.0.3.1:*:*:*:*:*:*:*
cpe:2.3:a:oracle:retail_integration_bus:14.1.3.2:*:*:*:*:*:*:*
cpe:2.3:a:oracle:retail_integration_bus:15.0.3.1:*:*:*:*:*:*:*
cpe:2.3:a:oracle:retail_merchandising_system:19.0.1:*:*:*:*:*:*:*
cpe:2.3:a:oracle:primavera_portfolio_management:20.0.0.1:*:*:*:*:*:*:*
cpe:2.3:a:oracle:primavera_portfolio_management:20.0.0.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:primavera_portfolio_management:*:*:*:*:*:*:*:* 19.0.0.0 19.0.1.2
cpe:2.3:a:oracle:primavera_portfolio_management:*:*:*:*:*:*:*:* 18.0.0.0 18.0.3.0
cpe:2.3:a:oracle:primavera_gateway:*:*:*:*:*:*:*:* 20.12.0 20.12.7
cpe:2.3:a:oracle:primavera_gateway:*:*:*:*:*:*:*:* 17.12.0 17.12.11
cpe:2.3:a:oracle:retail_order_broker:19.1:*:*:*:*:*:*:*
cpe:2.3:a:oracle:retail_predictive_application_server:14.1.3:*:*:*:*:*:*:*
cpe:2.3:a:oracle:retail_predictive_application_server:16.0.3:*:*:*:*:*:*:*
cpe:2.3:a:oracle:retail_price_management:15.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:retail_price_management:16.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:retail_service_backbone:14.1.3.2:*:*:*:*:*:*:*
cpe:2.3:a:oracle:retail_service_backbone:15.0.3.1:*:*:*:*:*:*:*
cpe:2.3:a:oracle:retail_size_profile_optimization:16.0.3:*:*:*:*:*:*:*
cpe:2.3:a:oracle:retail_xstore_point_of_service:17.0.4:*:*:*:*:*:*:*
cpe:2.3:a:oracle:retail_xstore_point_of_service:18.0.3:*:*:*:*:*:*:*
cpe:2.3:a:oracle:retail_xstore_point_of_service:19.0.2:*:*:*:*:*:*:*
cpe:2.3:a:oracle:retail_xstore_point_of_service:20.0.1:*:*:*:*:*:*:*
cpe:2.3:a:oracle:sd-wan_edge:9.1:*:*:*:*:*:*:*
cpe:2.3:a:oracle:utilities_framework:4.4.0.3.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:vm_virtualbox:*:*:*:*:*:*:*:* 6.1.32
cpe:2.3:a:oracle:agile_product_lifecycle_analytics:3.6.1:*:*:*:*:*:*:*
cpe:2.3:a:oracle:airlines_data_model:12.1.1.0.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:airlines_data_model:12.2.0.1.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:application_performance_management:13.4.1.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:application_performance_management:13.5.1.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:argus_analytics:8.2.1:*:*:*:*:*:*:*
cpe:2.3:a:oracle:argus_analytics:8.2.2:*:*:*:*:*:*:*
cpe:2.3:a:oracle:argus_analytics:8.2.3:*:*:*:*:*:*:*
cpe:2.3:a:oracle:argus_analytics:8.21:*:*:*:*:*:*:*
cpe:2.3:a:oracle:argus_insight:8.2.1:*:*:*:*:*:*:*
cpe:2.3:a:oracle:argus_insight:8.2.2:*:*:*:*:*:*:*
cpe:2.3:a:oracle:argus_insight:8.2.3:*:*:*:*:*:*:*
cpe:2.3:a:oracle:argus_safety:8.2.1:*:*:*:*:*:*:*
cpe:2.3:a:oracle:argus_safety:8.2.3:*:*:*:*:*:*:*
cpe:2.3:a:oracle:banking_apis:18.1:*:*:*:*:*:*:*
cpe:2.3:a:oracle:banking_apis:18.2:*:*:*:*:*:*:*
cpe:2.3:a:oracle:banking_apis:18.3:*:*:*:*:*:*:*
cpe:2.3:a:oracle:banking_apis:19.1:*:*:*:*:*:*:*
cpe:2.3:a:oracle:banking_apis:19.2:*:*:*:*:*:*:*
cpe:2.3:a:oracle:banking_apis:20.1:*:*:*:*:*:*:*
cpe:2.3:a:oracle:banking_apis:21.1:*:*:*:*:*:*:*
cpe:2.3:a:oracle:banking_digital_experience:17.2:*:*:*:*:*:*:*
cpe:2.3:a:oracle:banking_digital_experience:21.1:*:*:*:*:*:*:*
cpe:2.3:a:oracle:banking_enterprise_default_managment:*:*:*:*:*:*:*:* 2.3.0 2.4.0
cpe:2.3:a:oracle:banking_loans_servicing:2.12.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:banking_platform:*:*:*:*:*:*:*:* 2.3.0 2.4.1
cpe:2.3:a:oracle:big_data_spatial_and_graph:23.1:*:*:*:*:*:*:*
cpe:2.3:a:oracle:clinical:5.2.1:*:*:*:*:*:*:*
cpe:2.3:a:oracle:clinical:5.2.2:*:*:*:*:*:*:*
cpe:2.3:a:oracle:communications_billing_and_revenue_management:12.0.0.3:*:*:*:*:*:*:*
cpe:2.3:a:oracle:communications_billing_and_revenue_management:12.0.0.4:*:*:*:*:*:*:*
cpe:2.3:a:oracle:communications_calendar_server:8.0.0.5.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:communications_cloud_native_core_automated_test_suite:1.8.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:communications_cloud_native_core_binding_support_function:1.9.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:communications_cloud_native_core_binding_support_function:1.10.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:communications_cloud_native_core_console:1.7.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:1.9.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:communications_cloud_native_core_policy:1.14.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:1.5.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:1.6.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:1.15.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:1.14.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:1.14.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:communications_contacts_server:8.0.0.3.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:communications_convergent_charging_controller:6.0.1.0.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:communications_convergent_charging_controller:*:*:*:*:*:*:*:* 12.0.1.0.0 12.0.4.0.0
cpe:2.3:a:oracle:communications_data_model:11.3.2.1.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:communications_data_model:11.3.2.2.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:communications_data_model:11.3.2.3.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:communications_data_model:12.1.0.1.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:communications_data_model:12.1.2.0.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:communications_design_studio:7.3.4:*:*:*:*:*:*:*
cpe:2.3:a:oracle:communications_design_studio:7.3.5:*:*:*:*:*:*:*
cpe:2.3:a:oracle:communications_design_studio:7.4.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:communications_design_studio:7.4.1:*:*:*:*:*:*:*
cpe:2.3:a:oracle:communications_diameter_signaling_route:*:*:*:*:*:*:*:* 8.0.0.0 8.5.1.0
cpe:2.3:a:oracle:communications_eagle_application_processor:*:*:*:*:*:*:*:* 16.1 16.4
cpe:2.3:a:oracle:communications_instant_messaging_server:10.0.1.5.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:communications_network_charging_and_control:6.0.1.0.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:communications_network_charging_and_control:*:*:*:*:*:*:*:* 12.0.1.0.0 12.0.4.0.0
cpe:2.3:a:oracle:communications_offline_mediation_controller:12.0.0.3:*:*:*:*:*:*:*
cpe:2.3:a:oracle:communications_service_broker:6.2:*:*:*:*:*:*:*
cpe:2.3:a:oracle:communications_session_border_controller:8.2:*:*:*:*:*:*:*
cpe:2.3:a:oracle:communications_unified_inventory_management:7.4.2:*:*:*:*:*:*:*
cpe:2.3:a:oracle:communications_unified_inventory_management:7.5.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:communications_webrtc_session_controller:7.2.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:communications_webrtc_session_controller:7.2.1:*:*:*:*:*:*:*
cpe:2.3:a:oracle:demantra_demand_management:*:*:*:*:*:*:*:* 12.2.6 12.2.11
cpe:2.3:a:oracle:e-business_suite:*:*:*:*:*:*:*:* 12.2.3 12.2.11
cpe:2.3:a:oracle:enterprise_communications_broker:3.3:*:*:*:*:*:*:*
cpe:2.3:a:oracle:essbase:*:*:*:*:*:*:*:* 11.1.2.4.47
cpe:2.3:a:oracle:essbase:11.1.2.4.47:*:*:*:*:*:*:*
cpe:2.3:a:oracle:essbase:*:*:*:*:*:*:*:* 21.0 21.3
cpe:2.3:a:oracle:essbase_administration_services:*:*:*:*:*:*:*:* 11.1.2.4.47
cpe:2.3:a:oracle:essbase_administration_services:11.1.2.4.47:*:*:*:*:*:*:*
cpe:2.3:a:oracle:financial_services_analytical_applications_infrastructure:7.3.3:*:*:*:*:*:*:*
cpe:2.3:a:oracle:financial_services_behavior_detection_platform:8.0.7:*:*:*:*:*:*:*
cpe:2.3:a:oracle:financial_services_behavior_detection_platform:8.0.8:*:*:*:*:*:*:*
cpe:2.3:a:oracle:financial_services_behavior_detection_platform:8.0.11:*:*:*:*:*:*:*
cpe:2.3:a:oracle:financial_services_enterprise_case_management:8.0.7:*:*:*:*:*:*:*
cpe:2.3:a:oracle:financial_services_enterprise_case_management:8.0.8:*:*:*:*:*:*:*
cpe:2.3:a:oracle:financial_services_enterprise_case_management:8.0.11:*:*:*:*:*:*:*
cpe:2.3:a:oracle:financial_services_foreign_account_tax_compliance_act_management:8.0.7:*:*:*:*:*:*:*
cpe:2.3:a:oracle:financial_services_foreign_account_tax_compliance_act_management:8.0.8:*:*:*:*:*:*:*
cpe:2.3:a:oracle:financial_services_foreign_account_tax_compliance_act_management:8.0.11:*:*:*:*:*:*:*
cpe:2.3:a:oracle:financial_services_model_management_and_governance:*:*:*:*:*:*:*:* 8.0.8 8.1.1
cpe:2.3:a:oracle:financial_services_trade-based_anti_money_laundering:8.0.7:*:*:*:enterprise:*:*:*
cpe:2.3:a:oracle:financial_services_trade-based_anti_money_laundering:8.0.8:*:*:*:enterprise:*:*:*
cpe:2.3:a:oracle:flexcube_investor_servicing:14.4.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:flexcube_investor_servicing:14.5.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:goldengate:*:*:*:*:*:*:*:* 12.3.0.1
cpe:2.3:a:oracle:goldengate:*:*:*:*:*:*:*:* 19.0.0 19.1.0.0.220118
cpe:2.3:a:oracle:goldengate:*:*:*:*:*:*:*:* 21.0.0 21.5.0.0.220118
cpe:2.3:a:oracle:graph_server_and_client:*:*:*:*:*:*:*:* 21.4
cpe:2.3:a:oracle:health_sciences_clinical_development_analytics:4.0.1:*:*:*:*:*:*:*
cpe:2.3:a:oracle:health_sciences_inform_crf_submit:6.2.1:*:*:*:*:*:*:*
cpe:2.3:a:oracle:health_sciences_information_manager:3.0.2:*:*:*:*:*:*:*
cpe:2.3:a:oracle:health_sciences_information_manager:3.0.3:*:*:*:*:*:*:*
cpe:2.3:a:oracle:healthcare_data_repository:8.1.1:*:*:*:*:*:*:*
cpe:2.3:a:oracle:healthcare_foundation:*:*:*:*:*:*:*:* 7.3.0.0 7.3.0.2
cpe:2.3:a:oracle:healthcare_foundation:*:*:*:*:*:*:*:* 8.0.0 8.0.2
cpe:2.3:a:oracle:healthcare_foundation:8.1.1:*:*:*:*:*:*:*
cpe:2.3:a:oracle:healthcare_translational_research:4.1.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:insurance_insbridge_rating_and_underwriting:*:*:*:*:*:*:*:* 5.4.0 5.6.0
cpe:2.3:a:oracle:insurance_policy_administration:11.1.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:insurance_policy_administration:11.2.7:*:*:*:*:*:*:*
cpe:2.3:a:oracle:insurance_policy_administration:11.3.1:*:*:*:*:*:*:*
cpe:2.3:a:oracle:insurance_policy_administration_j2ee:*:*:*:*:*:*:*:* 11.1.0 11.3.0
cpe:2.3:a:oracle:insurance_rules_palette:11.3.1:*:*:*:*:*:*:*
cpe:2.3:a:oracle:java_se:7u321:*:*:*:*:*:*:*
cpe:2.3:a:oracle:java_se:8u311:*:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:11.0.13:*:*:*:*:*:*:*
cpe:2.3:a:oracle:java_se:17.1:*:*:*:*:*:*:*
cpe:2.3:a:oracle:jd_edwards_enterpriseone_orchestrator:*:*:*:*:*:*:*:* 9.2.6.1
cpe:2.3:a:oracle:mysql_cluster:*:*:*:*:*:*:*:* 7.4.34
cpe:2.3:a:oracle:mysql_cluster:*:*:*:*:*:*:*:* 7.5.0 7.5.24
cpe:2.3:a:oracle:mysql_cluster:*:*:*:*:*:*:*:* 7.6.0 7.6.20
cpe:2.3:a:oracle:mysql_cluster:*:*:*:*:*:*:*:* 8.0.0 8.0.27
cpe:2.3:a:oracle:mysql_connectors:*:*:*:*:*:*:*:* 8.0.27
cpe:2.3:a:oracle:mysql_connectors:8.0.27:*:*:*:*:*:*:*
cpe:2.3:a:oracle:mysql_server:*:*:*:*:*:*:*:* 5.7.36
cpe:2.3:a:oracle:mysql_server:5.7.36:*:*:*:*:*:*:*
cpe:2.3:a:oracle:mysql_server:*:*:*:*:*:*:*:* 8.0.0 8.0.27
cpe:2.3:a:oracle:mysql_workbench:*:*:*:*:*:*:*:* 8.0.27
cpe:2.3:a:oracle:nosql_database:*:*:*:*:*:*:*:* 21.1.12
cpe:2.3:a:oracle:oss_support_tools:*:*:*:*:*:*:*:* 2.12.42
cpe:2.3:a:oracle:peoplesoft_enterprise_people_tools:8.57:*:*:*:*:*:*:*
cpe:2.3:a:oracle:peoplesoft_enterprise_people_tools:8.58:*:*:*:*:*:*:*
cpe:2.3:a:oracle:peoplesoft_enterprise_people_tools:8.59:*:*:*:*:*:*:*
cpe:2.3:a:oracle:policy_automation:*:*:*:*:*:*:*:* 12.2.0 12.2.24
cpe:2.3:a:oracle:primavera_unifier:21.12:*:*:*:*:*:*:*
cpe:2.3:a:oracle:rapid_planning:*:*:*:*:*:*:*:* 12.2.6 12.2.11
cpe:2.3:a:oracle:rest_data_services:21.2.4:*:*:*:-:*:*:*
cpe:2.3:a:oracle:retail_allocation:14.1.3.2:*:*:*:*:*:*:*
cpe:2.3:a:oracle:retail_allocation:15.0.3.1:*:*:*:*:*:*:*
cpe:2.3:a:oracle:retail_allocation:16.0.3:*:*:*:*:*:*:*
cpe:2.3:a:oracle:retail_allocation:19.0.1:*:*:*:*:*:*:*
cpe:2.3:a:oracle:retail_analytics:*:*:*:*:*:*:*:* 16.0.0 16.0.2
cpe:2.3:a:oracle:retail_customer_insights:*:*:*:*:*:*:*:* 16.0.0 16.0.2
cpe:2.3:a:oracle:retail_eftlink:20.0.1:*:*:*:*:*:*:*
cpe:2.3:a:oracle:retail_financial_integration:19.0.1:*:*:*:*:*:*:*
cpe:2.3:a:oracle:retail_fiscal_management:14.2:*:*:*:*:*:*:*
cpe:2.3:a:oracle:retail_integration_bus:14.1.3.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:retail_integration_bus:*:*:*:*:*:*:*:* 16.0.1 16.0.3
cpe:2.3:a:oracle:retail_integration_bus:19.0.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:retail_integration_bus:19.0.1:*:*:*:*:*:*:*
cpe:2.3:a:oracle:retail_invoice_matching:15.0.3:*:*:*:*:*:*:*
cpe:2.3:a:oracle:retail_invoice_matching:16.0.3:*:*:*:*:*:*:*
cpe:2.3:a:oracle:primavera_p6_professional_project_management:*:*:*:*:*:*:*:* 20.12.0.0 20.12.9.0
cpe:2.3:a:oracle:primavera_p6_professional_project_management:*:*:*:*:*:*:*:* 19.12.0.0 19.12.17.0
cpe:2.3:a:oracle:primavera_p6_professional_project_management:*:*:*:*:*:*:*:* 18.8.0.0 18.8.24.0
cpe:2.3:a:oracle:primavera_p6_professional_project_management:*:*:*:*:*:*:*:* 17.12.0.0 17.12.20.0
cpe:2.3:a:oracle:primavera_p6_enterprise_project_portfolio_management:21.12.0.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:primavera_p6_enterprise_project_portfolio_management:*:*:*:*:*:*:*:* 20.12.0.0 20.12.12.0
cpe:2.3:a:oracle:primavera_p6_enterprise_project_portfolio_management:*:*:*:*:*:*:*:* 19.12.0.0 19.12.18.0
cpe:2.3:a:oracle:primavera_p6_enterprise_project_portfolio_management:*:*:*:*:*:*:*:* 18.8.0.0 18.8.24.0
cpe:2.3:a:oracle:primavera_p6_enterprise_project_portfolio_management:*:*:*:*:*:*:*:* 17.12.0.0 17.12.0.0-17.12.20.0
cpe:2.3:a:oracle:primavera_gateway:21.12.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:primavera_gateway:*:*:*:*:*:*:*:* 19.12.0 19.12.12
cpe:2.3:a:oracle:primavera_gateway:*:*:*:*:*:*:*:* 18.8.0 18.8.13
cpe:2.3:a:oracle:primavera_data_warehouse:20.12.12.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:primavera_data_warehouse:19.12.11.1:*:*:*:*:*:*:*
cpe:2.3:a:oracle:primavera_data_warehouse:18.8.3.3:*:*:*:*:*:*:*
cpe:2.3:a:oracle:primavera_analytics:20.12.12.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:primavera_analytics:19.12.11.1:*:*:*:*:*:*:*
cpe:2.3:a:oracle:primavera_analytics:18.8.3.3:*:*:*:*:*:*:*
cpe:2.3:a:oracle:retail_order_management_system:19.5:*:*:*:*:*:*:*
cpe:2.3:a:oracle:retail_predictive_application_server:14.1.3.46:*:*:*:*:*:*:*
cpe:2.3:a:oracle:retail_predictive_application_server:15.0.3.115:*:*:*:*:*:*:*
cpe:2.3:a:oracle:retail_predictive_application_server:16.0.3.240:*:*:*:*:*:*:*
cpe:2.3:a:oracle:retail_price_management:13.2:*:*:*:*:*:*:*
cpe:2.3:a:oracle:retail_price_management:14.0.4:*:*:*:*:*:*:*
cpe:2.3:a:oracle:retail_price_management:14.1:*:*:*:*:*:*:*
cpe:2.3:a:oracle:retail_price_management:14.1.3:*:*:*:*:*:*:*
cpe:2.3:a:oracle:retail_price_management:15.0.3:*:*:*:*:*:*:*
cpe:2.3:a:oracle:retail_price_management:16.0.3:*:*:*:*:*:*:*
cpe:2.3:a:oracle:retail_service_backbone:14.1.3.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:retail_service_backbone:*:*:*:*:*:*:*:* 16.0.1 16.0.3
cpe:2.3:a:oracle:retail_service_backbone:19.0.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:retail_service_backbone:19.0.1:*:*:*:*:*:*:*
cpe:2.3:a:oracle:secure_backup:18.1.0.1.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:siebel_applications:*:*:*:*:*:*:*:* 21.12
cpe:2.3:a:oracle:spatial_studio:21.2.1:*:*:*:*:*:*:*
cpe:2.3:a:oracle:thesaurus_management_system:5.2.3:*:*:*:*:*:*:*
cpe:2.3:a:oracle:thesaurus_management_system:5.3.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:thesaurus_management_system:5.3.1:*:*:*:*:*:*:*
cpe:2.3:a:oracle:timesten_in-memory_database:*:*:*:*:*:*:*:* 11.2.2.8.27
cpe:2.3:a:oracle:timesten_in-memory_database:*:*:*:*:*:*:*:* 21.0.0 21.1.1.1.0
cpe:2.3:a:oracle:utilities_testing_accelerator:6.0.0.1.1:*:*:*:*:*:*:*
cpe:2.3:a:oracle:utilities_testing_accelerator:6.0.0.2.2:*:*:*:*:*:*:*
cpe:2.3:a:oracle:utilities_testing_accelerator:6.0.0.3.1:*:*:*:*:*:*:*
cpe:2.3:a:oracle:zfs_storage_application_integration_engineering_software:1.3.3:*:*:*:*:*:*:*
cpe:2.3:a:oracle:application_express:21.1.4:*:*:*:*:*:*:*
cpe:2.3:a:oracle:banking_deposits_and_lines_of_credit_servicing:2.12.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:banking_enterprise_default_management:2.6.2:*:*:*:*:*:*:*
cpe:2.3:a:oracle:banking_enterprise_default_management:2.7.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:banking_enterprise_default_management:2.7.1:*:*:*:*:*:*:*
cpe:2.3:a:oracle:hospitality_suite8:8.11.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:hospitality_suite8:8.12.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:hospitality_suite8:8.13.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:hospitality_suite8:8.14.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:hyperion_infrastructure_technology:11.2.7.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:hyperion_ilearning:6.2:*:*:*:*:*:*:*
cpe:2.3:a:oracle:hyperion_ilearning:6.3:*:*:*:*:*:*:*
cpe:2.3:a:oracle:insurance_data_gateway:11.0.2:*:*:*:*:*:*:*
cpe:2.3:a:oracle:insurance_data_gateway:11.1.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:insurance_data_gateway:11.2.7:*:*:*:*:*:*:*
cpe:2.3:a:oracle:insurance_data_gateway:11.3.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:insurance_data_gateway:11.3.1:*:*:*:*:*:*:*
cpe:2.3:a:oracle:insurance_insbridge_rating_and_underwriting:5.2.0:*:*:*:*:*:*:*
Configuration6 or higher or less more than less than
cpe:2.3:o:oracle:fujitsu_m10-1_firmware:-:*:*:*:*:*:*:*
execution environment
1 cpe:2.3:h:oracle:fujitsu_m10-1:-:*:*:*:*:*:*:*
Configuration7 or higher or less more than less than
cpe:2.3:o:oracle:fujitsu_m10-4_firmware:-:*:*:*:*:*:*:*
execution environment
1 cpe:2.3:h:oracle:fujitsu_m10-4:-:*:*:*:*:*:*:*
Configuration8 or higher or less more than less than
cpe:2.3:o:oracle:fujitsu_m10-4s_firmware:-:*:*:*:*:*:*:*
execution environment
1 cpe:2.3:h:oracle:fujitsu_m10-4s:-:*:*:*:*:*:*:*
Configuration9 or higher or less more than less than
cpe:2.3:o:oracle:fujitsu_m12-1_firmware:-:*:*:*:*:*:*:*
execution environment
1 cpe:2.3:h:oracle:fujitsu_m12-1:-:*:*:*:*:*:*:*
Configuration10 or higher or less more than less than
cpe:2.3:o:oracle:fujitsu_m12-2_firmware:-:*:*:*:*:*:*:*
execution environment
1 cpe:2.3:h:oracle:fujitsu_m12-2:-:*:*:*:*:*:*:*
Configuration11 or higher or less more than less than
cpe:2.3:o:oracle:fujitsu_m12-2s_firmware:-:*:*:*:*:*:*:*
execution environment
1 cpe:2.3:h:oracle:fujitsu_m12-2s:-:*:*:*:*:*:*:*
Related information, measures and tools
Common Vulnerabilities List
JVN Vulnerability Information
Hibernate-Validator におけるクロスサイトスクリプティングの脆弱性
Title Hibernate-Validator におけるクロスサイトスクリプティングの脆弱性
Summary

Hibernate-Validator には、クロスサイトスクリプティングの脆弱性が存在します。

Possible impacts 情報を取得される、および情報を改ざんされる可能性があります。
Solution

ベンダ情報および参考情報を参照して適切な対策を実施してください。
Publication Date Aug. 7, 2019, midnight
Registration Date Nov. 19, 2019, 5:24 p.m.
Last Update Nov. 2, 2022, 4:42 p.m.
Affected System
レッドハット
JBoss Data Grid 
JBoss Enterprise Application Platform 
Single Sign-On 
Hibernate
Hibernate Validator 
CVE (情報セキュリティ 共通脆弱性識別子)
CWE (共通脆弱性タイプ一覧)
ベンダー情報
Change Log
No Changed Details Date of change
1 [2019年11月19日]
  掲載		 Nov. 19, 2019, 5:24 p.m.
2 [2022年11月02日]
  影響を受けるシステム:ベンダ情報の追加に伴い内容を更新
  ベンダ情報:日立 (hitachi-sec-2022-136) を追加		 Nov. 2, 2022, 3:23 p.m.